| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 21 Aug 2008 23:37:38 +1000 From: Nick Piggin <nickpiggin@...oo.com.au> To: jmerkey@...fmountaingroup.com Cc: "Stefan Richter" <stefanr@...6.in-berlin.de>, paulmck@...ux.vnet.ibm.com, "Peter Zijlstra" <peterz@...radead.org>, linux-kernel@...r.kernel.org, "Linus Torvalds" <torvalds@...ux-foundation.org>, "David Howells" <dhowells@...hat.com> Subject: Re: [ANNOUNCE] mdb: Merkey's Linux Kernel Debugger 2.6.27-rc4 released On Thursday 21 August 2008 22:26, jmerkey@...fmountaingroup.com wrote: > I used the smp_wmb() functions. I noted a couple of things. a) some of > these macros just emit __asm__ __volatile__ into the code so why not just > say "volatile" to begin with It is not the same as volatile type. What it does is tell the compiler to clobber all registers or temporaries. This something pretty well defined and hard to get wrong compared to volatile type. > b) smp_wmb() in some cases worked and in > other cases jut optimized away the global reference. Linux barriers aren't going to force a load to be emitted, if it can be optimized away. If it optimized away a store, then I'd like to see a test case. > c) I can go back and > break the code again by inserting them and building broken assembler d) I > ave been doing hardware and software design since the early 1980;s, I > invented SMP affinity scheduling, and yes, I understand barriers and this > concept of instruction score-boarding and optimization very well -- its > not an excuse for a busted C compiler. The point is not whether it is possible to work with volatile types, but that we tend not to use them in Linux to deal with concurrency. Also, barriers seem to work fine for everybody else, so I think it is likely you either aren't using them correctly, or have other bugs in the code. > It did not break all the places in the code, but broke enough for SMP to > lock up and fail, It turned global variables into local variables. If > you want me to reproduce this I can but it will have to wait til this > evening > because I have some product releases to get out the door at Omega 8 today. > > It's simple to reproduce. Take away the volatile declaration for the > rlock_t structure in mdb-ia32.c (rlock_t debug_lock) in all code > references and watch the thing lock up in SMP with multiple processors in > the debugger each stuck with their own local copy of debug_lock. You should disable preempt before getting the processor id. Can't see any other possible bugs, but you should be able to see from the disassembly pretty easily. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists