From: Peter Xu <peterx@redhat.com>
To: "Marc-André Lureau" <marcandre.lureau@gmail.com>
Cc: QEMU <qemu-devel@nongnu.org>, Laurent Vivier <lvivier@redhat.com>,
Fam Zheng <famz@redhat.com>, Juan Quintela <quintela@redhat.com>,
Michael Roth <mdroth@linux.vnet.ibm.com>,
Markus Armbruster <armbru@redhat.com>,
Stefan Hajnoczi <shajnocz@redhat.com>,
Paolo Bonzini <pbonzini@redhat.com>,
"Dr . David Alan Gilbert" <dgilbert@redhat.com>
Subject: Re: [Qemu-devel] [PATCH v8 14/23] monitor: separate QMP parser and dispatcher
Date: Wed, 28 Mar 2018 12:02:09 +0800 [thread overview]
Message-ID: <20180328040209.GA29554@xz-mi> (raw)
In-Reply-To: <CAJ+F1CJ5KKfATgp2dOUhuRCcwV8V95nbebhd_fcqJgbMejc1-A@mail.gmail.com>
On Mon, Mar 26, 2018 at 11:46:13AM +0200, Marc-André Lureau wrote:
> Hi
>
> On Mon, Mar 26, 2018 at 11:08 AM, Peter Xu <peterx@redhat.com> wrote:
> > On Mon, Mar 26, 2018 at 10:33:27AM +0200, Marc-André Lureau wrote:
> >> Hi
> >>
> >> On Mon, Mar 26, 2018 at 10:07 AM, Peter Xu <peterx@redhat.com> wrote:
> >> > On Fri, Mar 23, 2018 at 05:18:53PM +0100, Marc-André Lureau wrote:
> >> >
> >> > [...]
> >> >
> >> >> > +/*
> >> >> > + * Dispatch one single QMP request. The function will free the req_obj
> >> >> > + * and objects inside it before return.
> >> >> > + */
> >> >> > +static void monitor_qmp_dispatch_one(QMPRequest *req_obj)
> >> >> > {
> >> >> > - QObject *req, *rsp = NULL, *id = NULL;
> >> >> > + Monitor *mon, *old_mon;
> >> >> > + QObject *req, *rsp = NULL, *id;
> >> >> > QDict *qdict = NULL;
> >> >> > - MonitorQMP *mon_qmp = container_of(parser, MonitorQMP, parser);
> >> >> > - Monitor *old_mon, *mon = container_of(mon_qmp, Monitor, qmp);
> >> >> > -
> >> >> > - Error *err = NULL;
> >> >> > + bool need_resume;
> >> >> >
> >> >> > - req = json_parser_parse_err(tokens, NULL, &err);
> >> >> > - if (!req && !err) {
> >> >> > - /* json_parser_parse_err() sucks: can fail without setting @err */
> >> >> > - error_setg(&err, QERR_JSON_PARSING);
> >> >> > - }
> >> >> > - if (err) {
> >> >> > - goto err_out;
> >> >> > - }
> >> >> > + req = req_obj->req;
> >> >> > + mon = req_obj->mon;
> >> >> > + id = req_obj->id;
> >> >> > + need_resume = req_obj->need_resume;
> >> >> >
> >> >> > - qdict = qobject_to_qdict(req);
> >> >> > - if (qdict) {
> >> >> > - id = qdict_get(qdict, "id");
> >> >> > - qobject_incref(id);
> >> >> > - qdict_del(qdict, "id");
> >> >> > - } /* else will fail qmp_dispatch() */
> >> >> > + g_free(req_obj);
> >> >> >
> >> >> > if (trace_event_get_state_backends(TRACE_HANDLE_QMP_COMMAND)) {
> >> >> > QString *req_json = qobject_to_json(req);
> >> >> > @@ -3900,7 +3932,7 @@ static void handle_qmp_command(JSONMessageParser *parser, GQueue *tokens)
> >> >> > old_mon = cur_mon;
> >> >> > cur_mon = mon;
> >> >>
> >> >> There is another issue with this series, since cur_mon is global (and
> >> >> not protected), an oob command may change the cur_mon while another
> >> >> command is running in the main thread with unexpected consequences. I
> >> >> don't have a clear idea what is the best way to solve it. Making the
> >> >> variable per-thread, or going all the way to get rid of cur_mon (my
> >> >> preference, but much harder)
> >> >
> >> > IMHO it is fine too.
