git.baikalelectronics.ru Git - kernel.git/commit

mm/slab_common.c: clear pointers to per memcg caches on destroy

Currently, we do not clear pointers to per memcg caches in the
memcg_params.memcg_caches array when a global cache is destroyed with
kmem_cache_destroy.

This is fine if the global cache does get destroyed. However, a cache can
be left on the list if it still has active objects when kmem_cache_destroy
is called (due to a memory leak). If this happens, the entries in the
array will point to already freed areas, which is likely to result in data
corruption when the cache is reused (via slab merging).

Signed-off-by: Vladimir Davydov <vdavydov@virtuozzo.com>
Cc: Christoph Lameter <cl@linux.com>
Cc: Pekka Enberg <penberg@kernel.org>
Cc: David Rientjes <rientjes@google.com>
Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

author	Vladimir Davydov <vdavydov@virtuozzo.com>
	Fri, 6 Nov 2015 02:45:11 +0000 (18:45 -0800)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Fri, 6 Nov 2015 03:34:48 +0000 (19:34 -0800)
commit	b77c7225ca7cb31cd87371276ff4beab9929a507
tree	bf2a6b2462f44bc2977ea1b5bc2c0e552444650c	tree \| snapshot
parent	d40bcc85f58dff8ddc40a701d55d06fbf649dad3	commit \| diff

mm/slab.h		diff \| blob \| history
mm/slab_common.c		diff \| blob \| history