[asterisk-dev] [Code Review] Deadlock in channel masquerade handling
Russell Bryant
russell at digium.com
Wed Oct 7 17:47:44 CDT 2009
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviewboard.asterisk.org/r/387/#review1156
-----------------------------------------------------------
Ship it!
Nice work, David!
/trunk/main/channel.c
<https://reviewboard.asterisk.org/r/387/#comment2644>
lol ..
- Russell
On 2009-10-06 15:44:48, David Vossel wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviewboard.asterisk.org/r/387/
> -----------------------------------------------------------
>
> (Updated 2009-10-06 15:44:48)
>
>
> Review request for Asterisk Developers.
>
>
> Summary
> -------
>
> In trunk, channels are stored in an ao2_container. When accessing an item within an ao2_container the proper locking order is to first lock the container, and then the items within it.
>
> In ast_do_masquerade both the clone and original channel must be locked for the entire duration of the function. The problem with this is that it attempts to unlink and link these channels back into the ao2_container when one of the channel's name changes. This is invalid locking order as the process of unlinking and linking will lock the ao2_container while the channels are locked!!! Now, both the channels in do_masquerade are unlinked from the ao2_container and then locked for the entire function. At the end of the function both channels are unlocked and linked back into the container with their new names as hash values.
>
> This new method of requiring all channels to be unlocked before ast_do_masquerade or ast_change_name required several changes throughout the code base. I started by fixing every instance where these two functions were used, and then attempted to spiral out from there verifying no additional channel locks were held outside of the functions that called them. This was a complex task and I believe I found all the obvious violations of this rule... It is possible by some series of indirection that I may have missed code paths that could again cause a problem.
>
>
> This addresses bug 15911.
> https://issues.asterisk.org/view.php?id=15911
>
>
> Diffs
> -----
>
> /trunk/channels/chan_misdn.c 222250
> /trunk/channels/chan_sip.c 222250
> /trunk/include/asterisk/channel.h 222250
> /trunk/main/channel.c 222250
> /trunk/main/features.c 222250
> /trunk/main/pbx.c 222250
>
> Diff: https://reviewboard.asterisk.org/r/387/diff
>
>
> Testing
> -------
>
> I completed an attended transfer in chan_sip.
>
>
> Thanks,
>
> David
>
>
More information about the asterisk-dev
mailing list