Re: Fw: 2.5.61 oops running SDET

• Next message: Steven Cole: "[PATCH] 2.5.61 more accurate spelling of accuracy"
• Previous message: Anton Blanchard: "Re: [PATCH] make jiffies wrap 5 min after boot"
• In reply to: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Next in thread: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Reply: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Reply: Zwane Mwaikambo: "Re: Fw: 2.5.61 oops running SDET"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Yeah, but I think the bug has existed for much longer.
>
> It looks like "proc_pid_status()" doesn't actually lock the task at all,
> nor even bother to test whether the task has signal state. Which has
> _always_ been a bug. I don't know why it would start happening now, but
> it might just be unlucky timing.
>
> I think the proper fix is to put a
>
> task_lock()
> ..
> task_unlock()
>
> around the whole proc_pid_status() function, _and_ then verify that
> "tsk->sighand" is non-NULL.
>
> (Oh, careful, that's already what "get_task_mm()" does internally, so
> look out for deadlocks - you'd need to open-code the get_task_mm() in
> there too, so the end result is something like
>
> task_lock(task)
> if (task->mm) {
> .. mm state
> }
> if (task->sighand) {
> .. signal state
> }
> ..
> task_unlock(task);
>
> instead).

Something like this? Compiles, but not tested yet ...

diff -urpN -X /home/fletch/.diff.exclude virgin/fs/proc/array.c
proc/fs/proc/array.c
--- virgin/fs/proc/array.c Sat Feb 15 16:11:45 2003
+++ proc/fs/proc/array.c Sat Feb 15 18:05:10 2003
@@ -243,8 +243,10 @@ extern char *task_mem(struct mm_struct *
 int proc_pid_status(struct task_struct *task, char * buffer)
 {
         char * orig = buffer;
- struct mm_struct *mm = get_task_mm(task);
+ struct mm_struct *mm;
 
+ task_lock(task);
+ mm = __get_task_mm(task);
         buffer = task_name(task, buffer);
         buffer = task_state(task, buffer);
  
@@ -257,6 +259,7 @@ int proc_pid_status(struct task_struct *
 #if defined(CONFIG_ARCH_S390)
         buffer = task_show_regs(task, buffer);
 #endif
+ task_unlock(task);
         return buffer - orig;
 }
 
diff -urpN -X /home/fletch/.diff.exclude virgin/include/linux/sched.h
proc/include/linux/sched.h
--- virgin/include/linux/sched.h Sat Feb 15 16:11:47 2003
+++ proc/include/linux/sched.h Sat Feb 15 18:04:42 2003
@@ -706,6 +706,18 @@ static inline struct mm_struct * get_tas
 
         return mm;
 }
+
+/* lockless version of get_task_mm */
+static inline struct mm_struct * __get_task_mm(struct task_struct * task)
+{
+ struct mm_struct * mm;
+
+ mm = task->mm;
+ if (mm)
+ atomic_inc(&mm->mm_users);
+
+ return mm;
+}
  
  
 /* set thread flags in other task's structures

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Steven Cole: "[PATCH] 2.5.61 more accurate spelling of accuracy"
• Previous message: Anton Blanchard: "Re: [PATCH] make jiffies wrap 5 min after boot"
• In reply to: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Next in thread: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Reply: Linus Torvalds: "Re: Fw: 2.5.61 oops running SDET"
• Reply: Zwane Mwaikambo: "Re: Fw: 2.5.61 oops running SDET"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Feb 15 2003 - 22:01:05 EST