| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 24 Feb 2009 23:42:06 +0100 From: "Rafael J. Wysocki" <rjw@...k.pl> To: "Eric W. Biederman" <ebiederm@...ssion.com> Cc: Ingo Molnar <mingo@...e.hu>, Linus Torvalds <torvalds@...ux-foundation.org>, LKML <linux-kernel@...r.kernel.org>, Benjamin Herrenschmidt <benh@...nel.crashing.org>, Jeremy Fitzhardinge <jeremy@...p.org>, pm list <linux-pm@...ts.linux-foundation.org>, Len Brown <lenb@...nel.org>, Jesse Barnes <jbarnes@...tuousgeek.org>, Thomas Gleixner <tglx@...utronix.de> Subject: Re: [RFC][PATCH 2/2] PM: Rework handling of interrupts during suspend-resume On Tuesday 24 February 2009, Eric W. Biederman wrote: > "Rafael J. Wysocki" <rjw@...k.pl> writes: > > > On Monday 23 February 2009, Eric W. Biederman wrote: > >> "Rafael J. Wysocki" <rjw@...k.pl> writes: > >> > >> >> I don't know where in the state machine this is getting called but > >> >> I would suggest doing this before we shutdown cpus. > >> > > >> > This is the plan. In fact, I'm going to do this in the next patch after the > >> > $subject one has been tested and found acceptable. > >> > >> Good to hear. Then let's please get a version of the irq disable that calls > >> shutdown, so we can be certain we don't have hardware irqs in flight. > >> > >> For the drivers it should not matter for clean cpu shutdown it will. > > > > OK, I will. > > My apologies I was wrong. Calling shutdown is not safe. > > I just remembered that masking an ioapic from anywhere besides the > irq handler can lock the ioapic state machine, and lead to non-recoverable > interrupts. It is rare but I have seen it happen. I wanted to figure out > how to migrate interrupts outside of interrupt context and this was what > prevented me. A suspend/resume cycle might be enough of a reset to > get the ioapic out of that state but I don't know. > > The only safe way on x86 to shutdown a level triggered ioapic irq > outside of irq context is for the driver to program the hardware to > not generate an irq. Well, that changes things quite a bit, because it means we can't change the suspend-resume sequence in a way we thought we could without fixing all drivers first, but this is exactly what we'd like to avoid by changing the core. I think the most important source of level triggered interrupts are PCI devices, so perhaps we can make the PCI PM core use bit 10 of the PCI Device Control register to prevent devices from generating INTx after the drivers' suspend routines have been executed? > Therefore doing anything with the irqs at the point where we are > suspending them is a formality, and perhaps simply code that ensures > in-flight irqs don't make it past a certain point. > > I believe we just need to call disable() and print a big nasty warning > if any irq comes in after the suspend stage. At the moment we're safe, since PCI devices are put into low power states in the suspend stage. However, we'd like to make that happen in the "late suspend" stage to avoid a problem with a shared interrupt occuring after one of the devices using it has been suspended and its driver's irq handler can't cope with that. Thanks, Rafael -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists