From: "Eric W. Biederman" <ebiederm@xmission.com>
To: "Jason A. Donenfeld" <Jason@zx2c4.com>
Cc: linux-wireless@vger.kernel.org, "Kalle Valo" <kvalo@kernel.org>,
"Rui Salvaterra" <rsalvaterra@gmail.com>,
"Valentin Schneider" <vschneid@redhat.com>,
stable@vger.kernel.org, "Gregory Erwin" <gregerwin256@gmail.com>,
"Toke Høiland-Jørgensen" <toke@toke.dk>,
"Herbert Xu" <herbert@gondor.apana.org.au>
Subject: Re: [PATCH v9] ath9k: let sleep be interrupted when unregistering hwrng
Date: Tue, 19 Jul 2022 14:25:38 -0500 [thread overview]
Message-ID: <878rooucp9.fsf@email.froward.int.ebiederm.org> (raw)
In-Reply-To: <20220719173354.232365-1-Jason@zx2c4.com> (Jason A. Donenfeld's message of "Tue, 19 Jul 2022 19:33:54 +0200")
"Jason A. Donenfeld" <Jason@zx2c4.com> writes:
> There are two deadlock scenarios that need addressing, which cause
> problems when the computer goes to sleep, the interface is set down, and
> hwrng_unregister() is called. When the deadlock is hit, sleep is delayed
> for tens of seconds, causing it to fail. These scenarios are:
>
> 1) The hwrng kthread can't be stopped while it's sleeping, because it
> uses msleep_interruptible() instead of schedule_timeout_interruptible().
> The fix is a simple moving to the correct function. At the same time,
> we should cleanup a common and useless dmesg splat in the same area.
>
> 2) A normal user thread can't be interrupted by hwrng_unregister() while
> it's sleeping, because hwrng_unregister() is called from elsewhere.
> The solution here is to keep track of which thread is currently
> reading, and asleep, and signal that thread when it's time to
> unregister. There's a bit of book keeping required to prevent
> lifetime issues on current.
Is there any chance you can name the new function
wake_up_task_interruptible instead of wake_up_process_interruptible.
The name wake_up_process is wrong now, it does not wake up all threads
of a process. The name dates back to before linux supported multiple
threads in a process, so it is grandfathered in until someone gets
changes it. But please let's not have a new function with a incorrect
and confusing name.
Eric
>
> Cc: Kalle Valo <kvalo@kernel.org>
> Cc: Rui Salvaterra <rsalvaterra@gmail.com>
> Cc: Eric W. Biederman <ebiederm@xmission.com>
> Cc: Valentin Schneider <vschneid@redhat.com>
> Cc: stable@vger.kernel.org
> Reported-by: Gregory Erwin <gregerwin256@gmail.com>
> Tested-by: Gregory Erwin <gregerwin256@gmail.com>
> Acked-by: Toke Høiland-Jørgensen <toke@toke.dk>
> Acked-by: Herbert Xu <herbert@gondor.apana.org.au>
> Fixes: fcd09c90c3c5 ("ath9k: use hw_random API instead of directly dumping into random.c")
> Link: https://lore.kernel.org/all/CAO+Okf6ZJC5-nTE_EJUGQtd8JiCkiEHytGgDsFGTEjs0c00giw@mail.gmail.com/
> Link: https://lore.kernel.org/lkml/CAO+Okf5k+C+SE6pMVfPf-d8MfVPVq4PO7EY8Hys_DVXtent3HA@mail.gmail.com/
> Link: https://bugs.archlinux.org/task/75138
> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
> ---
> Changes v8->v9:
> - Use EXPORT_SYMBOL_GPL instead of EXPORT_SYMBOL.
> - Don't export wake_up_state, but rather have __set_notify_signal use
> wake_up_process_interruptible.
