| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <3079d213543c4d398d96031e6da26c82@AcuMS.aculab.com>
Date: Tue, 13 Jul 2021 10:41:26 +0000
From: David Laight <David.Laight@...LAB.COM>
To: 'Jens Axboe' <axboe@...nel.dk>, yaozhenguo <yaozhenguo1@...il.com>,
"oleg@...hat.comm" <oleg@...hat.comm>
CC: "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>,
"yaozhenguo@...com" <yaozhenguo@...com>
Subject: RE: [PATCH] task_work: return -EBUSY when adding same work
From: Jens Axboe
> Sent: 09 July 2021 15:18
...
> > */
> > int task_work_add(struct task_struct *task, struct callback_head *work,
> > enum task_work_notify_mode notify)
> > @@ -41,6 +41,8 @@ int task_work_add(struct task_struct *task, struct callback_head *work,
> > head = READ_ONCE(task->task_works);
> > if (unlikely(head == &work_exited))
> > return -ESRCH;
> > + if (unlikely(head == work))
> > + return -EBUSY;
> > work->next = head;
> > } while (cmpxchg(&task->task_works, head, work) != head);
>
> I don't think there's anything conceptually wrong with this patch, but
> it makes me think that you hit this condition. It's really a bug in the
> caller, of course, is a WARN_ON_ONCE() warranted here? And who was the
> caller?
How can the caller know that the task is on the queue?
There will be a race condition just before the work function
is called and/or just after it returns that the caller
can't detect.
The check needs to be done atomically with the code that
removes the work item from the list.
David
-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)
Powered by blists - more mailing lists