[PATCH] race condition in procfs

From: Grzegorz Nosek
Date: Tue Nov 29 2005 - 02:16:48 EST

Next message: Michael Krufky: "Re: Linux 2.6.15-rc3"
Previous message: Michael Krufky: "Re: cx88 totally fried in 2.6.15-rcX -was- Re: HD3000 - no NTSC viatuner"
Next in thread: Andrew Morton: "Re: [PATCH] race condition in procfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

I found a race condition in procfs on SMP systems. The result is an
oops in processes like pidof. Apparently ->proc_read() gets passed a
potentially NULL pointer. The following micro-patch seems to fix it.

Best regards,
Grzegorz Nosek

--- linux-2.6/fs/proc/base.c.orig 2005-11-25 00:07:43.000000000 +0100
+++ linux-2.6/fs/proc/base.c 2005-11-28 11:44:11.000000000 +0100
@@ -718,6 +718,9 @@
ssize_t length;
struct task_struct *task = proc_task(inode);

+ if (!task)
+ return -ENOENT;
+
if (count > PROC_BLOCK_SIZE)
count = PROC_BLOCK_SIZE;
if (!(page = __get_free_page(GFP_KERNEL)))
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michael Krufky: "Re: Linux 2.6.15-rc3"
Previous message: Michael Krufky: "Re: cx88 totally fried in 2.6.15-rcX -was- Re: HD3000 - no NTSC viatuner"
Next in thread: Andrew Morton: "Re: [PATCH] race condition in procfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]