diff options
author | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2022-05-09 19:33:47 +0000 |
---|---|---|
committer | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2022-05-09 19:33:47 +0000 |
commit | b2815671552874de4462af758bc1d6e24bf66fbd (patch) | |
tree | 0894a7cd6bd73e7e72c73e09bad6c7d934136a45 | |
parent | a833eb4b8074f358bd3e637c07d2825d53e25bb8 (diff) |
Protect sbappendaddr() in divert_packet() with kernel lock. With
divert-packet rules pf calls directly from IP layer to protocol
layer. As the former has only shared net lock, additional protection
against parallel access is needed. Kernel lock is a temporary
workaround until the socket layer is MP safe.
discussed with kettenis@ mvs@
-rw-r--r-- | sys/netinet/ip_divert.c | 12 | ||||
-rw-r--r-- | sys/netinet6/ip6_divert.c | 12 |
2 files changed, 20 insertions, 4 deletions
diff --git a/sys/netinet/ip_divert.c b/sys/netinet/ip_divert.c index 187bbe8c96c..aae4ed62bea 100644 --- a/sys/netinet/ip_divert.c +++ b/sys/netinet/ip_divert.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ip_divert.c,v 1.67 2022/05/05 16:44:22 bluhm Exp $ */ +/* $OpenBSD: ip_divert.c,v 1.68 2022/05/09 19:33:46 bluhm Exp $ */ /* * Copyright (c) 2009 Michele Marchetto <michele@openbsd.org> @@ -222,11 +222,19 @@ divert_packet(struct mbuf *m, int dir, u_int16_t divert_port) } so = inp->inp_socket; + /* + * XXXSMP sbappendaddr() is not MP safe and this function is called + * from pf with shared netlock. To call only one sbappendaddr() from + * divert_packet(), protect it with kernel lock. All other places + * call sbappendaddr() with exclusive net lock. This blocks + * divert_packet() as we have the shared lock. + */ + KERNEL_LOCK(); if (sbappendaddr(so, &so->so_rcv, sintosa(&sin), m, NULL) == 0) { + KERNEL_UNLOCK(); divstat_inc(divs_fullsock); goto bad; } - KERNEL_LOCK(); sorwakeup(inp->inp_socket); KERNEL_UNLOCK(); diff --git a/sys/netinet6/ip6_divert.c b/sys/netinet6/ip6_divert.c index 35eb40945c1..eb88105ea9a 100644 --- a/sys/netinet6/ip6_divert.c +++ b/sys/netinet6/ip6_divert.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ip6_divert.c,v 1.66 2022/05/05 16:44:22 bluhm Exp $ */ +/* $OpenBSD: ip6_divert.c,v 1.67 2022/05/09 19:33:46 bluhm Exp $ */ /* * Copyright (c) 2009 Michele Marchetto <michele@openbsd.org> @@ -228,11 +228,19 @@ divert6_packet(struct mbuf *m, int dir, u_int16_t divert_port) } so = inp->inp_socket; + /* + * XXXSMP sbappendaddr() is not MP safe and this function is called + * from pf with shared netlock. To call only one sbappendaddr() from + * divert_packet(), protect it with kernel lock. All other places + * call sbappendaddr() with exclusive net lock. This blocks + * divert_packet() as we have the shared lock. + */ + KERNEL_LOCK(); if (sbappendaddr(so, &so->so_rcv, sin6tosa(&sin6), m, NULL) == 0) { + KERNEL_UNLOCK(); div6stat_inc(div6s_fullsock); goto bad; } - KERNEL_LOCK(); sorwakeup(inp->inp_socket); KERNEL_UNLOCK(); |