Re: [RFC][PATCH 0/3] TCP/IP Critical socket communication mechanism

From: Matt Mackall
Date: Thu Dec 15 2005 - 00:09:31 EST

Next message: Benjamin Herrenschmidt: "Re: [BUG] Xserver startup locks system... git bisect results"
Previous message: Nick Piggin: "Re: [PATCH 1/19] MUTEX: Introduce simple mutex implementation"
In reply to: David S. Miller: "Re: [RFC][PATCH 0/3] TCP/IP Critical socket communication mechanism"
Next in thread: David S. Miller: "Re: [RFC][PATCH 0/3] TCP/IP Critical socket communication mechanism"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Dec 14, 2005 at 08:30:23PM -0800, David S. Miller wrote:
> From: Matt Mackall <mpm@xxxxxxxxxxx>
> Date: Wed, 14 Dec 2005 19:39:37 -0800
>
> > I think we need a global receive pool and per-socket send pools.
>
> Mind telling everyone how you plan to make use of the global receive
> pool when the allocation happens in the device driver and we have no
> idea which socket the packet is destined for? What should be done for
> non-local packets being routed? The device drivers allocate packets
> for the entire system, long before we know who the eventually received
> packets are for. It is fully anonymous memory, and it's easy to
> design cases where the whole pool can be eaten up by non-local
> forwarded packets.

There needs to be two rules:

iff global memory critical flag is set
- allocate from the global critical receive pool on receive
- return packet to global pool if not destined for a socket with an
attached send mempool

I think this will provide the desired behavior, though only
probabilistically. That is, we can fill the global receive pool with
uninteresting packets such that we're forced to drop critical ACKs,
but the boring packets will eventually be discarded as we walk up the
stack and we'll eventually have room to receive retried ACKs.

> I truly dislike these patches being discussed because they are a
> complete hack, and admittedly don't even solve the problem fully. I
> don't have any concrete better ideas but that doesn't mean this stuff
> should go into the tree.

Agreed. I'm fairly convinced a full fix is doable, if you make a
couple assumptions (limited fragmentation), but will unavoidably be
less than pretty as it needs to cross some layers.

> I think GFP_ATOMIC memory pools are more powerful than they are given
> credit for. There is nothing preventing the implementation of dynamic
> GFP_ATOMIC watermarks, and having "critical" socket behavior "kick in"
> in response to hitting those water marks.

There are two problems with GFP_ATOMIC. The first is that its users
don't pre-state their worst-case usage, which means sizing the pool to
reliably avoid deadlocks is impossible. The second is that there
aren't any guarantees that GFP_ATOMIC allocations are actually
critical in the needed-to-make-forward-VM-progress sense or will be
returned to the pool in a timely fashion.

So I do think we need a distinct pool if we want to tackle this
problem. Though it's probably worth mentioning that Linus was rather
adamantly against even trying at KS.

--
Mathematics is the supreme nostalgia of our time.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Benjamin Herrenschmidt: "Re: [BUG] Xserver startup locks system... git bisect results"
Previous message: Nick Piggin: "Re: [PATCH 1/19] MUTEX: Introduce simple mutex implementation"
In reply to: David S. Miller: "Re: [RFC][PATCH 0/3] TCP/IP Critical socket communication mechanism"
Next in thread: David S. Miller: "Re: [RFC][PATCH 0/3] TCP/IP Critical socket communication mechanism"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]