[v2,net,02/12] sysctl: Fix data races in proc_douintvec().

Message ID	20220706234003.66760-3-kuniyu@amazon.com (mailing list archive)
State	Accepted
Commit	4762b532ec9539755aab61445d5da6e1926ccb99
Delegated to:	Netdev Maintainers
Headers	show Return-Path: <netdev-owner@kernel.org> From: Kuniyuki Iwashima <kuniyu@amazon.com> To: "David S. Miller" <davem@davemloft.net>, Eric Dumazet <edumazet@google.com>, Jakub Kicinski <kuba@kernel.org>, Paolo Abeni <pabeni@redhat.com>, Luis Chamberlain <mcgrof@kernel.org>, Kees Cook <keescook@chromium.org>, Iurii Zaikin <yzaikin@google.com> CC: Kuniyuki Iwashima <kuniyu@amazon.com>, Kuniyuki Iwashima <kuni1840@gmail.com>, <netdev@vger.kernel.org>, <linux-kernel@vger.kernel.org>, Subash Abhinov Kasiviswanathan <quic_subashab@quicinc.com> Subject: [PATCH v2 net 02/12] sysctl: Fix data races in proc_douintvec(). Date: Wed, 6 Jul 2022 16:39:53 -0700 Message-ID: <20220706234003.66760-3-kuniyu@amazon.com> In-Reply-To: <20220706234003.66760-1-kuniyu@amazon.com> References: <20220706234003.66760-1-kuniyu@amazon.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain Precedence: bulk
Series	sysctl: Fix data-races around ipv4_table. \| expand [v2,net,00/12] sysctl: Fix data-races around ipv4_table. [v2,net,01/12] sysctl: Fix data races in proc_dointvec(). [v2,net,02/12] sysctl: Fix data races in proc_douintvec(). [v2,net,03/12] sysctl: Fix data races in proc_dointvec_minmax(). [v2,net,04/12] sysctl: Fix data races in proc_douintvec_minmax(). [v2,net,05/12] sysctl: Fix data races in proc_doulongvec_minmax(). [v2,net,06/12] sysctl: Fix data races in proc_dointvec_jiffies(). [v2,net,07/12] tcp: Fix a data-race around sysctl_tcp_max_orphans. [v2,net,08/12] inetpeer: Fix data-races around sysctl. [v2,net,09/12] net: Fix data-races around sysctl_mem. [v2,net,10/12] cipso: Fix data-races around sysctl. [v2,net,11/12] icmp: Fix data-races around sysctl. [v2,net,12/12] ipv4: Fix a data-race around sysctl_fib_sync_mem.

Message ID

20220706234003.66760-3-kuniyu@amazon.com (mailing list archive)

State

Accepted

Commit

4762b532ec9539755aab61445d5da6e1926ccb99

Delegated to:

Netdev Maintainers

Headers

show

Return-Path: <netdev-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id EF7B5C43334
	for <netdev@archiver.kernel.org>; Wed,  6 Jul 2022 23:41:33 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234774AbiGFXlc (ORCPT <rfc822;netdev@archiver.kernel.org>);
        Wed, 6 Jul 2022 19:41:32 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:52354 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234764AbiGFXl2 (ORCPT
        <rfc822;netdev@vger.kernel.org>); Wed, 6 Jul 2022 19:41:28 -0400
Received: from smtp-fw-33001.amazon.com (smtp-fw-33001.amazon.com
 [207.171.190.10])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 274A22CDF8;
        Wed,  6 Jul 2022 16:41:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209;
  t=1657150885; x=1688686885;
  h=from:to:cc:subject:date:message-id:in-reply-to:
   references:mime-version:content-transfer-encoding;
  bh=qq/qfg904mjSo0orEnGORfkoNOzm2AdQkoF/vSc53Nw=;
  b=arfm/cTpeXAJ538ldX3l9TKlU2A8K1SqqSIJq3OpGKv7cBXd/tG88RgH
   SyxLVAiVk3Dk74/PGv77KlZpYVIVM1Uq6Q0PVfUH5ZmpjYcouRNuvT0aD
   qSFob2Uc4gAK6koN71HcBfERwR358CJyuUtPRanw3uum0WVCifXNSp+Hy
   c=;
X-IronPort-AV: E=Sophos;i="5.92,251,1650931200";
   d="scan'208";a="207883460"
Received: from iad12-co-svc-p1-lb1-vlan2.amazon.com (HELO
 email-inbound-relay-iad-1a-828bd003.us-east-1.amazon.com) ([10.43.8.2])
  by smtp-border-fw-33001.sea14.amazon.com with ESMTP;
 06 Jul 2022 23:41:10 +0000
Received: from EX13MTAUWB001.ant.amazon.com
 (iad12-ws-svc-p26-lb9-vlan2.iad.amazon.com [10.40.163.34])
        by email-inbound-relay-iad-1a-828bd003.us-east-1.amazon.com (Postfix)
 with ESMTPS id 90205810FC;
        Wed,  6 Jul 2022 23:41:06 +0000 (UTC)
Received: from EX19D004ANA001.ant.amazon.com (10.37.240.138) by
 EX13MTAUWB001.ant.amazon.com (10.43.161.207) with Microsoft SMTP Server (TLS)
 id 15.0.1497.36; Wed, 6 Jul 2022 23:41:05 +0000
Received: from 88665a182662.ant.amazon.com (10.43.160.106) by
 EX19D004ANA001.ant.amazon.com (10.37.240.138) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1118.9;
 Wed, 6 Jul 2022 23:41:02 +0000
From: Kuniyuki Iwashima <kuniyu@amazon.com>
To: "David S. Miller" <davem@davemloft.net>,
        Eric Dumazet <edumazet@google.com>,
        Jakub Kicinski <kuba@kernel.org>,
        Paolo Abeni <pabeni@redhat.com>,
        Luis Chamberlain <mcgrof@kernel.org>,
        Kees Cook <keescook@chromium.org>,
        Iurii Zaikin <yzaikin@google.com>
CC: Kuniyuki Iwashima <kuniyu@amazon.com>,
        Kuniyuki Iwashima <kuni1840@gmail.com>,
        <netdev@vger.kernel.org>, <linux-kernel@vger.kernel.org>,
        Subash Abhinov Kasiviswanathan <quic_subashab@quicinc.com>
Subject: [PATCH v2 net 02/12] sysctl: Fix data races in proc_douintvec().
Date: Wed, 6 Jul 2022 16:39:53 -0700
Message-ID: <20220706234003.66760-3-kuniyu@amazon.com>
X-Mailer: git-send-email 2.30.2
In-Reply-To: <20220706234003.66760-1-kuniyu@amazon.com>
References: <20220706234003.66760-1-kuniyu@amazon.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-Originating-IP: [10.43.160.106]
X-ClientProxiedBy: EX13D36UWB001.ant.amazon.com (10.43.161.84) To
 EX19D004ANA001.ant.amazon.com (10.37.240.138)
Precedence: bulk
List-ID: <netdev.vger.kernel.org>
X-Mailing-List: netdev@vger.kernel.org
X-Patchwork-Delegate: kuba@kernel.org

