freebsd kernel with SKQ
Go to file
csjp 2c4f67981e Fix the following bpf(4) race condition which can result in a panic:
(1) bpf peer attaches to interface netif0
	(2) Packet is received by netif0
	(3) ifp->if_bpf pointer is checked and handed off to bpf
	(4) bpf peer detaches from netif0 resulting in ifp->if_bpf being
	    initialized to NULL.
	(5) ifp->if_bpf is dereferenced by bpf machinery
	(6) Kaboom

This race condition likely explains the various different kernel panics
reported around sending SIGINT to tcpdump or dhclient processes. But really
this race can result in kernel panics anywhere you have frequent bpf attach
and detach operations with high packet per second load.

Summary of changes:

- Remove the bpf interface's "driverp" member
- When we attach bpf interfaces, we now set the ifp->if_bpf member to the
  bpf interface structure. Once this is done, ifp->if_bpf should never be
  NULL. [1]
- Introduce bpf_peers_present function, an inline operation which will do
  a lockless read bpf peer list associated with the interface. It should
  be noted that the bpf code will pickup the bpf_interface lock before adding
  or removing bpf peers. This should serialize the access to the bpf descriptor
  list, removing the race.
- Expose the bpf_if structure in bpf.h so that the bpf_peers_present function
  can use it. This also removes the struct bpf_if; hack that was there.
- Adjust all consumers of the raw if_bpf structure to use bpf_peers_present

Now what happens is:

	(1) Packet is received by netif0
	(2) Check to see if bpf descriptor list is empty
	(3) Pickup the bpf interface lock
	(4) Hand packet off to process

From the attach/detach side:

	(1) Pickup the bpf interface lock
	(2) Add/remove from bpf descriptor list

Now that we are storing the bpf interface structure with the ifnet, there is
is no need to walk the bpf interface list to locate the correct bpf interface.
We now simply look up the interface, and initialize the pointer. This has a
nice side effect of changing a bpf interface attach operation from O(N) (where
N is the number of bpf interfaces), to O(1).

[1] From now on, we can no longer check ifp->if_bpf to tell us whether or
    not we have any bpf peers that might be interested in receiving packets.

In collaboration with:	sam@
MFC after:	1 month
2006-06-02 19:59:33 +00:00
bin Fix the wording about the blocksize (-b) parameter. The existing 2006-05-10 20:32:57 +00:00
contrib This commit was generated by cvs2svn to compensate for changes in r159063, 2006-05-30 07:46:52 +00:00
crypto Introduce a namespace munging hack inspired by NetBSD to avoid polluting 2006-05-13 13:47:45 +00:00
etc Since NIS is an RPC based service, add a note that when adjusting access 2006-06-01 14:14:58 +00:00
games Layers are for cakes, not for software. 2006-05-28 06:16:15 +00:00
gnu Clean the product of patch(1). 2006-04-10 09:00:19 +00:00
include Add size_t declaration 2006-05-22 05:57:39 +00:00
kerberos5 Bump library majro version for gethostbyaddr(3). 2006-05-21 15:15:21 +00:00
lib Remove unused member field m_queue. 2006-06-02 08:37:01 +00:00
libexec *thwack*! all the world's not i386. 2006-03-29 12:29:01 +00:00
release Swing URLs to security advisories over to security.FreeBSD.org. 2006-05-31 23:49:51 +00:00
rescue Pass -DCRUNCH down to standard targets in individual makefiles. 2006-04-10 09:32:50 +00:00
sbin Fix "mount -u -o ro". 2006-06-02 17:53:46 +00:00
secure Add a manual dependency on ssh_namespace.h. 2006-05-13 21:38:16 +00:00
share doc fix: option MFS is obsolete. use MD_ROOT instead. 2006-06-02 15:01:11 +00:00
sys Fix the following bpf(4) race condition which can result in a panic: 2006-06-02 19:59:33 +00:00
tools Output directory has gone, remove it from Makefile. 2006-05-31 11:22:15 +00:00
usr.bin Correct previous commit. We don't want to suppress an entry because 2006-05-31 01:30:50 +00:00
usr.sbin - Only print a clarifying message about which HCI node has been used if there 2006-06-02 00:29:01 +00:00
COPYRIGHT
LOCKS
MAINTAINERS Add scottl to maintainers to ask for Pre-commit review on all busdma 2006-06-01 05:06:54 +00:00
Makefile Connect the kernel subsystem API documentation generation framework to 2006-05-26 18:10:06 +00:00
Makefile.inc1 Connect the kernel subsystem API documentation generation framework to 2006-05-26 18:10:06 +00:00
ObsoleteFiles.inc Belatedly add usr/share/man/man4.sab.4.gz. The sab(4) driver was 2006-05-20 00:30:06 +00:00
README Add a note explaining what the rescue/ directory is for. 2006-03-01 20:14:55 +00:00
UPDATING Note that an old adjkerntz is not really usable after the recent 2006-05-15 15:47:45 +00:00

This is the top level of the FreeBSD source directory.  This file
was last revised on:
$FreeBSD$

For copyright information, please see the file COPYRIGHT in this
directory (additional copyright information also exists for some
sources in this tree - please see the specific source directories for
more information).

The Makefile in this directory supports a number of targets for
building components (or all) of the FreeBSD source tree, the most
commonly used one being ``world'', which rebuilds and installs
everything in the FreeBSD system from the source tree except the
kernel, the kernel-modules and the contents of /etc.  The
``buildkernel'' and ``installkernel'' targets build and install
the kernel and the modules (see below).  Please see the top of
the Makefile in this directory for more information on the
standard build targets and compile-time flags.

Building a kernel is a somewhat more involved process, documentation
for which can be found at:
   http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig.html
And in the config(8) man page.
Note: If you want to build and install the kernel with the
``buildkernel'' and ``installkernel'' targets, you might need to build
world before.  More information is available in the handbook.

The sample kernel configuration files reside in the sys/<arch>/conf
sub-directory (assuming that you've installed the kernel sources), the
file named GENERIC being the one used to build your initial installation
kernel.  The file NOTES contains entries and documentation for all possible
devices, not just those commonly used.  It is the successor of the ancient
LINT file, but in contrast to LINT, it is not buildable as a kernel but a
pure reference and documentation file.


Source Roadmap:
---------------
bin		System/user commands.

contrib		Packages contributed by 3rd parties.

crypto		Cryptography stuff (see crypto/README).

etc		Template files for /etc.

games		Amusements.

gnu		Various commands and libraries under the GNU Public License.
		Please see gnu/COPYING* for more information.

include		System include files.

kerberos5	Kerberos5 (Heimdal) package.

lib		System libraries.

libexec		System daemons.

release		Release building Makefile & associated tools.

rescue		Build system for statically linked /rescue utilities.

sbin		System commands.

secure		Cryptographic libraries and commands.

share		Shared resources.

sys		Kernel sources.

tools		Utilities for regression testing and miscellaneous tasks.

usr.bin		User commands.

usr.sbin	System administration commands.


For information on synchronizing your source tree with one or more of
the FreeBSD Project's development branches, please see:

  http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/synching.html