From nobody Thu May 16 13:20:22 2024 Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id EDC404E61F; Tue, 26 Dec 2023 12:10:54 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="fFjTyeKD" Received: by smtp.kernel.org (Postfix) with ESMTPSA id 5A75AC433C7; Tue, 26 Dec 2023 12:10:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1703592654; bh=ALlrmlO3TZ8rTcppMu1Ow9TnWlk/ALtcHvbxxjlX0po=; h=From:Date:Subject:References:In-Reply-To:To:Cc:From; b=fFjTyeKDINGIZSjYwg0UTPejQCfOsa6UICttivZtcnkY1Hz9q5gG9t5FfyqlbGTK8 B5LVgY5VR86jCz1TGmA2ScQxFkRJz8PMFkOqps5pmAhXyLRrTTgxEIw6ys+yWZgI3T wEaJKs8eFJBIS4hhtvvl8mzryIvH22vPvxeA1ibTZh4xk/MjB0y6zOShrdZ/llvjtM gaahBmudb4B0ofLNM374p1I0HVsICySrL0H0leoCFHxoSj65+hWQUdH3oEX3rXcEjv Y4mwKAynNNA3taQFMKuk4YUAlQc9vM10nHbWcNwJN52hYa7KQvGlBArcxRuD1M+WVB phaK6y4FfWlxQ== From: Matthieu Baerts Date: Tue, 26 Dec 2023 13:10:17 +0100 Subject: [PATCH net 1/2] MAINTAINERS: add Geliang as reviewer for MPTCP Precedence: bulk X-Mailing-List: mptcp@lists.linux.dev List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Message-Id: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-1-1404dcc431ea@kernel.org> References: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-0-1404dcc431ea@kernel.org> In-Reply-To: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-0-1404dcc431ea@kernel.org> To: mptcp@lists.linux.dev, Mat Martineau , Geliang Tang , "David S. Miller" , Eric Dumazet , Jakub Kicinski , Paolo Abeni Cc: linux-kernel@vger.kernel.org, netdev@vger.kernel.org, Matthieu Baerts X-Mailer: b4 0.12.4 X-Developer-Signature: v=1; a=openpgp-sha256; l=815; i=matttbe@kernel.org; h=from:subject:message-id; bh=ALlrmlO3TZ8rTcppMu1Ow9TnWlk/ALtcHvbxxjlX0po=; b=owEBbQKS/ZANAwAIAfa3gk9CaaBzAcsmYgBlisLJrh3/+s08oTpRIE5WrYCb3GUarK/E3+Tje 3iKYPL/YcGJAjMEAAEIAB0WIQToy4X3aHcFem4n93r2t4JPQmmgcwUCZYrCyQAKCRD2t4JPQmmg c9I6EAC+BvQNdxnlaIk2nBosBJtJDkLuxLBY09t/O329mNv5teZImovDb+4GlIGkNI7dz8Zgz1F WXrGdY+VfO7O/z6H4m+ZDIH4WDX7KvVAkIaAU2PYLJZANWxB/SkZs2qrOLsgTZYi+Pkul5cqcvc Z/x3NeJc7Q9vzZtr2onJ38oRA8kcqgZJ6PzBhVjxfyfsgppD4TDW9fqUIeiNAp0E/5eN6QUhiiQ /PYU7CaKqc1uS82H2yqCk4wGtTF5YWXI/ZSfGOSad6l9fPG8ux9Gfe5nDLOrFn0kT6vEJzld5rF VNkW+uLdGumFG6iReGzvqjYpvnyYak2rJTpiqpYtRA3lG0nyGvhhF82LHRR6C2b19Y+pEyW+mId A8dzQWphf7gjreg/LkuO1hFNfoTxChKSty/FmB9ZwhPBLSN1Mu5uRr15MrB2ZiUhCsfyUAzTwne IrjzZthKAq4se6crhki7VExTmcJivaSlBf+Be1Oqagb21WXTtXZ4WqE9ePEOlwlaTlC9CpSRJqw ZaYZGtn0K20/qi7nj7ySuoteDzhAqgXNrVamlYKP0xWZxb11/LZvx7iF8fAYuriMJ7taST1+7Jv /3KcH7NJ9Ey8lcz34pgyFbgkn085Girc05hhqF/7mYRRme6YLGO4g7Zka7NH9+yxRF+L2g4j96P d0f61lpAhdEDpXg== X-Developer-Key: i=matttbe@kernel.org; a=openpgp; fpr=E8CB85F76877057A6E27F77AF6B7824F4269A073 For a long time now, Geliang has contributed to a lot of code and reviews related to MPTCP. So let's