summaryrefslogtreecommitdiff
path: root/security/commoncap.c
diff options
context:
space:
mode:
authorAndy Whitcroft <apw@shadowen.org>2008-02-23 15:23:32 -0800
committerLinus Torvalds <torvalds@woody.linux-foundation.org>2008-02-23 17:12:13 -0800
commite5df70ab194543522397fa3da8c8f80564a0f7d3 (patch)
tree1a4354932196a1611752032362689bd404836af8 /security/commoncap.c
parent745329c4a2a25efbf5ba6cd7842e07840e4e9775 (diff)
downloadlinux-e5df70ab194543522397fa3da8c8f80564a0f7d3.tar.gz
hugetlb: ensure we do not reference a surplus page after handing it to buddy
When we free a page via free_huge_page and we detect that we are in surplus the page will be returned to the buddy. After this we no longer own the page. However at the end free_huge_page we clear out our mapping pointer from page private. Even where the page is not a surplus we free the page to the hugepage pool, drop the pool locks and then clear page private. In either case the page may have been reallocated. BAD. Make sure we clear out page private before we free the page. Signed-off-by: Andy Whitcroft <apw@shadowen.org> Acked-by: Adam Litke <agl@us.ibm.com> Cc: <stable@kernel.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Diffstat (limited to 'security/commoncap.c')
0 files changed, 0 insertions, 0 deletions