Series

sysctl: Fix data-races around ipv4_table. | expand

Context	Check	Description
netdev/tree_selection	success	Clearly marked for net, async
netdev/fixes_present	success	Fixes tag present in non-next series
netdev/subject_prefix	success	Link
netdev/cover_letter	success	Series has a cover letter
netdev/patch_count	success	Link
netdev/header_inline	success	No static functions without inline keyword in header files
netdev/build_32bit	success	Errors and warnings before: 2 this patch: 2
netdev/cc_maintainers	fail	2 blamed authors not CCed: subashab@codeaurora.org akpm@linux-foundation.org; 3 maintainers not CCed: subashab@codeaurora.org linux-fsdevel@vger.kernel.org akpm@linux-foundation.org
netdev/build_clang	success	Errors and warnings before: 8 this patch: 8
netdev/module_param	success	Was 0 now: 0
netdev/verify_signedoff	success	Signed-off-by tag matches author and committer
netdev/check_selftest	success	No net selftest shell script
netdev/verify_fixes	success	Fixes tag looks correct
netdev/build_allmodconfig_warn	success	Errors and warnings before: 2 this patch: 2
netdev/checkpatch	success	total: 0 errors, 0 warnings, 0 checks, 11 lines checked
netdev/kdoc	success	Errors and warnings before: 0 this patch: 0
netdev/source_inline	success	Was 0 now: 0

Context

Check

Description

netdev/tree_selection

success

Clearly marked for net, async

netdev/fixes_present

success

Fixes tag present in non-next series

netdev/subject_prefix

success

Link

netdev/cover_letter

success

Series has a cover letter

netdev/patch_count

success

Link

netdev/header_inline

success

No static functions without inline keyword in header files

netdev/build_32bit

success

Errors and warnings before: 2 this patch: 2

netdev/cc_maintainers

fail

2 blamed authors not CCed: subashab@codeaurora.org akpm@linux-foundation.org; 3 maintainers not CCed: subashab@codeaurora.org linux-fsdevel@vger.kernel.org akpm@linux-foundation.org

netdev/build_clang

success

Errors and warnings before: 8 this patch: 8

netdev/module_param

success

Was 0 now: 0

netdev/verify_signedoff

success

Signed-off-by tag matches author and committer

netdev/check_selftest

success

No net selftest shell script

netdev/verify_fixes

success

Fixes tag looks correct

netdev/build_allmodconfig_warn

success

Errors and warnings before: 2 this patch: 2

netdev/checkpatch

success

total: 0 errors, 0 warnings, 0 checks, 11 lines checked

netdev/kdoc

success

Errors and warnings before: 0 this patch: 0

netdev/source_inline

success

Was 0 now: 0

Commit Message

Kuniyuki Iwashima July 6, 2022, 11:39 p.m. UTC

A sysctl variable is accessed concurrently, and there is always a chance
of data-race.  So, all readers and writers need some basic protection to
avoid load/store-tearing.

This patch changes proc_douintvec() to use READ_ONCE() and WRITE_ONCE()
internally to fix data-races on the sysctl side.  For now, proc_douintvec()
itself is tolerant to a data-race, but we still need to add annotations on
the other subsystem's side.

Fixes: e7d316a02f68 ("sysctl: handle error writing UINT_MAX to u32 fields")
Signed-off-by: Kuniyuki Iwashima <kuniyu@amazon.com>
---
CC: Subash Abhinov Kasiviswanathan <quic_subashab@quicinc.com>
---
 kernel/sysctl.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/kernel/sysctl.c b/kernel/sysctl.c
index c8a05655ae60..2ab8c2a37e8f 100644
--- a/kernel/sysctl.c
+++ b/kernel/sysctl.c
@@ -472,9 +472,9 @@  static int do_proc_douintvec_conv(unsigned long *lvalp,
 	if (write) {
 		if (*lvalp > UINT_MAX)
 			return -EINVAL;
-		*valp = *lvalp;
+		WRITE_ONCE(*valp, *lvalp);
 	} else {
-		unsigned int val = *valp;
+		unsigned int val = READ_ONCE(*valp);
 		*lvalp = (unsigned long)val;
 	}
 	return 0;

[v2,net,02/12] sysctl: Fix data races in proc_douintvec().

Checks

Commit Message

Patch