Re: [PATCH] tty: fix data race in n_tty_receive_buf_common

From: Alan Cox
Date: Fri Jan 05 2018 - 09:15:57 EST

Next message: Mario.Limonciello: "RE: [PATCH] platform/x86: dell-laptop: Filter out spurious keyboard backlight change events"
Previous message: Thomas Gleixner: "[PATCH] x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN"
In reply to: Kohli, Gaurav: "Re: [PATCH] tty: fix data race in n_tty_receive_buf_common"
Next in thread: Kohli, Gaurav: "Re: [PATCH] tty: fix data race in n_tty_receive_buf_common"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> But in above case , there we can hit another race, if we have a sequence
> like this
> tty_init_dev->alloc_tty_struct -> tty_ldisc_init -> this will initialize
> ldisc ,
> but at this moment disc_data is still NULL
>
> And if flush_to_ldisc comes in between, it will take ldisc reference and
> proceeds receive buffer.

So you need to move the lock up one line to protect the assignment to
tty->port->itty. We can do that.

At that point your flush_to_ldisc should see either port->itty = NULL or a
valid initialized ldisc.

Alan

Next message: Mario.Limonciello: "RE: [PATCH] platform/x86: dell-laptop: Filter out spurious keyboard backlight change events"
Previous message: Thomas Gleixner: "[PATCH] x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN"
In reply to: Kohli, Gaurav: "Re: [PATCH] tty: fix data race in n_tty_receive_buf_common"
Next in thread: Kohli, Gaurav: "Re: [PATCH] tty: fix data race in n_tty_receive_buf_common"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]