Skip to content

Commit

Permalink
KEYS: keyring_serialise_link_sem is only needed for keyring->keyring …
Browse files Browse the repository at this point in the history 
…links

keyring_serialise_link_sem is only needed for keyring->keyring links as it's
used to prevent cycle detection from being avoided by parallel keyring
additions.

Signed-off-by: David Howells <[email protected]>
Signed-off-by: James Morris <[email protected]>
  • Loading branch information
@dhowells
dhowells authored and James Morris committed May 6, 2010
1 parent 0ffbe26 commit 553d603
Showing 1 changed file with 9 additions and 7 deletions.
16 changes: 9 additions & 7 deletions security/keys/keyring.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -705,13 +705,14 @@ int __key_link(struct key *keyring, struct key *key)
if (keyring->type != &key_type_keyring)
goto error;

/* serialise link/link calls to prevent parallel calls causing a
* cycle when applied to two keyring in opposite orders */
down_write(&keyring_serialise_link_sem);

/* check that we aren't going to create a cycle adding one keyring to
* another */
/* do some special keyring->keyring link checks */
if (key->type == &key_type_keyring) {
/* serialise link/link calls to prevent parallel calls causing
* a cycle when applied to two keyring in opposite orders */
down_write(&keyring_serialise_link_sem);

/* check that we aren't going to create a cycle adding one
* keyring to another */
ret = keyring_detect_cycle(keyring, key);
if (ret < 0)
goto error2;
Expand Down Expand Up @@ -814,7 +815,8 @@ int __key_link(struct key *keyring, struct key *key)
done:
ret = 0;
error2:
up_write(&keyring_serialise_link_sem);
if (key->type == &key_type_keyring)
up_write(&keyring_serialise_link_sem);
error:
return ret;

Expand Down

0 comments on commit 553d603

Please sign in to comment.