Kernel: Lock socket mutex across {get,set}sockopt() and SO_ERROR updates

Since a socket can be accessed by multiple threads concurrently, we need to protect shared data behind the socket mutex. There's very likely more places where we need to fix this, the purpose of this patch is to fix a VERIFY() failure in getsockopt() seen on CI.
Author: https://github.com/awesomekling Commit: https://github.com/SerenityOS/serenity/commit/a1be1358918
2024-09-21 02:08:12 +03:00 · 2021-12-28 15:16:57 +01:00 · 2021-12-28 15:16:57 +01:00 · a1be135891 · 2024-07-18 03:23:00 +09:00
commit a1be135891
parent 4e1898df99
4 changed files with 17 additions and 1 deletions
--- a/Kernel/Net/IPv4Socket.cpp
+++ b/Kernel/Net/IPv4Socket.cpp
@ -505,6 +505,8 @@ ErrorOr<void> IPv4Socket::setsockopt(int level, int option, Userspace<const void
    if (level != IPPROTO_IP)
        return Socket::setsockopt(level, option, user_value, user_value_size);

+    MutexLocker locker(mutex());
+
    switch (option) {
    case IP_TTL: {
        if (user_value_size < sizeof(int))
@ -569,6 +571,8 @@ ErrorOr<void> IPv4Socket::getsockopt(OpenFileDescription& description, int level
    if (level != IPPROTO_IP)
        return Socket::getsockopt(description, level, option, value, value_size);

+    MutexLocker locker(mutex());
+
    socklen_t size;
    TRY(copy_from_user(&size, value_size.unsafe_userspace_ptr()));

--- a/Kernel/Net/LocalSocket.cpp
+++ b/Kernel/Net/LocalSocket.cpp
@ -386,6 +386,8 @@ ErrorOr<void> LocalSocket::getsockopt(OpenFileDescription& description, int leve
    if (level != SOL_SOCKET)
        return Socket::getsockopt(description, level, option, value, value_size);

+    MutexLocker locker(mutex());
+
    socklen_t size;
    TRY(copy_from_user(&size, value_size.unsafe_userspace_ptr()));

--- a/Kernel/Net/Socket.cpp
+++ b/Kernel/Net/Socket.cpp
@ -78,6 +78,8 @@ ErrorOr<void> Socket::queue_connection_from(NonnullRefPtr<Socket> peer)

 ErrorOr<void> Socket::setsockopt(int level, int option, Userspace<const void*> user_value, socklen_t user_value_size)
 {
+    MutexLocker locker(mutex());
+
    if (level != SOL_SOCKET)
        return ENOPROTOOPT;
    VERIFY(level == SOL_SOCKET);
@ -133,6 +135,8 @@ ErrorOr<void> Socket::setsockopt(int level, int option, Userspace<const void*> u

 ErrorOr<void> Socket::getsockopt(OpenFileDescription&, int level, int option, Userspace<void*> value, Userspace<socklen_t*> value_size)
 {
+    MutexLocker locker(mutex());
+
    socklen_t size;
    TRY(copy_from_user(&size, value_size.unsafe_userspace_ptr()));

--- a/Kernel/Net/Socket.h
+++ b/Kernel/Net/Socket.h
@ -130,16 +130,22 @@ protected:

    Role m_role { Role::None };

-    ErrorOr<void> so_error() const { return m_so_error; }
+    ErrorOr<void> so_error() const
+    {
+        VERIFY(m_mutex.is_locked_by_current_thread());
+        return m_so_error;
+    }

    Error set_so_error(ErrnoCode error_code)
    {
+        MutexLocker locker(mutex());
        auto error = Error::from_errno(error_code);
        m_so_error = error;
        return error;
    }
    Error set_so_error(Error error)
    {
+        MutexLocker locker(mutex());
        m_so_error = error;
        return error;
    }