Re: [PATCH] kill_something_info: don't take tasklist_lock for pid==-1 case

view
thread

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Atsushi Tsuji <a-tsuji@...>

To: Oleg Nesterov <oleg@...>

Cc: <linux-kernel@...>, Eric W. Biederman <ebiederm@...>, Roland McGrath <roland@...>, Andrew Morton <akpm@...>

Subject: Re: [PATCH] kill_something_info: don't take tasklist_lock for pid==-1 case

Date: Tuesday, May 20, 2008 - 9:48 pm

Oleg Nesterov wrote:
quoted text> On 03/25, Atsushi Tsuji wrote:
>> This patch avoid taking tasklist_lock in kill_something_info() when
>> the pid is -1. It can convert to rcu_read_lock() for this case because
>> group_send_sig_info() doesn't need tasklist_lock.
>>
>> This patch is for 2.6.25-rc5-mm1.
>>
>> Signed-off-by: Atsushi Tsuji <a-tsuji@bk.jp.nec.com>
>
> Except: We don't send the signal to /sbin/init. This means that (say)
> kill(-1, SIGKILL) can miss the task forked by init. Note that this
> task could be forked even before we start kill_something_info(), but
> without tasklist there is no guarantee we will see it on the ->tasks
> list.
> 
> I think this is the only problem with this change.

Sorry for late reply and thank you for your comment. I understood the
mechanism that kill(-1, SIGKILL) can miss the tasks forked by init
(and the thread group of the current process, because we don't also
send the signal to them). If kill(-1, SIGKILL) finish before the
forking init process does list_add_tail_rcu(p->tasks) in
copy_process(), the process forked by init appears on the ->tasks list
after that.  Is that right?

If so, I think this problem can happen without my patch.
Because even if kill(-1, SIGKILL) take read_lock(&tasklist_lock) in
kill_something_info(), it can finish before init process take
write_lock(&tasklist_lock) in copy_process(). So the forked process
appears after that, too.

Now, I noticed the important problem. I found the tasklist lock in
kill_something_info() can cause stall when some processes execute
kill(-1,SIGCONT) concurrently. It can happen even if a system has
only 4 CPUs (and even if a user is not privileged (not root)).  This is
because the writer cannot take the tasklist lock when a lot of readers
exist and keep holding it.

This allows a local DoS. So we have to avoid that stall. The
conversion from the tasklist lock to rcu_read_lock() can solve this
problem. I think my patch doesn't make the new problem because the
problem that kill can miss the tasks have originally occurred without
my one. If there is no problem, could you ack it?

Thanks,
-Atsushi Tsuji

--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] kill_something_info: don't take tasklist_lock for pi..., Atsushi Tsuji, (Tue Mar 25, 12:27 am)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Oleg Nesterov, (Tue Mar 25, 9:56 am)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Eric W. Biederman, (Tue May 20, 11:47 pm)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Oleg Nesterov, (Sat May 31, 12:55 pm)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Eric W. Biederman, (Sat May 31, 7:55 pm)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Oleg Nesterov, (Sun Jun 1, 12:29 pm)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Atsushi TSUJI, (Mon May 26, 3:03 am)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Eric W. Biederman, (Wed May 28, 11:03 am)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Atsushi Tsuji, (Tue May 20, 9:48 pm)

Re: [PATCH] kill_something_info: don't take tasklist_lock fo..., Eric W. Biederman, (Tue May 20, 10:53 pm)

Navigation

Mail archive search

Popular discussions


linux-kernel:
Linus Torvalds	Linux 2.6.27
Alan Cox	[PATCH 00/76] Queued TTY Patches
Greg KH	[patch 10/73] VLAN: Lost rtnl_unlock() in vlan_ioctl()
Rusty Russell	Re: [Bug #11342] Linux 2.6.27-rc3: kernel BUG at mm/vmalloc.c - bisected
git:
Jakub Narebski	Re: [PATCH] RFC: git lazy clone proof-of-concept
Johannes Schindelin	cogito and remote#branch, was Re: [PATCH] Git homepage: remove all the references ...
Junio C Hamano	Re: Comments on recursive merge..
Scott Chacon	[PATCH] add a 'pre-push' hook
openbsd-misc:
Marcos Laufer	dmesg IBM x3650 OpenBSD 4.3
L. V. Lammert	Re: OBSD's perspective on SELinux
Richard Stallman	Real men don't attack straw men
Juan Miscaro	When will OpenBSD support UTF8?
linux-netdev:
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Alan Cox	Re: [PATCH] alternative to sys_indirect, part 1
Jarek Poplawski	Re: panic 2.6.27-rc3-git2, qdisc_dequeue_head
Patrick McHardy	Re: [PATCH 3/3] netdevice: order of synchronization of IFF_PROMISC and IFF_ALLMULTI

Latest forum posts


high memory	1 day ago	Linux kernel
semaphore access speed	1 day ago	Applications and Utilities
the kernel how to power off the machine	1 day ago	Linux kernel
Easter Eggs in windows XP	2 days ago	Windows
Shared swap partition	2 days ago	Linux general
Root password	2 days ago	Linux general
Where/when DNOTIFY is used?	2 days ago	Linux kernel
How to convert Linux Kernel built-in module into a loadable module	2 days ago	Linux kernel
Linux 2.6.24 and I/O schedulers	2 days ago	Linux kernel
USB Driver -- Interrupt Polling -- A Little Help Please	2 days ago	Linux general

Show all forums...

Recent Tags

2.6.27 2.6.27-rc8 bugs quote Linus Torvalds Intel -rc8 Linux -rc

more tags

Colocation donated by:

Online users

Syndicate