Re: [lkcd-devel] Re: What's left over.

• Next message: David S. Miller: "Re: Silly advise in bridge Configure help"
• Previous message: Irfan Hamid: "PCI card char driver"
• In reply to: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Next in thread: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Andy Pfiffer: "Re: kexec (was: [lkcd-devel] Re: What's left over.)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I am now officially grumpy. From a code perspective splitting kexec
into two phases load, and execute is a simple change to make. From a
semantics standpoint things get ugly, and messy. And that means I
can't just dash off another patch.

There are currently 2 cases that it would be nice to have work.
1) Load a new kernel and immediately execute it.
2) Load a new kernel and execute it on panic.

At first glance splitting the code into a load and execute phases allows
us to use one mechanism to accomplish both goals. In practice
that does not work. There are 2 problems.

panic does not call sys_reboot it rolls that functionality by hand.
And to a certain extent it makes sense for panic to take a different
path because we know something is badly wrong so we need to be extra
careful.

In staging the image we allocate a whole pile of pages, and keep them
locked in place. Waiting for years potentially until the machine
reboots or panics. This memory is not accounted for anywhere so no
one can see that we have it allocated, which makes debugging hard.
Additionally in locking up megabytes for a long period of time we
create unsolvable fragmentation issues for the mm layer to deal with.

In a unified design I can buffer the image in the anonymous pages of a
user space process just as well as I can in locked down kernel memory.
So factoring sys_kexec in to load and execute pieces only helps for
executing the new image on a kernel panic, and that case does not
actually work.

So currently factoring kexec looks like a pointless exercise, that
will just lead to more pain.

I am left with the following questions.
- How should the pages allocated to an early loaded image be accounted
  for?
- How do we avoid making life hard for the mm system with an early
  loaded image?
- Is it safe to call sys_reboot from panic?
- Can we simply factor out the sequence:
                notifier_call_chain(&reboot_notifier_list, SYS_RESTART, NULL);
                system_running = 0;
                device_shutdown();
  And place it into it's own subroutine?
- What does the current mcore implementation do? And is that a good
  model to follow to resolve some of these issues?

Eric

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Next message: David S. Miller: "Re: Silly advise in bridge Configure help"
• Previous message: Irfan Hamid: "PCI card char driver"
• In reply to: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Next in thread: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Linus Torvalds: "Re: [lkcd-devel] Re: What's left over."
• Reply: Andy Pfiffer: "Re: kexec (was: [lkcd-devel] Re: What's left over.)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 07 2002 - 22:00:47 EST