Page MenuHomeFreeBSD
Differential D52721

filedesc: Close race between fcntl(F_SETFL) and ioctl(FIONIO/FIOASYNC)
ClosedPublic
Actions

Authored by jhb on Sep 25 2025, 7:52 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Nov 23, 8:25 PM
Unknown Object (File)
Sun, Nov 16, 12:04 AM
Unknown Object (File)
Tue, Nov 11, 5:52 PM
Unknown Object (File)
Sat, Nov 8, 11:52 PM
Unknown Object (File)
Sat, Nov 8, 5:12 PM
Unknown Object (File)
Fri, Nov 7, 5:43 PM
Unknown Object (File)
Thu, Nov 6, 10:55 PM
Unknown Object (File)
Tue, Nov 4, 3:41 PM
View All 41 Files
Subscribers
imp
olce

Details

Reviewers
kib
markj
Commits
rGdfd7d1610aeb: filedesc: Close race between fcntl(F_SETFL) and ioctl(FIONBIO/FIOASYNC)
Summary
  • Use the recently-added fsetfl_lock/unlock API to synchronize direct FIONBIO and FIOASYNC ioctls with fcntl(F_SETFL).
  • While here, skip calling the underlying ioctl if the flag's current state matches the requested state.
  • Also while here, only update the flag state if the underlying ioctl succeeds. This fixes a bug where the flags represented the new state even if the underlying ioctl failed. A test is added for this last case that a failing FIOASYNC on /dev/null doesn't result in setting O_ASYNC in the file flags.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jhb created this revision.Sep 25 2025, 7:52 AM
Herald added subscribers: olce, imp. · View Herald TranscriptSep 25 2025, 7:52 AM
jhb requested review of this revision.Sep 25 2025, 7:52 AM
jhb added a parent revision: D52720: fcntlflags_test: Port to atf-c(3).
Harbormaster completed remote builds in B67301: Diff 162794.Sep 25 2025, 7:52 AM
jhb added a comment.Sep 25 2025, 9:10 AM

Typo in commit title: s/FIONIO/FIONBIO/

kib accepted this revision.Sep 26 2025, 4:38 AM
kib added inline comments.
sys/kern/sys_generic.c
798

If you put the 'out1' label right before line 814, and use goto out1, then this fsetfl_unlock() call can be eliminated.

This revision is now accepted and ready to land.Sep 26 2025, 4:38 AM
jhb added inline comments.Sep 30 2025, 3:49 PM
sys/kern/sys_generic.c
798

Hmmm, that seems a bit confusing to read. I did consider though restructuring this switch a bit to avoid the out label entirely, e.g.:

switch (com) {
case FIONCLEX:
...
case FIOCLEX:
...
case FIONBIO:
case FIOASYNC:
    f_flag = ...;
    tmp = *(int *)data;
    fsetfl_lock(fp);
    if (((fp->f_flag & f_flag) != 0) != (tmp != 0)) {
        error = fo_ioctl(fp, com, (void *)&tmp, td->td_ucred, td);
        if (error == 0) {
            /* set or clear flag */
        }
    }
    fsetfl_unlock(fp);
    break;
 default:
    error = fo_ioctl(fp, com, data, td->td_ucred, td);
    break;
 }

 switch (locked) {
kib added inline comments.Oct 1 2025, 4:17 AM
sys/kern/sys_generic.c
798

So we trade duplicate unlock to duplicate fo_ioctl, I think this is reasonable.
Also goto out in FIOCLEX etc become plain break.

jhb updated this revision to Diff 163440.Oct 3 2025, 2:36 PM

Rework switch statement

This revision now requires review to proceed.Oct 3 2025, 2:36 PM
Harbormaster completed remote builds in B67518: Diff 163440.Oct 3 2025, 2:36 PM
kib accepted this revision.Oct 3 2025, 2:57 PM
kib added inline comments.
sys/kern/sys_generic.c
795–811

What is the purpose of this line?

This revision is now accepted and ready to land.Oct 3 2025, 2:57 PM
jhb added inline comments.Oct 3 2025, 3:31 PM
sys/kern/sys_generic.c
795–811

Oh, I forgot to remove it.

Closed by commit rGdfd7d1610aeb: filedesc: Close race between fcntl(F_SETFL) and ioctl(FIONBIO/FIOASYNC) (authored by jhb). · Explain WhyOct 3 2025, 5:13 PM
This revision was automatically updated to reflect the committed changes.
jhb added a commit: rGdfd7d1610aeb: filedesc: Close race between fcntl(F_SETFL) and ioctl(FIONBIO/FIOASYNC).

Revision Contents
Changeset List

PathSize
sys/
kern/
36 lines
tests/
sys/
file/
27 lines

Diff 163469

View Options

sys/kern/sys_generic.c

Loading...
View Options

tests/sys/file/fcntlflags_test.c

Loading...