Remove deadlock in raw.endpoint caused by recursive read locking
Prevents the following deadlock: - Raw packet is sent via e.Write(), which read locks e.mu - Connect() is called, blocking on write locking e.mu - The packet is routed to loopback and back to e.HandlePacket(), which read locks e.mu Per the atomic.RWMutex documentation, this deadlocks: "If a goroutine holds a RWMutex for reading and another goroutine might call Lock, no goroutine should expect to be able to acquire a read lock until the initial read lock is released. In particular, this prohibits recursive read locking. This is to ensure that the lock eventually becomes available; a blocked Lock call excludes new readers from acquiring the lock." Also, release eps.mu earlier in deliverRawPacket. PiperOrigin-RevId: 359600926
This commit is contained in:
Kevin Krakauer
gVisor bot
parent
e50ee26207
commit
38c42bbf4a
|
|
@ -582,17 +582,18 @@ func (d *transportDemuxer) deliverRawPacket(protocol tcpip.TransportProtocolNumb
|
|||
// As in net/ipv4/ip_input.c:ip_local_deliver, attempt to deliver via
|
||||
// raw endpoint first. If there are multiple raw endpoints, they all
|
||||
// receive the packet.
|
||||
foundRaw := false
|
||||
eps.mu.RLock()
|
||||
for _, rawEP := range eps.rawEndpoints {
|
||||
// Copy the list of raw endpoints so we can release eps.mu earlier.
|
||||
rawEPs := make([]RawTransportEndpoint, len(eps.rawEndpoints))
|
||||
copy(rawEPs, eps.rawEndpoints)
|
||||
eps.mu.RUnlock()
|
||||
for _, rawEP := range rawEPs {
|
||||
// Each endpoint gets its own copy of the packet for the sake
|
||||
// of save/restore.
|
||||
rawEP.HandlePacket(pkt.Clone())
|
||||
foundRaw = true
|
||||
}
|
||||
eps.mu.RUnlock()
|
||||
|
||||
return foundRaw
|
||||
return len(rawEPs) > 0
|
||||
}
|
||||
|
||||
// deliverError attempts to deliver the given error to the appropriate transport
|
||||
|
|
|
|||
|
|
@ -84,7 +84,6 @@ type endpoint struct {
|
|||
// Connect(), and is valid only when conneted is true.
|
||||
route *stack.Route `state:"manual"`
|
||||
stats tcpip.TransportEndpointStats `state:"nosave"`
|
||||
|
||||
// owner is used to get uid and gid of the packet.
|
||||
owner tcpip.PacketOwner
|
||||
|
||||
|
|
@ -185,6 +184,8 @@ func (e *endpoint) Close() {
|
|||
func (e *endpoint) ModerateRecvBuf(copied int) {}
|
||||
|
||||
func (e *endpoint) SetOwner(owner tcpip.PacketOwner) {
|
||||
e.mu.Lock()
|
||||
defer e.mu.Unlock()
|
||||
e.owner = owner
|
||||
}
|
||||
|
||||
|
|
@ -272,14 +273,15 @@ func (e *endpoint) write(p tcpip.Payloader, opts tcpip.WriteOptions) (int64, tcp
|
|||
}
|
||||
|
||||
e.mu.RLock()
|
||||
defer e.mu.RUnlock()
|
||||
|
||||
if e.closed {
|
||||
e.mu.RUnlock()
|
||||
return 0, &tcpip.ErrInvalidEndpointState{}
|
||||
}
|
||||
|
||||
payloadBytes := make([]byte, p.Len())
|
||||
if _, err := io.ReadFull(p, payloadBytes); err != nil {
|
||||
e.mu.RUnlock()
|
||||
return 0, &tcpip.ErrBadBuffer{}
|
||||
}
|
||||
|
||||
|
|
@ -288,6 +290,7 @@ func (e *endpoint) write(p tcpip.Payloader, opts tcpip.WriteOptions) (int64, tcp
|
|||
if e.ops.GetHeaderIncluded() {
|
||||
ip := header.IPv4(payloadBytes)
|
||||
if !ip.IsValid(len(payloadBytes)) {
|
||||
e.mu.RUnlock()
|
||||
return 0, &tcpip.ErrInvalidOptionValue{}
|
||||
}
|
||||
dstAddr := ip.DestinationAddress()
|
||||
|
|
@ -309,16 +312,21 @@ func (e *endpoint) write(p tcpip.Payloader, opts tcpip.WriteOptions) (int64, tcp
|
|||
// If the user doesn't specify a destination, they should have
|
||||
// connected to another address.
|
||||
if !e.connected {
|
||||
e.mu.RUnlock()
|
||||
return 0, &tcpip.ErrDestinationRequired{}
|
||||
}
|
||||
|
||||
return e.finishWrite(payloadBytes, e.route)
|
||||
owner := e.owner
|
||||
route := e.route
|
||||
e.mu.RUnlock()
|
||||
return e.finishWrite(payloadBytes, route, owner)
|
||||
}
|
||||
|
||||
// The caller provided a destination. Reject destination address if it
|
||||
// goes through a different NIC than the endpoint was bound to.
|
||||
nic := opts.To.NIC
|
||||
if e.bound && nic != 0 && nic != e.BindNICID {
|
||||
e.mu.RUnlock()
|
||||
return 0, &tcpip.ErrNoRoute{}
|
||||
}
|
||||
|
||||
|
|
@ -326,17 +334,20 @@ func (e *endpoint) write(p tcpip.Payloader, opts tcpip.WriteOptions) (int64, tcp
|
|||
// FindRoute will choose an appropriate source address.
|
||||
route, err := e.stack.FindRoute(nic, e.BindAddr, opts.To.Addr, e.NetProto, false)
|
||||
if err != nil {
|
||||
e.mu.RUnlock()
|
||||
return 0, err
|
||||
}
|
||||
|
||||
n, err := e.finishWrite(payloadBytes, route)
|
||||
owner := e.owner
|
||||
e.mu.RUnlock()
|
||||
n, err := e.finishWrite(payloadBytes, route, owner)
|
||||
route.Release()
|
||||
return n, err
|
||||
}
|
||||
|
||||
// finishWrite writes the payload to a route. It resolves the route if
|
||||
// necessary. It's really just a helper to make defer unnecessary in Write.
|
||||
func (e *endpoint) finishWrite(payloadBytes []byte, route *stack.Route) (int64, tcpip.Error) {
|
||||
// necessary.
|
||||
func (e *endpoint) finishWrite(payloadBytes []byte, route *stack.Route, owner tcpip.PacketOwner) (int64, tcpip.Error) {
|
||||
if e.ops.GetHeaderIncluded() {
|
||||
pkt := stack.NewPacketBuffer(stack.PacketBufferOptions{
|
||||
Data: buffer.View(payloadBytes).ToVectorisedView(),
|
||||
|
|
@ -349,7 +360,7 @@ func (e *endpoint) finishWrite(payloadBytes []byte, route *stack.Route) (int64,
|
|||
ReserveHeaderBytes: int(route.MaxHeaderLength()),
|
||||
Data: buffer.View(payloadBytes).ToVectorisedView(),
|
||||
})
|
||||
pkt.Owner = e.owner
|
||||
pkt.Owner = owner
|
||||
if err := route.WritePacket(nil /* gso */, stack.NetworkHeaderParams{
|
||||
Protocol: e.TransProto,
|
||||
TTL: route.DefaultTTL(),
|
||||
|
|
|
|||
Loading…
Reference in New Issue