From: Markus Armbruster <armbru@redhat.com>
To: Peter Xu <peterx@redhat.com>
Cc: Peter Maydell <peter.maydell@linaro.org>,
QEMU Developers <qemu-devel@nongnu.org>,
"Dr. David Alan Gilbert" <dgilbert@redhat.com>
Subject: Re: [Qemu-devel] [PULL 0/8] Monitor patches for 2018-10-30
Date: Mon, 19 Nov 2018 19:08:13 +0100 [thread overview]
Message-ID: <87ftvxlz3m.fsf@dusky.pond.sub.org> (raw)
In-Reply-To: <20181119070558.GB1901@xz-x1> (Peter Xu's message of "Mon, 19 Nov 2018 15:05:58 +0800")
Peter Xu <peterx@redhat.com> writes:
> On Mon, Nov 19, 2018 at 02:17:27PM +0800, Peter Xu wrote:
>> I reproduced the error with a FreeBSD guest and this change (which
>> possibly can be squashed into "tests: qmp-test: add queue full test")
>> worked for me:
>>
>> diff --git a/tests/qmp-test.c b/tests/qmp-test.c
>> index 6989acbca4..83f353db4f 100644
>> --- a/tests/qmp-test.c
>> +++ b/tests/qmp-test.c
>> @@ -281,8 +281,15 @@ static void test_qmp_oob(void)
>> * will only be able to be handled after the queue is shrinked, so
>> * it'll be processed only after one existing in-band command
>> * finishes.
>> + *
>> + * NOTE: we need to feed the queue with one extra request to make
>> + * sure it'll be stuck since when we have sent the Nth request
>> + * it's possible that we have already popped and processing the
>> + * 1st request so the Nth request (which could potentially be the
>> + * [N-1]th element on the queue) might not trigger the
>> + * monitor-full condition deterministically.
>> */
>> - for (i = 1; i <= QMP_REQ_QUEUE_LEN_MAX; i++) {
>> + for (i = 1; i <= QMP_REQ_QUEUE_LEN_MAX + 1; i++) {
>> id = g_strdup_printf("queue-blocks-%d", i);
>> send_cmd_that_blocks(qts, id);
>> g_free(id);
>> @@ -291,7 +298,7 @@ static void test_qmp_oob(void)
>> unblock_blocked_cmd();
>> recv_cmd_id(qts, "queue-blocks-1");
>> recv_cmd_id(qts, "oob-1");
>> - for (i = 2; i <= QMP_REQ_QUEUE_LEN_MAX; i++) {
>> + for (i = 2; i <= QMP_REQ_QUEUE_LEN_MAX + 1; i++) {
>> unblock_blocked_cmd();
>> id = g_strdup_printf("queue-blocks-%d", i);
>> recv_cmd_id(qts, id);
>>
>> So the problem here is that the queue-block-N command might not really
>> suspend the monitor everytime if we already popped the 1st request,
>> which will let the N-th request to be (N-1)th, then the parser will
>> continue to eat the oob command and it could "preempt" the previous
>> commands.
>>
>> Maybe FreeBSD is scheduling the threads in some pattern so it happens
>> only on FreeBSD and very constantly, but anyway it should be a general
>> fix to the test program.
I feel particularly dense right now, and need a more detailed analysis
to understand. Let me try.
Here's what the test does before your fix
Send QMP_REQ_QUEUE_LEN_MAX "blocking" in-band commands
queue-blocks-1, queue-blocks-2, ... "Blocking" means the command
blocks until we explicitly unblock it.
Send an out-of-band command oob-1.
Unblock queue-blocks-1.
Receive response to queue-blocks-1.
Receive response to oob-1.
Unblock queue-blocks-2, receive response
...
Here's what test test expects QEMU to do:
In I/O thread:
Receive and queue queue-blocks-1, ...
Queue is full, stop receiving commands.
In main thread:
Dequeue queue-blocks-1.
Execute queue-blocks-1, block for a while, finish and send
response.
In I/O thread:
Queue is no longer full, resume receiving commands.
Receive and execute oob-1, send response
In main thread:
Dequeue queue-blocks-2, execute, block for a while, finish and
send response.
...
No good because the two threads race. On my Linux box the test passes.
Let's have a closer look how it does that. The appended patch that adds
another tracepoint. With tracepoints monitor_* and handle_qmp_command
enabled, I get:
19271@1542641581.372890:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-1", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
I/O thread receives and queues queue-blocks-1.
19271@1542641581.372954:monitor_qmp_cmd_in_band queue-blocks-1
Main thread dequeues qemu-blocks-1 and starts executing it.
We already lost: the queue won't actually fill up. The test passes
anyway, but it doesn't actually test "queue full". But why does it
pass? Let's see.
19271@1542641581.373211:monitor_qmp_respond queue-blocks-1
Main thread sends response to queue-blocks-1. This means queue-blocks-1
has been unblocked already. This is possible, because qmp-test sends
all the commands and then immediately unblocks queue-blocks-1, and the
main thread can win the race with the I/O thread.
19271@1542641581.373826:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-2", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.373864:monitor_qmp_cmd_in_band queue-blocks-2
19271@1542641581.374575:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-3", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.375344:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-4", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.376162:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-5", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.376996:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-6", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.377790:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-7", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
19271@1542641581.378562:handle_qmp_command mon 0x563e19be4e80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-8", "driver": "blkdebug", "config": "/tmp/qmp-test-EZroW3/fifo"}}
I/O thread receives and queues queue-blocks-2, ... queue-blocks-8.
19271@1542641581.378796:handle_qmp_command mon 0x563e19be4e80 req: {"exec-oob": "migrate-pause"}
19271@1542641581.378800:monitor_qmp_cmd_out_of_band oob-1
19271@1542641581.378823:monitor_qmp_respond oob-1
I/O thread receives, executes and responds to oob-1.
19271@1542641581.379197:monitor_qmp_respond queue-blocks-2
19271@1542641581.379228:monitor_qmp_cmd_in_band queue-blocks-3
19271@1542641581.379435:monitor_qmp_respond queue-blocks-3
19271@1542641581.379477:monitor_qmp_cmd_in_band queue-blocks-4
19271@1542641581.379597:monitor_qmp_respond queue-blocks-4
19271@1542641581.379621:monitor_qmp_cmd_in_band queue-blocks-5
19271@1542641581.379800:monitor_qmp_respond queue-blocks-5
19271@1542641581.379824:monitor_qmp_cmd_in_band queue-blocks-6
19271@1542641581.379953:monitor_qmp_respond queue-blocks-6
19271@1542641581.379992:monitor_qmp_cmd_in_band queue-blocks-7
19271@1542641581.380132:monitor_qmp_respond queue-blocks-7
19271@1542641581.380170:monitor_qmp_cmd_in_band queue-blocks-8
19271@1542641581.380283:monitor_qmp_respond queue-blocks-8
Main thread dequeues, executes and responds to queue-blocks-2,
... queue-blocks-8.
If I make the main thread lose the race by sticking a sleep(1) before
the unblock_blocked_cmd() that unblocks queue-blocks-1, I get:
22762@1542641707.818838:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-1", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
I/O thread receives and queues queue-blocks-1.
22762@1542641707.818856:monitor_qmp_cmd_in_band queue-blocks-1
Main thread dequeues qemu-blocks-1 and starts executing it. We already
lost.
22762@1542641707.819585:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-2", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.820331:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-3", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.821072:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-4", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.821821:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-5", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.822569:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-6", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.823314:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-7", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
22762@1542641707.824069:handle_qmp_command mon 0x55f5b6a5de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-8", "driver": "blkdebug", "config": "/tmp/qmp-test-PqO2uz/fifo"}}
I/O thread receives and queues queue-blocks-2, ... queue-blocks-8.
22762@1542641707.824253:handle_qmp_command mon 0x55f5b6a5de80 req: {"exec-oob": "migrate-pause"}
22762@1542641707.824257:monitor_qmp_cmd_out_of_band oob-1
22762@1542641707.824282:monitor_qmp_respond oob-1
I/O thread receives, executes and responds to oob-1.
Test is going to fail: response to oob-1 sent before response to
queue-blocks-1.
