[v2,net,01/12] sysctl: Fix data races in proc_dointvec().

Message ID	20220706234003.66760-2-kuniyu@amazon.com (mailing list archive)
State	Accepted
Commit	1f1be04b4d48a2475ea1aab46a99221bfc5c0968
Delegated to:	Netdev Maintainers
Headers	show Return-Path: <netdev-owner@kernel.org> From: Kuniyuki Iwashima <kuniyu@amazon.com> To: "David S. Miller" <davem@davemloft.net>, Eric Dumazet <edumazet@google.com>, Jakub Kicinski <kuba@kernel.org>, Paolo Abeni <pabeni@redhat.com>, Luis Chamberlain <mcgrof@kernel.org>, Kees Cook <keescook@chromium.org>, Iurii Zaikin <yzaikin@google.com> CC: Kuniyuki Iwashima <kuniyu@amazon.com>, Kuniyuki Iwashima <kuni1840@gmail.com>, <netdev@vger.kernel.org>, <linux-kernel@vger.kernel.org> Subject: [PATCH v2 net 01/12] sysctl: Fix data races in proc_dointvec(). Date: Wed, 6 Jul 2022 16:39:52 -0700 Message-ID: <20220706234003.66760-2-kuniyu@amazon.com> In-Reply-To: <20220706234003.66760-1-kuniyu@amazon.com> References: <20220706234003.66760-1-kuniyu@amazon.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain Precedence: bulk
Series	sysctl: Fix data-races around ipv4_table. \| expand [v2,net,00/12] sysctl: Fix data-races around ipv4_table. [v2,net,01/12] sysctl: Fix data races in proc_dointvec(). [v2,net,02/12] sysctl: Fix data races in proc_douintvec(). [v2,net,03/12] sysctl: Fix data races in proc_dointvec_minmax(). [v2,net,04/12] sysctl: Fix data races in proc_douintvec_minmax(). [v2,net,05/12] sysctl: Fix data races in proc_doulongvec_minmax(). [v2,net,06/12] sysctl: Fix data races in proc_dointvec_jiffies(). [v2,net,07/12] tcp: Fix a data-race around sysctl_tcp_max_orphans. [v2,net,08/12] inetpeer: Fix data-races around sysctl. [v2,net,09/12] net: Fix data-races around sysctl_mem. [v2,net,10/12] cipso: Fix data-races around sysctl. [v2,net,11/12] icmp: Fix data-races around sysctl. [v2,net,12/12] ipv4: Fix a data-race around sysctl_fib_sync_mem.

Message ID

20220706234003.66760-2-kuniyu@amazon.com (mailing list archive)

State

Accepted

Commit

1f1be04b4d48a2475ea1aab46a99221bfc5c0968

Delegated to:

Netdev Maintainers

Headers

show

Return-Path: <netdev-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id BEC72C43334
	for <netdev@archiver.kernel.org>; Wed,  6 Jul 2022 23:41:12 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234697AbiGFXlL (ORCPT <rfc822;netdev@archiver.kernel.org>);
        Wed, 6 Jul 2022 19:41:11 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:52006 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234645AbiGFXlJ (ORCPT
        <rfc822;netdev@vger.kernel.org>); Wed, 6 Jul 2022 19:41:09 -0400
Received: from smtp-fw-9102.amazon.com (smtp-fw-9102.amazon.com
 [207.171.184.29])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 1E21B2CDF0;
        Wed,  6 Jul 2022 16:41:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209;
  t=1657150869; x=1688686869;
  h=from:to:cc:subject:date:message-id:in-reply-to:
   references:mime-version:content-transfer-encoding;
  bh=3AizaG7JVuBeW6Yfn7ur25n7TaxfVztdrQf/wvDkjuY=;
  b=f5R4XmCFarbtbZqmIFlc8FfVwOyKOTaaM6pOwPAFjQuGEJas+pyVQrNn
   gczVJvR5dtO9GW88hiNw0fs4nPpViRUYJbjXCxgejPn3qaIUiGTaHvaVI
   IP5V5AtHDb/scgSDpiOEC62JiRlgRoJDZffJ7Yp9ymA47e0d9AWTvwsQx
   I=;
X-IronPort-AV: E=Sophos;i="5.92,251,1650931200";
   d="scan'208";a="235612667"
Received: from pdx4-co-svc-p1-lb2-vlan2.amazon.com (HELO
 email-inbound-relay-iad-1box-d-0e176545.us-east-1.amazon.com)
 ([10.25.36.210])
  by smtp-border-fw-9102.sea19.amazon.com with ESMTP;
 06 Jul 2022 23:40:54 +0000
Received: from EX13MTAUWB001.ant.amazon.com
 (iad12-ws-svc-p26-lb9-vlan2.iad.amazon.com [10.40.163.34])
        by email-inbound-relay-iad-1box-d-0e176545.us-east-1.amazon.com
 (Postfix) with ESMTPS id CE02B2E001F;
        Wed,  6 Jul 2022 23:40:50 +0000 (UTC)
Received: from EX19D004ANA001.ant.amazon.com (10.37.240.138) by
 EX13MTAUWB001.ant.amazon.com (10.43.161.207) with Microsoft SMTP Server (TLS)
 id 15.0.1497.36; Wed, 6 Jul 2022 23:40:49 +0000
Received: from 88665a182662.ant.amazon.com (10.43.160.106) by
 EX19D004ANA001.ant.amazon.com (10.37.240.138) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1118.9;
 Wed, 6 Jul 2022 23:40:46 +0000
From: Kuniyuki Iwashima <kuniyu@amazon.com>
To: "David S. Miller" <davem@davemloft.net>,
        Eric Dumazet <edumazet@google.com>,
        Jakub Kicinski <kuba@kernel.org>,
        Paolo Abeni <pabeni@redhat.com>,
        Luis Chamberlain <mcgrof@kernel.org>,
        Kees Cook <keescook@chromium.org>,
        Iurii Zaikin <yzaikin@google.com>
CC: Kuniyuki Iwashima <kuniyu@amazon.com>,
        Kuniyuki Iwashima <kuni1840@gmail.com>,
        <netdev@vger.kernel.org>, <linux-kernel@vger.kernel.org>
Subject: [PATCH v2 net 01/12] sysctl: Fix data races in proc_dointvec().
Date: Wed, 6 Jul 2022 16:39:52 -0700
Message-ID: <20220706234003.66760-2-kuniyu@amazon.com>
X-Mailer: git-send-email 2.30.2
In-Reply-To: <20220706234003.66760-1-kuniyu@amazon.com>
References: <20220706234003.66760-1-kuniyu@amazon.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-Originating-IP: [10.43.160.106]
X-ClientProxiedBy: EX13D36UWB001.ant.amazon.com (10.43.161.84) To
 EX19D004ANA001.ant.amazon.com (10.37.240.138)
Precedence: bulk
List-ID: <netdev.vger.kernel.org>
X-Mailing-List: netdev@vger.kernel.org
X-Patchwork-Delegate: kuba@kernel.org

