[src/netbsd-1-6]: src/sys/kern Pullup rev 1.74 (requested by groo in ticket #...

To: source-changes-hg%NetBSD.org@localhost
Subject: [src/netbsd-1-6]: src/sys/kern Pullup rev 1.74 (requested by groo in ticket #...
From: jmc <jmc%NetBSD.org@localhost>
Date: Fri, 24 Jan 2020 11:25:28 +0000

details:   https://anonhg.NetBSD.org/src/rev/557e54f96c61
branches:  netbsd-1-6
changeset: 531068:557e54f96c61
user:      jmc <jmc%NetBSD.org@localhost>
date:      Sat Feb 07 20:01:53 2004 +0000

description:
Pullup rev 1.74 (requested by groo in ticket #1604)

Don't use uao_ functions directly; use them through the pgops methods.
Fix missing reference leak in the error path of shmat() mentioned in
Full-Disclosure.

diffstat:

 sys/kern/sysv_shm.c |  22 +++++++++++-----------
 1 files changed, 11 insertions(+), 11 deletions(-)

diffs (61 lines):

diff -r bc6a785ea831 -r 557e54f96c61 sys/kern/sysv_shm.c
--- a/sys/kern/sysv_shm.c       Sun Feb 01 08:26:17 2004 +0000
+++ b/sys/kern/sysv_shm.c       Sat Feb 07 20:01:53 2004 +0000
@@ -1,4 +1,4 @@
-/*     $NetBSD: sysv_shm.c,v 1.64 2002/04/03 11:53:01 fvdl Exp $       */
+/*     $NetBSD: sysv_shm.c,v 1.64.4.1 2004/02/07 20:01:53 jmc Exp $    */
 
 /*-
  * Copyright (c) 1999 The NetBSD Foundation, Inc.
@@ -68,7 +68,7 @@
  */
 
 #include <sys/cdefs.h>
-__KERNEL_RCSID(0, "$NetBSD: sysv_shm.c,v 1.64 2002/04/03 11:53:01 fvdl Exp $");
+__KERNEL_RCSID(0, "$NetBSD: sysv_shm.c,v 1.64.4.1 2004/02/07 20:01:53 jmc Exp $");
 
 #define SYSVSHM
 
@@ -161,12 +161,11 @@
 shm_deallocate_segment(shmseg)
        struct shmid_ds *shmseg;
 {
-       struct shm_handle *shm_handle;
-       size_t size;
+       struct shm_handle *shm_handle = shmseg->_shm_internal;
+       struct uvm_object *uobj = shm_handle->shm_object;
+       size_t size = (shmseg->shm_segsz + PGOFSET) & ~PGOFSET;
 
-       shm_handle = shmseg->_shm_internal;
-       size = (shmseg->shm_segsz + PGOFSET) & ~PGOFSET;
-       uao_detach(shm_handle->shm_object);
+       (*uobj->pgops->pgo_detach)(uobj);
        free((caddr_t)shm_handle, M_SHM);
        shmseg->_shm_internal = NULL;
        shm_committed -= btoc(size);
@@ -257,7 +256,7 @@
        struct ucred *cred = p->p_ucred;
        struct shmid_ds *shmseg;
        struct shmmap_state *shmmap_s = NULL;
-       struct shm_handle *shm_handle;
+       struct uvm_object *uobj;
        vaddr_t attach_va;
        vm_prot_t prot;
        vsize_t size;
@@ -304,12 +303,13 @@
                    round_page((vaddr_t)p->p_vmspace->vm_taddr +
                        MAXTSIZ + MAXDSIZ);
        }
-       shm_handle = shmseg->_shm_internal;
-       uao_reference(shm_handle->shm_object);
+       uobj = ((struct shm_handle *)shmseg->_shm_internal)->shm_object;
+       (*uobj->pgops->pgo_reference)(uobj);
        error = uvm_map(&p->p_vmspace->vm_map, &attach_va, size,
-           shm_handle->shm_object, 0, 0,
+           uobj, 0, 0,
            UVM_MAPFLAG(prot, prot, UVM_INH_SHARE, UVM_ADV_RANDOM, 0));
        if (error) {
+               (*uobj->pgops->pgo_detach)(uobj);
                return error;
        }
        shmmap_s->va = attach_va;

Prev by Date: [src/netbsd-1-6]: src Mark the tree as being 1.6.2.
Next by Date: [src/netbsd-1-6]: src/sys/netinet Pullup rev 1.107 (requested by itojun in ti...
Previous by Thread: [src/netbsd-1-6]: src Mark the tree as being 1.6.2.
Next by Thread: [src/netbsd-1-6]: src/sys/netinet Pullup rev 1.107 (requested by itojun in ti...
Indexes:

Home | Main Index | Thread Index | Old Index