[ATM]: fix possible recursive locking in skb_migrate() (1252ecf6) · Commits · e / devices / android_kernel_sony_msm8994

net/atm/ipcommon.c

+11 −6

Original line number	Original line	Diff line number	Diff line
	@@ -25,8 +25,8 @@
	/*		/*
	* skb_migrate appends the list at "from" to "to", emptying "from" in the		* skb_migrate appends the list at "from" to "to", emptying "from" in the
	* process. skb_migrate is atomic with respect to all other skb operations on		* process. skb_migrate is atomic with respect to all other skb operations on
	* "from" and "to". Note that it locks both lists at the same time, so beware		* "from" and "to". Note that it locks both lists at the same time, so to deal
	* of potential deadlocks.		* with the lock ordering, the locks are taken in address order.
	*		*
	* This function should live in skbuff.c or skbuff.h.		* This function should live in skbuff.c or skbuff.h.
	*/		*/
	@@ -39,8 +39,13 @@ void skb_migrate(struct sk_buff_head from,struct sk_buff_head to)
	struct sk_buff skb_to = (struct sk_buff ) to;		struct sk_buff skb_to = (struct sk_buff ) to;
	struct sk_buff *prev;		struct sk_buff *prev;

			if ((unsigned long) from < (unsigned long) to) {
	spin_lock_irqsave(&from->lock, flags);		spin_lock_irqsave(&from->lock, flags);
	spin_lock(&to->lock);		spin_lock_nested(&to->lock, SINGLE_DEPTH_NESTING);
			} else {
			spin_lock_irqsave(&to->lock, flags);
			spin_lock_nested(&from->lock, SINGLE_DEPTH_NESTING);
			}
	prev = from->prev;		prev = from->prev;
	from->next->prev = to->prev;		from->next->prev = to->prev;
	prev->next = skb_to;		prev->next = skb_to;