Differential D55819
queue.h: Reorder STAILQ_INSERT_TAIL Authored by des on Wed, Mar 11, 9:39 PM.
Details The current implementation briefly violates the tail invariant. This MFC after: 1 week
Diff Detail
Event TimelineComment Actions If it is, then that change should fix it. In any case, the change is correct in the sense that all that has been working up to now will continue to work with it (excluding racy executions).
Comment Actions Oh, and proposed commit's message herald line: "queue.h: Make STAILQ_INSERT_TAIL() maintain the tail invariant at all times". Comment Actions Yes. We weren't able to get to the bottom of the panic we saw (it's hard to reproduce and happened in a CI environment where live gdb is not available) but we assume that the queue was being updated just as the panic occurred so the current tail's next pointer had been updated to point to the new element but stqh_last had not. We then tripped QCMD_STAILQ_CHECK_TAIL while dumping core. This, of course, assumes that neither the compiler nor the CPU reordered the writes... Comment Actions The compiler could in theory, but I doubt it would in practice, as it sees that (head)->stqh_last is changed before prevlast is used. But maybe they have become smart enough. In any case, adding a memory barrier for such an infrequent case may pessimize existing code. An acceptable way out could be to test for panic and just bail out right in QMD_ASSERT() (introducing a new QMD_PANICKED()). As for CPUs reordering the writes, given the synchronization that happens at panic, the CPU that continues to run after the panic cannot observe these reorderings and will just observe all writes as performed. | ||||||||||||||