malloc: checked_request2size failure deadlocks

For some rarely cases(almost App bugs), calling malloc with a very largre size, checked_request2size check will fail,set ENOMEM, and return 0 to caller. But this will let __malloc_lock futex locked and owned by the caller. In multithread circumstance, other thread calling malloc/calloc will NOT succeed and get locked. Signed-off-by: Zhiqiang Zhang <zhangzhiqiang.zhang@huawei.com> Signed-off-by: Bernhard Reutner-Fischer <rep.dot.nop@gmail.com>
author: Zhiqiang Zhang <zhangzhiqiang.zhang@huawei.com> 2015-03-18 18:44:50 +0800
committer: Bernhard Reutner-Fischer <rep.dot.nop@gmail.com> 2015-03-18 22:33:43 +0100
commit: 85cfbc035370d2a3715ea9de3e590ba83fae52d1 (patch)
tree: 068f977c2a1ec798f062d3b6f2a9d023572350bc /libc/stdlib/malloc-standard/realloc.c
parent: 6c4538905e65ceb203f59aaa9a61728e81c6bc0a (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/libc/stdlib/malloc-standard/realloc.c b/libc/stdlib/malloc-standard/realloc.c
index e060b70ea..e49d11125 100644
--- a/libc/stdlib/malloc-standard/realloc.c
+++ b/libc/stdlib/malloc-standard/realloc.c
@@ -54,9 +54,9 @@ void* realloc(void* oldmem, size_t bytes)
 	return NULL;
     }
 
+    checked_request2size(bytes, nb);
     __MALLOC_LOCK;
     av = get_malloc_state();
-    checked_request2size(bytes, nb);
 
     oldp    = mem2chunk(oldmem);
     oldsize = chunksize(oldp);
author	Zhiqiang Zhang <zhangzhiqiang.zhang@huawei.com>	2015-03-18 18:44:50 +0800
committer	Bernhard Reutner-Fischer <rep.dot.nop@gmail.com>	2015-03-18 22:33:43 +0100
commit	85cfbc035370d2a3715ea9de3e590ba83fae52d1 (patch)
tree	068f977c2a1ec798f062d3b6f2a9d023572350bc /libc/stdlib/malloc-standard/realloc.c
parent	6c4538905e65ceb203f59aaa9a61728e81c6bc0a (diff)