Re: [PATCH V2 08/11] cxl/mem: Wire up event interrupts

From: Jonathan Cameron
Date: Tue Dec 06 2022 - 04:38:35 EST

Next message: Harshit Mogalapalli: "[PATCH] io_uring: Fix a null-ptr-deref in io_tctx_exit_cb()"
Previous message: Miaohe Lin: "Re: [PATCH v4 12/17] mm: remember exclusively mapped anonymous pages with PG_anon_exclusive"
In reply to: Dan Williams: "Re: [PATCH V2 08/11] cxl/mem: Wire up event interrupts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 5 Dec 2022 08:35:34 -0800
Dan Williams <dan.j.williams@xxxxxxxxx> wrote:

> Jonathan Cameron wrote:
> > On Fri, 2 Dec 2022 11:43:29 -0800
> > Dan Williams <dan.j.williams@xxxxxxxxx> wrote:
> >
> > > Jonathan Cameron wrote:
> > > >
> > > > > > +int cxl_event_config_msgnums(struct cxl_dev_state *cxlds,
> > > > > > + struct cxl_event_interrupt_policy *policy)
> > > > > > +{
> > > > > > + int rc;
> > > > > > +
> > > > > > + policy->info_settings = CXL_INT_MSI_MSIX;
> > > > > > + policy->warn_settings = CXL_INT_MSI_MSIX;
> > > > > > + policy->failure_settings = CXL_INT_MSI_MSIX;
> > > > > > + policy->fatal_settings = CXL_INT_MSI_MSIX;
> > > > >
> > > > > I think this needs to be careful not to undo events that the BIOS
> > > > > steered to itself in firmware-first mode, which raises another question,
> > > > > does firmware-first mean more the OS needs to backoff on some event-log
> > > > > handling as well?
> > > >
> > > > Hmm. Does the _OSC cover these. There is one for Memory error reporting
> > > > that I think covers it (refers to 12.2.3.2)
> > > >
> > > > Note that should cover any means of obtaining these, not just interrupt
> > > > driven - so including the initial record clear.
> > > >
> > > > ..
> > > >
> > > > > > +
> > > > > > +static irqreturn_t cxl_event_failure_thread(int irq, void *id)
> > > > > > +{
> > > > > > + struct cxl_dev_state *cxlds = id;
> > > > > > +
> > > > > > + cxl_mem_get_records_log(cxlds, CXL_EVENT_TYPE_FAIL);
> > > > > > + return IRQ_HANDLED;
> > > > > > +}
> > > > >
> > > > > So I think one of the nice side effects of moving log priorty handling
> > > > > inside of cxl_mem_get_records_log() and looping through all log types in
> > > > > priority order until all status is clear is that an INFO interrupt also
> > > > > triggers a check of the FATAL status for free.
> > > > >
> > > >
> > > > I go the opposite way on this in thinking that an interrupt should only
> > > > ever be used to handle the things it was registered for - so we should
> > > > not be clearing fatal records in the handler triggered for info events.
> > >
> > > I would agree with you if this was a fast path and if the hardware
> > > mechanism did not involve shared status register that tells you
> > > that both FATAL and INFO are pending retrieval through a mechanism.
> > > Compare that to the separation between admin and IO queues in NVME.
> > >
> > > If the handler is going to loop on the status register then it must be
> > > careful not to starve out FATAL while processing INFO.
> > >
> > > > Doing other actions like this relies on subtlies of the generic interrupt
> > > > handling code which happens to force interrupt threads on a shared interrupt
> > > > line to be serialized. I'm not sure we are safe at all the interrupt
> > > > isn't shared unless we put a lock around the whole thing (we have one
> > > > because of the buffer mutex though).
> > >
> > > The interrupt is likely shared since there is no performance benefit to
> > > entice hardware vendors spend transistor budget on more vector space for
> > > events. The events architecture does not merit that spend.
> > >
> > > > If going this way I think the lock needs a rename.
> > > > It's not just protecting the buffer used, but also serialize multiple
> > > > interrupt threads.
> > >
> > > I will let Ira decide if he wants to rename, but in my mind the shared
> > > event buffer *is* the data being locked, the fact that multiple threads
> > > might be contending for it is immaterial.
> >
> > It isn't he only thing being protected. Access to the device is also
> > being serialized including the data in it's registers.
> >
> > If someone comes along later and decides to implement multiple buffers
> > and there for gets rid of the lock. boom.
>
> That's what the mailbox mutex is protecting against. If there is an
> aspect of the hardware state that is not protected by that then that's a
> bug.
>
Wrong level of locking. This is about a race on multiple commands
1) Read data from interrupt thread 1.
2) Read same data from interrupt thread 2.
3) Clear data from interrupt thread 1.
4) Clear data from interrupt thread 2. Boom (well minor error we
probably eat but not good practice).

Next message: Harshit Mogalapalli: "[PATCH] io_uring: Fix a null-ptr-deref in io_tctx_exit_cb()"
Previous message: Miaohe Lin: "Re: [PATCH v4 12/17] mm: remember exclusively mapped anonymous pages with PG_anon_exclusive"
In reply to: Dan Williams: "Re: [PATCH V2 08/11] cxl/mem: Wire up event interrupts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]