Re: [PATCH bpf v3 1/5] bpf, sockmap: Annotate af_unix sock::sk_state data-races

[PATCH bpf v3 0/5] bpf, sockmap: Fix af_unix null-ptr-deref in proto update · Michal Luczaj <hidden> · 2026-03-05
[PATCH bpf v3 1/5] bpf, sockmap: Annotate af_unix sock::sk_state data-races · Michal Luczaj <hidden> · 2026-03-05
Re: [PATCH bpf v3 1/5] bpf, sockmap: Annotate af_unix sock::sk_state data-races · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-06
Re: [PATCH bpf v3 1/5] bpf, sockmap: Annotate af_unix sock^sk_state data-races · Jiayuan Chen <hidden> · 2026-03-06
Re: [PATCH bpf v3 1/5] bpf, sockmap: Annotate af_unix sock::sk_state data-races · Michal Luczaj <hidden> · 2026-03-18
[PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Michal Luczaj <hidden> · 2026-03-05
Re: [PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-06
Re: [PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Michal Luczaj <hidden> · 2026-03-06
Re: [PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-11
Re: [PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-11
Re: [PATCH bpf v3 2/5] bpf, sockmap: Use sock_map_sk_{acquire,release}() where open-coded · Michal Luczaj <hidden> · 2026-03-15
[PATCH bpf v3 4/5] selftests/bpf: Extend bpf_iter_unix to attempt deadlocking · Michal Luczaj <hidden> · 2026-03-05
Re: [PATCH bpf v3 4/5] selftests/bpf: Extend bpf_iter_unix to attempt deadlocking · Jiayuan Chen <hidden> · 2026-03-06
[PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Michal Luczaj <hidden> · 2026-03-05
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-06
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Jiayuan Chen <hidden> · 2026-03-06
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Jiayuan Chen <hidden> · 2026-03-06
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Michal Luczaj <hidden> · 2026-03-06
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Jiayuan Chen <hidden> · 2026-03-06
Re: [PATCH bpf v3 3/5] bpf, sockmap: Fix af_unix iter deadlock · Jiayuan Chen <hidden> · 2026-03-06
[PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-05
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Jiayuan Chen <hidden> · 2026-03-06
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-06
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Martin KaFai Lau <martin.lau@linux.dev> · 2026-03-10
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-16
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Martin KaFai Lau <martin.lau@linux.dev> · 2026-03-26
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-30
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-30
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-31
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Kuniyuki Iwashima <kuniyu@google.com> · 2026-03-31
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-04-01
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Martin KaFai Lau <martin.lau@linux.dev> · 2026-03-31
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-03-31
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Martin KaFai Lau <martin.lau@linux.dev> · 2026-04-02
Re: [PATCH bpf v3 5/5] bpf, sockmap: Adapt for af_unix-specific lock · Michal Luczaj <hidden> · 2026-04-14

From: Michal Luczaj <hidden>
Date: 2026-03-18 17:06:08
Also in: bpf, linux-kselftest, lkml

On 3/6/26 00:30, Michal Luczaj wrote:

quoted hunk ↗ jump to hunk

sock_map_sk_state_allowed() and sock_map_redirect_allowed() read af_unix
socket sk_state locklessly.

Use READ_ONCE(). Note that for sock_map_redirect_allowed() change affects
not only af_unix, but all non-TCP sockets (UDP, af_vsock).

Suggested-by: Kuniyuki Iwashima <kuniyu@google.com>
Suggested-by: Martin KaFai Lau <martin.lau@linux.dev>
Signed-off-by: Michal Luczaj <redacted>
---
 net/core/sock_map.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/net/core/sock_map.c b/net/core/sock_map.c
index b0e96337a269..02a68be3002a 100644
--- a/net/core/sock_map.c
+++ b/net/core/sock_map.c

...

quoted hunk ↗ jump to hunk

@@ -543,7 +543,7 @@ static bool sock_map_sk_state_allowed(const struct sock *sk)
 	if (sk_is_tcp(sk))
 		return (1 << sk->sk_state) & (TCPF_ESTABLISHED | TCPF_LISTEN);
 	if (sk_is_stream_unix(sk))
-		return (1 << sk->sk_state) & TCPF_ESTABLISHED;
+		return (1 << READ_ONCE(sk->sk_state)) & TCPF_ESTABLISHED;
 	if (sk_is_vsock(sk) &&
 	    (sk->sk_type == SOCK_STREAM || sk->sk_type == SOCK_SEQPACKET))
 		return (1 << sk->sk_state) & TCPF_ESTABLISHED;

Another reason to (conditionally) take unix_state_lock() at
sock_map_update_elem{,_sys}(): chunk above can be dropped.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help