reflect that in the MAINTAINERS file. This should also encourage patch submitters to add him to the CC list. Acked-by: Geliang Tang Acked-by: Mat Martineau Signed-off-by: Matthieu Baerts --- MAINTAINERS | 1 + 1 file changed, 1 insertion(+) diff --git a/MAINTAINERS b/MAINTAINERS index 7cef2d2ef8d7..cc9e2dc4ad9a 100644 --- a/MAINTAINERS +++ b/MAINTAINERS @@ -15078,6 +15078,7 @@ K: \bmdo_ NETWORKING [MPTCP] M: Matthieu Baerts M: Mat Martineau +R: Geliang Tang L: netdev@vger.kernel.org L: mptcp@lists.linux.dev S: Maintained --=20 2.43.0 From nobody Thu May 16 13:20:22 2024 Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id BA85C4EB4C; Tue, 26 Dec 2023 12:10:57 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="nQuLPQYQ" Received: by smtp.kernel.org (Postfix) with ESMTPSA id D3A2BC433C8; Tue, 26 Dec 2023 12:10:54 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1703592657; bh=9K3RAxwtnbgt4T42ampHD1OD/JlH35Ygy2iCSPJlHoE=; h=From:Date:Subject:References:In-Reply-To:To:Cc:From; b=nQuLPQYQj0rJddca9UNwEtVFa9Gfe3ZywepzqjizFZ9yBP8IN9wvcebRcVwB/OItz R6BLs3SKYwlhuqWP3ADKRy+rWNnUlLtezLThB0d3BWtpB5Kk8UP4DEHzII8yvdwgah KnJhjCJ8rK3YSxyyDOEm+Cx+H5GX8gRM28VyygQh8XdJPY343/+dHGimqMqH+kkv7w e9D3ZL7s1O49Ft3+xtyLQSLosGkD4BRgJ8SU+hMbggrgSYPOb0U5rEkWHrsrmLKKHe DgVmezxBKjstYXDeOJt+MAPIQ4zvHN/nf2lwci/6UeQd22e0uhvJ1ybXw2ivd0U+l2 ITEQEVdSvvd8g== From: Matthieu Baerts Date: Tue, 26 Dec 2023 13:10:18 +0100 Subject: [PATCH net 2/2] mptcp: prevent tcp diag from closing listener subflows Precedence: bulk X-Mailing-List: mptcp@lists.linux.dev List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Message-Id: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-2-1404dcc431ea@kernel.org> References: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-0-1404dcc431ea@kernel.org> In-Reply-To: <20231226-upstream-net-20231226-mptcp-prevent-warn-v1-0-1404dcc431ea@kernel.org> To: mptcp@lists.linux.dev, Mat Martineau , Geliang Tang , "David S. Miller" , Eric Dumazet , Jakub Kicinski , Paolo Abeni Cc: linux-kernel@vger.kernel.org, netdev@vger.kernel.org, Matthieu Baerts , stable@vger.kernel.org, syzbot+5a01c3a666e726bc8752@syzkaller.appspotmail.com X-Mailer: b4 0.12.4 X-Developer-Signature: v=1; a=openpgp-sha256; l=2384; i=matttbe@kernel.org; h=from:subject:message-id; bh=HDp1Le2S0oz86KqWx/YgeMDwAfEXRM0g+e1uupHk7kU=; b=owEBbQKS/ZANAwAIAfa3gk9CaaBzAcsmYgBlisLJiW/jUMiX4knlvoEDr/Uu+rv4Yuf4zi62F gnxOCaCU0aJAjMEAAEIAB0WIQToy4X3aHcFem4n93r2t4JPQmmgcwUCZYrCyQAKCRD2t4JPQmmg cyKzD/9qtiKMJx5LbFlpxD6kdM8LYanxi9aYr7uyauIbafSh7dLy8U0aVLOAPMe1CKRp6hmD+HN B3xIhkOuFu0vqvNpir8m+GaxyQKXYRNNns3atZriKmGeBnZDPQj9UYNtDvMbrEopK9rpo5DpsNr voq4n45obKfYjkdeCyi0DIZbR2EIp5FgAscRZW0iXltYkE5NTVjzw1WfJ02wd9528MUEn+OsKIC