[tip PATCH] futex: fix futex_wait_setup key handling

From: Darren Hart
Date: Fri Apr 10 2009 - 12:23:40 EST

Next message: Pavel Machek: "Re: 2.6.30-rc1: touchscreen BUG() on spitz"
Previous message: Eric W. Biederman: "Re: [PATCH 02/30] Remove struct mm_struct::exe_file et al"
Next in thread: Thomas Gleixner: "Re: [tip PATCH] futex: fix futex_wait_setup key handling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

If the get_futex_key() call were to fail, the existing code would
try and put_futex_key() prior to returning. This patch makes sure
we only put_futex_key() if get_futex_key() succeeded.

Please apply to -rt and to tip:/core/futexes.

Reported-by: Clark Williams <williams@xxxxxxxxxx>
Signed-off-by: Darren Hart <dvhltc@xxxxxxxxxx>
Cc: Thomas Gleixner <tglx@xxxxxxxxxxxxx>
Cc: Ingo Molnar <mingo@xxxxxxx>
---

kernel/futex.c | 5 +++--
1 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/kernel/futex.c b/kernel/futex.c
index 185c981..4357f06 100644
--- a/kernel/futex.c
+++ b/kernel/futex.c
@@ -1657,7 +1657,7 @@ retry_private:

ret = get_user(uval, uaddr);
if (ret)
- goto out;
+ goto out_put_key;

if (!fshared)
goto retry_private;
@@ -1671,9 +1671,10 @@ retry_private:
ret = -EWOULDBLOCK;
}

-out:
+out_put_key:
if (ret)
put_futex_key(fshared, &q->key);
+out:
return ret;
}

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pavel Machek: "Re: 2.6.30-rc1: touchscreen BUG() on spitz"
Previous message: Eric W. Biederman: "Re: [PATCH 02/30] Remove struct mm_struct::exe_file et al"
Next in thread: Thomas Gleixner: "Re: [tip PATCH] futex: fix futex_wait_setup key handling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]