| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 22 Jan 2011 10:43:17 +0100 (CET) From: Thomas Gleixner <tglx@...utronix.de> To: Vernon Mauery <vernux@...ibm.com> cc: linux-kernel@...r.kernel.org Subject: Re: [PATCH] Wait to remove active timer when rescheduling hrtimer On Fri, 21 Jan 2011, Vernon Mauery wrote: > > Hmm, why does it hang ? > > > After running the script, I run a netperf command similar to the one > that the script prints, that runs traffic over the interface that we > just set up QoS on. Within 10-15 seconds, the machine goes silent. > (this is on a 2.6.33.7-rt29 kernel) > > My guess would be that without this patch, it is possible to have a > timer currently in the tree, not delete it and then schedule it again. > Not on this machine or on this kernel, I saw a similar problem > (caused by the same thing: using sch_htb on -rt kernel), but instead > of a silent hang, it gave me an oops that looked like this: > > [<ffffffff81054dfc>] __remove_hrtimer+0x6e/0x7b > [<ffffffff81227401>] ? qdisc_watchdog+0x0/0x23 > [<ffffffff81055cbb>] run_hrtimer_softirq+0x7a/0x14e > [<ffffffff81043d26>] ksoftirqd+0x16a/0x26f > [<ffffffff81043bbc>] ? ksoftirqd+0x0/0x26f > [<ffffffff81043bbc>] ? ksoftirqd+0x0/0x26f > [<ffffffff8105261c>] kthread+0x49/0x79 > [<ffffffff8100d088>] child_rip+0xa/0x12 > [<ffffffff810525d3>] ? kthread+0x0/0x79 > [<ffffffff8100d07e>] ? child_rip+0x0/0x12 > Any ideas on this? The patch I sent fixes the problem. The idea came > from a proposed patch a long time ago that just added a hrtimer_cancel > call just before the hrtimer_start call in the sch_api.c watchdog > code. I figured if the explicit cancel before the start fixed the > problem, there was something that the cancel did that the start alone > didn't. What I found was that the cancel waits if the timer is > currently running, while start just brute-force cancels the timer. Hmm. That's weird. The remove in start() and in the softirq code is protected by the base lock. So whoever comes first, removes the timer. So if the timer call back runs then the remove in start() will be a noop. And if the timer is removed right before the softirq wants to run the callback then the softirq wont see it anymore. So I fear while your patch makes the hang/oops go away it is papering over the real bug. Can you try to reproduce with function tracing (add timer events as well) enabled ? If yes, set ftrace_dump_on_oops. So we should see the history which led to this problem. Thanks, tglx -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists