gru: fix potential use-after-free when purging GRU tlbs - openslx/kernel-qcow2-linux.git

diff options

author	Jack Steiner	2009-06-18 01:28:33 +0200
committer	Linus Torvalds	2009-06-18 22:04:04 +0200
commit	1926ee85a903d189c5702eed6531be321e33eb47 (patch)
tree	1ae951591d3be09b86479800e2a4f03f119f4d78 /drivers/misc/sgi-gru/grukdump.c
parent	gru: add user request to specify gru slice (diff)
download	kernel-qcow2-linux-1926ee85a903d189c5702eed6531be321e33eb47.tar.gz kernel-qcow2-linux-1926ee85a903d189c5702eed6531be321e33eb47.tar.xz kernel-qcow2-linux-1926ee85a903d189c5702eed6531be321e33eb47.zip

gru: fix potential use-after-free when purging GRU tlbs

Fix potential SGI GRU bug that could cause a use-after-free. If one thread in a task is flushing the GRU and another thread destroys the GRU context, there is the potential to access a table after it has been freed. Copy the gms pointer to a local variable before unlocking the gts table. Note that no refcnt is needed for the gms - the reference is held indirectly by the task's mm_struct. Signed-off-by: Jack Steiner <steiner@sgi.com> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

Diffstat (limited to 'drivers/misc/sgi-gru/grukdump.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: