Marcus Brinkmann <[EMAIL PROTECTED]> writes: > Neal reported this bug to me a while ago. If you send an invalid message (a > message with an unhandled msgid) to a pager, it will miss out on this msg id > and the seqno stuff doesn't catch up anymore. The result is a deadlock > waiting for this msg id when the next valid message is processed.
You betcha. It is basically assumed (quite unsecurely) that the user will not be "mean" with the pager port he's given. > Neal and me agreed on a potential fix for this, the patch is below. The > only thing I am uncertain about is what checks need to be done on the msg > format. Does the kernel guarantee that the header up to msgh_remote_port > really exists and is valid? I'd guess so much, but I didn't verify it. The kernel guarantees the entire message's format. (By "is valid" however, note that there can be various races. At the time the kernel arranges the message the reply port is valid, but it might well become dead at some point after that. The generic MiG message demuxer which sends the actual reply messages DTRT for all those cases, however. I think your patch is a good idea. _______________________________________________ Bug-hurd mailing list [EMAIL PROTECTED] http://mail.gnu.org/mailman/listinfo/bug-hurd
