Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / d60fdcc9e3febde2ebd49fe517e13f428bc12843
commitd60fdcc9e3febde2ebd49fe517e13f428bc12843[log] [tgz]
authorVladimir Davydov <vdavydov@virtuozzo.com>Thu Nov 05 18:45:11 2015 -0800
committerLinus Torvalds <torvalds@linux-foundation.org>Thu Nov 05 19:34:48 2015 -0800
treebf2a6b2462f44bc2977ea1b5bc2c0e552444650c
parentc9a77a792003ce9d70df8937c8c87aee6e177149 [diff]
mm/slab_common.c: clear pointers to per memcg caches on destroy

Currently, we do not clear pointers to per memcg caches in the
memcg_params.memcg_caches array when a global cache is destroyed with
kmem_cache_destroy.

This is fine if the global cache does get destroyed.  However, a cache can
be left on the list if it still has active objects when kmem_cache_destroy
is called (due to a memory leak).  If this happens, the entries in the
array will point to already freed areas, which is likely to result in data
corruption when the cache is reused (via slab merging).

Signed-off-by: Vladimir Davydov <vdavydov@virtuozzo.com>
Cc: Christoph Lameter <cl@linux.com>
Cc: Pekka Enberg <penberg@kernel.org>
Cc: David Rientjes <rientjes@google.com>
Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2 files changed
tree: bf2a6b2462f44bc2977ea1b5bc2c0e552444650c
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS