Re: [PATCH] kernel/cred: Fix bug on cred reference count

From: David Howells
Date: Sat Jul 09 2011 - 05:14:27 EST

Next message: David Miller: "Re: [PATCH net-next] skbuff: clear tx zero-copy flag"
Previous message: Stefan Richter: "Re: [PATCH] block: Check that queue is alive inblk_insert_cloned_request()"
In reply to: Edwin van Vliet: "[PATCH] kernel/cred: Fix bug on cred reference count"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Edwin van Vliet <edwin@xxxxxxxxxx> wrote:

> The comment above states that the old obj ref and subj ref should BOTH be
> released. However, the line is repeated so the old obj ref is released twice
> yet the subj ref is not. So either the comment is wrong, or this is simpy a
> bug. Releasing the same ref twice seems wrong in any case.

The comment is correct and the double release is correct.

task_struct has *two* refs to the cred being replaced and both need to be
updated:

current->real_cred - The objective cred
current->cred - The subjective cred

The subjective cred is the one used by a task to access other objects; the
objective cred details how the task is perceived by the outside world and
affects how other tasks act upon it.

Normally a task's two cred pointers point to the same cred, but under some
circumstances (such as in cachefiles), the subjective cred can be overridden.

David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Miller: "Re: [PATCH net-next] skbuff: clear tx zero-copy flag"
Previous message: Stefan Richter: "Re: [PATCH] block: Check that queue is alive inblk_insert_cloned_request()"
In reply to: Edwin van Vliet: "[PATCH] kernel/cred: Fix bug on cred reference count"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]