group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1858834] Re: ipc/sem.c : process loops infinitely in exit_sem()

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Steve Langasek <1858834@xxxxxxxxxxxxxxxxxx>
Date: Thu, 02 Jul 2020 19:54:16 -0000
Reply-to: Bug 1858834 <1858834@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: linux (Ubuntu Disco)
       Status: Fix Committed => Won't Fix

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1858834

Title:
  ipc/sem.c : process loops infinitely in exit_sem()

Status in linux package in Ubuntu:
  Fix Released
Status in linux source package in Xenial:
  Fix Released
Status in linux source package in Bionic:
  Fix Released
Status in linux source package in Disco:
  Won't Fix
Status in linux source package in Eoan:
  Fix Released
Status in linux source package in Focal:
  Fix Released

Bug description:
  [Description]

  Commit a97955844807 ("ipc,sem: remove uneeded sem_undo_list lock usage
  in exit_sem()") removes a lock that is needed. This leads to a process
  looping infinitely in exit_sem() and can also lead to a crash.

  [Test case]

  Using the reproducer found in [1] is fairly easy to reach a point where
  one of the child processes is looping infinitely in exit_sem between
  for(;;) and if (semid == -1) block, while it's trying to free its last
  sem_undo structure which has already been freed by freeary().

  Once commit a97955844807 ("ipc,sem: remove uneeded sem_undo_list lock
  usage in exit_sem()") the issue is not reproducible any more.

  [Other]

  Patch submitted upstream :
  https://lkml.org/lkml/2019/12/11/1718

  
  [1] https://bugzilla.redhat.com/show_bug.cgi?id=1694779

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1858834/+subscriptions