restorer: Fix bug in address computation of thread args area

It's wrong to treat restore_thread_exec_start as arguments area (I managed to overlook this problem in commit 01484182) it's rather a function start address. The thread arguments area allocated dynamically after the restorer blob itself. We didn't hit any problems earlier simply because there were a few bytes owerwritten in function prologue. Signed-off-by: Cyrill Gorcunov <gorcunov@openvz.org> CC: Andrey Vagin <avagin@openvz.org> Signed-off-by: Pavel Emelyanov <xemul@parallels.com>

restorer: Fix bug in address computation of thread args area
It's wrong to treat restore_thread_exec_start as arguments area (I managed to overlook this problem in commit 01484182) it's rather a function start address. The thread arguments area allocated dynamically after the restorer blob itself. We didn't hit any problems earlier simply because there were a few bytes owerwritten in function prologue. Signed-off-by: Cyrill Gorcunov <gorcunov@openvz.org> CC: Andrey Vagin <avagin@openvz.org> Signed-off-by: Pavel Emelyanov <xemul@parallels.com>
f964951a · Cyrill Gorcunov · Pavel Emelyanov · e857977b · f964951a
Commit f964951a authored Mar 29, 2012 by Cyrill Gorcunov Committed by Pavel Emelyanov Apr 02, 2012
Show whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

cr-restore.c cr-restore.c +2 -2

No files found.
--- a/cr-restore.c
+++ b/cr-restore.c
@@ -1601,10 +1601,10 @@ static int sigreturn_restore(pid_t pid, struct list_head *tgt_vmas, int nr_vmas)
 	restore_thread_exec_start	= restore_code_start + restorer_blob_offset__restore_thread;
 	restore_task_exec_start		= restore_code_start + restorer_blob_offset__restore_task;
 	task_args			= restore_code_start + restore_code_len;
-	thread_args			= restore_thread_exec_start;
+	thread_args			= (void *)((long)task_args + sizeof(*task_args));

 	memzero_p(task_args);
-	memzero_p(thread_args);
+	memzero(thread_args, sizeof(*thread_args) * me->nr_threads);

 	/*
 	 * Code at a new place.