WSL2-Linux-Kernel

The source for the Linux kernel used in Windows Subsystem for Linux 2 (WSL2)

Перейти к файлу

Andrea Arcangeli bb461ad8e6 coredump: fix race condition between mmget_not_zero()/get_task_mm() and core dumping commit `04f5866e41` upstream. The core dumping code has always run without holding the mmap_sem for writing, despite that is the only way to ensure that the entire vma layout will not change from under it. Only using some signal serialization on the processes belonging to the mm is not nearly enough. This was pointed out earlier. For example in Hugh's post from Jul 2017: https://lkml.kernel.org/r/alpine.LSU.2.11.1707191716030.2055@eggly.anvils "Not strictly relevant here, but a related note: I was very surprised to discover, only quite recently, how handle_mm_fault() may be called without down_read(mmap_sem) - when core dumping. That seems a misguided optimization to me, which would also be nice to correct" In particular because the growsdown and growsup can move the vm_start/vm_end the various loops the core dump does around the vma will not be consistent if page faults can happen concurrently. Pretty much all users calling mmget_not_zero()/get_task_mm() and then taking the mmap_sem had the potential to introduce unexpected side effects in the core dumping code. Adding mmap_sem for writing around the ->core_dump invocation is a viable long term fix, but it requires removing all copy user and page faults and to replace them with get_dump_page() for all binary formats which is not suitable as a short term fix. For the time being this solution manually covers the places that can confuse the core dump either by altering the vma layout or the vma flags while it runs. Once ->core_dump runs under mmap_sem for writing the function mmget_still_valid() can be dropped. Allowing mmap_sem protected sections to run in parallel with the coredump provides some minor parallelism advantage to the swapoff code (which seems to be safe enough by never mangling any vma field and can keep doing swapins in parallel to the core dumping) and to some other corner case. In order to facilitate the backporting I added "Fixes: 86039bd3b4e6" however the side effect of this same race condition in /proc/pid/mem should be reproducible since before 2.6.12-rc2 so I couldn't add any other "Fixes:" because there's no hash beyond the git genesis commit. Because find_extend_vma() is the only location outside of the process context that could modify the "mm" structures under mmap_sem for reading, by adding the mmget_still_valid() check to it, all other cases that take the mmap_sem for reading don't need the new check after mmget_not_zero()/get_task_mm(). The expand_stack() in page fault context also doesn't need the new check, because all tasks under core dumping are frozen. Link: http://lkml.kernel.org/r/20190325224949.11068-1-aarcange@redhat.com Fixes: `86039bd3b4` ("userfaultfd: add new syscall to provide memory externalization") Signed-off-by: Andrea Arcangeli <aarcange@redhat.com> Reported-by: Jann Horn <jannh@google.com> Suggested-by: Oleg Nesterov <oleg@redhat.com> Acked-by: Peter Xu <peterx@redhat.com> Reviewed-by: Mike Rapoport <rppt@linux.ibm.com> Reviewed-by: Oleg Nesterov <oleg@redhat.com> Reviewed-by: Jann Horn <jannh@google.com> Acked-by: Jason Gunthorpe <jgg@mellanox.com> Acked-by: Michal Hocko <mhocko@suse.com> Cc: <stable@vger.kernel.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2019-04-27 09:35:37 +02:00
Documentation	ARM: 8833/1: Ensure that NEON code always compiles with Clang	2019-04-05 22:31:34 +02:00
arch	Revert "svm: Fix AVIC incomplete IPI emulation"	2019-04-27 09:35:37 +02:00
block	block: do not leak memory in bio_copy_user_iov()	2019-04-17 08:37:53 +02:00
certs	Replace magic for trusting the secondary keyring with #define	2018-09-09 19:55:54 +02:00
crypto	crypto: pcbc - remove bogus memcpy()s with src == dest	2019-03-23 14:35:21 +01:00
drivers	Revert "scsi: fcoe: clear FC_RP_STARTED flags when receiving a LOGO"	2019-04-27 09:35:37 +02:00
firmware	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
fs	coredump: fix race condition between mmget_not_zero()/get_task_mm() and core dumping	2019-04-27 09:35:37 +02:00
include	coredump: fix race condition between mmget_not_zero()/get_task_mm() and core dumping	2019-04-27 09:35:37 +02:00
init	Revert "mm: use early_pfn_to_nid in page_ext_init"	2019-03-23 14:35:13 +01:00
ipc	ipc/sem.c: prevent queue.status tearing in semop	2018-09-05 09:26:30 +02:00
kernel	bpf: fix sanitation rewrite in case of non-pointers	2019-04-20 09:15:09 +02:00
lib	lib/div64.c: off by one in shift	2019-04-20 09:15:07 +02:00
mm	coredump: fix race condition between mmget_not_zero()/get_task_mm() and core dumping	2019-04-27 09:35:37 +02:00
net	ipv4: ensure rcu_read_lock() in ipv4_link_failure()	2019-04-27 09:35:34 +02:00
samples	samples: mei: use /dev/mei0 instead of /dev/mei	2019-02-15 08:09:12 +01:00
scripts	kbuild: modversions: Fix relative CRC byte order interpretation	2019-04-03 06:25:17 +02:00
security	selinux: do not override context on context mounts	2019-04-05 22:31:39 +02:00
sound	ALSA: core: Fix card races between register and disconnect	2019-04-27 09:35:37 +02:00
tools	bpf: Fix selftests are changes for CVE 2019-7308	2019-04-20 09:15:10 +02:00
usr	initramfs: fix initramfs rebuilds w/ compression after disabling	2017-11-03 07:39:19 -07:00
virt	KVM: Reject device ioctls from processes other than the VM's creator	2019-04-03 06:25:20 +02:00
.cocciconfig	scripts: add Linux .cocciconfig for coccinelle	2016-07-22 12:13:39 +02:00
.get_maintainer.ignore	Add hch to .get_maintainer.ignore	2015-08-21 14:30:10 -07:00
.gitattributes	.gitattributes: set git diff driver for C source code files	2016-10-07 18:46:30 -07:00
.gitignore	kbuild: rpm-pkg: keep spec file until make mrproper	2018-02-13 10:19:46 +01:00
.mailmap	.mailmap: Add Maciej W. Rozycki's Imagination e-mail address	2017-11-10 12:16:15 -08:00
COPYING	…
CREDITS	MAINTAINERS: update TPM driver infrastructure changes	2017-11-09 17:58:40 -08:00
Kbuild	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
Kconfig	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
MAINTAINERS	MAINTAINERS: Add Sasha as a stable branch maintainer	2018-12-01 09:42:50 +01:00
Makefile	Linux 4.14.113	2019-04-20 09:15:10 +02:00
README	README: add a new README file, pointing to the Documentation/	2016-10-24 08:12:35 -02:00

README

Linux kernel
============

This file was moved to Documentation/admin-guide/README.rst

Please notice that there are several guides for kernel developers and users.
These guides can be rendered in a number of formats, like HTML and PDF.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.