| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <499E6A71.8060609@shipmail.org> Date: Fri, 20 Feb 2009 09:31:45 +0100 From: Thomas Hellstrom <thomas@...pmail.org> To: Peter Zijlstra <peterz@...radead.org> CC: Eric Anholt <eric@...olt.net>, Wang Chen <wangchen@...fujitsu.com>, Nick Piggin <nickpiggin@...oo.com.au>, Ingo Molnar <mingo@...e.hu>, dri-devel@...ts.sourceforge.net, linux-kernel@...r.kernel.org Subject: Re: [PATCH] drm: Fix lock order reversal between mmap_sem and struct_mutex. Peter Zijlstra wrote: > On Thu, 2009-02-19 at 22:02 +0100, Thomas Hellstrom wrote: > >> >> It looks to me like the driver preferred locking order is >> >> object_mutex (which happens to be the device global struct_mutex) >> mmap_sem >> offset_mutex. >> >> So if one could avoid using the struct_mutex for object bookkeeping (A >> separate lock) then >> vm_open() and vm_close() would adhere to that locking order as well, >> simply by not taking the struct_mutex at all. >> >> So only fault() remains, in which that locking order is reversed. >> Personally I think the trylock ->reschedule->retry method with proper >> commenting is a good solution. It will be the _only_ place where locking >> order is reversed and it is done in a deadlock-safe manner. Note that >> fault() doesn't really fail, but requests a retry from user-space with >> rescheduling to give the process holding the struct_mutex time to >> release it. >> > > It doesn't do the reschedule -- need_resched() will check if the current > task was marked to be scheduled away, Yes. my mistake. set_tsk_need_resched() would be the proper call. If I'm correctly informed, that would kick in the scheduler _after_ the mmap_sem() is released, just before returning to user-space. > furthermore yield based locking > sucks chunks. > Yes, but AFAICT in this situation it is the only way to reverse locking order in a deadlock safe manner. If there is a lot of contention it will eat cpu. Unfortunately since the struct_mutex is such a wide lock there will probably be contention in some situations. BTW isn't this quite common in distributed resource management, when you can't ensure that all requestors will request resources in the same order? Try to grab all resources you need for an operation. If you fail to get one, release the resources you already have, sleep waiting for the failing one to be available and then retry. In this case we fail be cause we _may_ have a deadlock. Since we cannot release the mmap_sem and wait, we do the second best thing and tell the kernel to reschedule when the mmap_sem is released. > What's so very difficult about pulling the copy_*_user() out from under > the locks? > > Given Eric's comment this is a GEM performance-critical path, so even from a CPU-usage perspecive, the trylock solution may be preferred. From a make-the-code-easy-to-understand perspective, I agree pulling out copy_*_user() is a better solution. It might even be that the trylock solution doesn't kill the warnings from the lock dependency tracker. /Thomas -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists