FUTEX: Restore the dropped ERSCH fix

The return value of futex_find_get_task() needs to be -ESRCH in case that the search fails. This was part of the original futex fixes and got accidentally dropped, when the futex-tidy-up patch was split out. Results in a NULL pointer dereference in case the search fails. Restore it. Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Cc: Ingo Molnar <mingo@elte.hu> Cc: Ulrich Drepper <drepper@redhat.com> Signed-off-by: Chris Wright <chrisw@sous-sol.org> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>

FUTEX: Restore the dropped ERSCH fix
The return value of futex_find_get_task() needs to be -ESRCH in case that the search fails. This was part of the original futex fixes and got accidentally dropped, when the futex-tidy-up patch was split out. Results in a NULL pointer dereference in case the search fails. Restore it. Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Cc: Ingo Molnar <mingo@elte.hu> Cc: Ulrich Drepper <drepper@redhat.com> Signed-off-by: Chris Wright <chrisw@sous-sol.org> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
8e9a9197 · Thomas Gleixner · Greg Kroah-Hartman · cdd2bd2e · 8e9a9197
Commit 8e9a9197 authored Jun 23, 2007 by Thomas Gleixner Committed by Greg Kroah-Hartman Aug 04, 2007
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 8 deletions

kernel/futex.c kernel/futex.c +6 -8

No files found.
--- a/kernel/futex.c
+++ b/kernel/futex.c
@@ -390,14 +390,12 @@ static struct task_struct * futex_find_get_task(pid_t pid)
 	rcu_read_lock();
 	p = find_task_by_pid(pid);
-	if (!p)
-		goto out_unlock;
+	if (!p || ((current->euid != p->euid) && (current->euid != p->uid)))
-	if ((current->euid != p->euid) && (current->euid != p->uid)) {
+		p = ERR_PTR(-ESRCH);
-		p = NULL;
+	else
-		goto out_unlock;
+		get_task_struct(p);
-	}
-	get_task_struct(p);
-out_unlock:
 	rcu_read_unlock();
 	return p;