OQf2QVLsUx0HpV8beQY9CgGnYmpKYh66Pkb6yfqpaWuygfmnVEZWYgn5dIX7hE5SlcsSK2jyThO XS0ydvNJEYTW9Ss5oCMRyzp3G5HkmL1oS9JZnKjeLKfMmWd4efecGRk0VO5aAAC62MDCjNK38pH vRmuFFDhsWu8sBZA+GTCzEDHhbt5vnntHIS1f48m6pZ/4QVsSrnawH0cMXAaoSmc7K7C8tgeln1 lG8q5hXMD7Y95VT082MLzSWR297qqC3c1dd6t2mXLsGuxg/+GeKYGKP+sIh8T86FHTS+THOsf4Y gQshxwrO4hzkWof8yjXfO1eNUCHVWe8TjK3QGnhrr5y58WvAgOk6ScCVWAp5yjsZsrojhS9LTpr kIw3l2BKrB1DIqX6L9rbj6LXQt1cw9wAtnKjvuc0RnngRx03+P1nV8lvzQ8tpfeflnUdvbrXwkO mHsycIOs+16SUrQ== X-Developer-Key: i=matttbe@kernel.org; a=openpgp; fpr=E8CB85F76877057A6E27F77AF6B7824F4269A073 From: Paolo Abeni The MPTCP protocol does not expect that any other entity could change the first subflow status when such socket is listening. Unfortunately the TCP diag interface allows aborting any TCP socket, including MPTCP listeners subflows. As reported by syzbot, that trigger a WARN() and could lead to later bigger trouble. The MPTCP protocol needs to do some MPTCP-level cleanup actions to properly shutdown the listener. To keep the fix simple, prevent entirely the diag interface from stopping such listeners. We could refine the diag callback in a later, larger patch targeting net-next. Fixes: 57fc0f1ceaa4 ("mptcp: ensure listener is unhashed before updating th= e sk status") Cc: stable@vger.kernel.org Reported-by: Closes: https://lore.kernel.org/netdev/0000000000004f4579060c68431b@google.= com/ Signed-off-by: Paolo Abeni Reviewed-by: Mat Martineau Signed-off-by: Matthieu Baerts --- net/mptcp/subflow.c | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/net/mptcp/subflow.c b/net/mptcp/subflow.c index 6d7684c35e93..852b3f4af000 100644 --- a/net/mptcp/subflow.c +++ b/net/mptcp/subflow.c @@ -1982,6 +1982,17 @@ static void tcp_release_cb_override(struct sock *ssk) tcp_release_cb(ssk); } =20 +static int tcp_abort_override(struct sock *ssk, int err) +{ + /* closing a listener subflow requires a great deal of care. + * keep it simple and just prevent such operation + */ + if (inet_sk_state_load(ssk) =3D=3D TCP_LISTEN) + return -EINVAL; + + return tcp_abort(ssk, err); +} + static struct tcp_ulp_ops subflow_ulp_ops __read_mostly =3D { .name =3D "mptcp", .owner =3D THIS_MODULE, @@ -2026,6 +2037,7 @@ void __init mptcp_subflow_init(void) =20 tcp_prot_override =3D tcp_prot; tcp_prot_override.release_cb =3D tcp_release_cb_override; + tcp_prot_override.diag_destroy =3D tcp_abort_override; =20 #if IS_ENABLED(CONFIG_MPTCP_IPV6) /* In struct mptcp_subflow_request_sock, we assume the TCP request sock @@ -2061,6 +2073,7 @@ void __init mptcp_subflow_init(void) =20 tcpv6_prot_override =3D tcpv6_prot; tcpv6_prot_override.release_cb =3D tcp_release_cb_override; + tcpv6_prot_override.diag_destroy =3D tcp_abort_override; #endif =20 mptcp_diag_subflow_init(&subflow_ulp_ops); --=20 2.43.0