| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 7 Sep 2015 10:35:25 +0200 (CEST)
From: Thomas Gleixner <tglx@...utronix.de>
To: Ingo Molnar <mingo@...nel.org>
cc: Steven Rostedt <rostedt@...dmis.org>, linux-kernel@...r.kernel.org,
linux-rt-users <linux-rt-users@...r.kernel.org>,
Carsten Emde <C.Emde@...dl.org>,
Sebastian Andrzej Siewior <bigeasy@...utronix.de>,
John Kacur <jkacur@...hat.com>,
Paul Gortmaker <paul.gortmaker@...driver.com>,
Peter Zijlstra <peterz@...radead.org>,
Clark Williams <clark.williams@...il.com>,
Arnaldo Carvalho de Melo <acme@...hat.com>
Subject: Re: [RFC][PATCH RT 0/3] RT: Fix trylock deadlock without msleep()
hack
On Sat, 5 Sep 2015, Ingo Molnar wrote:
> * Thomas Gleixner <tglx@...utronix.de> wrote:
>
> > So the problem we need to solve is:
> >
> > retry:
> > lock(B);
> > if (!try_lock(A)) {
> > unlock(B);
> > cpu_relax();
> > goto retry;
> > }
> >
> > So instead of doing that proposed magic boost, we can do something
> > more straight forward:
> >
> > retry:
> > lock(B);
> > if (!try_lock(A)) {
> > lock_and_drop(A, B);
> > unlock(A);
> > goto retry;
> > }
> >
> > lock_and_drop() queues the task as a waiter on A, drops B and then
> > does the PI adjustment on A.
> >
> > Thoughts?
>
> So why not do:
>
> lock(B);
> if (!trylock(A)) {
> unlock(B);
> lock(A);
> lock(B);
> }
>
> ?
>
> Or, if this can be done, why didn't we do:
>
> lock(A);
> lock(B);
>
> to begin with?
>
> i.e. I'm not sure the problem is properly specified.
Right. I omitted some essential information.
lock(y->lock);
x = y->x;
if (!try_lock(x->lock))
....
Once we drop x->lock, y->x can change. That's why the retry is there.
Now on RT the trylock loop can obviously lead to a live lock if the
try locker preempted the holder of x->lock.
What Steve is trying to do is to boost the holder of x->lock (task A)
without actually queueing the task (task B) on the lock wait queue of
x->lock. To get out of the try-lock loop he calls sched_yield() from
task B.
While this works by some definition of works, I really do not like the
semantical obscurity of this approach.
1) The boosting is not related to anything.
If the priority of taskB changes then nothing changes the boosting
of taskA.
2) The boosting stops
3) sched_yield() makes me shudder
CPU0 CPU1
taskA
lock(x->lock)
preemption
taskC
taskB
lock(y->lock);
x = y->x;
if (!try_lock(x->lock)) {
unlock(y->lock);
boost(taskA);
sched_yield(); <- returns immediately
So, if taskC has higher priority than taskB and therefor than
taskA, taskB will do the lock/trylock/unlock/boost dance in
circles.
We can make that worse. If taskB's code looks like this:
lock(y->lock);
x = y->x;
if (!try_lock(x->lock)) {
unlock(y->lock);
boost(taskA);
sched_yield();
return -EAGAIN;
and at the callsite it decides to do something completely different
than retrying then taskA stays boosted.
So we have already two scenarios where this clearly violates the PI
rules and I really do not have any interest to debug leaked RT
priorites.
I agree with Steve, that the main case where we have this horrible
msleep() right now - dcache - is complex, but we rather sit down and
analyze it proper and come up with semantically well defined
solutions.
Thanks,
tglx
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists