[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Y+vplu7H8k4OjlL5@rowland.harvard.edu>
Date: Tue, 14 Feb 2023 15:05:42 -0500
From: Alan Stern <stern@...land.harvard.edu>
To: Peter Zijlstra <peterz@...radead.org>
Cc: Kent Overstreet <kent.overstreet@...ux.dev>,
Kent Overstreet <kent.overstreet@...il.com>,
Linus Torvalds <torvalds@...ux-foundation.org>,
Coly Li <colyli@...e.de>,
Tetsuo Handa <penguin-kernel@...ove.sakura.ne.jp>,
syzkaller <syzkaller@...glegroups.com>,
Dmitry Vyukov <dvyukov@...gle.com>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
"Rafael J. Wysocki" <rafael@...nel.org>,
Ingo Molnar <mingo@...hat.com>,
Boqun Feng <boqun.feng@...il.com>,
LKML <linux-kernel@...r.kernel.org>,
USB list <linux-usb@...r.kernel.org>,
Hillf Danton <hdanton@...a.com>
Subject: Re: [PATCH RFC] drivers/core: Replace lockdep_set_novalidate_class()
with unique class keys
On Tue, Feb 14, 2023 at 12:05:27PM +0100, Peter Zijlstra wrote:
> Every class gets a fixed 8 subclasses (0-7) given by the unique byte
> addresses inside the actual key object.
>
> Subclasses will let you create nesting order of the same class that are
> acceptable. Typically lock/1 nests inside lock/0, but that's not
> hard-coded, simply convention.
Can you explain in more detail how this works in the lockdep checking
algorithm? (For simplicity, let's leave out issues of interrupt status
and other environmental things.)
I've been assuming that lockdep builds up a set of links between the
classes -- namely, a link is created from A to B whenever a thread holds
a lock of class A while acquiring a lock of class B. The checking part
would then amount to just making sure that these links don't form any
cycles.
So then how do subclasses fit into the picture? Is it just that now the
links are between subclasses rather than classes, so it's not
automatically wrong to hold a lock while acquiring another lock of the
same class as long as the two acquisitions are in different subclasses?
But you can still provoke a violation if there's a cycle among the
subclasses?
> Then there's that nesting lock, that requires two classes and at least 3
> locks to make sense:
>
> P, C1, C2
>
> Where we posit that any multi-lock of Cn is fully serialized by P
Assuming the speculations above are correct, how does the algorithm take
lockdep nesting into account? Does it simply avoid creating a link from
subclass C to itself if both C1 and C2 were acquired while holding a
lock of the parent subclass and both acquisitions were annotated with
mutex_lock_next_lock()? Or is there more to it than that? (And should
I have written class rather than subclass?)
And Kent, how does your proposed lockdep_set_no_check_recursion() work?
Does it just prevent lockdep from creating a link between any two
subclasses of the specified class? Does it do anything more?
Alan
Powered by blists - more mailing lists