| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 2 Sep 2011 14:32:51 +0200 From: Oleg Nesterov <oleg@...hat.com> To: Ben Blum <bblum@...rew.cmu.edu> Cc: NeilBrown <neilb@...e.de>, paulmck@...ux.vnet.ibm.com, Paul Menage <paul@...lmenage.org>, Li Zefan <lizf@...fujitsu.com>, containers@...ts.linux-foundation.org, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, Andrew Morton <akpm@...ux-foundation.org>, Frederic Weisbecker <fweisbec@...il.com> Subject: Re: [PATCH][BUGFIX] cgroups: more safe tasklist locking in cgroup_attach_proc On 09/01, Ben Blum wrote: > > On Mon, Aug 15, 2011 at 08:49:57PM +0200, Oleg Nesterov wrote: > > > > But can't we avoid the global list? thread_group_leader() or not, we do > > not really care. We only need to ensure we can safely find all threads. > > > > How about the patch below? > > I was content with the tasklist_lock because cgroup_attach_proc is > already a pretty heavyweight operation, and probably pretty rare that a > user would want to do multiple of them at once quickly. Perhaps. But this is the global lock, no matter what. Why do you prefer to take it instead of per-process ->siglock? > I asked Andrew > to take the simple tasklist_lock patch just now, since it does fix the > bug at least. I disagree. > Anyway, looking at this, hmm. I am not sure if this protects adequately? > In de_thread, the sighand lock is held only around the first half > (around zap_other_threads), We only need this lock to find all threads, > and not around the following section where > leadership is transferred (esp. around the list_replace calls). > tasklist_lock is held here, though, so it seems like the right lock to > hold. This doesn't matter at all, I think. The code under while_each_thread() doesn't need the stable ->group_leader, and it can be changed right after you drop tasklist. list_replace() calls do not play with ->thread_group list. How can tasklist make any difference? > > With or without this/your patch this leader can die right after we > > drop the lock. ss->can_attach(leader) and ss->attach(leader) look > > suspicious. If a sub-thread execs, this task_struct has nothing to > > do with the threadgroup. > > hmm. I thought I had this case covered, but it's been so long since I > actually wrote the code that if I did I can't remember how. This all doesn't look right... Hopefully addressed by Tejun patches. Oleg. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists