diff options
| author | Oleg Nesterov <oleg@redhat.com> | 2010-05-26 17:43:16 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2010-05-27 12:12:46 -0400 |
| commit | ea6d290ca34c4fd91b7348338c0cc7bdeff94a35 (patch) | |
| tree | 6e9bd367650d9233c5b6cf1059845f17cb1bc460 /kernel/fork.c | |
| parent | 4dec2a91fd7e8815d730afbfdcf085cbf53433ac (diff) | |
signals: make task_struct->signal immutable/refcountable
We have a lot of problems with accessing task_struct->signal, it can
"disappear" at any moment. Even current can't use its ->signal safely
after exit_notify(). ->siglock helps, but it is not convenient, not
always possible, and sometimes it makes sense to use task->signal even
after this task has already dead.
This patch adds the reference counter, sigcnt, into signal_struct. This
reference is owned by task_struct and it is dropped in
__put_task_struct(). Perhaps it makes sense to export
get/put_signal_struct() later, but currently I don't see the immediate
reason.
Rename __cleanup_signal() to free_signal_struct() and unexport it. With
the previous changes it does nothing except kmem_cache_free().
Change __exit_signal() to not clear/free ->signal, it will be freed when
the last reference to any thread in the thread group goes away.
Note:
- when the last thead exits signal->tty can point to nowhere, see
the next patch.
- with or without this patch signal_struct->count should go away,
or at least it should be "int nr_threads" for fs/proc. This will
be addressed later.
Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Cc: Alan Cox <alan@linux.intel.com>
Cc: Ingo Molnar <mingo@elte.hu>
Cc: Peter Zijlstra <peterz@infradead.org>
Acked-by: Roland McGrath <roland@redhat.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Diffstat (limited to 'kernel/fork.c')
| -rw-r--r-- | kernel/fork.c | 23 |
1 files changed, 16 insertions, 7 deletions
diff --git a/kernel/fork.c b/kernel/fork.c index b7879ef6e7cd..e08e3012cd6b 100644 --- a/kernel/fork.c +++ b/kernel/fork.c | |||
| @@ -165,6 +165,18 @@ void free_task(struct task_struct *tsk) | |||
| 165 | } | 165 | } |
| 166 | EXPORT_SYMBOL(free_task); | 166 | EXPORT_SYMBOL(free_task); |
| 167 | 167 | ||
| 168 | static inline void free_signal_struct(struct signal_struct *sig) | ||
| 169 | { | ||
| 170 | thread_group_cputime_free(sig); | ||
| 171 | kmem_cache_free(signal_cachep, sig); | ||
| 172 | } | ||
| 173 | |||
| 174 | static inline void put_signal_struct(struct signal_struct *sig) | ||
| 175 | { | ||
| 176 | if (atomic_dec_and_test(&sig->sigcnt)) | ||
| 177 | free_signal_struct(sig); | ||
| 178 | } | ||
| 179 | |||
| 168 | void __put_task_struct(struct task_struct *tsk) | 180 | void __put_task_struct(struct task_struct *tsk) |
| 169 | { | 181 | { |
| 170 | WARN_ON(!tsk->exit_state); | 182 | WARN_ON(!tsk->exit_state); |
| @@ -173,6 +185,7 @@ void __put_task_struct(struct task_struct *tsk) | |||
| 173 | 185 | ||
| 174 | exit_creds(tsk); | 186 | exit_creds(tsk); |
| 175 | delayacct_tsk_free(tsk); | 187 | delayacct_tsk_free(tsk); |
| 188 | put_signal_struct(tsk->signal); | ||
| 176 | 189 | ||
| 177 | if (!profile_handoff_task(tsk)) | 190 | if (!profile_handoff_task(tsk)) |
| 178 | free_task(tsk); | 191 | free_task(tsk); |
| @@ -864,6 +877,7 @@ static int copy_signal(unsigned long clone_flags, struct task_struct *tsk) | |||
| 864 | if (!sig) | 877 | if (!sig) |
| 865 | return -ENOMEM; | 878 | return -ENOMEM; |
| 866 | 879 | ||
| 880 | atomic_set(&sig->sigcnt, 1); | ||
| 867 | atomic_set(&sig->count, 1); | 881 | atomic_set(&sig->count, 1); |
| 868 | atomic_set(&sig->live, 1); | 882 | atomic_set(&sig->live, 1); |
| 869 | init_waitqueue_head(&sig->wait_chldexit); | 883 | init_waitqueue_head(&sig->wait_chldexit); |
| @@ -889,12 +903,6 @@ static int copy_signal(unsigned long clone_flags, struct task_struct *tsk) | |||
| 889 | return 0; | 903 | return 0; |
| 890 | } | 904 | } |
| 891 | 905 | ||
| 892 | void __cleanup_signal(struct signal_struct *sig) | ||
| 893 | { | ||
| 894 | thread_group_cputime_free(sig); | ||
| 895 | kmem_cache_free(signal_cachep, sig); | ||
| 896 | } | ||
| 897 | |||
| 898 | static void copy_flags(unsigned long clone_flags, struct task_struct *p) | 906 | static void copy_flags(unsigned long clone_flags, struct task_struct *p) |
| 899 | { | 907 | { |
| 900 | unsigned long new_flags = p->flags; | 908 | unsigned long new_flags = p->flags; |
| @@ -1248,6 +1256,7 @@ static struct task_struct *copy_process(unsigned long clone_flags, | |||
| 1248 | } | 1256 | } |
| 1249 | 1257 | ||
| 1250 | if (clone_flags & CLONE_THREAD) { | 1258 | if (clone_flags & CLONE_THREAD) { |
| 1259 | atomic_inc(¤t->signal->sigcnt); | ||
| 1251 | atomic_inc(¤t->signal->count); | 1260 | atomic_inc(¤t->signal->count); |
| 1252 | atomic_inc(¤t->signal->live); | 1261 | atomic_inc(¤t->signal->live); |
| 1253 | p->group_leader = current->group_leader; | 1262 | p->group_leader = current->group_leader; |
| @@ -1294,7 +1303,7 @@ bad_fork_cleanup_mm: | |||
| 1294 | mmput(p->mm); | 1303 | mmput(p->mm); |
| 1295 | bad_fork_cleanup_signal: | 1304 | bad_fork_cleanup_signal: |
| 1296 | if (!(clone_flags & CLONE_THREAD)) | 1305 | if (!(clone_flags & CLONE_THREAD)) |
| 1297 | __cleanup_signal(p->signal); | 1306 | free_signal_struct(p->signal); |
| 1298 | bad_fork_cleanup_sighand: | 1307 | bad_fork_cleanup_sighand: |
| 1299 | __cleanup_sighand(p->sighand); | 1308 | __cleanup_sighand(p->sighand); |
| 1300 | bad_fork_cleanup_fs: | 1309 | bad_fork_cleanup_fs: |