| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 29 May 2021 09:44:57 +0800
From: Yunsheng Lin <linyunsheng@...wei.com>
To: Jakub Kicinski <kuba@...nel.org>
CC: <davem@...emloft.net>, <olteanv@...il.com>, <ast@...nel.org>,
<daniel@...earbox.net>, <andriin@...com>, <edumazet@...gle.com>,
<weiwan@...gle.com>, <cong.wang@...edance.com>,
<ap420073@...il.com>, <netdev@...r.kernel.org>,
<linux-kernel@...r.kernel.org>, <linuxarm@...neuler.org>,
<mkl@...gutronix.de>, <linux-can@...r.kernel.org>,
<jhs@...atatu.com>, <xiyou.wangcong@...il.com>, <jiri@...nulli.us>,
<andrii@...nel.org>, <kafai@...com>, <songliubraving@...com>,
<yhs@...com>, <john.fastabend@...il.com>, <kpsingh@...nel.org>,
<bpf@...r.kernel.org>, <jonas.bonn@...rounds.com>,
<pabeni@...hat.com>, <mzhivich@...mai.com>, <johunt@...mai.com>,
<albcamus@...il.com>, <kehuan.feng@...il.com>,
<a.fatoum@...gutronix.de>, <atenart@...nel.org>,
<alexander.duyck@...il.com>, <hdanton@...a.com>, <jgross@...e.com>,
<JKosina@...e.com>, <mkubecek@...e.cz>, <bjorn@...nel.org>,
<alobakin@...me>
Subject: Re: [PATCH net-next 2/3] net: sched: implement TCQ_F_CAN_BYPASS for
lockless qdisc
On 2021/5/29 9:00, Jakub Kicinski wrote:
> On Fri, 28 May 2021 10:49:56 +0800 Yunsheng Lin wrote:
>> Currently pfifo_fast has both TCQ_F_CAN_BYPASS and TCQ_F_NOLOCK
>> flag set, but queue discipline by-pass does not work for lockless
>> qdisc because skb is always enqueued to qdisc even when the qdisc
>> is empty, see __dev_xmit_skb().
>>
>> This patch calls sch_direct_xmit() to transmit the skb directly
>> to the driver for empty lockless qdisc, which aviod enqueuing
>> and dequeuing operation.
>>
>> As qdisc->empty is not reliable to indicate a empty qdisc because
>> there is a time window between enqueuing and setting qdisc->empty.
>> So we use the MISSED state added in commit a90c57f2cedd ("net:
>> sched: fix packet stuck problem for lockless qdisc"), which
>> indicate there is lock contention, suggesting that it is better
>> not to do the qdisc bypass in order to avoid packet out of order
>> problem.
>>
>> In order to make MISSED state reliable to indicate a empty qdisc,
>> we need to ensure that testing and clearing of MISSED state is
>> within the protection of qdisc->seqlock, only setting MISSED state
>> can be done without the protection of qdisc->seqlock. A MISSED
>> state testing is added without the protection of qdisc->seqlock to
>> aviod doing unnecessary spin_trylock() for contention case.
>>
>> There are below cases that need special handling:
>> 1. When MISSED state is cleared before another round of dequeuing
>> in pfifo_fast_dequeue(), and __qdisc_run() might not be able to
>> dequeue all skb in one round and call __netif_schedule(), which
>> might result in a non-empty qdisc without MISSED set. In order
>> to avoid this, the MISSED state is set for lockless qdisc and
>> __netif_schedule() will be called at the end of qdisc_run_end.
>>
>> 2. The MISSED state also need to be set for lockless qdisc instead
>> of calling __netif_schedule() directly when requeuing a skb for
>> a similar reason.
>>
>> 3. For netdev queue stopped case, the MISSED case need clearing
>> while the netdev queue is stopped, otherwise there may be
>> unnecessary __netif_schedule() calling. So a new DRAINING state
>> is added to indicate this case, which also indicate a non-empty
>> qdisc.
>>
>> 4. As there is already netif_xmit_frozen_or_stopped() checking in
>> dequeue_skb() and sch_direct_xmit(), which are both within the
>> protection of qdisc->seqlock, but the same checking in
>> __dev_xmit_skb() is without the protection, which might cause
>> empty indication of a lockless qdisc to be not reliable. So
>> remove the checking in __dev_xmit_skb(), and the checking in
>> the protection of qdisc->seqlock seems enough to avoid the cpu
>> consumption problem for netdev queue stopped case.
