[PATCH] fix queues_count accounting in mqueue_delete_inode()

From: Chris Wright
Date: Tue May 04 2004 - 19:48:03 EST

Next message: Andrew Morton: "Re: [VM PATCH 2.6.6-rc3-bk5] Dirty balancing in the presence ofmapped pages"
Previous message: Chris Wright: "[PATCH] fix memleak in sys_mq_timedsend"
In reply to: Chris Wright: "[PATCH] fix memleak in sys_mq_timedsend"
Next in thread: Chris Wright: "[PATCH] simplify mqueue_inode_info->messages allocation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

During mqueue_get_inode(), it's possible that kmalloc() of the
info->messages array will fail. This failure mode will cause the
queues_count to be (incorrectly) decremented twice. This patch uses
info->messages on mqueue_delete_inode() to determine whether the
mqueue was every truly created, and hence proper accounting is needed
on destruction.

--- ./ipc/mqueue.c~fix_queues_count 2004-05-04 15:10:59.000000000 -0700
+++ ./ipc/mqueue.c 2004-05-04 15:16:34.000000000 -0700
@@ -215,9 +215,11 @@ static void mqueue_delete_inode(struct i

clear_inode(inode);

- spin_lock(&mq_lock);
- queues_count--;
- spin_unlock(&mq_lock);
+ if (info->messages) {
+ spin_lock(&mq_lock);
+ queues_count--;
+ spin_unlock(&mq_lock);
+ }
}

static int mqueue_create(struct inode *dir, struct dentry *dentry,
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: [VM PATCH 2.6.6-rc3-bk5] Dirty balancing in the presence ofmapped pages"
Previous message: Chris Wright: "[PATCH] fix memleak in sys_mq_timedsend"
In reply to: Chris Wright: "[PATCH] fix memleak in sys_mq_timedsend"
Next in thread: Chris Wright: "[PATCH] simplify mqueue_inode_info->messages allocation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]