Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp816407yba;
        Wed, 24 Apr 2019 10:03:29 -0700 (PDT)
X-Google-Smtp-Source: APXvYqzpYmno9C9zdg4MC7xECTNrFSfg1ywm31CJfOCn7MowvvGrJQVfCZ0NhPiRBE8M1obFTy8A
X-Received: by 2002:a62:f24e:: with SMTP id y14mr34591265pfl.209.1556125409349;
        Wed, 24 Apr 2019 10:03:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1556125409; cv=none;
        d=google.com; s=arc-20160816;
        b=R+XohKTHiZv6DXruFF9XDqv0Fs1WF8hpyc6HHKxdfP4nZoRn2yaUU5cKfxkCxGPOIB
         eH7AroDyTC5EnrKwkFwjBjfgPrywkNaDaIANWDjFv6cAyZ5bZr+8OT5s9PmxBGiGErZb
         px5kx/BWuMXbZ3xTZZyYtqL+w6uOdfy+vtlTNUei2GWWHzQME2tYyvni4dfB+PXVvqBN
         FUsA2KJr+3fZYAY6xUiS+LkojEuPIxQAqRC1IgWqPGisMZngTnWjMGdo9ltgZqc3pZeA
         4rhcPNFkSlF0IoX/xcVYgNLOanJ/Ko2ONveahEg1SHNI5eaw1DdbmD558o0ZpJHgSGcB
         XQFA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=u0xdQG7XXXGAkZcqa01b+K6zesVH0wqMBXBoQ7iMEt4=;
        b=PC9veHVxZnx7GJEM455DxJAjxTHGYEst3E+kkkseUYXRDVfXiYRhKZ1+3mWbV1WUGA
         AbsTgdVblp2UZ0NYnyYC7YDi6c9dwkcT9b9dkPaHl+rqp8AyAo+efiiBtGt3a15j/Dit
         qEParxLqUcvYqrBAVumiPJnLCZqUzcfol3G6JJNm0+6dyoAm3kJCgnfNLa1hwa6tBzHg
         XwSSNy+csy08rJZ9BeKRP6Nc4pIA2r7vCOv38LUDDRLCVjT2uGN0ZQexb8MScxZ5a0zL
         R48X6gIfidq69wUaQRq8pWRXFC0hXId5pzfkgTaNZirjru4m812qvo42Xyx0YgY9izJI
         BeWw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@infradead.org header.s=merlin.20170209 header.b=0cvYt72F;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id w6si17869611pgr.71.2019.04.24.10.03.11;
        Wed, 24 Apr 2019 10:03:29 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@infradead.org header.s=merlin.20170209 header.b=0cvYt72F;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1733090AbfDXRCD (ORCPT <rfc822;luigi.mantellini.ml@gmail.com>
        + 99 others); Wed, 24 Apr 2019 13:02:03 -0400
Received: from merlin.infradead.org ([205.233.59.134]:39138 "EHLO
        merlin.infradead.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1732643AbfDXRCD (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 24 Apr 2019 13:02:03 -0400
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
        d=infradead.org; s=merlin.20170209; h=In-Reply-To:Content-Type:MIME-Version:
        References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To:
        Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:
        Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:
        List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
         bh=u0xdQG7XXXGAkZcqa01b+K6zesVH0wqMBXBoQ7iMEt4=; b=0cvYt72FPQJkUjxyWympbr+Vj
        wGvv11IppIetyusX36ZTLnHI5XpYXkSkIFKcWuoSz/gjMc1tO1aERLMwqMXtwK30Zf7TmTeXl66tf
        6jr7ObNWW4cgz9ltFXCJOFzRcbRqjQSRnTVMGyfXFyJtduupAxx8sT1gyXJQ8oKr68iVOhQp+OwO4
        n7NhyVjaCi916yEumN8ZwF2HDMVWQodzq1DUfEgwHx8UAXWFHG8yeMDHuwI2XFAq6vrH2DBWRjI/u
        aXCLwztl5NT2ymd3b9HFopj0e+qcihtiobMPx/xUzhBZj5Bx5Qhyn+uU8doZPkcOQZZJCw6C5cyzO
        4e/qdEyHw==;
Received: from j217100.upc-j.chello.nl ([24.132.217.100] helo=hirez.programming.kicks-ass.net)
        by merlin.infradead.org with esmtpsa (Exim 4.90_1 #2 (Red Hat Linux))
        id 1hJLHL-000695-Hk; Wed, 24 Apr 2019 17:01:52 +0000
Received: by hirez.programming.kicks-ass.net (Postfix, from userid 1000)
        id 97F8E20D0A200; Wed, 24 Apr 2019 19:01:48 +0200 (CEST)
Date:   Wed, 24 Apr 2019 19:01:48 +0200
From:   Peter Zijlstra <peterz@infradead.org>
To:     Waiman Long <longman@redhat.com>
Cc:     Linus Torvalds <torvalds@linux-foundation.org>,
        Ingo Molnar <mingo@redhat.com>,
        Will Deacon <will.deacon@arm.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Linux List Kernel Mailing <linux-kernel@vger.kernel.org>,
        the arch/x86 maintainers <x86@kernel.org>,
        Davidlohr Bueso <dave@stgolabs.net>,
        Tim Chen <tim.c.chen@linux.intel.com>,
        huang ying <huang.ying.caritas@gmail.com>
Subject: Re: [PATCH v4 14/16] locking/rwsem: Guard against making count
 negative
Message-ID: <20190424170148.GR12232@hirez.programming.kicks-ass.net>
References: <20190419120207.GO4038@hirez.programming.kicks-ass.net>
 <20190419130304.GV14281@hirez.programming.kicks-ass.net>
 <20190419131522.GW14281@hirez.programming.kicks-ass.net>
 <57620139-92a3-4a21-56bd-5d6fff23214f@redhat.com>
 <7b1bfc26-6e90-bd65-ab46-08413acd80e9@redhat.com>
 <20190423141714.GO11158@hirez.programming.kicks-ass.net>
 <CAHk-=whnQJ9YDrkcKteNSACMJxzw1bL0RPfGQsey_9Nm7b8mnw@mail.gmail.com>
 <4f62d7f2-e5f6-500e-3e70-b1d1978f7140@redhat.com>
 <20190424070959.GE4038@hirez.programming.kicks-ass.net>
 <51589ac0-3e1f-040e-02bf-b6de77cbda1d@redhat.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <51589ac0-3e1f-040e-02bf-b6de77cbda1d@redhat.com>
User-Agent: Mutt/1.10.1 (2018-07-13)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, Apr 24, 2019 at 12:49:05PM -0400, Waiman Long wrote:
> On 4/24/19 3:09 AM, Peter Zijlstra wrote:
> > On Tue, Apr 23, 2019 at 03:12:16PM -0400, Waiman Long wrote:
> >> That is true in general, but doing preempt_disable/enable across
> >> function boundary is ugly and prone to further problems down the road.
> > We do worse things in this code, and the thing Linus proposes is
> > actually quite simple, something like so:
> >
> > ---
> > --- a/kernel/locking/rwsem.c
> > +++ b/kernel/locking/rwsem.c
> > @@ -912,7 +904,7 @@ rwsem_down_read_slowpath(struct rw_semap
> >  			raw_spin_unlock_irq(&sem->wait_lock);
> >  			break;
> >  		}
> > -		schedule();
> > +		schedule_preempt_disabled();
> >  		lockevent_inc(rwsem_sleep_reader);
> >  	}
> >  
> > @@ -1121,6 +1113,7 @@ static struct rw_semaphore *rwsem_downgr
> >   */
> >  inline void __down_read(struct rw_semaphore *sem)
> >  {
> > +	preempt_disable();
> >  	if (unlikely(atomic_long_fetch_add_acquire(RWSEM_READER_BIAS,
> >  			&sem->count) & RWSEM_READ_FAILED_MASK)) {
> >  		rwsem_down_read_slowpath(sem, TASK_UNINTERRUPTIBLE);
> > @@ -1129,10 +1122,12 @@ inline void __down_read(struct rw_semaph
> >  	} else {
> >  		rwsem_set_reader_owned(sem);
> >  	}
> > +	preempt_enable();
> >  }
> >  
> >  static inline int __down_read_killable(struct rw_semaphore *sem)
> >  {
> > +	preempt_disable();
> >  	if (unlikely(atomic_long_fetch_add_acquire(RWSEM_READER_BIAS,
> >  			&sem->count) & RWSEM_READ_FAILED_MASK)) {
> >  		if (IS_ERR(rwsem_down_read_slowpath(sem, TASK_KILLABLE)))
> > @@ -1142,6 +1137,7 @@ static inline int __down_read_killable(s
> >  	} else {
> >  		rwsem_set_reader_owned(sem);
> >  	}
> > +	preempt_enable();
> >  	return 0;
> >  }
> >  
> 
> Making that change will help the slowpath to has less preemption points.

