Page MenuHomeFreeBSD
Differential D21923

netinet: In multicast/broadcast udp(6)_input(), compare the IP details after we lock inp as well
AbandonedPublic
Actions

Authored by nc on Oct 7 2019, 7:40 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mar 12 2024, 9:23 PM
Unknown Object (File)
Feb 6 2024, 7:44 AM
Unknown Object (File)
Jan 30 2024, 6:14 PM
Unknown Object (File)
Jan 20 2024, 10:37 AM
Unknown Object (File)
Jan 17 2024, 8:06 PM
Unknown Object (File)
Jan 12 2024, 3:23 PM
Unknown Object (File)
Dec 20 2023, 3:41 AM
Unknown Object (File)
Nov 26 2023, 1:24 PM
View All 23 Files
Subscribers
ae
bz
donner
emaste
imp
melifaro
Contributor Reviews (src)

Details

Reviewers
None
Group Reviewers
transport
Summary

In r222488, we introduced ipi_hash_lock alongside ipi_lock, which stopped using ipi_lock for stabilizing four-tuple source/destination matches. This patch adds a second check once the inpcb lock is held in udp_input() and udp6_input().

Also, compare the IP details as a separate function to prevent code duplication.

Diff Detail

Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

nc created this revision.Oct 7 2019, 7:40 PM
Herald added a reviewer: transport. · View Herald TranscriptOct 7 2019, 7:40 PM
Herald added subscribers: Contributor Reviews (src), imp. · View Herald Transcript
nc updated this revision to Diff 63159.Oct 11 2019, 6:47 PM
nc retitled this revision from netinet: In multicast/broadcast udp_input(), compare the IP details after we lock inp as well to netinet: In multicast/broadcast udp(6)_input(), compare the IP details after we lock inp as well.
nc edited the summary of this revision. (Show Details)
Herald added a subscriber: ae. · View Herald TranscriptOct 11 2019, 6:47 PM
nc updated this revision to Diff 63160.Oct 11 2019, 6:50 PM
nc updated this revision to Diff 63234.Oct 13 2019, 6:47 PM
Herald added a subscriber: bz. · View Herald TranscriptOct 13 2019, 6:47 PM
emaste added a subscriber: emaste.Oct 17 2019, 3:55 PM

Two points - first, please upload with full context (see https://wiki.freebsd.org/action/show/Phabricator for commandline examples). Second, please more details about the reason for the patch - e.g. a description of the problem that this solves, a link to the PR, a reproduction case, etc.

nc edited the summary of this revision. (Show Details)Oct 17 2019, 7:48 PM

Sorry for the issues, I'm new to kernel hacking, despite doing Ports for many years.

I added a description.

donner added a subscriber: donner.Oct 18 2019, 9:17 AM
donner added inline comments.
sys/netinet/udp_usrreq.c
560–566

Why is this remark solved?
I do see no code for handling the concern nor any documentation why it is not justified.

563

I do not get the second condition.
This was already evaluated in line 558 above and caused a "continue".
So in which case will this condition ever be effective?

sys/netinet6/udp6_usrreq.c
343–349

Why is this remark solved?
I do see no code for handling the concern nor any documentation why it is not justified.

361

I do not get the second condition.
This was already evaluated in line 348 above and caused a "continue".
So in which case will this condition ever be effective?

nc added inline comments.Oct 18 2019, 3:58 PM
sys/netinet/udp_usrreq.c
560–566

The code is handled by the condition:

!udp_inpcb_eq_ip_uh(inp, ip, uh)

So if we don't get a match, we unlock and continue.

This is based on r222488 around the "In the UDPv4 and UDPv6 multicast cases" lins: https://freshbsd.org/commit/freebsd/src/222488

563

The second condition checks for a match, related to the comment I removed below.

donner added a comment.Oct 18 2019, 9:53 PM

The ip/uh data is fixed in this function, so only the inp structure might be modified.
My question is: How can the "ip/port" information of an pcb entry (inp) get changed?

Is there a syscall, so that the application can rebind those parameters of a listening socket?
Normally, new entries will occur for new bindings and old entries will be freed.
After obtaining the lock, the "freed" state is ruled out, so only living sockets survive.

If there is not way to change those values in a found inp, the secondary test is not necessary at all.
The old comment points to such thoughts of the author, who was unsure if there is such a possibility or not.

BTW: Can you please resubmit the diff with full context an correct paths? Clicking on the path names in the diff results in "missing file" errors, because the branch name is missing.

May you even provide a diff against HEAD for correct line numbers and the new epoch locking environment? Thanks.

nc updated this revision to Diff 63476.Oct 19 2019, 2:41 PM

Fixed the issue with full context and paths.

nc abandoned this revision.Jun 24 2020, 2:33 PM
Herald added a subscriber: melifaro. · View Herald TranscriptJun 24 2020, 2:33 PM

Revision Contents
Changeset List

PathSize
sys/
netinet/
47 lines
netinet6/
52 lines

Diff 63160

View Options

sys/netinet/udp_usrreq.c

Loading...
View Options

sys/netinet6/udp6_usrreq.c

Loading...