On Wed, 30 Mar 2005 18:26:40 +1000 Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> wrote: > In netlink_dump we're operating on sk after dropping the cb lock. > This is racy because the owner of the socket could close it after > we drop the cb lock. > > This is possible because netlink_dump isn't always called from the > context of the process that owns the socket. For instance, if there > is contention on rtnl then rtnetlink requests will be processed by > the process that owns the rtnl. > > The solution is to hold a ref count on the socket before we drop > the cb lock. > > Signed-off-by: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Applied, thanks Herbert. Looks like 2.4.x needs the same fix, correct? - : send the line "unsubscribe linux-net" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
