From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <huawei.xie@intel.com>
Received: from mga11.intel.com (mga11.intel.com [192.55.52.93])
 by dpdk.org (Postfix) with ESMTP id 5B8A437A4
 for <dev@dpdk.org>; Mon, 23 Mar 2015 15:41:25 +0100 (CET)
Received: from orsmga002.jf.intel.com ([10.7.209.21])
 by fmsmga102.fm.intel.com with ESMTP; 23 Mar 2015 07:41:24 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.11,452,1422950400"; d="scan'208";a="702827207"
Received: from pgsmsx105.gar.corp.intel.com ([10.221.44.96])
 by orsmga002.jf.intel.com with ESMTP; 23 Mar 2015 07:41:23 -0700
Received: from shsmsx151.ccr.corp.intel.com (10.239.6.50) by
 PGSMSX105.gar.corp.intel.com (10.221.44.96) with Microsoft SMTP Server (TLS)
 id 14.3.224.2; Mon, 23 Mar 2015 22:41:22 +0800
Received: from shsmsx101.ccr.corp.intel.com ([169.254.1.36]) by
 SHSMSX151.ccr.corp.intel.com ([169.254.3.111]) with mapi id 14.03.0224.002;
 Mon, 23 Mar 2015 22:41:21 +0800
From: "Xie, Huawei" <huawei.xie@intel.com>
To: Pavel Boldin <pboldin@mirantis.com>
Thread-Topic: [dpdk-dev] [PATCH] vhost: Fix `struct file' leakage in
 `eventfd_link'
Thread-Index: AQHQZXdtPUQpud64G0WGpf15n24cqw==
Date: Mon, 23 Mar 2015 14:41:20 +0000
Message-ID: <C37D651A908B024F974696C65296B57B0F3F1F75@SHSMSX101.ccr.corp.intel.com>
References: <1427115225-14489-1-git-send-email-pboldin@mirantis.com>
 <C37D651A908B024F974696C65296B57B0F3F1E14@SHSMSX101.ccr.corp.intel.com>
 <CACf4_B9fX5o6TGeE6-DNdx0x4wTqbLYuK8+98UpZND77adei=w@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.239.127.40]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "dev@dpdk.org" <dev@dpdk.org>
Subject: Re: [dpdk-dev] [PATCH] vhost: Fix `struct file' leakage in
 `eventfd_link'
X-BeenThere: dev@dpdk.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: patches and discussions about DPDK <dev.dpdk.org>
List-Unsubscribe: <http://dpdk.org/ml/options/dev>,
 <mailto:dev-request@dpdk.org?subject=unsubscribe>
List-Archive: <http://dpdk.org/ml/archives/dev/>
List-Post: <mailto:dev@dpdk.org>
List-Help: <mailto:dev-request@dpdk.org?subject=help>
List-Subscribe: <http://dpdk.org/ml/listinfo/dev>,
 <mailto:dev-request@dpdk.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2015 14:41:25 -0000

On 3/23/2015 10:37 PM, Pavel Boldin wrote:


On Mon, Mar 23, 2015 at 4:21 PM, Xie, Huawei <huawei.xie@intel.com<mailto:h=
uawei.xie@intel.com>> wrote:
On 3/23/2015 8:54 PM, Pavel Boldin wrote:
> Due to increased `struct file's reference counter subsequent call
> to `filp_close' does not free the `struct file'. Prepend `fput' call
> to decrease the reference counter.
>
> Signed-off-by: Pavel Boldin <pboldin@mirantis.com<mailto:pboldin@mirantis=
.com>>
> ---
>  lib/librte_vhost/eventfd_link/eventfd_link.c | 1 +
>  1 file changed, 1 insertion(+)
>
> diff --git a/lib/librte_vhost/eventfd_link/eventfd_link.c b/lib/librte_vh=
ost/eventfd_link/eventfd_link.c
> index 7755dd6..62c45c8 100644
> --- a/lib/librte_vhost/eventfd_link/eventfd_link.c
> +++ b/lib/librte_vhost/eventfd_link/eventfd_link.c
> @@ -117,6 +117,7 @@ eventfd_link_ioctl(struct file *f, unsigned int ioctl=
, unsigned long arg)
>                * Release the existing eventfd in the source process
>                */
>               spin_lock(&files->file_lock);
> +             fput(file);
Could we just call atomic_long_dec here?

We can but I don't like breaking encapsulation (which is broken anyway by t=
he code). So, there is a special method and we should use it in my opinion.
it is increased by atomic_long_inc_not_zero so why don't we use the symmetr=
ic function?


Pavel

>               filp_close(file, files);
>               fdt =3D files_fdtable(files);
>               fdt->fd[eventfd_copy.source_fd] =3D NULL;