| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 7 Mar 2008 07:51:13 +0000 From: Jarek Poplawski <jarkao2@...il.com> To: jamal <hadi@...erus.ca> Cc: Denys Fedoryshchenko <denys@...p.net.lb>, netdev@...r.kernel.org Subject: Re: circular locking, mirred, 2.6.24.2 On Thu, Mar 06, 2008 at 06:40:39PM -0500, jamal wrote: > Jarek, > > On Thu, 2008-06-03 at 22:40 +0100, Jarek Poplawski wrote: > > > But currently lockdep doesn't know dev->queue_lock could mean eth or lo. > > It sees one class of devices using one lock. > > yikes ;-> I missed the implication when you mentioned it first - thanks > for the enlightnment. IMO, it needs to be per netdevice not global; so i > contend this is the problem i.e those warnings are false. > > > We can let it know (e.g. > > dev->_xmit_lock is different according to dev->type), but it wasn't > > necessary. I hope it will suffice here if lockdep knows more about ifb, > > but similar problem could theoretically happen with other devs. > > I think the condition needs to be met for all netdevices, not just ifb. > Instead of annotating each netdevice type separately, could you not use > a different annotation in the generic netdev registration code of the > form dev_%s->ingress/queue_lock ? (where %s is dev->name) At first this lockdep method looks like wrong (too general). But it works. With every lock tracked separately there would be huge overhead (especially with some structures created in thousands of instances). And with this general approach we can see general problems: e.g. wrong locking order even reported on two different devices like here, and impossible in reality, can help to analyze if the same could happen in another, maybe even very hard to reproduce, variant, and to fix this before ever happened. So, current way is to start from very general tracking, and if it doesn't work (I mean false reports, not lockups), we make it more specific. With dev->_xmit_lock the type level seems to be enough for some time (so lockdep doesn't even know eth0 and eth1 created as ARPHRD_ETHER use 2 different _xmit_locks). Such specific information is usually necessary only with nesting. But here, with sch_ingress + act_mirred it's not about nesting: it's really about wrong order, which could be safe only because ifb doesn't currently work with a full egress + ingress functionality. Making this all more specific for lockdep won't help with real lockups then, but will make reports more exact and less reproducible. > > Sorry, should be: > > dev_eth0->queue_lock, and thread3 has dev_eth0->queue_lock and wants > > indeed - i understood when you said that; it doesnt invalidate what i > said. > > > > thread3 can not happen because we dont allow it (the other 2 are not > > > contentious). > > > > Could you explain why? > > Because we never redirect to ingress (it is in the todo as mentioned as > described at the top of the source file). You can redirect from ingress > or egress but only to egress (to sockets and ingress are going to happen > at some future point). > > > Yes, but it seems such redirection between two eths like above mentioned > > is legal? > > Indeed it is. I think it is clear to me now the issues seem to be the > namespace of what lockdep - it should be per-device and NOT global. > What do you think? I've to find first what really bothers lockdep here, and why this queue_lock vs. ingress_lock order isn't reported "by default". But if this really is like it looks now, then it seems before doing this ingress "future point" some change in locking could be necessary. (Maybe even sooner if lockdep finds something real after this current patch to ifb.) Cheers, Jarek P. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists