Re: [PATCH RFC 1/5] vringfd syscall

From: Rusty Russell
Date: Sat Apr 05 2008 - 23:04:34 EST

Next message: Rusty Russell: "Re: module parameters versus kernel command line"
Previous message: Rusty Russell: "Re: [PATCH RFC 2/5] vringfd base/offset"
In reply to: Anthony Liguori: "Re: [PATCH RFC 1/5] vringfd syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sunday 06 April 2008 03:13:41 Anthony Liguori wrote:
> > + void *buf = calloc(vring_size(256, getpagesize()), 0);
>
> Shouldn't this be calloc(1, vring_size(256, getpagesize()));?

Heh, yes... spot the last minute change from malloc to calloc.

> > + if (r != 0)
> > + err(1, "poll after used incremented gave %i", r);
>
> I have a tough time seeing what you're demonstrating here. Perhaps some
> comments?

Well, not I have lguest working, I can just blow away the test program. It
just tests poll.

> > +config VRINGFD
> > + bool "vring fd support (EXPERIMENTAL)"
> > + depends on EXPERIMENTAL
> > + help
> > + vring is a ringbuffer implementation for efficient I/O. It is
> > + currently used by virtualization hosts (lguest, kvm) for efficient
> > + networking using the tun driver.
> > +
> > + If unsure, say N.
> > +
>
> Should select VIRTIO && VIRTIO_RING

I don't think so. It doesn't depend on either.

> > +/* Returns an error, or 0 (no buffers), or an id for vring_used_buffer()
> > */ +int vring_get_buffer(struct vring_info *vr,
> > + struct iovec *in_iov,
> > + unsigned int *num_in, unsigned long *in_len,
> > + struct iovec *out_iov,
> > + unsigned int *num_out, unsigned long *out_len)
> > +{
>
> It seems unlikely that a caller could place both in_iov/out_iov on the
> stack since to do it safely, you would have to use vring.num which is
> determined by userspace. Since you have to kmalloc() the buffers
> anyway, why not just allocate a single data structure within this
> function and return it.

This needs a comment. num_out and num_in are in parameters specifying the
maximum of each.

> > + /* If they want to use atomically, we have to map the page. */
> > + if (atomic_use) {
> > + if (get_user_pages(current, current->mm,
> > + (unsigned long)vr->ring.used, 1, 1, 1,
> > + &vr->used_page, NULL) != 1) {
> > + vr = ERR_PTR(-EFAULT);
> > + goto unlock;
> > + }
>
> Oh, this is when it's safe to use. You don't seem to be acquiring
> current->mm->mmap_sem here. Also, this assumes the used ring fits
> within a single page which isn't true with a ring > 512 elements.

Yes, this is a hack. It actually means ring <= 256 for PAGE_SIZE 4096. I'm
not entirely comfortable with it.

> A consequence of this is that devices that interact with a ring queue
> atomically now have an additional capability: pinning an arbitrary
> amount of physical memory.

Erk, the size check that was supposed to be here got lost in the reshuffle :(.

One option is to use a sliding window, but better is to do best effort and
have the tun driver fall back (this is actually possible with a slight
change).

Thanks,
Rusty.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rusty Russell: "Re: module parameters versus kernel command line"
Previous message: Rusty Russell: "Re: [PATCH RFC 2/5] vringfd base/offset"
In reply to: Anthony Liguori: "Re: [PATCH RFC 1/5] vringfd syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]