Now let me try your fix. Here's what I see:
16585@1542650042.980953:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-1", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.981018:monitor_qmp_cmd_in_band queue-blocks-1
16585@1542650042.981252:monitor_qmp_respond queue-blocks-1
16585@1542650042.981838:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-2", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.981916:monitor_qmp_cmd_in_band queue-blocks-2
16585@1542650042.982656:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-3", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.983406:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-4", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.984170:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-5", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.984975:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-6", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.985778:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-7", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.986565:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-8", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.987396:handle_qmp_command mon 0x5597b8e0de80 req: {"execute": "blockdev-add", "arguments": {"image": {"driver": "null-co"}, "node-name": "queue-blocks-9", "driver": "blkdebug", "config": "/tmp/qmp-test-8YRbOJ/fifo"}}
16585@1542650042.987626:handle_qmp_command mon 0x5597b8e0de80 req: {"exec-oob": "migrate-pause"}
16585@1542650042.987630:monitor_qmp_cmd_out_of_band oob-1
16585@1542650042.987676:monitor_qmp_respond oob-1
16585@1542650042.988035:monitor_qmp_respond queue-blocks-2
16585@1542650042.988066:monitor_qmp_cmd_in_band queue-blocks-3
16585@1542650042.988329:monitor_qmp_respond queue-blocks-3
16585@1542650042.988360:monitor_qmp_cmd_in_band queue-blocks-4
16585@1542650042.988575:monitor_qmp_respond queue-blocks-4
16585@1542650042.988616:monitor_qmp_cmd_in_band queue-blocks-5
16585@1542650042.988803:monitor_qmp_respond queue-blocks-5
16585@1542650042.988826:monitor_qmp_cmd_in_band queue-blocks-6
16585@1542650042.988977:monitor_qmp_respond queue-blocks-6
16585@1542650042.989001:monitor_qmp_cmd_in_band queue-blocks-7
16585@1542650042.989223:monitor_qmp_respond queue-blocks-7
16585@1542650042.989279:monitor_qmp_cmd_in_band queue-blocks-8
16585@1542650042.989447:monitor_qmp_respond queue-blocks-8
16585@1542650042.989469:monitor_qmp_cmd_in_band queue-blocks-9
16585@1542650042.989582:monitor_qmp_respond queue-blocks-9
Tracepoint monitor_suspend still not hit. This means the queue does not
fill up.
> Markus, do you want me to repost a new version with this change? Is
> it still possible to have the oob-default series for 3.1?
We're trying to, but we need to get the test to work.
Two problems:
1. The test doesn't seem to succed at testing "queue full".
2. The test might still be racy.
I suspect the code we test is solid, and it's "only" the test we screwed
up.
diff --git a/monitor.c b/monitor.c
index 431795d686..52112889ef 100644
--- a/monitor.c
+++ b/monitor.c
@@ -4064,6 +4064,7 @@ static int monitor_can_read(void *opaque)
*/
static void monitor_qmp_respond(Monitor *mon, QDict *rsp, QObject *id)
{
+ trace_monitor_qmp_respond(qobject_get_try_str(id) ?: "");
if (rsp) {
if (id) {
qdict_put_obj(rsp, "id", qobject_ref(id));
diff --git a/trace-events b/trace-events
index 4fd2cb4b97..57c5f6cc94 100644
--- a/trace-events
+++ b/trace-events
@@ -50,6 +50,7 @@ handle_qmp_command(void *mon, const char *req) "mon %p req: %s"
monitor_suspend(void *ptr, int cnt) "mon %p: %d"
monitor_qmp_cmd_in_band(const char *id) "%s"
monitor_qmp_cmd_out_of_band(const char *id) "%s"
+monitor_qmp_respond(const char *id) "%s"
# dma-helpers.c
dma_blk_io(void *dbs, void *bs, int64_t offset, bool to_dev) "dbs=%p bs=%p offset=%" PRId64 " to_dev=%d"
next prev parent reply other threads:[~2018-11-19 18:08 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-10-30 19:16 [Qemu-devel] [PULL 0/8] Monitor patches for 2018-10-30 Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 1/8] monitor: guard iothread access by mon->use_io_thread Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 2/8] monitor: delay monitor iothread creation Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 3/8] monitor: Suspend monitor instead dropping commands Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 4/8] monitor: remove "x-oob", turn oob on by default Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 5/8] Revert "tests: Add parameter to qtest_init_without_qmp_handshake" Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 6/8] tests: add oob functional test for test-qmp-cmds Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 7/8] tests: qmp-test: add queue full test Markus Armbruster
2018-10-30 19:16 ` [Qemu-devel] [PULL 8/8] vl: Avoid crash when -mon is underspecified Markus Armbruster
2018-11-01 11:50 ` [Qemu-devel] [PULL 0/8] Monitor patches for 2018-10-30 Peter Maydell
2018-11-06 15:56 ` Markus Armbruster
2018-11-07 2:56 ` Peter Xu
2018-11-07 11:21 ` Peter Maydell
2018-11-07 16:53 ` Eric Blake
2018-11-08 2:44 ` Peter Xu
2018-11-19 6:17 ` Peter Xu
2018-11-19 7:05 ` Peter Xu
2018-11-19 18:08 ` Markus Armbruster [this message]
2018-11-20 6:31 ` Peter Xu
2018-11-20 17:44 ` Markus Armbruster
2018-11-21 3:28 ` Peter Xu
2018-11-21 7:00 ` Markus Armbruster
2018-11-27 9:36 ` Markus Armbruster
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87ftvxlz3m.fsf@dusky.pond.sub.org \
--to=armbru@redhat.com \
--cc=dgilbert@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=peterx@redhat.com \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.