Differential D31901

aio: Interlock with listen(2)
ClosedPublic
Actions

Authored by markj on Sep 10 2021, 4:19 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Sat, Apr 27, 11:45 AM

	Unknown Object (File)
	Sat, Apr 27, 11:41 AM

	Unknown Object (File)
	Sat, Apr 27, 11:40 AM

	Unknown Object (File)
	Sat, Apr 27, 10:27 AM

	Unknown Object (File)
	Mar 17 2024, 2:30 AM

	Unknown Object (File)
	Mar 17 2024, 2:30 AM

	Unknown Object (File)
	Mar 17 2024, 2:30 AM

	Unknown Object (File)
	Mar 17 2024, 2:18 AM

View All 32 Files

Subscribers

Details

Reviewers

jhb
gallatin
tuexen

Group Reviewers

Commits

rG141fe2dceeae: aio: Interlock with listen(2)

Summary

soo_aio_queue() did not handle the possibility that the provided socket
is a listening socket. Up until recently, to fix this one would have to
acquire the socket lock first and check, since the socket buffer locks
were destroyed by listen(2).

Now that the socket buffer locks belong to the socket, simply check
SOLISTENING(so) after acquiring them, and make listen(2) return an error
if any AIO jobs are enqueued on the socket.

Add a couple of simple regression test cases.

Note that this fixes things only for the default AIO implementation;
cxgbe has a separate pru_aio_queue implementation which needs to be
fixed.

Reported by: syzbot+c8aa122fa2c6a4e2a28b@syzkaller.appspotmail.com
Reported by: syzbot+39af117d43d4f0faf512@syzkaller.appspotmail.com

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markj created this revision.Sep 10 2021, 4:19 PM

Herald added subscribers: asomers, imp. · View Herald TranscriptSep 10 2021, 4:19 PM

markj requested review of this revision.Sep 10 2021, 4:19 PM

markj added a parent revision: D31900: socket: Add macros to lock socket buffers using socket references.

Harbormaster completed remote builds in B41459: Diff 94955.Sep 10 2021, 4:19 PM

markj added a reviewer: network.Sep 10 2021, 4:19 PM

jhb accepted this revision.Sep 10 2021, 7:51 PM

This revision is now accepted and ready to land.Sep 10 2021, 7:51 PM

tuexen accepted this revision.Sep 10 2021, 8:30 PM

gallatin accepted this revision.Sep 10 2021, 8:47 PM

Closed by commit rG141fe2dceeae: aio: Interlock with listen(2) (authored by markj). · Explain WhySep 10 2021, 9:28 PM

This revision was automatically updated to reflect the committed changes.

markj added a commit: rG141fe2dceeae: aio: Interlock with listen(2).

Revision Contents
Changeset List

Path

Size

sys/

kern/

12 lines

7 lines

tests/

sys/

aio/

78 lines

Diff 94971

sys/kern/sys_socket.c

Loading...

sys/kern/uipc_socket.c

Loading...

tests/sys/aio/aio_test.c

Loading...