From: Oleg Nesterov With this patch zap_process() sets SIGNAL_GROUP_EXIT while sending SIGKILL to the thread group. This means that a TASK_TRACED task 1. Will be awakened by signal_wake_up(1) 2. Can't sleep again via ptrace_notify() 3. Can't go to do_signal_stop() after return from ptrace_stop() in get_signal_to_deliver() So we can remove all ptrace related stuff from coredump path. Signed-off-by: Oleg Nesterov Cc: "Eric W. Biederman" Signed-off-by: Andrew Morton --- fs/exec.c | 30 +++++------------------------- include/linux/ptrace.h | 1 - kernel/ptrace.c | 5 ++--- 3 files changed, 7 insertions(+), 29 deletions(-) diff -puN fs/exec.c~coredump-kill-ptrace-related-stuff fs/exec.c --- devel/fs/exec.c~coredump-kill-ptrace-related-stuff 2006-05-19 16:01:37.000000000 -0700 +++ devel-akpm/fs/exec.c 2006-05-19 16:01:37.000000000 -0700 @@ -1368,12 +1368,14 @@ static void format_corename(char *corena *out_ptr = 0; } -static void zap_process(struct task_struct *start, int *ptraced) +static void zap_process(struct task_struct *start) { struct task_struct *t; unsigned long flags; spin_lock_irqsave(&start->sighand->siglock, flags); + start->signal->flags = SIGNAL_GROUP_EXIT; + start->signal->group_stop_count = 0; t = start; do { @@ -1381,22 +1383,17 @@ static void zap_process(struct task_stru t->mm->core_waiters++; sigaddset(&t->pending.signal, SIGKILL); signal_wake_up(t, 1); - - if (unlikely(t->ptrace) && - unlikely(t->parent->mm == t->mm)) - *ptraced = 1; } } while ((t = next_thread(t)) != start); spin_unlock_irqrestore(&start->sighand->siglock, flags); } -static void zap_threads (struct mm_struct *mm) +static void zap_threads(struct mm_struct *mm) { struct task_struct *g, *p; struct task_struct *tsk = current; struct completion *vfork_done = tsk->vfork_done; - int traced = 0; /* * Make sure nobody is waiting for us to release the VM, @@ -1413,29 +1410,12 @@ static void zap_threads (struct mm_struc do { if (p->mm) { if (p->mm == mm) - zap_process(p, &traced); + zap_process(p); break; } } while ((p = next_thread(p)) != g); } read_unlock(&tasklist_lock); - - if (unlikely(traced)) { - /* - * We are zapping a thread and the thread it ptraces. - * If the tracee went into a ptrace stop for exit tracing, - * we could deadlock since the tracer is waiting for this - * coredump to finish. Detach them so they can both die. - */ - write_lock_irq(&tasklist_lock); - do_each_thread(g,p) { - if (mm == p->mm && p != tsk && - p->ptrace && p->parent->mm == mm) { - __ptrace_detach(p, 0); - } - } while_each_thread(g,p); - write_unlock_irq(&tasklist_lock); - } } static void coredump_wait(struct mm_struct *mm) diff -puN include/linux/ptrace.h~coredump-kill-ptrace-related-stuff include/linux/ptrace.h --- devel/include/linux/ptrace.h~coredump-kill-ptrace-related-stuff 2006-05-19 16:01:37.000000000 -0700 +++ devel-akpm/include/linux/ptrace.h 2006-05-19 16:01:37.000000000 -0700 @@ -88,7 +88,6 @@ extern int ptrace_readdata(struct task_s extern int ptrace_writedata(struct task_struct *tsk, char __user *src, unsigned long dst, int len); extern int ptrace_attach(struct task_struct *tsk); extern int ptrace_detach(struct task_struct *, unsigned int); -extern void __ptrace_detach(struct task_struct *, unsigned int); extern void ptrace_disable(struct task_struct *); extern int ptrace_check_attach(struct task_struct *task, int kill); extern int ptrace_request(struct task_struct *child, long request, long addr, long data); diff -puN kernel/ptrace.c~coredump-kill-ptrace-related-stuff kernel/ptrace.c --- devel/kernel/ptrace.c~coredump-kill-ptrace-related-stuff 2006-05-19 16:01:37.000000000 -0700 +++ devel-akpm/kernel/ptrace.c 2006-05-19 16:01:37.000000000 -0700 @@ -214,7 +214,7 @@ out: return retval; } -void __ptrace_detach(struct task_struct *child, unsigned int data) +static inline void __ptrace_detach(struct task_struct *child, unsigned int data) { child->exit_code = data; /* .. re-parent .. */ @@ -233,8 +233,7 @@ int ptrace_detach(struct task_struct *ch ptrace_disable(child); write_lock_irq(&tasklist_lock); - if (child->ptrace) - __ptrace_detach(child, data); + __ptrace_detach(child, data); write_unlock_irq(&tasklist_lock); return 0; _