From: Pablo Neira Ayuso <pablo@netfilter.org>
To: Xiaotian Feng <xtfeng@gmail.com>
Cc: Simon Horman <horms@verge.net.au>,
lvs-devel@vger.kernel.org, netdev@vger.kernel.org,
netfilter-devel@vger.kernel.org,
Wensong Zhang <wensong@linux-vs.org>,
Julian Anastasov <ja@ssi.bg>,
Hans Schillstrom <hans.schillstrom@ericsson.com>,
Jesper Dangaard Brouer <brouer@redhat.com>,
Xiaotian Feng <dannyfeng@tencent.com>,
Patrick McHardy <kaber@trash.net>,
"David S. Miller" <davem@davemloft.net>
Subject: Re: [PATCH 2/3] ipvs: add missing lock in ip_vs_ftp_init_conn()
Date: Tue, 17 Jul 2012 11:46:40 +0200 [thread overview]
Message-ID: <20120717094640.GA1466@1984> (raw)
In-Reply-To: <CAJn8CcEChmrFvASChJfj7qK8F-my79fn+-G8ttst02Sts15y6Q@mail.gmail.com>
Hi,
On Tue, Jul 17, 2012 at 09:44:01AM +0800, Xiaotian Feng wrote:
> On Tue, Jul 17, 2012 at 5:07 AM, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> > Hi Simon,
> >
> > On Wed, Jul 11, 2012 at 09:19:22AM +0900, Simon Horman wrote:
> >> From: Xiaotian Feng <xtfeng@gmail.com>
> >>
> >> We met a kernel panic in 2.6.32.43 kernel:
> > [...]
> >> net/netfilter/ipvs/ip_vs_ftp.c | 2 ++
> >> 1 file changed, 2 insertions(+)
> >>
> >> diff --git a/net/netfilter/ipvs/ip_vs_ftp.c b/net/netfilter/ipvs/ip_vs_ftp.c
> >> index b20b29c..c2bc264 100644
> >> --- a/net/netfilter/ipvs/ip_vs_ftp.c
> >> +++ b/net/netfilter/ipvs/ip_vs_ftp.c
> >> @@ -65,8 +65,10 @@ static int ip_vs_ftp_pasv;
> >> static int
> >> ip_vs_ftp_init_conn(struct ip_vs_app *app, struct ip_vs_conn *cp)
> >> {
> >> + spin_lock(&cp->lock);
> >> /* We use connection tracking for the command connection */
> >> cp->flags |= IP_VS_CONN_F_NFCT;
> >> + spin_unlock(&cp->lock);
> >> return 0;
> >
> > The conntrack support for FTP IPVS helper seems to be there since
> > 2.6.37.
> >
> > However, the patch description mentions 2.6.32.43.
> >
> > Something doesn't match here, could you clarify this?
> >
>
> Sorry for the misleading description in the patch. We found the panic
> in 2.6.32.43 is caused by changing cp->flags without protection. In
> 2.6.32.43, ip_vs_process_message changes cp->flags without protection
> while update active/inactive flags for the connection.
>
> After code inspiration, we found in 3.x kernel, it is accidentally
> fixed by commit f73181c. But with ip_vs_app changes,
> ip_vs_ftp_init_conn() will have chance to change cp->flags without
> protection. So it is a potential bug in 3.x kernel.
Please, then fix the patch description and resend the patch to me.
I have to justify why this is pushed forward to David, and using
misleading description for the patch is not the way to go.
Regarding this bitset operation, I think it's way better if you use
bitwise operations for those cp->flags. Getting the spin_lock just to
set the flag is way too much.
next prev parent reply other threads:[~2012-07-17 9:46 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-07-11 0:19 [GIT PULL nf] IPVS Simon Horman
2012-07-11 0:19 ` [PATCH 1/3] ipvs: fix oops on NAT reply in br_nf context Simon Horman
2012-07-17 10:08 ` Pablo Neira Ayuso
2012-07-11 0:19 ` [PATCH 2/3] ipvs: add missing lock in ip_vs_ftp_init_conn() Simon Horman
2012-07-16 21:07 ` Pablo Neira Ayuso
2012-07-17 2:34 ` Xiaotian Feng
2012-07-17 5:14 ` Simon Horman
[not found] ` <CAJn8CcEChmrFvASChJfj7qK8F-my79fn+-G8ttst02Sts15y6Q@mail.gmail.com>
2012-07-17 9:46 ` Pablo Neira Ayuso [this message]
2012-07-11 0:19 ` [PATCH 3/3] ipvs: fix oops in ip_vs_dst_event on rmmod Simon Horman
2012-07-17 10:08 ` Pablo Neira Ayuso
2012-07-17 10:14 ` [GIT PULL nf] IPVS Pablo Neira Ayuso
2012-07-17 13:50 ` Simon Horman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20120717094640.GA1466@1984 \
--to=pablo@netfilter.org \
--cc=brouer@redhat.com \
--cc=dannyfeng@tencent.com \
--cc=davem@davemloft.net \
--cc=hans.schillstrom@ericsson.com \
--cc=horms@verge.net.au \
--cc=ja@ssi.bg \
--cc=kaber@trash.net \
--cc=lvs-devel@vger.kernel.org \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=wensong@linux-vs.org \
--cc=xtfeng@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.