[PATCH 20/23] tracing: Fix panic when lseek() called on "trace" opened for writing

From: Willy Tarreau
Date: Sun Feb 06 2011 - 18:45:56 EST

Next message: Willy Tarreau: "[PATCH 03/23] ALSA: hda: Use LPIB quirk for Dell Inspiron m101z/1120"
Previous message: Willy Tarreau: "[PATCH 21/23] hvc_console: Fix race between hvc_close and hvc_remove"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

2.6.27.58-stable review patch. If anyone has any objections, please let us know.

------------------

From: Slava Pestov <slavapestov@xxxxxxxxxx>

commit 364829b1263b44aa60383824e4c1289d83d78ca7 upstream.

The file_ops struct for the "trace" special file defined llseek as seq_lseek().
However, if the file was opened for writing only, seq_open() was not called,
and the seek would dereference a null pointer, file->private_data.

This patch introduces a new wrapper for seq_lseek() which checks if the file
descriptor is opened for reading first. If not, it does nothing.

Signed-off-by: Slava Pestov <slavapestov@xxxxxxxxxx>
LKML-Reference: <1290640396-24179-1-git-send-email-slavapestov@xxxxxxxxxx>
Signed-off-by: Steven Rostedt <rostedt@xxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxx>
[wt: applied to tracing_lt_fops too /wt]
Signed-off-by: Willy Tarreau <w@xxxxxx>

---
kernel/trace/trace.c | 10 +++++++++-
1 file changed, 9 insertions(+), 1 deletion(-)

Index: longterm-2.6.27/kernel/trace/trace.c
===================================================================
--- longterm-2.6.27.orig/kernel/trace/trace.c 2011-01-23 10:52:37.000000000 +0100
+++ longterm-2.6.27/kernel/trace/trace.c 2011-01-29 11:42:07.287067215 +0100
@@ -2041,17 +2041,25 @@
return ret;
}

+static loff_t tracing_seek(struct file *file, loff_t offset, int origin)
+{
+ if (file->f_mode & FMODE_READ)
+ return seq_lseek(file, offset, origin);
+ else
+ return 0;
+}
+
static struct file_operations tracing_fops = {
.open = tracing_open,
.read = seq_read,
- .llseek = seq_lseek,
+ .llseek = tracing_lseek,
.release = tracing_release,
};

static struct file_operations tracing_lt_fops = {
.open = tracing_lt_open,
.read = seq_read,
- .llseek = seq_lseek,
+ .llseek = tracing_lseek,
.release = tracing_release,
};

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Willy Tarreau: "[PATCH 03/23] ALSA: hda: Use LPIB quirk for Dell Inspiron m101z/1120"
Previous message: Willy Tarreau: "[PATCH 21/23] hvc_console: Fix race between hvc_close and hvc_remove"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]