From: David Laight <David.Laight@ACULAB.COM>
To: 'Eric Dumazet' <eric.dumazet@gmail.com>,
"David S . Miller" <davem@davemloft.net>,
Jakub Kicinski <kuba@kernel.org>
Cc: netdev <netdev@vger.kernel.org>,
Eric Dumazet <edumazet@google.com>,
syzbot <syzkaller@googlegroups.com>,
Ido Schimmel <idosch@mellanox.com>,
"Jiri Pirko" <jiri@mellanox.com>
Subject: RE: [PATCH v2 net] ipv4: update fib_info_cnt under spinlock protection
Date: Mon, 17 Jan 2022 03:23:50 +0000 [thread overview]
Message-ID: <20a08d9d62f442fcb710a2bbfae47289@AcuMS.aculab.com> (raw)
In-Reply-To: <20220116090220.2378360-1-eric.dumazet@gmail.com>
From: Eric Dumazet
> Sent: 16 January 2022 09:02
>
> In the past, free_fib_info() was supposed to be called
> under RTNL protection.
>
> This eventually was no longer the case.
>
> Instead of enforcing RTNL it seems we simply can
> move fib_info_cnt changes to occur when fib_info_lock
> is held.
>
> v2: David Laight suggested to update fib_info_cnt
> only when an entry is added/deleted to/from the hash table,
> as fib_info_cnt is used to make sure hash table size
> is optimal.
Already applied, but
acked-by: David Laight
...
If you are going to add READ_ONCE() markers then one on
'fib_info_hash_size' would be much more appropriate since
this value is used twice.
> err = -ENOBUFS;
> - if (fib_info_cnt >= fib_info_hash_size) {
> +
> + /* Paired with WRITE_ONCE() in fib_release_info() */
> + if (READ_ONCE(fib_info_cnt) >= fib_info_hash_size) {
> unsigned int new_size = fib_info_hash_size << 1;
> struct hlist_head *new_info_hash;
> struct hlist_head *new_laddrhash;
> @@ -1462,7 +1467,6 @@ struct fib_info *fib_create_info(struct fib_config *cfg,
If is also possible for two (or many) threads to decide to
increase the hash table size at the same time.
The code that moves the items to the new hash tables should
probably discard the new tables is they aren't larger than
the existing ones.
The copy does look safe - just a waste of time.
It is also technically possible (but very unlikely) that the table
will get shrunk!
It will grow again on the next allocate.
But this is a different bug.
I also though Linus said that the WRITE_ONCE() weren't needed
here because the kernel basically assumes the compiler isn't
stupid enough to do 'write tearing' on word sized items
(or just write zero before every write).
David
-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)
next prev parent reply other threads:[~2022-01-17 3:23 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-01-16 9:02 [PATCH v2 net] ipv4: update fib_info_cnt under spinlock protection Eric Dumazet
2022-01-16 9:06 ` Ido Schimmel
2022-01-16 12:30 ` patchwork-bot+netdevbpf
2022-01-17 3:23 ` David Laight [this message]
2022-01-17 9:48 ` Eric Dumazet
2022-01-17 9:20 ` David Laight
2022-01-17 9:45 ` Eric Dumazet
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20a08d9d62f442fcb710a2bbfae47289@AcuMS.aculab.com \
--to=david.laight@aculab.com \
--cc=davem@davemloft.net \
--cc=edumazet@google.com \
--cc=eric.dumazet@gmail.com \
--cc=idosch@mellanox.com \
--cc=jiri@mellanox.com \
--cc=kuba@kernel.org \
--cc=netdev@vger.kernel.org \
--cc=syzkaller@googlegroups.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).