That doesn't matter, right? Either it blocks or it goes through quickly.

If you're worried about a parituclar spot we can easily put in explicit
preemption points.

> For an uncontended rwsem, this offers no real benefit. Adding
> preempt_disable() is more complicated than I originally thought.

I'm not sure I get your objection?

> Maybe we are too paranoid about the possibility of a large number of
> preemptions happening just at the right moment. If p is the probably of
> a preemption in the middle of the inc-check-dec sequence, which I have
> already moved as close to each other as possible. We are talking a
> probability of p^32768. Since p will be really small, the compound
> probability will be infinitesimally small.

Sure; but we run on many millions of machines every second, so the
actual accumulated chance of it happening eventually is still fairly
significant.

> So I would like to not do preemption now for the current patchset. We
> can restart the discussion later on if there is a real concern that it
> may actually happen. Please let me know if you still want to add
> preempt_disable() for the read lock.

I like provably correct schemes over prayers.

As you noted, distros don't usually ship with PREEMPT=y and therefore
will not be bothered much by any of this.

The old scheme basically worked by the fact that the total supported
reader count was higher than the number of addressable pages in the
system and therefore the overflow could not happen.

We now transition to number of CPUs, and for that we pay a little price
with PREEMPT=y kernels. Either that or cmpxchg.