From: Jesper Dangaard Brouer <brouer@redhat.com>
To: "Björn Töpel" <bjorn.topel@gmail.com>
Cc: ap420073@gmail.com, kafai@fb.com,
"Daniel Borkmann" <daniel@iogearbox.net>,
ast@kernel.org, "Björn Töpel" <bjorn.topel@intel.com>,
Netdev <netdev@vger.kernel.org>,
brouer@redhat.com
Subject: Re: [PATCH bpf] xdp: add NULL pointer check in __xdp_return()
Date: Wed, 1 Aug 2018 16:14:14 +0200 [thread overview]
Message-ID: <20180801161414.24ebb238@redhat.com> (raw)
In-Reply-To: <CAJ+HfNiq=PNRz_Y8NJYuz=f33dmbu4nLM432ktBzPXTOSSTsMQ@mail.gmail.com>
On Mon, 23 Jul 2018 11:41:02 +0200
Björn Töpel <bjorn.topel@gmail.com> wrote:
> > >> diff --git a/net/core/xdp.c b/net/core/xdp.c
> > >> index 9d1f220..1c12bc7 100644
> > >> --- a/net/core/xdp.c
> > >> +++ b/net/core/xdp.c
> > >> @@ -345,7 +345,8 @@ static void __xdp_return(void *data, struct xdp_mem_info *mem, bool napi_direct,
> > >> rcu_read_lock();
> > >> /* mem->id is valid, checked in xdp_rxq_info_reg_mem_model() */
> > >> xa = rhashtable_lookup(mem_id_ht, &mem->id, mem_id_rht_params);
> > >> - xa->zc_alloc->free(xa->zc_alloc, handle);
> > >> + if (xa)
> > >> + xa->zc_alloc->free(xa->zc_alloc, handle);
> > > hmm...It is not clear to me the "!xa" case don't have to be handled?
> >
> > Thank you for reviewing!
> >
> > Returning NULL pointer is bug case such as calling after use
> > xdp_rxq_info_unreg().
> > so that, I think it can't handle at that moment.
> > we can make __xdp_return to add WARN_ON_ONCE() or
> > add return error code to driver.
> > But I'm not sure if these is useful information.
> >
> > I might have misunderstood scenario of MEM_TYPE_ZERO_COPY
> > because there is no use case of MEM_TYPE_ZERO_COPY yet.
> >
>
> Taehee, again, sorry for the slow response and thanks for patch!
>
> If xa is NULL, the driver has a buggy/broken implementation. What
> would be a proper way of dealing with this? BUG?
Hmm... I don't like these kind of changes to the hot-path code!
You might not realize this, but adding BUG() and WARN_ON() to the code
affect performance in ways you might not realize! These macros gets
compiled and uses an asm instruction called "ud2". Seeing the "ud2"
instruction causes the CPUs instruction cache prefetcher to stop.
Thus, if some code ends up below this instruction, this will cause more
i-cache-misses.
I don't know if xa==NULL is even possible, but if it is, then I think
this is a result of a driver mem_reg API usage bug. And the mem-reg
API is full of WARN's and error messages, exactly to push these kind of
checks out of the fast-path. There is no need for a BUG() call, as
deref a NULL pointer will case an OOPS, that is easy to read and
understand.
--
Best regards,
Jesper Dangaard Brouer
MSc.CS, Principal Kernel Engineer at Red Hat
LinkedIn: http://www.linkedin.com/in/brouer
next prev parent reply other threads:[~2018-08-01 16:00 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-07-20 16:04 [PATCH bpf] xdp: add NULL pointer check in __xdp_return() Taehee Yoo
2018-07-20 17:18 ` Martin KaFai Lau
2018-07-20 20:05 ` Jakub Kicinski
2018-07-23 9:39 ` Björn Töpel
2018-07-23 19:58 ` Jakub Kicinski
2018-07-26 12:13 ` Björn Töpel
2018-07-26 18:47 ` Jakub Kicinski
2018-07-21 12:56 ` Taehee Yoo
2018-07-23 9:41 ` Björn Töpel
2018-07-23 13:21 ` Taehee Yoo
2018-08-01 14:14 ` Jesper Dangaard Brouer [this message]
2018-08-01 14:43 ` Björn Töpel
2018-08-01 20:25 ` Daniel Borkmann
2018-08-02 10:59 ` Björn Töpel
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180801161414.24ebb238@redhat.com \
--to=brouer@redhat.com \
--cc=ap420073@gmail.com \
--cc=ast@kernel.org \
--cc=bjorn.topel@gmail.com \
--cc=bjorn.topel@intel.com \
--cc=daniel@iogearbox.net \
--cc=kafai@fb.com \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).