Re: [patch 0/2] locking/rtmutex: Cure two subtle bugs

From: Peter Zijlstra
Date: Wed Aug 25 2021 - 07:42:03 EST

Next message: Vincent Whitchurch: "[PATCH] mmc: dw_mmc: Only inject fault before done/error"
Previous message: zhaoxiao: "[PATCH] x86: xen: platform-pci-unplug: use pr_err() and pr_warn() instead of raw printk()"
In reply to: tip-bot2 for Thomas Gleixner: "[tip: locking/core] locking/rtmutex: Dequeue waiter on ww_mutex deadlock"
Next in thread: Peter Zijlstra: "Re: [patch 0/2] locking/rtmutex: Cure two subtle bugs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Aug 25, 2021 at 12:33:11PM +0200, Thomas Gleixner wrote:
> The recent updates to rtmutex introduced two subtle bugs:
>
> 1) The spinwait mechanism added a UAF which triggers a BUG_ON()
>
> 2) The ww_mutex addition leaves a waiter queued in the error exit path
> resulting in rb tree corruption
>
> The fixes are straight forward, but the rtmutex based ww_mutex
> implementation still has some more rough egdes which need to be ironed out.

Thanks!

Next message: Vincent Whitchurch: "[PATCH] mmc: dw_mmc: Only inject fault before done/error"
Previous message: zhaoxiao: "[PATCH] x86: xen: platform-pci-unplug: use pr_err() and pr_warn() instead of raw printk()"
In reply to: tip-bot2 for Thomas Gleixner: "[tip: locking/core] locking/rtmutex: Dequeue waiter on ww_mutex deadlock"
Next in thread: Peter Zijlstra: "Re: [patch 0/2] locking/rtmutex: Cure two subtle bugs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]