Re: [RFC][PATCH] printk: do not flush printk_safe from irq_work

From: Sergey Senozhatsky
Date: Thu Feb 01 2018 - 20:07:44 EST

Next message: Corey Minyard: "Re: [PATCH arm/aspeed/ast2500 v4 1/2] ipmi: add a KCS IPMI BMC driver"
Previous message: syzbot: "possible deadlock in get_user_pages_unlocked"
In reply to: Steven Rostedt: "Re: [RFC][PATCH] printk: do not flush printk_safe from irq_work"
Next in thread: Petr Mladek: "Re: [RFC][PATCH] printk: do not flush printk_safe from irq_work"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On (02/01/18 13:00), Steven Rostedt wrote:
> On Mon, 29 Jan 2018 11:29:18 +0900
> Sergey Senozhatsky <sergey.senozhatsky.work@xxxxxxxxx> wrote:
[..]
> > If the system is in "big troubles" then what makes irq_work more
> > possible? Local IRQs can stay disabled, just like preemption. I
> > guess when the troubles are really big our strategy is the same
> > for both wq and irq_work solutions - we keep the printk_safe buffer
> > and wait for panic()->flush.
>
> Working on the RT kernel, I would tell you there's a huge difference
> getting an irq_work to trigger than to expect something to schedule.
>
> It takes much less to disable the systems scheduling than it does to
> disable interrupts. If interrupts are disabled, then so is scheduling.
> But if scheduling is disabled, interrupts may still trigger.

Sure, I understand those points and don't object any of those. Just
weighing the risks and benefits.

> But if printk_safe() is just for recursion protection, how important is
> it to get out?

Well, it depends. printk_safe can protect us against... what should I
call it... let's call it first order, or direct, printk recursion. The
one which involve locks internal to print. For instance,

vprintk_emit()
spin_lock_irqsave(&logbuf_lock)
spin_lock_debug(...)
spin_dump()
printk()
vprintk_emit()
spin_lock_irqsave(&logbuf_lock) << deadlock

printk_safe will save us by redirecting spin_dump()->printk().

printk_safe cannot protect us against second order, or indirect,
printk recursion. The one that involves locks which are external
to printk. In case of indirect recursion we can store lockdep report
in printk_safe, so we will not immediately recurse back to printk,
but in general it does not mean that we will be actually safe from
any deadlocks. For instance,

timekeeping
spin_lock_irqsave timer base
printk
call_console_drivers
foo_console_driver
mod_timer
spin_lock_irqsave timer base << deadlock

printk_safe will not save us here, and most likely irq_work will
not happen on this CPU, because we deadlock with IRQs disabled.

So printk_safe output is in general of some interest, but we don't
have guarantees that it will be printed: if it was the direct printk
recursion - then it's all good, if indirect - then it may not be good.

-ss

Next message: Corey Minyard: "Re: [PATCH arm/aspeed/ast2500 v4 1/2] ipmi: add a KCS IPMI BMC driver"
Previous message: syzbot: "possible deadlock in get_user_pages_unlocked"
In reply to: Steven Rostedt: "Re: [RFC][PATCH] printk: do not flush printk_safe from irq_work"
Next in thread: Petr Mladek: "Re: [RFC][PATCH] printk: do not flush printk_safe from irq_work"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]