From: Andrew Morton <andrewm@uow.edu.au>
To: lkml <linux-kernel@vger.kernel.org>
Subject: [patch] potential death in disassociate_ctty()
Date: Sat, 18 Nov 2000 15:02:07 +1100 [thread overview]
Message-ID: <3A15FF3F.9692D272@uow.edu.au> (raw)
The call to disassociate_ctty() in exit_notify() is very dangerous. If
disassociate_ctty() calls schedule() then either:
- a parent process who is spinning in fork.c:release() will stop
spinning and will proceed to deallocate the child process's kernel
stack. This will probably have adverse effects when it is rewoken.
- Or, if disassociate_ctty() sets current->state to TASK_RUNNING and
the timing is right, the exitting child will no longer be in state
TASK_ZOMBIE and will continue to run. It hits the fake_volatile goto
in do_exit() and has another go at zombifying itself.
Not sure what happens next, but you end up with every process
sleeping and your machine freezes halfway through your initscripts.
Basically, we mustn't sleep in disassociate_ctty(). But this function
does all sorts of things, inclusing calling the open and close methods
of tty drivers and ldisc drivers. They _do_ call functions which can
sleep.
I think it's safer to not call disassociate_ctty() when we're in state
TASK_ZOMBIE. This patch moves the parent notification and the task
state change to _after_ the call to disassociate_ctty(). As an added
bonus, it's a little more efficient: the later we wake the parent, the
less time the parent has to spend spinning on current->has_cpu.
I'm not particularly confident about this one. What are the effects of
moving the call to do_notify_parent()? None, I think - if it mattered
we'd be racy anyway.
Also, somewhere on the path from kernel 2.2 to 2.4 the call to
do_notify_parent() was moved inside the tasklist lock. Why was this?
It seems unnecessary. This patch backs out that change, perhaps
wrongly...
--- linux-2.4.0-test11-pre7/kernel/exit.c Sat Nov 18 13:55:32 2000
+++ linux-akpm/kernel/exit.c Sat Nov 18 14:37:39 2000
@@ -382,7 +382,6 @@
*/
write_lock_irq(&tasklist_lock);
- do_notify_parent(current, current->exit_signal);
while (current->p_cptr != NULL) {
p = current->p_cptr;
current->p_cptr = p->p_osptr;
@@ -418,6 +417,10 @@
if (current->leader)
disassociate_ctty(1);
+
+ /* From now on, we must not sleep */
+ set_current_state(TASK_ZOMBIE);
+ do_notify_parent(current, current->exit_signal);
}
NORET_TYPE void do_exit(long code)
@@ -444,7 +447,6 @@
__exit_fs(tsk);
exit_sighand(tsk);
exit_thread();
- tsk->state = TASK_ZOMBIE;
tsk->exit_code = code;
exit_notify();
put_exec_domain(tsk->exec_domain);
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/
next reply other threads:[~2000-11-18 4:32 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2000-11-18 4:02 Andrew Morton [this message]
2000-11-18 5:34 ` [patch] potential death in disassociate_ctty() Linus Torvalds
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3A15FF3F.9692D272@uow.edu.au \
--to=andrewm@uow.edu.au \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).