Subject: [PATCH] pspace: Don't free the pidspace in unhash_process
From: Eric W. Biederman <ebiederman@lnxi.com>
Date: 1134038271 -0700

fork_idle creates threads without a hash pid but that are
still involved in signaling with the itimer.  This oops
when check_kill_permissions checks to see if is legal
to send the idle process a signal.

So just don't free the pspace.

---

 kernel/exit.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

693a2aad84e47e67f5566986c2376a31bb406bf5
diff --git a/kernel/exit.c b/kernel/exit.c
index 82c49af..1133ac0 100644
--- a/kernel/exit.c
+++ b/kernel/exit.c
@@ -57,7 +57,6 @@ static void __unhash_process(struct task
 	if (pspace_leader(p)) {
 		detach_pid(p, PIDTYPE_WID);
 	}
-	exit_pspace(p);
 
 	REMOVE_LINKS(p);
 }
@@ -84,6 +83,7 @@ repeat: 
 	 * the process by __unhash_process.
 	 */
 	__unhash_process(p);
+	exit_pspace(p);
 
 	/*
 	 * If we are the last non-leader member of the thread
-- 
1.0.GIT