[Devel] Re: [RESEND PATCH] pid_ns: Fix proc_flush_task() accessing freed proc_mnt
Sukadev Bhattiprolu
sukadev at linux.vnet.ibm.com
Fri Jun 25 11:37:33 PDT 2010
Louis Rilling [Louis.Rilling at kerlabs.com] wrote:
| - proc_pid_readdir():
| Needs similar check and protection to proc_pid_lookup(), but there is another
| issue: next_tgid() can find a dying task:
Hmm, I thought proc_pid_readdir() would be a problem too but convinced myself
that it would not - since a process running proc_pid_readdir() would have
a reference to the pid namespace, in which case destroy_pid_ns() would not
be called.
|
| next_tgid() finds a task
| task dies
| last reference to ns is dropped
| destroy_pid_namespace()
caller of next_tgid() holds a ref to pid-ns right ?
Sukadev
_______________________________________________
Containers mailing list
Containers at lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers
More information about the Devel
mailing list