From owner-svn-src-head@freebsd.org Thu Nov 7 20:50:38 2019 Return-Path: Delivered-To: svn-src-head@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 24827178A4D; Thu, 7 Nov 2019 20:50:38 +0000 (UTC) (envelope-from glebius@freebsd.org) Received: from cell.glebi.us (glebi.us [162.251.186.162]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "cell.glebi.us", Issuer "cell.glebi.us" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 478Fsn2ZQbz4KL5; Thu, 7 Nov 2019 20:50:36 +0000 (UTC) (envelope-from glebius@freebsd.org) Received: from cell.glebi.us (localhost [127.0.0.1]) by cell.glebi.us (8.15.2/8.15.2) with ESMTPS id xA7KoYne059384 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Thu, 7 Nov 2019 12:50:35 -0800 (PST) (envelope-from glebius@freebsd.org) Received: (from glebius@localhost) by cell.glebi.us (8.15.2/8.15.2/Submit) id xA7KoYav059383; Thu, 7 Nov 2019 12:50:34 -0800 (PST) (envelope-from glebius@freebsd.org) X-Authentication-Warning: cell.glebi.us: glebius set sender to glebius@freebsd.org using -f Date: Thu, 7 Nov 2019 12:50:34 -0800 From: Gleb Smirnoff To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r354477 - in head/sys: netinet netinet6 Message-ID: <20191107205034.GQ2195@FreeBSD.org> References: <201911072049.xA7Knu4I072521@repo.freebsd.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <201911072049.xA7Knu4I072521@repo.freebsd.org> User-Agent: Mutt/1.12.2 (2019-09-21) X-Rspamd-Queue-Id: 478Fsn2ZQbz4KL5 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; none X-Spamd-Result: default: False [-1.94 / 15.00]; local_wl_from(0.00)[freebsd.org]; NEURAL_HAM_MEDIUM(-0.95)[-0.945,0]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; ASN(0.00)[asn:27348, ipnet:162.251.186.0/24, country:US] X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Nov 2019 20:50:38 -0000 On Thu, Nov 07, 2019 at 08:49:56PM +0000, Gleb Smirnoff wrote: T> Author: glebius T> Date: Thu Nov 7 20:49:56 2019 T> New Revision: 354477 T> URL: https://svnweb.freebsd.org/changeset/base/354477 T> T> Log: T> Since r353292 on input path we are always in network epoch, when T> we lookup PCBs. Thus, do not enter epoch recursively in T> in_pcblookup_hash() and in6_pcblookup_hash(). Same applies to T> tcp_ctlinput() and tcp6_ctlinput(). T> T> This leaves several sysctl(9) handlers that return PCB credentials T> unprotected. Add epoch enter/exit to all of them. T> T> Differential Revision: https://reviews.freebsd.org/D22197 Note: only this commit references the differential revision, as it is the core change. But preceeding commits and following commits related to PCB locking were all part of this review. -- Gleb Smirnoff