>>
>> Signed-off-by: Yunsheng Lin <linyunsheng@...wei.com>
>
>> diff --git a/include/net/sch_generic.h b/include/net/sch_generic.h
>> index 3ed6bcc..177f240 100644
>> --- a/include/net/sch_generic.h
>> +++ b/include/net/sch_generic.h
>> @@ -37,8 +37,15 @@ enum qdisc_state_t {
>> __QDISC_STATE_SCHED,
>> __QDISC_STATE_DEACTIVATED,
>> __QDISC_STATE_MISSED,
>> + __QDISC_STATE_DRAINING,
>> };
>>
>> +#define QDISC_STATE_MISSED BIT(__QDISC_STATE_MISSED)
>> +#define QDISC_STATE_DRAINING BIT(__QDISC_STATE_DRAINING)
>> +
>> +#define QDISC_STATE_NON_EMPTY (QDISC_STATE_MISSED | \
>> + QDISC_STATE_DRAINING)
>> +
>> struct qdisc_size_table {
>> struct rcu_head rcu;
>> struct list_head list;
>> @@ -145,6 +152,11 @@ static inline bool qdisc_is_running(struct Qdisc *qdisc)
>> return (raw_read_seqcount(&qdisc->running) & 1) ? true : false;
>> }
>>
>> +static inline bool nolock_qdisc_is_empty(const struct Qdisc *qdisc)
>> +{
>> + return !(READ_ONCE(qdisc->state) & QDISC_STATE_NON_EMPTY);
>> +}
>> +
>> static inline bool qdisc_is_percpu_stats(const struct Qdisc *q)
>> {
>> return q->flags & TCQ_F_CPUSTATS;
>> @@ -206,10 +218,8 @@ static inline void qdisc_run_end(struct Qdisc *qdisc)
>> spin_unlock(&qdisc->seqlock);
>>
>> if (unlikely(test_bit(__QDISC_STATE_MISSED,
>> - &qdisc->state))) {
>> - clear_bit(__QDISC_STATE_MISSED, &qdisc->state);
>> + &qdisc->state)))
>
> Why remove the clear_bit()? Wasn't that added to avoid infinite
> re-schedules?
As we has also clear the MISSED for stopped and deactived case, so
the above clear_bit() is necessarily needed, it was added because
of the 0.02Mpps improvement for the 16 thread pktgen test case.
As we need to ensure clearing is within the protection of q->seqlock,
and above clear_bit is not within the protection, so remove the
clear_bit() above.
>
>> __netif_schedule(qdisc);
>> - }
>> } else {
>> write_seqcount_end(&qdisc->running);
>> }
>> diff --git a/net/core/dev.c b/net/core/dev.c
>> index 50531a2..e4cc926 100644
>> --- a/net/core/dev.c
>> +++ b/net/core/dev.c
>> @@ -3852,10 +3852,32 @@ static inline int __dev_xmit_skb(struct sk_buff *skb, struct Qdisc *q,
>> qdisc_calculate_pkt_len(skb, q);
>>
>> if (q->flags & TCQ_F_NOLOCK) {
>> + if (q->flags & TCQ_F_CAN_BYPASS && nolock_qdisc_is_empty(q) &&
>> + qdisc_run_begin(q)) {
>> + /* Retest nolock_qdisc_is_empty() within the protection
>> + * of q->seqlock to ensure qdisc is indeed empty.
>> + */
>> + if (unlikely(!nolock_qdisc_is_empty(q))) {
>
> This is just for the DRAINING case right?
>
> MISSED can be set at any moment, testing MISSED seems confusing.
MISSED is only set when there is lock contention, which means it
is better not to do the qdisc bypass to avoid out of order packet
problem, another good thing is that we could also do the batch
dequeuing and transmiting of packets when there is lock contention.
>
> Is it really worth the extra code?
Currently DRAINING is only set for the netdev queue stopped.
We could only use DRAINING to indicate the non-empty of a qdisc,
then we need to set the DRAINING evrywhere MISSED is set, that is
why I use both DRAINING and MISSED to indicate a non-empty qdisc.
