[PATCH 4/4] net/tls: implement ->read_sock()
Simon Horman
simon.horman at corigine.com
Sat Jun 17 07:08:08 PDT 2023
+ Dan Carpenter
On Wed, Jun 14, 2023 at 08:22:12AM +0200, Hannes Reinecke wrote:
...
> diff --git a/net/tls/tls_sw.c b/net/tls/tls_sw.c
> index 47eeff4d7d10..f0e0a0afb8c9 100644
> --- a/net/tls/tls_sw.c
> +++ b/net/tls/tls_sw.c
> @@ -2231,6 +2231,77 @@ ssize_t tls_sw_splice_read(struct socket *sock, loff_t *ppos,
> goto splice_read_end;
> }
>
> +int tls_sw_read_sock(struct sock *sk, read_descriptor_t *desc,
> + sk_read_actor_t read_actor)
> +{
> + struct tls_context *tls_ctx = tls_get_ctx(sk);
> + struct tls_sw_context_rx *ctx = tls_sw_ctx_rx(tls_ctx);
> + struct strp_msg *rxm = NULL;
> + struct tls_msg *tlm;
> + struct sk_buff *skb;
> + ssize_t copied = 0;
> + int err, used;
> +
> + if (!skb_queue_empty(&ctx->rx_list)) {
> + skb = __skb_dequeue(&ctx->rx_list);
> + } else {
> + struct tls_decrypt_arg darg;
> +
> + err = tls_rx_rec_wait(sk, NULL, true, true);
> + if (err <= 0)
> + return err;
> +
> + memset(&darg.inargs, 0, sizeof(darg.inargs));
> +
> + err = tls_rx_one_record(sk, NULL, &darg);
> + if (err < 0) {
> + tls_err_abort(sk, -EBADMSG);
> + return err;
> + }
> +
> + tls_rx_rec_done(ctx);
> + skb = darg.skb;
> + }
> +
> + do {
> + rxm = strp_msg(skb);
> + tlm = tls_msg(skb);
> +
> + /* read_sock does not support reading control messages */
> + if (tlm->control != TLS_RECORD_TYPE_DATA) {
> + err = -EINVAL;
> + goto read_sock_requeue;
> + }
> +
> + used = read_actor(desc, skb, rxm->offset, rxm->full_len);
> + if (used <= 0) {
> + err = used;
> + goto read_sock_end;
> + }
> +
> + copied += used;
> + if (used < rxm->full_len) {
> + rxm->offset += used;
> + rxm->full_len -= used;
> + if (!desc->count)
> + goto read_sock_requeue;
> + } else {
> + consume_skb(skb);
> + if (desc->count && !skb_queue_empty(&ctx->rx_list))
> + skb = __skb_dequeue(&ctx->rx_list);
> + else
> + skb = NULL;
> + }
> + } while (skb);
> +
> +read_sock_end:
> + return copied ? : err;
Hi Hannes,
I'm of two minds about raising this or not, but in any case here I am
doing so.
Both gcc-12 [-Wmaybe-uninitialized] and Smatch warn that err may be
used uninitialised on the line above.
My own analysis is that it cannot occur: I think it is always the case
that either copied is non-zero or err is initialised. But still
the warning is there. And in future it may create noise that may
crowds out real problems.
It also seems to imply that the path is somewhat complex,
and hard to analyse: certainly it took my small brain a while.
So I do wonder if there is a value in ensuring err is always set to
something appropriate, perhaps set to -EINVAL above the do loop.
I guess that in the end I decided it was best to put this thinking in the
open. And let you decide.
> +
> +read_sock_requeue:
> + __skb_queue_head(&ctx->rx_list, skb);
> + goto read_sock_end;
> +}
> +
> bool tls_sw_sock_is_readable(struct sock *sk)
> {
> struct tls_context *tls_ctx = tls_get_ctx(sk);
> --
> 2.35.3
>
>
More information about the Linux-nvme
mailing list