Series

sysctl: Fix data-races around ipv4_table. | expand

Context	Check	Description
netdev/tree_selection	success	Clearly marked for net, async
netdev/fixes_present	success	Fixes tag present in non-next series
netdev/subject_prefix	success	Link
netdev/cover_letter	success	Series has a cover letter
netdev/patch_count	success	Link
netdev/header_inline	success	No static functions without inline keyword in header files
netdev/build_32bit	success	Errors and warnings before: 2 this patch: 2
netdev/cc_maintainers	warning	1 maintainers not CCed: linux-fsdevel@vger.kernel.org
netdev/build_clang	success	Errors and warnings before: 8 this patch: 8
netdev/module_param	success	Was 0 now: 0
netdev/verify_signedoff	success	Signed-off-by tag matches author and committer
netdev/check_selftest	success	No net selftest shell script
netdev/verify_fixes	success	Fixes tag looks correct
netdev/build_allmodconfig_warn	success	Errors and warnings before: 2 this patch: 2
netdev/checkpatch	success	total: 0 errors, 0 warnings, 0 checks, 17 lines checked
netdev/kdoc	success	Errors and warnings before: 0 this patch: 0
netdev/source_inline	success	Was 0 now: 0

Context

Check

Description

netdev/tree_selection

success

Clearly marked for net, async

netdev/fixes_present

success

Fixes tag present in non-next series

netdev/subject_prefix

success

Link

netdev/cover_letter

success

Series has a cover letter

netdev/patch_count

success

Link

netdev/header_inline

success

No static functions without inline keyword in header files

netdev/build_32bit

success

Errors and warnings before: 2 this patch: 2

netdev/cc_maintainers

warning

1 maintainers not CCed: linux-fsdevel@vger.kernel.org

netdev/build_clang

success

Errors and warnings before: 8 this patch: 8

netdev/module_param

success

Was 0 now: 0

netdev/verify_signedoff

success

Signed-off-by tag matches author and committer

netdev/check_selftest

success

No net selftest shell script

netdev/verify_fixes

success

Fixes tag looks correct

netdev/build_allmodconfig_warn

success

Errors and warnings before: 2 this patch: 2

netdev/checkpatch

success

total: 0 errors, 0 warnings, 0 checks, 17 lines checked

netdev/kdoc

success

Errors and warnings before: 0 this patch: 0

netdev/source_inline

success

Was 0 now: 0

Commit Message

Kuniyuki Iwashima July 6, 2022, 11:39 p.m. UTC

A sysctl variable is accessed concurrently, and there is always a chance
of data-race.  So, all readers and writers need some basic protection to
avoid load/store-tearing.

This patch changes proc_dointvec() to use READ_ONCE() and WRITE_ONCE()
internally to fix data-races on the sysctl side.  For now, proc_dointvec()
itself is tolerant to a data-race, but we still need to add annotations on
the other subsystem's side.

Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2")
Signed-off-by: Kuniyuki Iwashima <kuniyu@amazon.com>
---
 kernel/sysctl.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/kernel/sysctl.c b/kernel/sysctl.c
index e52b6e372c60..c8a05655ae60 100644
--- a/kernel/sysctl.c
+++ b/kernel/sysctl.c
@@ -446,14 +446,14 @@  static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
 		if (*negp) {
 			if (*lvalp > (unsigned long) INT_MAX + 1)
 				return -EINVAL;
-			*valp = -*lvalp;
+			WRITE_ONCE(*valp, -*lvalp);
 		} else {
 			if (*lvalp > (unsigned long) INT_MAX)
 				return -EINVAL;
-			*valp = *lvalp;
+			WRITE_ONCE(*valp, *lvalp);
 		}
 	} else {
-		int val = *valp;
+		int val = READ_ONCE(*valp);
 		if (val < 0) {
 			*negp = true;
 			*lvalp = -(unsigned long)val;

[v2,net,01/12] sysctl: Fix data races in proc_dointvec().

Checks

Commit Message

Patch