Re: [PATCH] kmemleak: Fix scheduling-while-atomic bug

From: Ingo Molnar
Date: Wed Jul 01 2009 - 07:04:59 EST

Next message: Ingo Molnar: "Re: [PATCH][RFC] Adding information of counts processes acquiredhow many spinlocks to schedstat"
Previous message: Herbert Xu: "Re: [PATCH] net: fix race in the receive/select"
In reply to: Catalin Marinas: "Re: [PATCH] kmemleak: Fix scheduling-while-atomic bug"
Next in thread: Catalin Marinas: "Exiting with locks still held (was Re: [PATCH] kmemleak: Fixscheduling-while-atomic bug)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Catalin Marinas <catalin.marinas@xxxxxxx> wrote:

> On Wed, 2009-07-01 at 11:30 +0200, Ingo Molnar wrote:
> > * Catalin Marinas <catalin.marinas@xxxxxxx> wrote:
> >
> > > > The minimal fix below removes scan_yield() and adds a
> > > > cond_resched() to the outmost (safe) place of the scanning
> > > > thread. This solves the regression.
> > >
> > > With CONFIG_PREEMPT disabled it won't reschedule during the bss
> > > scanning but I don't see this as a real issue (task stacks
> > > scanning probably takes longer anyway).
> >
> > Yeah. I suspect one more cond_resched() could be added - i just
> > didnt see an obvious place for it, given that scan_block() is being
> > called with asymetric held-locks contexts.
>
> Yes, scan_block shouldn't call cond_resched(). The code is cleaner if
> functions don't have too many side-effects. I can see about 1 sec of bss
> scanning on an ARM board but with processor at < 500MHz and slow memory
> system. On a standard x86 systems BSS scanning may not be noticeable
> (and I think PREEMPT enabling is quite common these days).
>
> Since we are at locking, I just noticed this on my x86 laptop when
> running cat /sys/kernel/debug/kmemleak (I haven't got it on an ARM
> board):
>
> ================================================
> [ BUG: lock held when returning to user space! ]
> ------------------------------------------------
> cat/3687 is leaving the kernel with locks still held!
> 1 lock held by cat/3687:
> #0: (scan_mutex){+.+.+.}, at: [<c01e0c5c>] kmemleak_open+0x3c/0x70
>
> kmemleak_open() acquires scan_mutex and unconditionally releases
> it in kmemleak_release(). The mutex seems to be released as a
> subsequent acquiring works fine.
>
> Is this caused just because cat may have exited without closing
> the file descriptor (which should be done automatically anyway)?

This lockdep warning has a 0% false positives track record so far:
all previous cases it triggered showed some real (and fatal) bug in
the underlying code.

The above one probably means scan_mutex is leaked out of a /proc
syscall - that would be a bug in kmemleak.

Ingo
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ingo Molnar: "Re: [PATCH][RFC] Adding information of counts processes acquiredhow many spinlocks to schedstat"
Previous message: Herbert Xu: "Re: [PATCH] net: fix race in the receive/select"
In reply to: Catalin Marinas: "Re: [PATCH] kmemleak: Fix scheduling-while-atomic bug"
Next in thread: Catalin Marinas: "Exiting with locks still held (was Re: [PATCH] kmemleak: Fixscheduling-while-atomic bug)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]