From: Markus Armbruster <armbru@redhat.com>
To: Peter Xu <peterx@redhat.com>
Cc: "Marc-André Lureau" <marcandre.lureau@redhat.com>,
qemu-devel@nongnu.org, "Stefan Hajnoczi" <stefanha@redhat.com>,
"Dr. David Alan Gilbert" <dgilbert@redhat.com>
Subject: Re: [Qemu-devel] [PATCH v4] monitor: let cur_mon be per-thread
Date: Thu, 19 Jul 2018 16:56:24 +0200 [thread overview]
Message-ID: <87muuncm07.fsf@dusky.pond.sub.org> (raw)
In-Reply-To: <20180719124636.GK4071@xz-mi> (Peter Xu's message of "Thu, 19 Jul 2018 20:46:36 +0800")
Peter Xu <peterx@redhat.com> writes:
> On Thu, Jul 19, 2018 at 02:14:56PM +0200, Markus Armbruster wrote:
[...]
>> Here's my try:
>>
>> monitor: Fix unsafe sharing of @cur_mon among threads
>>
>> @cur_mon is null unless the main thread is running monitor code, either
>> HMP code within monitor_read(), or QMP code within
>> monitor_qmp_dispatch().
>>
>> Use of @cur_mon outside the main thread is therefore unsafe.
>>
>> Most of its uses are in monitor command handlers. These run in the main
>> thread.
>>
>> However, there are also uses hiding elsewhere, such as in
>> error_vprintf(), and thus error_report(), making these functions unsafe
>> outside the main thread. No such unsafe uses are known at this time.
>> Regardless, this is an unnecessary trap. It's an ancient trap, though.
>>
>> More recently, commit cf869d53172 "qmp: support out-of-band (oob)
>> execution" spiced things up: the monitor I/O thread assigns to @cur_mon
>> when executing commands out-of-band. Having two threads save, set and
>> restore @cur_mon without synchronization is definitely unsafe. We can
>> end up with @cur_mon null while the main thread runs monitor code, or
>> non-null while it runs non-monitor code.
>>
>> We could fix this by making the I/O thread not mess with @cur_mon, but
>> that would leave the trap armed and ready.
>>
>> Instead, make @cur_mon thread-local. It's now reliably null unless the
>> thread is running monitor code.
>
> Looks good to me.
With that commit message:
Reviewed-by: Markus Armbruster <armbru@redhat.com>
prev parent reply other threads:[~2018-07-19 14:56 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-06-20 7:10 [Qemu-devel] [PATCH v4] monitor: let cur_mon be per-thread Peter Xu
2018-06-20 9:21 ` no-reply
2018-07-18 15:38 ` Markus Armbruster
2018-07-19 5:01 ` Peter Xu
2018-07-19 7:20 ` Markus Armbruster
2018-07-19 8:03 ` Peter Xu
2018-07-19 9:05 ` Markus Armbruster
2018-07-19 9:46 ` Peter Xu
2018-07-19 12:14 ` Markus Armbruster
2018-07-19 12:46 ` Peter Xu
2018-07-19 14:56 ` Markus Armbruster [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87muuncm07.fsf@dusky.pond.sub.org \
--to=armbru@redhat.com \
--cc=dgilbert@redhat.com \
--cc=marcandre.lureau@redhat.com \
--cc=peterx@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=stefanha@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.