From: Paul Moore <paul.moore@hp.com>
To: David Miller <davem@davemloft.net>
Cc: "Eric W. Biederman" <ebiederm@xmission.com>,
Herbert Xu <herbert@gondor.apana.org.au>,
netdev@vger.kernel.org
Subject: Re: [RFC PATCH v1] tun: Cleanup error handling in tun_set_iff()
Date: Thu, 6 Aug 2009 14:09:19 -0400 [thread overview]
Message-ID: <200908061409.19924.paul.moore@hp.com> (raw)
In-Reply-To: <m1zladhtoh.fsf@fess.ebiederm.org>
On Thursday 06 August 2009 11:02:22 am Eric W. Biederman wrote:
> Herbert Xu <herbert@gondor.apana.org.au> writes:
> > On Thu, Aug 06, 2009 at 07:27:13AM -0700, Eric W. Biederman wrote:
> >> Summarizing:
> >>
> >> tun = __tun_get(tfile);
> >> if (!tun) { // No tun we are not attached.
> >> < -------------------- race opportunity
> >> rtnl_lock();
> >> tun_set_iff();
> >> rtnl_unlock();
> >> }
> >> ...
> >>
> >> We don't test if we are attached under the rtnl
> >> until we get to tun_attach();
> >>
> >> So two threads can both do:
> >>
> >> tun = __tun_get(tfile);
> >> if (!tun) {
> >> rtnl_lock();
> >> tun_set_iff();
> >> dev = __dev_get_by_name(net, "not_an_interface_name");
> >> if (!dev) {
> >> dev = alloc_netdev(....);
> >> ...;
> >> register_netdev(dev);
> >> ...;
> >> err = tun_attach(..);
> >> }
> >>
> >>
> >> Only one thread is in tun_set_iff() at a time, but the other thread
> >> could have attached the file to a device before the one in tun_attach().
> >
> > Right, I see what you mean. However I don't think this is possible
> > because the ioctl runs under the big kernel lock.
>
> Why not? We can sleep on that code path.
> Although now that you mention it we should use unlocked_ioctl unless
> we actually need the BKL.
Dave, if you haven't already, it is probably a good idea to just forget about
this patch. Prior to this discussion I suspected that the TUN driver could
use a closer look, after reading the comments from Eric and Herbert there
isn't much suspicion left. I'll put this on my rainy day todo list to try and
tackle but I won't be upset if somebody beats me to it.
--
paul moore
linux @ hp
next prev parent reply other threads:[~2009-08-06 18:09 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-08-03 16:12 [RFC PATCH v1] tun: Cleanup error handling in tun_set_iff() Paul Moore
2009-08-04 4:16 ` David Miller
2009-08-05 5:32 ` Eric W. Biederman
2009-08-05 21:38 ` Paul Moore
2009-08-05 23:14 ` Eric W. Biederman
2009-08-06 18:20 ` Paul Moore
2009-08-07 0:00 ` Herbert Xu
2009-08-07 12:23 ` Paul Moore
2009-08-06 10:10 ` Herbert Xu
2009-08-06 10:21 ` Eric W. Biederman
2009-08-06 13:37 ` Herbert Xu
2009-08-06 14:27 ` Eric W. Biederman
2009-08-06 14:39 ` Herbert Xu
2009-08-06 15:02 ` Eric W. Biederman
2009-08-06 18:09 ` Paul Moore [this message]
2009-08-06 18:41 ` David Miller
2009-08-07 0:22 ` Herbert Xu
2009-08-07 3:40 ` David Miller
2009-08-07 4:22 ` Eric W. Biederman
2009-08-10 4:52 ` David Miller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200908061409.19924.paul.moore@hp.com \
--to=paul.moore@hp.com \
--cc=davem@davemloft.net \
--cc=ebiederm@xmission.com \
--cc=herbert@gondor.apana.org.au \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).