mptcp: fix data races on local_id

The local address id is accessed lockless by the NL PM, add all the required ONCE annotation. There is a caveat: the local id can be initialized late in the subflow life-cycle, and its validity is controlled by the local_id_valid flag. Remove such flag and encode the validity in the local_id field itself with negative value before initialization. That allows accessing the field consistently with a single read operation. Fixes: 0ee4261a3681 ("mptcp: implement mptcp_pm_remove_subflow") Cc: stable@vger.kernel.org Signed-off-by: Paolo Abeni <pabeni@redhat.com> Reviewed-by: Mat Martineau <martineau@kernel.org> Signed-off-by: Matthieu Baerts (NGI0) <matttbe@kernel.org> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Paolo Abeni <pabeni@redhat.com> 2024-02-15 19:25:31 +0100
committer: David S. Miller <davem@davemloft.net> 2024-02-18 10:25:00 +0000
commit: a7cfe776637004a4c938fde78be4bd608c32c3ef (patch)
tree: bed69851fb9a72067edc4a9d769c40e1e6384a8b /net/mptcp/protocol.c
parent: b8adb69a7d29c2d33eb327bca66476fb6066516b (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/net/mptcp/protocol.c b/net/mptcp/protocol.c
index 8ef2927ebca2..948606a537da 100644
--- a/net/mptcp/protocol.c
+++ b/net/mptcp/protocol.c
@@ -85,7 +85,7 @@ static int __mptcp_socket_create(struct mptcp_sock *msk)
 	subflow->subflow_id = msk->subflow_id++;
 
 	/* This is the first subflow, always with id 0 */
-	subflow->local_id_valid = 1;
+	WRITE_ONCE(subflow->local_id, 0);
 	mptcp_sock_graft(msk->first, sk->sk_socket);
 	iput(SOCK_INODE(ssock));
author	Paolo Abeni <pabeni@redhat.com>	2024-02-15 19:25:31 +0100
committer	David S. Miller <davem@davemloft.net>	2024-02-18 10:25:00 +0000
commit	a7cfe776637004a4c938fde78be4bd608c32c3ef (patch)
tree	bed69851fb9a72067edc4a9d769c40e1e6384a8b /net/mptcp/protocol.c
parent	b8adb69a7d29c2d33eb327bca66476fb6066516b (diff)