Page MenuHomeFreeBSD

buf_ring: Keep the full head and tail values
ClosedPublic

Authored by andrew on Jul 26 2024, 8:56 AM.
Tags
None
Referenced Files
F94127294: D46151.id141504.diff
Sun, Sep 15, 7:22 PM
F94126006: D46151.id.diff
Sun, Sep 15, 7:06 PM
Unknown Object (File)
Tue, Sep 10, 5:41 PM
Unknown Object (File)
Sun, Sep 8, 10:39 PM
Unknown Object (File)
Sun, Sep 8, 8:09 PM
Unknown Object (File)
Sun, Sep 8, 8:30 AM
Unknown Object (File)
Sat, Sep 7, 5:11 AM
Unknown Object (File)
Sun, Sep 1, 5:50 PM
Subscribers

Details

Summary

If a thread reads the head but then sleeps for long enough that
another thread fills the ring and leaves the new head with the
expected value then the cmpset can pass when it should have failed.

To work around this keep the full head and tail value and use the
upper bits as a generation count.

Sponsored by: Arm Ltd

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

sys/sys/buf_ring.h
85

If you define i in the loop header, the ifdef becomes a bit less ugly.

91

Is there some reason to load the mask in the critical section? It also duplicates the load in the debug code above.

Am I right that this revision does not fix the issue, but covers it with more bits from the unused space in the head index? It is still possible that head wraps around, just less likely now that full 2^32 iterations needs to occur under it?

In D46151#1052139, @kib wrote:

Am I right that this revision does not fix the issue, but covers it with more bits from the unused space in the head index? It is still possible that head wraps around, just less likely now that full 2^32 iterations needs to occur under it?

It's still possible, just very unlikely. Even if the value wrapped it would need to be the correct value for the cmpset to succeed.

In D46151#1052139, @kib wrote:

Am I right that this revision does not fix the issue, but covers it with more bits from the unused space in the head index? It is still possible that head wraps around, just less likely now that full 2^32 iterations needs to occur under it?

It's still possible, just very unlikely. Even if the value wrapped it would need to be the correct value for the cmpset to succeed.

I suggest adding a comment, to save the future reader from realizing this on his own,

This revision is now accepted and ready to land.Aug 16 2024, 8:10 AM
This revision was automatically updated to reflect the committed changes.