From: Oleg Nesterov <oleg@redhat.com>
To: Chen Gang <gang.chen@asianux.com>
Cc: "Eric W. Biederman" <ebiederm@xmission.com>,
Serge Hallyn <serge.hallyn@canonical.com>,
"Serge E. Hallyn" <serge@hallyn.com>,
Andrew Morton <akpm@linux-foundation.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>
Subject: Re: [PATCH] kernel/pid.c: check pid whether be NULL in __change_pid()
Date: Tue, 8 Oct 2013 19:56:25 +0200 [thread overview]
Message-ID: <20131008175625.GA32220@redhat.com> (raw)
In-Reply-To: <52532D74.1060408@asianux.com>
On 10/08, Chen Gang wrote:
>
> On 10/07/2013 08:43 PM, Oleg Nesterov wrote:
> >
> >> but still recommend to check it
> >> in __change_pid() to let itself consistency.
> >
> > Why?
> >
> > Contrary, I think we should not hide the problem. If __change_pid() is
> > called when task->pids[type].pid is already NULL there is something
> > seriously wrong.
> >
>
> Hmm... In my opinion, it means need BUG_ON() for original 'link->pid'.
>
> --------------------------------patch begin-----------------------------
>
> [PATCH] kernel/pid.c: add BUG_ON() for "!pid" in __change_pid()
>
> Within __change_pid(), 'new' may be NULL if it comes from detach_pid(),
Yes, this is fine,
> and 'link->pid' also may be NULL ("link->pid = new"),
> ...
> the original 'link->pid' may be NULL, too.
Too? You mean, it becomes NULL after detach_pid().
> But in real world, all related extern functions always assume "if
> 'link->pid' is already NULL, there must be something seriously wrong",
> although __change_pid() can accept parameter 'new' as NULL.
I simply can't understand why you mix "new == NULL" and "link->pid == NULL".
> So in __change_pid(), need add BUG_ON() for it: "it should not happen,
> when it really happen, OS must be continuing blindly,
OS will crash a couple of lines below trying to dereference this pointer.
> --- a/kernel/pid.c
> +++ b/kernel/pid.c
> @@ -396,6 +396,12 @@ static void __change_pid(struct task_struct *task, enum pid_type type,
> link = &task->pids[type];
> pid = link->pid;
>
> + /*
> + * If task->pids[type].pid is already NULL, there must be something
> + * seriously wrong
> + */
> + BUG_ON(!pid);
Following this logic you should also add
BUG_ON(!task);
BUG_ON(!link->node.next);
BUG_ON(!link->node.prev || link->node.prev == LIST_POISON2);
...
Seriously, I do not understand the point. Yes, detach_pid() should not
be called twice. And it has a single caller. And this caller will crash
too if it is called twice. So you can also add BUG_ON() into
__unhash_process(). And so on.
Oleg.
next prev parent reply other threads:[~2013-10-08 18:03 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-10-07 10:29 [PATCH] kernel/pid.c: check pid whether be NULL in __change_pid() Chen Gang
2013-10-07 12:43 ` Oleg Nesterov
2013-10-07 21:53 ` Chen Gang
2013-10-08 17:56 ` Oleg Nesterov [this message]
2013-10-09 1:03 ` Chen Gang
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20131008175625.GA32220@redhat.com \
--to=oleg@redhat.com \
--cc=akpm@linux-foundation.org \
--cc=ebiederm@xmission.com \
--cc=gang.chen@asianux.com \
--cc=linux-kernel@vger.kernel.org \
--cc=serge.hallyn@canonical.com \
--cc=serge@hallyn.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.