>
> drivers/char/hw_random/core.c | 30 ++++++++++++++++++++++++----
> drivers/net/wireless/ath/ath9k/rng.c | 19 +++++++-----------
> include/linux/sched.h | 1 +
> include/linux/sched/signal.h | 2 +-
> kernel/sched/core.c | 6 ++++++
> 5 files changed, 41 insertions(+), 17 deletions(-)
>
> diff --git a/drivers/char/hw_random/core.c b/drivers/char/hw_random/core.c
> index 16f227b995e8..df45c265878e 100644
> --- a/drivers/char/hw_random/core.c
> +++ b/drivers/char/hw_random/core.c
> @@ -38,6 +38,8 @@ static LIST_HEAD(rng_list);
> static DEFINE_MUTEX(rng_mutex);
> /* Protects rng read functions, data_avail, rng_buffer and rng_fillbuf */
> static DEFINE_MUTEX(reading_mutex);
> +/* Keeps track of whoever is wait-reading it currently while holding reading_mutex. */
> +static struct task_struct *current_waiting_reader;
> static int data_avail;
> static u8 *rng_buffer, *rng_fillbuf;
> static unsigned short current_quality;
> @@ -208,6 +210,7 @@ static ssize_t rng_dev_read(struct file *filp, char __user *buf,
> int err = 0;
> int bytes_read, len;
> struct hwrng *rng;
> + bool wait;
>
> while (size) {
> rng = get_current_rng();
> @@ -225,9 +228,15 @@ static ssize_t rng_dev_read(struct file *filp, char __user *buf,
> goto out_put;
> }
> if (!data_avail) {
> + wait = !(filp->f_flags & O_NONBLOCK);
> + if (wait && cmpxchg(¤t_waiting_reader, NULL, current) != NULL) {
> + err = -EINTR;
> + goto out_unlock_reading;
> + }
> bytes_read = rng_get_data(rng, rng_buffer,
> - rng_buffer_size(),
> - !(filp->f_flags & O_NONBLOCK));
> + rng_buffer_size(), wait);
> + if (wait && cmpxchg(¤t_waiting_reader, current, NULL) != current)
> + synchronize_rcu();
> if (bytes_read < 0) {
> err = bytes_read;
> goto out_unlock_reading;
> @@ -513,8 +522,9 @@ static int hwrng_fillfn(void *unused)
> break;
>
> if (rc <= 0) {
> - pr_warn("hwrng: no data available\n");
> - msleep_interruptible(10000);
> + if (kthread_should_stop())
> + break;
> + schedule_timeout_interruptible(HZ * 10);
> continue;
> }
>
> @@ -608,13 +618,21 @@ int hwrng_register(struct hwrng *rng)
> }
> EXPORT_SYMBOL_GPL(hwrng_register);
>
> +#define UNREGISTERING_READER ((void *)~0UL)
> +
> void hwrng_unregister(struct hwrng *rng)
> {
> struct hwrng *old_rng, *new_rng;
> + struct task_struct *waiting_reader;
> int err;
>
> mutex_lock(&rng_mutex);
>
> + rcu_read_lock();
> + waiting_reader = xchg(¤t_waiting_reader, UNREGISTERING_READER);
> + if (waiting_reader && waiting_reader != UNREGISTERING_READER)
> + set_notify_signal(waiting_reader);
> + rcu_read_unlock();
> old_rng = current_rng;
> list_del(&rng->list);
> if (current_rng == rng) {
> @@ -640,6 +658,10 @@ void hwrng_unregister(struct hwrng *rng)
> }
>
> wait_for_completion(&rng->cleanup_done);
> +
> + mutex_lock(&rng_mutex);
> + cmpxchg(¤t_waiting_reader, UNREGISTERING_READER, NULL);
> + mutex_unlock(&rng_mutex);
> }
> EXPORT_SYMBOL_GPL(hwrng_unregister);
>
> diff --git a/drivers/net/wireless/ath/ath9k/rng.c b/drivers/net/wireless/ath/ath9k/rng.c
> index cb5414265a9b..8980dc36509e 100644
> --- a/drivers/net/wireless/ath/ath9k/rng.c
> +++ b/drivers/net/wireless/ath/ath9k/rng.c
> @@ -52,18 +52,13 @@ static int ath9k_rng_data_read(struct ath_softc *sc, u32 *buf, u32 buf_size)
> return j << 2;
> }
>
> -static u32 ath9k_rng_delay_get(u32 fail_stats)
> +static unsigned long ath9k_rng_delay_get(u32 fail_stats)
> {
> - u32 delay;
> -
> if (fail_stats < 100)
> - delay = 10;
> + return HZ / 100;
> else if (fail_stats < 105)
> - delay = 1000;
> - else
> - delay = 10000;
> -
> - return delay;
> + return HZ;
> + return HZ * 10;
> }
>
> static int ath9k_rng_read(struct hwrng *rng, void *buf, size_t max, bool wait)
> @@ -80,10 +75,10 @@ static int ath9k_rng_read(struct hwrng *rng, void *buf, size_t max, bool wait)
> bytes_read += max & 3UL;
> memzero_explicit(&word, sizeof(word));
> }
> - if (!wait || !max || likely(bytes_read) || fail_stats > 110)
> + if (!wait || !max || likely(bytes_read) || fail_stats > 110 ||
> + ((current->flags & PF_KTHREAD) && kthread_should_stop()) ||
> + schedule_timeout_interruptible(ath9k_rng_delay_get(++fail_stats)))
> break;
> -
> - msleep_interruptible(ath9k_rng_delay_get(++fail_stats));
> }
>
> if (wait && !bytes_read && max)
> diff --git a/include/linux/sched.h b/include/linux/sched.h
> index c46f3a63b758..518fb7694270 100644
> --- a/include/linux/sched.h
> +++ b/include/linux/sched.h
> @@ -1936,6 +1936,7 @@ extern struct task_struct *find_get_task_by_vpid(pid_t nr);
>
> extern int wake_up_state(struct task_struct *tsk, unsigned int state);
> extern int wake_up_process(struct task_struct *tsk);
> +extern int wake_up_process_interruptible(struct task_struct *tsk);
> extern void wake_up_new_task(struct task_struct *tsk);
>
> #ifdef CONFIG_SMP
> diff --git a/include/linux/sched/signal.h b/include/linux/sched/signal.h
> index cafbe03eed01..e1c0099ba857 100644
> --- a/include/linux/sched/signal.h
> +++ b/include/linux/sched/signal.h
> @@ -364,7 +364,7 @@ static inline void clear_notify_signal(void)
> static inline bool __set_notify_signal(struct task_struct *task)
> {
> return !test_and_set_tsk_thread_flag(task, TIF_NOTIFY_SIGNAL) &&
> - !wake_up_state(task, TASK_INTERRUPTIBLE);
> + !wake_up_process_interruptible(task);
> }
>
> /*
> diff --git a/kernel/sched/core.c b/kernel/sched/core.c
> index da0bf6fe9ecd..8e466f0d906f 100644
> --- a/kernel/sched/core.c
> +++ b/kernel/sched/core.c
> @@ -4280,6 +4280,12 @@ int wake_up_process(struct task_struct *p)
> }
> EXPORT_SYMBOL(wake_up_process);
>
> +int wake_up_process_interruptible(struct task_struct *p)
> +{
> + return try_to_wake_up(p, TASK_INTERRUPTIBLE, 0);
> +}
> +EXPORT_SYMBOL_GPL(wake_up_process_interruptible);
> +
> int wake_up_state(struct task_struct *p, unsigned int state)
> {
> return try_to_wake_up(p, state, 0);
next prev parent reply other threads:[~2022-07-19 19:26 UTC|newest]
Thread overview: 28+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-06-28 15:18 [PATCH v7] ath9k: let sleep be interrupted when unregistering hwrng Jason A. Donenfeld
2022-06-29 3:41 ` Gregory Erwin
2022-06-29 11:37 ` Jason A. Donenfeld
2022-06-29 11:42 ` [PATCH v8] " Jason A. Donenfeld
2022-06-29 15:28 ` Greg KH
2022-06-29 16:15 ` Jason A. Donenfeld
2022-06-29 16:49 ` Greg KH
2022-06-30 14:03 ` Jason A. Donenfeld
2022-07-01 1:17 ` Gregory Erwin
2022-07-04 22:04 ` Toke Høiland-Jørgensen
2022-07-07 16:26 ` Kalle Valo
2022-07-11 11:41 ` Valentin Schneider
2022-07-11 11:53 ` Jason A. Donenfeld
2022-07-19 15:15 ` Valentin Schneider
2022-07-19 17:21 ` Jason A. Donenfeld
2022-07-19 17:33 ` [PATCH v9] " Jason A. Donenfeld
2022-07-19 19:25 ` Eric W. Biederman [this message]
2022-07-19 20:05 ` Jason A. Donenfeld
2022-07-19 20:11 ` [PATCH v10] " Jason A. Donenfeld
2022-07-19 20:51 ` Eric W. Biederman
2022-07-19 20:55 ` Jason A. Donenfeld
2022-07-22 20:08 ` Valentin Schneider
2022-07-22 20:13 ` Jason A. Donenfeld
2022-07-25 10:08 ` Valentin Schneider
2022-07-25 11:41 ` Jason A. Donenfeld
2022-07-25 17:56 ` Valentin Schneider
2022-06-29 9:24 ` [PATCH v7] " Toke Høiland-Jørgensen
2022-06-29 11:40 ` Jason A. Donenfeld
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=878rooucp9.fsf@email.froward.int.ebiederm.org \
--to=ebiederm@xmission.com \
--cc=Jason@zx2c4.com \
--cc=gregerwin256@gmail.com \
--cc=herbert@gondor.apana.org.au \
--cc=kvalo@kernel.org \
--cc=linux-wireless@vger.kernel.org \
--cc=rsalvaterra@gmail.com \
--cc=stable@vger.kernel.org \
--cc=toke@toke.dk \
--cc=vschneid@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).