Re: [PATCH v2 5/5] audit: do not use exclusive wait in audit_receive()

From: Paul Moore
Date: Fri May 19 2023 - 16:55:07 EST

Next message: Palmer Dabbelt: "Re: [PATCH v2 9/9] riscv: defconfig: enable T-HEAD SoC"
Previous message: Paul Moore: "Re: [PATCH v2 4/5] audit: check if audit_queue is full after prepare_to_wait_exclusive()"
Next in thread: Eiichi Tsukata: "Re: [PATCH v2 5/5] audit: do not use exclusive wait in audit_receive()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On May 11, 2023 Eiichi Tsukata <eiichi.tsukata@xxxxxxxxxxx> wrote:
>
> kauditd thread issues wake_up() before it goes to sleep. The wake_up()
> call wakes up only one process as waiter side uses exclusive wait.
> This can be problematic when there are multiple processes (one is in
> audit_receive() and others are in audit_log_start()) waiting on
> audit_backlog_wait queue.
>
> For example, if there are two processes waiting:
>
> Process (A): in audit_receive()
> Process (B): in audit_log_start()
>
> And (A) is at the head of the wait queue. Then kauditd's wake_up() only
> wakes up (A) leaving (B) as it is even if @audit_queue is drained. As a
> result, (B) can be blocked for up to backlog_wait_time.
>
> To prevent the issue, use non-exclusive wait in audit_receive() so that
> kauditd can wake up all waiters in audit_receive().
>
> Fixes: 8f110f530635 ("audit: ensure userspace is penalized the same as the kernel when under pressure")
> Signed-off-by: Eiichi Tsukata <eiichi.tsukata@xxxxxxxxxxx>
> ---
> kernel/audit.c | 17 +++++++++++------
> 1 file changed, 11 insertions(+), 6 deletions(-)

This was also discussed in the last patchset.

--
paul-moore.com

Next message: Palmer Dabbelt: "Re: [PATCH v2 9/9] riscv: defconfig: enable T-HEAD SoC"
Previous message: Paul Moore: "Re: [PATCH v2 4/5] audit: check if audit_queue is full after prepare_to_wait_exclusive()"
Next in thread: Eiichi Tsukata: "Re: [PATCH v2 5/5] audit: do not use exclusive wait in audit_receive()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]