| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 3 Mar 2008 13:12:41 -0800 From: "Paul E. McKenney" <paulmck@...ux.vnet.ibm.com> To: "Rafael J. Wysocki" <rjw@...k.pl> Cc: Pavel Machek <pavel@....cz>, Alan Cox <alan@...rguk.ukuu.org.uk>, Alan Stern <stern@...land.harvard.edu>, Linus Torvalds <torvalds@...ux-foundation.org>, Andrew Morton <akpm@...l.org>, Zdenek Kabelac <zdenek.kabelac@...il.com>, davem@...emloft.net, Pierre Ossman <drzeus-mmc@...eus.cx>, Kernel development list <linux-kernel@...r.kernel.org>, pm list <linux-pm@...ts.linux-foundation.org> Subject: Re: [patch] Re: using long instead of atomic_t when only set/read is required On Mon, Mar 03, 2008 at 09:27:29PM +0100, Rafael J. Wysocki wrote: > On Monday, 3 of March 2008, Pavel Machek wrote: > > Hi! > > > > > > Ok, so linux actually atomicity of long? > > ^~-- assumes should be here. > > > > > No it doesn't. And even if it did you couldn't use long for this because > > > atomic_t also ensures the points operations complete are defined. You > > > might just about get away with volatile long * objects on x86 for simple > > > assignments but for anything else gcc can and will generate code to > > > update values whichever way it feels best - which includes turning > > > > > > long *x = a + b; > > > > > > into > > > > > > *x = a; > > > *x += b; > > > > Ok, I can understand the gcc side. But do we actually run on an > > architecture where > > > > long *x; > > > > *x = 0; > > > > racing with > > > > *x = 0x12345678; > > > > can produce > > > > *x == 0x12340000; > > > > or something like that? > > Well something like this could happen, in theory, on a "32-bit" architecture > with a 16-bit bus. In that case, one can imagine, the first word of the > first write may be sent through the bus immediately followed by the first > word of the second write, followed by the second word of the second > write and by the second word of the first write, in this order. > > > I'm told RCU relies on architectures not doing this, and I'd like to get this > > clarified. > > Yes, it would be good to know that for sure. Most rcu_assign_pointer() calls are protected by locks, but there might be a few that are not. However, the case that concerns me most would be the following: o Task 0 writes the lower 16 bits of the pointer. o Task 1 reads the lower 16 bits of the pointer. o Task 1 reads the upper 16 bits of the pointer. o Task 0 writes the upper 16 bits of the pointer. This would result in task 1 getting a mish-mash of the old and new versions of the pointer. Very bad!!! RCU heavily relies on the reader seeing either the initial value of the pointer or on the value written by some single write. But doesn't this require a -multi-CPU- system with a 16-bit data path from the ALU to the L0 cache? This seems a bit unlikely. Or am I being naive about embedded CPUs? On the other hand, if you have a 32-bit single-CPU system with a 16-bit path to memory, all we need is that interrupts be restricted to happening at instruction boundaries rather than in the middle of instructions. Thanx, Paul -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists