From: ebiederm@xmission.com (Eric W. Biederman)
To: Tejun Heo <tj@kernel.org>
Cc: Alan Stern <stern@rowland.harvard.edu>,
Kernel development list <linux-kernel@vger.kernel.org>,
Greg Kroah-Hartman <gregkh@suse.de>,
Kay Sievers <kay.sievers@vrfy.org>
Subject: Re: Sysfs attributes racing with unregistration
Date: Wed, 04 Jan 2012 10:13:00 -0800 [thread overview]
Message-ID: <m1d3azfiab.fsf@fess.ebiederm.org> (raw)
In-Reply-To: <20120104171842.GN31746@google.com> (Tejun Heo's message of "Wed, 4 Jan 2012 09:18:42 -0800")
Tejun Heo <tj@kernel.org> writes:
> Hello, Alan.
>
> On Wed, Jan 04, 2012 at 11:52:20AM -0500, Alan Stern wrote:
>> Can you explain the current situation regarding access to sysfs
>> attributes and possible races with kobject removal? I have two
>> questions in particular:
>
> Heh, I haven't looked at sysfs code seriously for years now and my
> memory sucks to begin with, so please take whatever I say with a
> gigantic grain of salt. Eric has been looking at sysfs a lot lately
> so he probably can answer these best. Adding him, Greg and Kay - hi!
> guys.
>
>> What happens if one thread calls an attribute's show or
>> store method concurrently with another thread unregistering
>> the underlying kobject?
>
> sysfs nodes have two reference counts - one for object lifespan and
> the other for active usage. The latter is called active and acquired
> and released using sysfs_get/put_active(). Any callback invocation
> should be performed while holding an active reference. On removal,
> sysfs_deactivate() marks the active reference count for deactivation
> so that no new active reference is given out and waits for the
> in-flight ones to drain. IOW, removal makes sure new invocations of
> callbacks fail and waits for in-progress ones to finish before
> proceeding with removal.
Or in simple terms.
If the unregister call happens first the we do not call the show method.
If the show method happens first the unregister waits until the show
method is complete before letting the unregistration proceed.
Furthermore lockdep models this wait as a reader/writer lock so lockdep
should be able to warn you about deadlocks triggered by waiting for the
unregistration to complete.
>> What happens if a thread continues to hold an open fd
>> reference to a sysfs attribute file after the kobject is
>> unregistered, and then tries to read or write that fd?
>
> Active reference is held only for the duration of each callback
> invocation. Userland can't prolong the existence of active reference.
> The duration of callback execution is the only deciding factor.
The fd only pins core sysfs data structures in memory.
The fd remains usable (in the -EIO -EBADF sense of usable) even
> Someone (I think Eric, right?) was trying to generalize the semantics
> to vfs layer so that severance/revocation capability is generally
> available. IIRC, it didn't get through tho.
Unfortunately I didn't have time to complete the effort of those
patches. The approach was not fundamentally rejected but it needed a
clear and convincing use case as well as some strong scrutiny. But
fundamentally finding a way to do that was seen as an interesting,
if it could be solved without slowing down the existing cases.
Eric
next prev parent reply other threads:[~2012-01-04 18:10 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-01-04 16:52 Sysfs attributes racing with unregistration Alan Stern
2012-01-04 17:18 ` Tejun Heo
2012-01-04 18:13 ` Eric W. Biederman [this message]
2012-01-04 19:41 ` Alan Stern
2012-01-05 3:07 ` Eric W. Biederman
2012-01-05 15:13 ` Revoking filesystems [was Re: Sysfs attributes racing with unregistration] Alan Stern
2012-01-05 15:32 ` Tejun Heo
2012-01-05 16:03 ` Eric W. Biederman
2012-01-05 16:44 ` Tejun Heo
2012-01-05 16:47 ` Alan Stern
2012-01-05 17:11 ` Tejun Heo
2012-01-05 18:27 ` Ted Ts'o
2012-01-05 18:36 ` Tejun Heo
2012-01-05 19:28 ` Ted Ts'o
2012-01-05 20:52 ` Tejun Heo
2012-01-06 6:25 ` Alexander E. Patrakov
2012-01-07 21:01 ` Revoking filesystems [was Re: Sysfs attributes racing withunregistration] Milton Miller
2012-01-05 20:43 ` Revoking filesystems [was Re: Sysfs attributes racing with unregistration] Eric W. Biederman
2012-01-05 20:55 ` Tejun Heo
2012-01-05 18:38 ` Christoph Hellwig
2012-01-05 15:52 ` Eric W. Biederman
2013-01-14 15:11 ` watchdog code anish kumar
2012-01-05 18:18 ` Revoking filesystems [was Re: Sysfs attributes racing with unregistration] Greg KH
2012-01-04 18:13 ` Sysfs attributes racing with unregistration Alan Stern
2012-01-04 18:20 ` Tejun Heo
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m1d3azfiab.fsf@fess.ebiederm.org \
--to=ebiederm@xmission.com \
--cc=gregkh@suse.de \
--cc=kay.sievers@vrfy.org \
--cc=linux-kernel@vger.kernel.org \
--cc=stern@rowland.harvard.edu \
--cc=tj@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.