diff options
| author | Xin Long <lucien.xin@gmail.com> | 2023-02-22 12:07:21 -0500 |
|---|---|---|
| committer | Jakub Kicinski <kuba@kernel.org> | 2023-02-23 12:59:40 -0800 |
| commit | 68ba44639537de6f91fe32783766322d41848127 (patch) | |
| tree | 222dc61d66f8b3daf6ea07050ca7806cac009ad9 /kernel/acct.c | |
| parent | ee0a735fd97ccde766ab557d1fc722c92cebacda (diff) | |
| download | linux-stable-68ba44639537de6f91fe32783766322d41848127.tar.gz linux-stable-68ba44639537de6f91fe32783766322d41848127.tar.bz2 linux-stable-68ba44639537de6f91fe32783766322d41848127.zip | |
sctp: add a refcnt in sctp_stream_priorities to avoid a nested loop
With this refcnt added in sctp_stream_priorities, we don't need to
traverse all streams to check if the prio is used by other streams
when freeing one stream's prio in sctp_sched_prio_free_sid(). This
can avoid a nested loop (up to 65535 * 65535), which may cause a
stuck as Ying reported:
watchdog: BUG: soft lockup - CPU#23 stuck for 26s! [ksoftirqd/23:136]
Call Trace:
<TASK>
sctp_sched_prio_free_sid+0xab/0x100 [sctp]
sctp_stream_free_ext+0x64/0xa0 [sctp]
sctp_stream_free+0x31/0x50 [sctp]
sctp_association_free+0xa5/0x200 [sctp]
Note that it doesn't need to use refcount_t type for this counter,
as its accessing is always protected under the sock lock.
v1->v2:
- add a check in sctp_sched_prio_set to avoid the possible prio_head
refcnt overflow.
Fixes: 9ed7bfc79542 ("sctp: fix memory leak in sctp_stream_outq_migrate()")
Reported-by: Ying Xu <yinxu@redhat.com>
Acked-by: Marcelo Ricardo Leitner <marcelo.leitner@gmail.com>
Signed-off-by: Xin Long <lucien.xin@gmail.com>
Link: https://lore.kernel.org/r/825eb0c905cb864991eba335f4a2b780e543f06b.1677085641.git.lucien.xin@gmail.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Diffstat (limited to 'kernel/acct.c')
0 files changed, 0 insertions, 0 deletions