>
>> + rc = q->enqueue(skb, q, &to_free) & NET_XMIT_MASK;
>> + __qdisc_run(q);
>> + qdisc_run_end(q);
>> +
>> + goto no_lock_out;
>> + }
>> +
>> + qdisc_bstats_cpu_update(q, skb);
>> + if (sch_direct_xmit(skb, q, dev, txq, NULL, true) &&
>> + !nolock_qdisc_is_empty(q))
>> + __qdisc_run(q);
>> +
>> + qdisc_run_end(q);
>> + return NET_XMIT_SUCCESS;
>> + }
>> +
>> rc = q->enqueue(skb, q, &to_free) & NET_XMIT_MASK;
>> - if (likely(!netif_xmit_frozen_or_stopped(txq)))
>> - qdisc_run(q);
>> + qdisc_run(q);
>>
>> +no_lock_out:
>> if (unlikely(to_free))
>> kfree_skb_list(to_free);
>> return rc;
>> diff --git a/net/sched/sch_generic.c b/net/sched/sch_generic.c
>> index fc8b56b..83d7f5f 100644
>> --- a/net/sched/sch_generic.c
>> +++ b/net/sched/sch_generic.c
>> @@ -52,6 +52,8 @@ static void qdisc_maybe_clear_missed(struct Qdisc *q,
>> */
>> if (!netif_xmit_frozen_or_stopped(txq))
>> set_bit(__QDISC_STATE_MISSED, &q->state);
>> + else
>> + set_bit(__QDISC_STATE_DRAINING, &q->state);
>> }
>>
>> /* Main transmission queue. */
>> @@ -164,9 +166,13 @@ static inline void dev_requeue_skb(struct sk_buff *skb, struct Qdisc *q)
>>
>> skb = next;
>> }
>> - if (lock)
>> +
>> + if (lock) {
>> spin_unlock(lock);
>> - __netif_schedule(q);
>> + set_bit(__QDISC_STATE_MISSED, &q->state);
>> + } else {
>> + __netif_schedule(q);
>
> Could we reorder qdisc_run_begin() with clear_bit(SCHED)
> in net_tx_action() and add SCHED to the NON_EMPTY mask?
Did you mean clearing the SCHED after the q->seqlock is
taken?
The problem is that the SCHED is also used to indicate
a qdisc is in sd->output_queue or not, and the
qdisc_run_begin() called by net_tx_action() can not
guarantee it will take the q->seqlock(we are using trylock
for lockless qdisc)
>
>> + }
>> }
>>
>> static void try_bulk_dequeue_skb(struct Qdisc *q,
>> @@ -409,7 +415,11 @@ void __qdisc_run(struct Qdisc *q)
>> while (qdisc_restart(q, &packets)) {
>> quota -= packets;
>> if (quota <= 0) {
>> - __netif_schedule(q);
>> + if (q->flags & TCQ_F_NOLOCK)
>> + set_bit(__QDISC_STATE_MISSED, &q->state);
>> + else
>> + __netif_schedule(q);
>> +
>> break;
>> }
>> }
>> @@ -680,13 +690,14 @@ static struct sk_buff *pfifo_fast_dequeue(struct Qdisc *qdisc)
>> if (likely(skb)) {
>> qdisc_update_stats_at_dequeue(qdisc, skb);
>> } else if (need_retry &&
>> - test_bit(__QDISC_STATE_MISSED, &qdisc->state)) {
>> + READ_ONCE(qdisc->state) & QDISC_STATE_NON_EMPTY) {
>
> Do we really need to retry based on DRAINING being set?
> Or is it just a convenient way of coding things up?
Yes, it is just a convenient way of coding things up.
Only MISSED need retrying.
>
>> /* Delay clearing the STATE_MISSED here to reduce
>> * the overhead of the second spin_trylock() in
>> * qdisc_run_begin() and __netif_schedule() calling
>> * in qdisc_run_end().
>> */
>> clear_bit(__QDISC_STATE_MISSED, &qdisc->state);
>> + clear_bit(__QDISC_STATE_DRAINING, &qdisc->state);
>
>
>
> .
>
Powered by blists - more mailing lists