From: "Stephan Müller" <smueller@chronox.de>
To: Herbert Xu <herbert@gondor.apana.org.au>
Cc: Romain Izard <romain.izard.pro@gmail.com>,
linux-crypto@vger.kernel.org,
Cyrille Pitchen <cyrille.pitchen@microchip.com>,
Tudor Ambarus <tudor.ambarus@microchip.com>,
Nicolas Ferre <nicolas.ferre@microchip.com>,
linux-arm-kernel <linux-arm-kernel@lists.infradead.org>
Subject: Re: [PATCH] crypto: AF_ALG - remove locking in async callback
Date: Tue, 07 Nov 2017 07:19:32 +0100 [thread overview]
Message-ID: <4677171.2qOLUIFS1s@positron.chronox.de> (raw)
In-Reply-To: <20171107052235.GA20803@gondor.apana.org.au>
Am Dienstag, 7. November 2017, 06:22:35 CET schrieb Herbert Xu:
Hi Herbert,
> On Mon, Nov 06, 2017 at 05:06:09PM +0100, Stephan Mueller wrote:
> > Am Freitag, 3. November 2017, 14:20:16 CET schrieb Herbert Xu:
> > > Are you sure about that? In particular is the callback function still
> > > sane without the socket lock if a concurrent recvmsg/sendmsg call is
> > > made?
> >
> > I reviewed the code again and I cannot find a reason for keeping the lock.
> > All we need to ensure is that the socket exists. This is ensured with the
> > refcount of the socket released by __sock_put().
>
> OK, I can't see why we need a lock there either. However, the call
> to __sock_put looks suspicious. Why isn't this using sock_put?
I simply ported the existing code from algif_aead over -- but I think you are
right that sock_put is more appropriate.
>
> Also the sock_hold on the caller side looks buggy. Surely it needs
> to be made before we even call the encrypt/decrypt functions rather
> than after it returns EINPROGRESS at which point it may well be too
> late?
I would concur. The sock_hold would need to be moved from the EINPROGRESS
conditional to before the AIO enc/dec operation is invoked.
Where I am not fully sure is whether af_alg_async_cb is called in any case.
I.e. when we invoke an AIO operation with a cipher that completes
synchronously (e.g. AES-NI), is this callback triggered?
Ciao
Stephan
WARNING: multiple messages have this Message-ID (diff)
From: smueller@chronox.de (Stephan Müller)
To: linux-arm-kernel@lists.infradead.org
Subject: [PATCH] crypto: AF_ALG - remove locking in async callback
Date: Tue, 07 Nov 2017 07:19:32 +0100 [thread overview]
Message-ID: <4677171.2qOLUIFS1s@positron.chronox.de> (raw)
In-Reply-To: <20171107052235.GA20803@gondor.apana.org.au>
Am Dienstag, 7. November 2017, 06:22:35 CET schrieb Herbert Xu:
Hi Herbert,
> On Mon, Nov 06, 2017 at 05:06:09PM +0100, Stephan Mueller wrote:
> > Am Freitag, 3. November 2017, 14:20:16 CET schrieb Herbert Xu:
> > > Are you sure about that? In particular is the callback function still
> > > sane without the socket lock if a concurrent recvmsg/sendmsg call is
> > > made?
> >
> > I reviewed the code again and I cannot find a reason for keeping the lock.
> > All we need to ensure is that the socket exists. This is ensured with the
> > refcount of the socket released by __sock_put().
>
> OK, I can't see why we need a lock there either. However, the call
> to __sock_put looks suspicious. Why isn't this using sock_put?
I simply ported the existing code from algif_aead over -- but I think you are
right that sock_put is more appropriate.
>
> Also the sock_hold on the caller side looks buggy. Surely it needs
> to be made before we even call the encrypt/decrypt functions rather
> than after it returns EINPROGRESS at which point it may well be too
> late?
I would concur. The sock_hold would need to be moved from the EINPROGRESS
conditional to before the AIO enc/dec operation is invoked.
Where I am not fully sure is whether af_alg_async_cb is called in any case.
I.e. when we invoke an AIO operation with a cipher that completes
synchronously (e.g. AES-NI), is this callback triggered?
Ciao
Stephan
next prev parent reply other threads:[~2017-11-07 6:19 UTC|newest]
Thread overview: 36+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-10-25 15:26 "BUG: scheduling while atomic" in atmel-aes on Linux v4.14-rc6 Romain Izard
2017-10-25 15:26 ` Romain Izard
2017-10-25 15:59 ` Stephan Mueller
2017-10-25 15:59 ` Stephan Mueller
2017-10-29 20:39 ` [PATCH] crypto: AF_ALG - remove locking in async callback Stephan Müller
2017-10-29 20:39 ` Stephan Müller
2017-10-30 17:15 ` Romain Izard
2017-10-30 17:15 ` Romain Izard
2017-11-03 13:20 ` Herbert Xu
2017-11-03 13:20 ` Herbert Xu
2017-11-03 13:34 ` Stephan Mueller
2017-11-03 13:34 ` Stephan Mueller
2017-11-06 16:06 ` Stephan Mueller
2017-11-06 16:06 ` Stephan Mueller
2017-11-07 5:22 ` Herbert Xu
2017-11-07 5:22 ` Herbert Xu
2017-11-07 6:19 ` Stephan Müller [this message]
2017-11-07 6:19 ` Stephan Müller
2017-11-07 6:32 ` Herbert Xu
2017-11-07 6:32 ` Herbert Xu
2017-11-07 9:05 ` [PATCH v2] " Stephan Müller
2017-11-07 9:05 ` Stephan Müller
2017-11-10 11:10 ` Herbert Xu
2017-11-10 11:10 ` Herbert Xu
2017-11-10 12:20 ` [PATCH v3] " Stephan Müller
2017-11-10 12:20 ` Stephan Müller
2017-11-10 16:50 ` Romain Izard
2017-11-10 16:50 ` Romain Izard
2017-11-24 7:37 ` Herbert Xu
2017-11-24 7:37 ` Herbert Xu
2017-11-24 16:04 ` Stephan Mueller
2017-11-24 16:04 ` Stephan Mueller
2017-11-24 17:37 ` Jonathan Cameron
2017-11-24 17:37 ` Jonathan Cameron
2017-11-25 0:17 ` Herbert Xu
2017-11-25 0:17 ` Herbert Xu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4677171.2qOLUIFS1s@positron.chronox.de \
--to=smueller@chronox.de \
--cc=cyrille.pitchen@microchip.com \
--cc=herbert@gondor.apana.org.au \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-crypto@vger.kernel.org \
--cc=nicolas.ferre@microchip.com \
--cc=romain.izard.pro@gmail.com \
--cc=tudor.ambarus@microchip.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.