Andrea Arcangeli <arcangeli@mbox.queen.it> writes:
>
> No difference X don' t run again. It stops after a select (even the
^^^^^^
I am facing a bug where a socket's inode is freed (and cleaned)
while a process is still executing a select() system call referring that
socket. sk->sleep then points to storage inside the cleaned inode. When the
process exiting from the select() system call tries to remove itself from
the (wild pointer refered) wait queue ... => big bang.
My bug occurs with x25 sockets. Unfortunately, I haven't seen any bug
reports indicating a similar problem with other protocol family sockets.
Maybe the X problem is one (af_x25 and af_unix share the same poll method
datagram_poll() ).
Henner