Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly

From: Eric Dumazet
Date: Thu Sep 02 2021 - 00:48:58 EST

Next message: kernel test robot: "[intel-tdx:guest 51/127] ERROR: modpost: "pci_iomap_shared_range" [drivers/virtio/virtio_pci_modern_dev.ko] undefined!"
Previous message: Eric Dumazet: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
In reply to: Eric Dumazet: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
Next in thread: Vasily Averin: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 9/1/21 9:32 PM, Eric Dumazet wrote:

>
> I think you missed netem case, in particular
> skb_orphan_partial() which I already pointed out.
>
> You can setup a stack of virtual devices (tunnels),
> with a qdisc on them, before ip6_xmit() is finally called...
>
> Socket might have been closed already.
>
> To test your patch, you could force a skb_orphan_partial() at the beginning
> of skb_expand_head() (extending code coverage)
>

To clarify :

It is ok to 'downgrade' an skb->destructor having a ref on sk->sk_wmem_alloc to
something owning a ref on sk->refcnt.

But the opposite operation (ref on sk->sk_refcnt --> ref on sk->sk_wmem_alloc) is not safe.

Next message: kernel test robot: "[intel-tdx:guest 51/127] ERROR: modpost: "pci_iomap_shared_range" [drivers/virtio/virtio_pci_modern_dev.ko] undefined!"
Previous message: Eric Dumazet: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
In reply to: Eric Dumazet: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
Next in thread: Vasily Averin: "Re: [PATCH net-next v4] skb_expand_head() adjust skb->truesize incorrectly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]