Google Git
Sign in
android / kernel / common / 380af1b33b3ff92df5cda96329b58f5d1b6b5a53
commit380af1b33b3ff92df5cda96329b58f5d1b6b5a53[log] [tgz]
authorManfred Spraul <[email protected]>Fri Jul 25 01:48:06 2008 -0700
committerLinus Torvalds <[email protected]>Fri Jul 25 10:53:42 2008 -0700
tree9a47d66c18e4aae2093a708a7509c0f188ee0bd1
parenta1193f8ec091cd8fd309cc2982abe4499f6f2b4d [diff]
ipc/sem.c: rewrite undo list locking

The attached patch:
- reverses the locking order of ulp->lock and sem_lock:
  Previously, it was first ulp->lock, then inside sem_lock.
  Now it's the other way around.
- converts the undo structure to rcu.

Benefits:
- With the old locking order, IPC_RMID could not kfree the undo structures.
  The stale entries remained in the linked lists and were released later.
- The patch fixes a a race in semtimedop(): if both IPC_RMID and a semget() that
  recreates exactly the same id happen between find_alloc_undo() and sem_lock,
  then semtimedop() would access already kfree'd memory.

[[email protected]: coding-style fixes]
Signed-off-by: Manfred Spraul <[email protected]>
Reviewed-by: Nadia Derbey <[email protected]>
Cc: Pierre Peiffer <[email protected]>
Signed-off-by: Andrew Morton <[email protected]>
Signed-off-by: Linus Torvalds <[email protected]>
2 files changed
tree: 9a47d66c18e4aae2093a708a7509c0f188ee0bd1
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS