git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit

author	Thomas Gleixner <tglx@linutronix.de>
	Wed, 6 Nov 2019 21:55:43 +0000 (22:55 +0100)
committer	Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
	Fri, 17 Jan 2020 17:21:48 +0000 (14:21 -0300)
commit	7db3796fcfca1aeaf6603e7c104cda862d798389
tree	050d90941dded6088343849d313df16120bb7102	tree
parent	015b4b2904d02597cfec177bfa877d29ca966067	commit \| diff

futex: Provide state handling for exec() as well

BugLink: https://bugs.launchpad.net/bugs/1855787
commit af8cbda2cfcaa5515d61ec500498d46e9a8247e2 upstream.

exec() attempts to handle potentially held futexes gracefully by running
the futex exit handling code like exit() does.

The current implementation has no protection against concurrent incoming
waiters. The reason is that the futex state cannot be set to
FUTEX_STATE_DEAD after the cleanup because the task struct is still active
and just about to execute the new binary.

While its arguably buggy when a task holds a futex over exec(), for
consistency sake the state handling can at least cover the actual futex
exit cleanup section. This provides state consistency protection accross
the cleanup. As the futex state of the task becomes FUTEX_STATE_OK after the
cleanup has been finished, this cannot prevent subsequent attempts to
attach to the task in case that the cleanup was not successfull in mopping
up all leftovers.

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Reviewed-by: Ingo Molnar <mingo@kernel.org>
Acked-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Link: https://lkml.kernel.org/r/20191106224556.753355618@linutronix.de
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>