| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 15 Jun 2023 14:29:54 +0200 From: Toke Høiland-Jørgensen <toke@...hat.com> To: Maciej Fijalkowski <maciej.fijalkowski@...el.com>, intel-wired-lan@...ts.osuosl.org Cc: netdev@...r.kernel.org, anthony.l.nguyen@...el.com, magnus.karlsson@...el.com, fred@...udflare.com, aleksander.lobakin@...el.com, Maciej Fijalkowski <maciej.fijalkowski@...el.com> Subject: Re: [PATCH v3 iwl-next] ice: allow hot-swapping XDP programs Maciej Fijalkowski <maciej.fijalkowski@...el.com> writes: > Currently ice driver's .ndo_bpf callback brings interface down and up > independently of XDP resources' presence. This is only needed when > either these resources have to be configured or removed. It means that > if one is switching XDP programs on-the-fly with running traffic, > packets will be dropped. > > To avoid this, compare early on ice_xdp_setup_prog() state of incoming > bpf_prog pointer vs the bpf_prog pointer that is already assigned to > VSI. Do the swap in case VSI has bpf_prog and incoming one are non-NULL. > > Lastly, while at it, put old bpf_prog *after* the update of Rx ring's > bpf_prog pointer. In theory previous code could expose us to a state > where Rx ring's bpf_prog would still be referring to old_prog that got > released with earlier bpf_prog_put(). > > Signed-off-by: Maciej Fijalkowski <maciej.fijalkowski@...el.com> Acked-by: Toke Høiland-Jørgensen <toke@...hat.com>
Powered by blists - more mailing lists