[patch 3/3] audit: Use rcu for task lookup protection

From: Thomas Gleixner
Date: Tue Sep 07 2010 - 10:00:42 EST

Next message: Thomas Gleixner: "[patch 2/3] audit: Do not send uninitialized data for AUDIT_TTY_GET"
Previous message: Thomas Gleixner: "[patch 1/3] audit: Call tty_audit_push_task() outside preempt disabled"
In reply to: Thomas Gleixner: "[patch 1/3] audit: Call tty_audit_push_task() outside preempt disabled"
Next in thread: Oleg Nesterov: "Re: [patch 3/3] audit: Use rcu for task lookup protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Protect the task lookups in audit_receive_msg() with rcu_read_lock()
instead of tasklist_lock and use lock/unlock_sighand to protect
against the exit race.

Signed-off-by: Thomas Gleixner <tglx@xxxxxxxxxxxxx>
Cc: Al Viro <viro@xxxxxxxxxxxxxxxxxx>
Cc: Eric Paris <eparis@xxxxxxxxxx>
Cc: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Cc: Oleg Nesterov <oleg@xxxxxxxxxx>

---
kernel/audit.c | 30 ++++++++++++++----------------
kernel/audit.c | 30 ++++++++++++++----------------
1 file changed, 14 insertions(+), 16 deletions(-)
Index: linux-2.6/kernel/audit.c
===================================================================
--- linux-2.6.orig/kernel/audit.c
+++ linux-2.6/kernel/audit.c
@@ -873,17 +873,16 @@ static int audit_receive_msg(struct sk_b
case AUDIT_TTY_GET: {
struct audit_tty_status s;
struct task_struct *tsk;
+ unsigned long flags;

- read_lock(&tasklist_lock);
+ rcu_read_lock();
tsk = find_task_by_vpid(pid);
- if (!tsk)
- err = -ESRCH;
- else {
- spin_lock_irq(&tsk->sighand->siglock);
+ if (tsk && lock_task_sighand(tsk, &flags)) {
s.enabled = tsk->signal->audit_tty != 0;
- spin_unlock_irq(&tsk->sighand->siglock);
- }
- read_unlock(&tasklist_lock);
+ unlock_task_sighand(tsk, &flags);
+ } else
+ err = -ESRCH;
+ rcu_read_unlock();

if (!err)
audit_send_reply(NETLINK_CB(skb).pid, seq,
@@ -893,22 +892,21 @@ static int audit_receive_msg(struct sk_b
case AUDIT_TTY_SET: {
struct audit_tty_status *s;
struct task_struct *tsk;
+ unsigned long flags;

if (nlh->nlmsg_len < sizeof(struct audit_tty_status))
return -EINVAL;
s = data;
if (s->enabled != 0 && s->enabled != 1)
return -EINVAL;
- read_lock(&tasklist_lock);
+ rcu_read_lock();
tsk = find_task_by_vpid(pid);
- if (!tsk)
- err = -ESRCH;
- else {
- spin_lock_irq(&tsk->sighand->siglock);
+ if (tsk && lock_task_sighand(tsk, &flags)) {
tsk->signal->audit_tty = s->enabled != 0;
- spin_unlock_irq(&tsk->sighand->siglock);
- }
- read_unlock(&tasklist_lock);
+ unlock_task_sighand(tsk, &flags);
+ } else
+ err = -ESRCH;
+ rcu_read_unlock();
break;
}
default:

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Thomas Gleixner: "[patch 2/3] audit: Do not send uninitialized data for AUDIT_TTY_GET"
Previous message: Thomas Gleixner: "[patch 1/3] audit: Call tty_audit_push_task() outside preempt disabled"
In reply to: Thomas Gleixner: "[patch 1/3] audit: Call tty_audit_push_task() outside preempt disabled"
Next in thread: Oleg Nesterov: "Re: [patch 3/3] audit: Use rcu for task lookup protection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]