From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mails.dpdk.org (mails.dpdk.org [217.70.189.124]) by inbox.dpdk.org (Postfix) with ESMTP id B07A941D64; Mon, 27 Feb 2023 18:17:14 +0100 (CET) Received: from mails.dpdk.org (localhost [127.0.0.1]) by mails.dpdk.org (Postfix) with ESMTP id 95F2B40A84; Mon, 27 Feb 2023 18:17:14 +0100 (CET) Received: from linux.microsoft.com (linux.microsoft.com [13.77.154.182]) by mails.dpdk.org (Postfix) with ESMTP id C8EDC40A7D for ; Mon, 27 Feb 2023 18:17:12 +0100 (CET) Received: by linux.microsoft.com (Postfix, from userid 1086) id 0D6E420BC5E7; Mon, 27 Feb 2023 09:17:12 -0800 (PST) DKIM-Filter: OpenDKIM Filter v2.11.0 linux.microsoft.com 0D6E420BC5E7 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux.microsoft.com; s=default; t=1677518232; bh=Ushgt5XNoFvuz9UFSb7uv509EqKpFCag/9N+p/aIeJM=; h=From:To:Cc:Subject:Date:From; b=G4ZF66Ire23CnFvrQaFX+V0+eSjkbdCLt9XGiOkFFjfCn04GdyZYW47IdhQvTjO40 p3BYUR2I+wic4Q+f0zpIbDqD9EVEDbjIQDoIyOdBxb4bcvB79vQOgCiQaZ0AXaSrzB mYUgZyny7v82+O4U1ul7UHKBDwt1JCqEH7DRQqYU= From: Tyler Retzlaff To: dev@dpdk.org, david.marchand@redhat.com Cc: thomas@monjalon.net, Tyler Retzlaff Subject: [PATCH] eal: fix thread race in control thread creation Date: Mon, 27 Feb 2023 09:17:10 -0800 Message-Id: <1677518230-1194-1-git-send-email-roretzla@linux.microsoft.com> X-Mailer: git-send-email 1.8.3.1 X-BeenThere: dev@dpdk.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: DPDK patches and discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dev-bounces@dpdk.org When ctrl_thread_init transitions params->ctrl_thread_status from CTRL_THREAD_LAUNCHING the creating thread and new thread may run concurrently leading to unsynchronized access to params. This permits races for both the failure and success paths after ctrl_thread_status is stored. * params->ret may be loaded in ctrl_thread_init failure path * params->arg may be loaded in ctrl_thread_start or control_thread_start when calling start_routine. for ctrl_thread_init remove the params->ret load and just return 1 since it is only interpreted as a indicator of success / failure of ctrl_thread_init. for {ctrl,control}_thread_start store param->arg in stack allocated storage prior to calling ctrl_thread_init and use the copy when calling start_routine. for control_thread_start if ctrl_thread_init fails just return 0 instead of loading params->ret, since the value returned is unused when ctrl_thread_status is set to CTRL_THREAD_ERROR when ctrl_thread_init fails. Fixes: 878b7468eacb ("eal: add platform agnostic control thread API") Signed-off-by: Tyler Retzlaff --- lib/eal/common/eal_common_thread.c | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/lib/eal/common/eal_common_thread.c b/lib/eal/common/eal_common_thread.c index edb9d4e..079a385 100644 --- a/lib/eal/common/eal_common_thread.c +++ b/lib/eal/common/eal_common_thread.c @@ -256,7 +256,7 @@ static int ctrl_thread_init(void *arg) if (params->ret != 0) { __atomic_store_n(¶ms->ctrl_thread_status, CTRL_THREAD_ERROR, __ATOMIC_RELEASE); - return params->ret; + return 1; } __atomic_store_n(¶ms->ctrl_thread_status, @@ -268,23 +268,25 @@ static int ctrl_thread_init(void *arg) static void *ctrl_thread_start(void *arg) { struct rte_thread_ctrl_params *params = arg; + void *start_arg = params->arg; void *(*start_routine)(void *) = params->u.ctrl_start_routine; if (ctrl_thread_init(arg) != 0) return NULL; - return start_routine(params->arg); + return start_routine(start_arg); } static uint32_t control_thread_start(void *arg) { struct rte_thread_ctrl_params *params = arg; + void *start_arg = params->arg; rte_thread_func start_routine = params->u.control_start_routine; if (ctrl_thread_init(arg) != 0) - return params->ret; + return 0; - return start_routine(params->arg); + return start_routine(start_arg); } int -- 1.8.3.1