Skip to content
Snippets Groups Projects
Commit fa993e85 authored by Alexei Starovoitov's avatar Alexei Starovoitov Committed by Frieder Schrempf
Browse files

bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie. 


[ Upstream commit 59f2f841 ]

syzbot reported the following lock sequence:
cpu 2:
  grabs timer_base lock
    spins on bpf_lpm lock

cpu 1:
  grab rcu krcp lock
    spins on timer_base lock

cpu 0:
  grab bpf_lpm lock
    spins on rcu krcp lock

bpf_lpm lock can be the same.
timer_base lock can also be the same due to timer migration.
but rcu krcp lock is always per-cpu, so it cannot be the same lock.
Hence it's a false positive.
To avoid lockdep complaining move kfree_rcu() after spin_unlock.

Reported-by: default avatar <syzbot+1fa663a2100308ab6eab@syzkaller.appspotmail.com>
Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
Signed-off-by: default avatarAndrii Nakryiko <andrii@kernel.org>
Link: https://lore.kernel.org/bpf/20240329171439.37813-1-alexei.starovoitov@gmail.com


Signed-off-by: default avatarSasha Levin <sashal@kernel.org>
parent 87d375e7
No related branches found
No related tags found
Hide whitespace changes
Inline Side-by-side
Showing
with 9 additions and 4 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment