Re: [PATCH] /proc/net/tcp + ipv6 hang

From: Arnaldo Carvalho de Melo (acme@conectiva.com.br)
Date: Sun Dec 22 2002 - 22:27:20 EST

Next message: Nathaniel Russell: "Re: 2.4.20-ac2: sound problems when using realplayer"
Previous message: Anders Gustafsson: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
In reply to: Anders Gustafsson: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
Next in thread: David S. Miller: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Em Mon, Dec 23, 2002 at 04:08:12AM +0100, Anders Gustafsson escreveu:
> On Mon, Dec 23, 2002 at 12:40:17AM -0200, Arnaldo Carvalho de Melo wrote:

> > Anders, if you're feeling brave, from the top of my head, think about what
> > happens if somebody only reads the first, say, 10 bytes of /proc/net/tcp,
> > will we unlocking a not held lock at tcp_seq_stop, no? :-)

> Yes, I was just looking into the locking... But it's rather messy with locks
> between calls and goto's and I think I'd better get some sleep before saying
> anything for certain. Is there any reason holding the lock between
> listening_get_first() and the first call to listening_get_next(), but not
> between consecutive calls to listening_get_next()? Otherwise we could just
> always release the lock in listening_get_first.

> (All this applies to established_get_first/next too.)

We have to hold the lock (tp->syn_wait_lock) because in listening_get_first
we return one of the elements of the list guarded by tp->syn_wait_lock, so
we have to make sure that it doesn't disappears under our feet when we go
to the next one in listening_get_next

> OOPS, I just realizes we might be talking about different locks :)

different problem :-)

> I was talking about
> read_[un]lock_bh(&tp->syn_wait_lock); in listening_get_first/next

> What lock are you talking about?
> As far as I can see, in TCP_SEQ_STATE_OPENREQ tp->syn_wait_lock is always
> held and in TCP_SEQ_STATE_LISTENING the tcp_listen_lock and so on?

Notice that we call tcp_listen_lock() only in tcp_get_idx, and tcp_get_idx
is not called for the first record, that is the header of /proc/net/tcp,
we're in TCP_SEQ_STATE_LISTENING that is zero (we zeroed the private seq_file
area in tcp_seq_open, so if the userlevel program only asks for, say, four
bytes (like midnight commander's editor, to read the magic number for the file
to decide which viewer is associated with the type indicated by the magic
number) this will be satisfied with just one call to tcp_seq_show, i.e.
only when tcp_seq_start returns (void *), without calling tcp_get_idx to
call tcp_listen_lock(). b00m, we drop a lock not held, got it?

- Arnaldo
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Nathaniel Russell: "Re: 2.4.20-ac2: sound problems when using realplayer"
Previous message: Anders Gustafsson: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
In reply to: Anders Gustafsson: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
Next in thread: David S. Miller: "Re: [PATCH] /proc/net/tcp + ipv6 hang"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Dec 23 2002 - 22:00:31 EST