> >> >
> >> > Note that this cur_mon operation is in monitor_qmp_dispatch_one() now,
> >> > which is still running in main thread. So AFAICT all the cur_mon
> >> > references are in main thread, and monitor IOThread does not modify
> >> > that variable at all. Then we should probably be safe.
> >>
> >> But monitor_qmp_dispatch_one() is called from iothread if the command
> >> is oob, so cur_mon may be updated while another command is running in
> >> main thread, or am I wrong?
> >
> > You are right. I missed that, sorry...
> >
> > Would this be a simple workaround (but hopefully efficient) solution?
> >
> > diff --git a/monitor.c b/monitor.c
> > index 77f4c41cfa..99641c0c6d 100644
> > --- a/monitor.c
> > +++ b/monitor.c
> > @@ -4023,7 +4023,7 @@ typedef struct QMPRequest QMPRequest;
> > * Dispatch one single QMP request. The function will free the req_obj
> > * and objects inside it before return.
> > */
> > -static void monitor_qmp_dispatch_one(QMPRequest *req_obj)
> > +static void monitor_qmp_dispatch_one(QMPRequest *req_obj, bool hack_curmon)
> > {
> > Monitor *mon, *old_mon;
> > QObject *req, *rsp = NULL, *id;
> > @@ -4043,12 +4043,16 @@ static void monitor_qmp_dispatch_one(QMPRequest *req_obj)
> > QDECREF(req_json);
> > }
> >
> > - old_mon = cur_mon;
> > - cur_mon = mon;
> > + if (hack_curmon) {
> > + old_mon = cur_mon;
> > + cur_mon = mon;
> > + }
> >
> > rsp = qmp_dispatch(mon->qmp.commands, req);
> >
> > - cur_mon = old_mon;
> > + if (hack_curmon) {
> > + cur_mon = old_mon;
> > + }
> >
> > if (mon->qmp.commands == &qmp_cap_negotiation_commands) {
> > qdict = qdict_get_qdict(qobject_to(QDict, rsp), "error");
> > @@ -4116,7 +4120,7 @@ static void monitor_qmp_bh_dispatcher(void *data)
> >
> > if (req_obj) {
> > trace_monitor_qmp_cmd_in_band(qobject_get_try_str(req_obj->id) ?: "");
> > - monitor_qmp_dispatch_one(req_obj);
> > + monitor_qmp_dispatch_one(req_obj, true);
> > /* Reschedule instead of looping so the main loop stays responsive */
> > qemu_bh_schedule(mon_global.qmp_dispatcher_bh);
> > }
> > @@ -4175,7 +4179,7 @@ static void handle_qmp_command(JSONMessageParser *parser, GQueue *tokens)
> > /* Out-Of-Band (OOB) requests are executed directly in parser. */
> > trace_monitor_qmp_cmd_out_of_band(qobject_get_try_str(req_obj->id)
> > ?: "");
> > - monitor_qmp_dispatch_one(req_obj);
> > + monitor_qmp_dispatch_one(req_obj, false);
> > return;
> > }
> >
> > Then we forbit touching that evil cur_mon in OOB-capable command
> > handlers. Thanks,
>
> That's not easy to enforce though, afaict it is being used for:
> - error reporting decision
IMO this should not be a problem, since any QMP handler (including
OOB-capable ones) will be with an Error** there, so logically speaking
people should never call things like error_report() in that.
> - file & socket lookup (fd: & /dev/fdset etc)
I suppose only very rare commands will use it? It'll be a big problem
to solve when we want to completely remove cur_mon though.
> - the current state of the monitor / list of commands, cpu_path, capabilities..
This is very rare to be used too? Most commands should not use them AFAIU.
>
> Wouldn't it be simpler to make it per-thread? I think it could also
> use helpers to push/pop the current monitor.
Anyway I think yes this is still a good option (though the cur_mon
logic will be a bit more complicated).
Do you plan to post some patch about this, or do you want me to do
this? I suppose we'll change the qemu_thread_create() a bit to pass
the cur_mon inside, and I suppose this might be better material after
2.12 release if OOB is off now.
