Page MenuHomeFreeBSD
Differential D31878

sctp: Fix lock recursion in sctp_swap_inpcb_for_listen()
ClosedPublic
Actions

Authored by markj on Sep 8 2021, 3:06 AM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Nov 4, 2:06 AM
Unknown Object (File)
Thu, Oct 30, 2:41 AM
Unknown Object (File)
Wed, Oct 29, 9:18 AM
Unknown Object (File)
Wed, Oct 29, 9:12 AM
Unknown Object (File)
Wed, Oct 29, 7:11 AM
Unknown Object (File)
Wed, Oct 29, 7:00 AM
Unknown Object (File)
Sep 25 2025, 3:57 PM
Unknown Object (File)
Sep 19 2025, 7:50 AM
View All 99 Files
Subscribers
imp
melifaro

Details

Reviewers
tuexen
Group Reviewers
transport
Commits
rG6e3af6321ba4: sctp: Fix lock recursion in sctp_swap_inpcb_for_listen()
Summary

After commit bd4a39cc93d9 we now hold the global inp info lock across
the call to sctp_swap_inpcb_for_listen(), which attempts to acquire it
again. Since sctp_swap_inpcb_for_listen()'s sole caller is
sctp_listen(), we can simply change it to not try to acquire the lock.

Fixes: bd4a39cc93d9 ("socket: Properly interlock when transitioning to a listening socket")
Reported by: syzkaller

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
sys/
netinet/
4 lines

Diff 94894

View Options

sys/netinet/sctp_pcb.c

Loading...