Re: [PATCH] fix race in AF_UNIX
From: David Miller
Date: Mon Jun 18 2007 - 05:47:59 EST
From: Miklos Szeredi <miklos@xxxxxxxxxx>
Date: Mon, 18 Jun 2007 11:44:07 +0200
> > Secondarily, this bug has been around for years and nobody noticed.
> > The world will not explode if this bug takes a few more days or
> > even a week to work out. Let's do it right instead of ramming
> > arbitrary turds into the kernel.
>
> Fine, but just wishing a bug to get fixed won't accomplish anything.
> I've spent a fair amount of time debugging this thing, and I'm out of
> ideas. Really. So unless somebody steps up to look at this, it won't
> _ever_ get fixed.
Somone just needs to find a way to only lock the socket as it is
being operated upon.
The race you are dealing with is rather simple, the queue check
and the state check need to be done atomically. The only chore
is to find a way to make that happen in the context of what the
garbage allocator is trying to do.
I'm not even convinced that your most recent attempt is deadlock free.
Locking multiple objects the same way all at once like that is
something that needs to be seriously audited.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/