| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 26 Aug 2018 17:02:44 -0400
From: Waiman Long <longman@...hat.com>
To: Dave Chinner <david@...morbit.com>
Cc: "Darrick J. Wong" <darrick.wong@...cle.com>,
Ingo Molnar <mingo@...hat.com>,
Peter Zijlstra <peterz@...radead.org>,
linux-xfs@...r.kernel.org, linux-kernel@...r.kernel.org,
Dave Chinner <dchinner@...hat.com>
Subject: Re: [PATCH 2/2] xfs: Use wake_q for waking up log space waiters
On 08/24/2018 05:54 PM, Waiman Long wrote:
> On 08/23/2018 08:30 PM, Dave Chinner wrote:
>>
>> That's racy. You can't drop the spin lock between
>> xlog_grant_head_wake() and xlog_grant_head_wait(), because
>> free_bytes is only valid while while the spinlock is held. Same for
>> the "wake_all" variable you added. i..e. while waking up the
>> waiters, we could have run out of space again and had more tasks
>> queued, or had the AIL tail move and now have space available.
>> Either way, we can do the wrong thing because we dropped the lock
>> and free_bytes and wake_all are now stale and potentially incorrect.
>>
>>> @@ -1068,6 +1088,7 @@
>>> {
>>> struct xlog *log = mp->m_log;
>>> int free_bytes;
>>> + DEFINE_WAKE_Q(wakeq);
>>>
>>> if (XLOG_FORCED_SHUTDOWN(log))
>>> return;
>>> @@ -1077,8 +1098,11 @@
>>>
>>> spin_lock(&log->l_write_head.lock);
>>> free_bytes = xlog_space_left(log, &log->l_write_head.grant);
>>> - xlog_grant_head_wake(log, &log->l_write_head, &free_bytes);
>>> + xlog_grant_head_wake(log, &log->l_write_head, &free_bytes,
>>> + &wakeq);
>>> spin_unlock(&log->l_write_head.lock);
>>> + wake_up_q(&wakeq);
>>> + wake_q_init(&wakeq);
>> That's another landmine. Just define the wakeq in the context where
>> it is used rather than use a function wide variable that requires
>> reinitialisation.
>>
>>> }
>>>
>>> if (!list_empty_careful(&log->l_reserve_head.waiters)) {
>>> @@ -1086,8 +1110,10 @@
>>>
>>> spin_lock(&log->l_reserve_head.lock);
>>> free_bytes = xlog_space_left(log, &log->l_reserve_head.grant);
>>> - xlog_grant_head_wake(log, &log->l_reserve_head, &free_bytes);
>>> + xlog_grant_head_wake(log, &log->l_reserve_head, &free_bytes,
>>> + &wakeq);
>>> spin_unlock(&log->l_reserve_head.lock);
>>> + wake_up_q(&wakeq);
>>> }
>>> }
>> Ok, what about xlog_grant_head_wake_all()? You didn't convert that
>> to use wake queues, and so that won't remove tickets for the grant
>> head waiter list, and so those tasks will never get out of the new
>> inner loop you added to xlog_grant_head_wait(). That means
>> filesystem shutdowns will just hang the filesystem and leave it
>> unmountable. Did you run this through fstests?
>>
>> Cheers,
>>
>> Dave
> OK, I need more time to think about some of the questions that you
> raise. Thanks for reviewing the patch.
>
> Cheers,
> Longman
Thanks for your detailed review of the patch. I now have a better
understanding of what should and shouldn't be done. I have sent out a
more conservative v2 patchset which, hopefully, can address the concerns
that you raised.
Cheers,
Longman
Powered by blists - more mailing lists