--
Peter Xu
next prev parent reply other threads:[~2018-03-28 4:02 UTC|newest]
Thread overview: 78+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-03-09 8:59 [Qemu-devel] [PATCH v8 00/23] QMP: out-of-band (OOB) execution support Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 01/23] docs: update QMP documents for OOB commands Peter Xu
2018-03-09 17:13 ` Eric Blake
2018-03-12 3:32 ` Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 02/23] qobject: introduce qstring_get_try_str() Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 03/23] qobject: introduce qobject_get_try_str() Peter Xu
2018-03-09 20:10 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 04/23] qobject: let object_property_get_str() use new API Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 05/23] monitor: move skip_flush into monitor_data_init Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 06/23] monitor: move the cur_mon hack deeper for QMP Peter Xu
2018-03-10 23:13 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 07/23] monitor: unify global init Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 08/23] monitor: let mon_list be tail queue Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 09/23] monitor: allow using IO thread for parsing Peter Xu
2018-03-10 23:19 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 10/23] qmp: introduce QMPCapability Peter Xu
2018-03-11 1:25 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 11/23] monitor: introduce monitor_qmp_respond() Peter Xu
2018-03-11 1:35 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 12/23] monitor: let suspend_cnt be thread safe Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 13/23] monitor: let suspend/resume work even with QMPs Peter Xu
2018-03-11 1:53 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 14/23] monitor: separate QMP parser and dispatcher Peter Xu
2018-03-11 2:00 ` Eric Blake
2018-03-21 18:01 ` Marc-André Lureau
2018-03-21 20:09 ` Dr. David Alan Gilbert
2018-03-21 20:33 ` Eric Blake
2018-03-21 23:32 ` Marc-André Lureau
2018-03-22 5:00 ` Peter Xu
2018-03-22 13:24 ` Eric Blake
2018-03-23 16:18 ` Marc-André Lureau
2018-03-26 8:07 ` Peter Xu
2018-03-26 8:33 ` Marc-André Lureau
2018-03-26 9:08 ` Peter Xu
2018-03-26 9:46 ` Marc-André Lureau
2018-03-28 4:02 ` Peter Xu [this message]
2018-04-04 13:58 ` Marc-André Lureau
2018-04-08 3:02 ` Peter Xu
2018-04-09 9:19 ` Marc-André Lureau
2018-04-10 7:15 ` Peter Xu
2018-04-10 7:56 ` Peter Xu
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 15/23] qmp: add new event "command-dropped" Peter Xu
2018-03-11 2:03 ` Eric Blake
2018-03-09 8:59 ` [Qemu-devel] [PATCH v8 16/23] monitor: send event when command queue full Peter Xu
2018-03-11 2:11 ` Eric Blake
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 17/23] qapi: introduce new cmd option "allow-oob" Peter Xu
2018-03-11 2:27 ` Eric Blake
2018-03-12 3:35 ` Peter Xu
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 18/23] qmp: support out-of-band (oob) execution Peter Xu
2018-03-11 2:37 ` Eric Blake
2018-03-22 10:22 ` Marc-André Lureau
2018-03-23 5:18 ` Peter Xu
2018-03-23 10:03 ` Marc-André Lureau
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 19/23] qmp: isolate responses into io thread Peter Xu
2018-03-22 12:00 ` Marc-André Lureau
2018-03-23 5:50 ` Peter Xu
2018-03-23 10:00 ` Marc-André Lureau
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 20/23] monitor: enable IO thread for (qmp & !mux) typed Peter Xu
2018-03-23 12:10 ` Christian Borntraeger
2018-03-23 12:25 ` Peter Xu
2018-03-23 12:44 ` Christian Borntraeger
2018-03-23 13:01 ` Peter Xu
2018-03-23 13:21 ` Peter Maydell
2018-03-23 13:23 ` Christian Borntraeger
2018-03-23 13:39 ` Peter Xu
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 21/23] qmp: add command "x-oob-test" Peter Xu
2018-03-11 2:42 ` Eric Blake
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 22/23] tests: qmp-test: verify command batching Peter Xu
2018-03-11 2:45 ` Eric Blake
2018-03-12 3:43 ` Peter Xu
2018-03-09 9:00 ` [Qemu-devel] [PATCH v8 23/23] tests: qmp-test: add oob test Peter Xu
2018-03-11 2:49 ` Eric Blake
2018-03-12 3:56 ` Peter Xu
2018-03-11 2:59 ` [Qemu-devel] [PATCH v8 00/23] QMP: out-of-band (OOB) execution support Eric Blake
2018-03-12 4:14 ` Peter Xu
2018-03-12 12:01 ` Eric Blake
2018-03-12 12:55 ` Daniel P. Berrangé
2018-03-13 2:06 ` Peter Xu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180328040209.GA29554@xz-mi \
--to=peterx@redhat.com \
--cc=armbru@redhat.com \
--cc=dgilbert@redhat.com \
--cc=famz@redhat.com \
--cc=lvivier@redhat.com \
--cc=marcandre.lureau@gmail.com \
--cc=mdroth@linux.vnet.ibm.com \
--cc=pbonzini@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=quintela@redhat.com \
--cc=shajnocz@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).