From patchwork Wed Jul 20 18:26:23 2011
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: "Paul E. McKenney" <paulmck@linux.vnet.ibm.com>
X-Patchwork-Id: 2880
Return-Path: <patch+caf_=linaro-patchwork=canonical.com@linaro.org>
X-Original-To: patchwork@peony.canonical.com
Delivered-To: patchwork@peony.canonical.com
Received: from fiordland.canonical.com (fiordland.canonical.com
 [91.189.94.145])
 by peony.canonical.com (Postfix) with ESMTP id 52C442405D
 for <patchwork@peony.canonical.com>;
 Wed, 20 Jul 2011 18:26:41 +0000 (UTC)
Received: from mail-qy0-f180.google.com (mail-qy0-f180.google.com
 [209.85.216.180])
 by fiordland.canonical.com (Postfix) with ESMTP id 220E2A186C9
 for <linaro-patchwork@canonical.com>;
 Wed, 20 Jul 2011 18:26:41 +0000 (UTC)
Received: by qyk30 with SMTP id 30so361952qyk.11
 for <linaro-patchwork@canonical.com>;
 Wed, 20 Jul 2011 11:26:40 -0700 (PDT)
Received: by 10.229.217.3 with SMTP id hk3mr8155677qcb.38.1311186400624;
 Wed, 20 Jul 2011 11:26:40 -0700 (PDT)
X-Forwarded-To: linaro-patchwork@canonical.com
X-Forwarded-For: patch@linaro.org linaro-patchwork@canonical.com
Delivered-To: patches@linaro.org
Received: by 10.229.217.78 with SMTP id hl14cs121059qcb;
 Wed, 20 Jul 2011 11:26:40 -0700 (PDT)
Received: by 10.52.112.5 with SMTP id im5mr9133340vdb.373.1311186398576;
 Wed, 20 Jul 2011 11:26:38 -0700 (PDT)
Received: from e5.ny.us.ibm.com (e5.ny.us.ibm.com [32.97.182.145])
 by mx.google.com with ESMTPS id
 b14si363611vcw.154.2011.07.20.11.26.38
 (version=TLSv1/SSLv3 cipher=OTHER);
 Wed, 20 Jul 2011 11:26:38 -0700 (PDT)
Received-SPF: pass (google.com: domain of paulmck@linux.vnet.ibm.com
 designates 32.97.182.145 as permitted sender)
 client-ip=32.97.182.145; 
Authentication-Results: mx.google.com; spf=pass (google.com: domain of
 paulmck@linux.vnet.ibm.com designates 32.97.182.145 as
 permitted sender) smtp.mail=paulmck@linux.vnet.ibm.com
Received: from d01relay06.pok.ibm.com (d01relay06.pok.ibm.com [9.56.227.116])
 by e5.ny.us.ibm.com (8.14.4/8.13.1) with ESMTP id p6KHvg8e015658;
 Wed, 20 Jul 2011 13:57:42 -0400
Received: from d01av01.pok.ibm.com (d01av01.pok.ibm.com [9.56.224.215])
 by d01relay06.pok.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id
 p6KIQbmR1319102; Wed, 20 Jul 2011 14:26:37 -0400
Received: from d01av01.pok.ibm.com (loopback [127.0.0.1])
 by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP id
 p6KIQUgn024737; Wed, 20 Jul 2011 14:26:37 -0400
Received: from paulmck-ThinkPad-W500
 (paulmck-ThinkPad-W500.beaverton.ibm.com [9.47.24.65])
 by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id
 p6KIQRXB024260; Wed, 20 Jul 2011 14:26:28 -0400
Received: by paulmck-ThinkPad-W500 (Postfix, from userid 1000)
 id 4166813F808; Wed, 20 Jul 2011 11:26:25 -0700 (PDT)
From: "Paul E. McKenney" <paulmck@linux.vnet.ibm.com>
To: linux-kernel@vger.kernel.org
Cc: mingo@elte.hu, laijs@cn.fujitsu.com, dipankar@in.ibm.com,
 akpm@linux-foundation.org, mathieu.desnoyers@polymtl.ca,
 josh@joshtriplett.org, niv@us.ibm.com, tglx@linutronix.de,
 peterz@infradead.org, rostedt@goodmis.org, Valdis.Kletnieks@vt.edu,
 dhowells@redhat.com, eric.dumazet@gmail.com, darren@dvhart.com,
 patches@linaro.org, greearb@candelatech.com, edt@aei.ca,
 "Paul E. McKenney" <paul.mckenney@linaro.org>,
 "Paul E. McKenney" <paulmck@linux.vnet.ibm.com>
Subject: [PATCH tip/core/urgent 7/7] signal: align __lock_task_sighand() irq
 disabling and RCU
Date: Wed, 20 Jul 2011 11:26:23 -0700
Message-Id: <1311186383-24819-7-git-send-email-paulmck@linux.vnet.ibm.com>
X-Mailer: git-send-email 1.7.3.2
In-Reply-To: <20110720182512.GA22946@linux.vnet.ibm.com>
References: <20110720182512.GA22946@linux.vnet.ibm.com>

From: Paul E. McKenney <paul.mckenney@linaro.org>

The __lock_task_sighand() function calls rcu_read_lock() with interrupts
and preemption enabled, but later calls rcu_read_unlock() with interrupts
disabled.  It is therefore possible that this RCU read-side critical
section will be preempted and later RCU priority boosted, which means that
rcu_read_unlock() will call rt_mutex_unlock() in order to deboost itself, but
with interrupts disabled. This results in lockdep splats, so this commit
nests the RCU read-side critical section within the interrupt-disabled
region of code.  This prevents the RCU read-side critical section from
being preempted, and thus prevents the attempt to deboost with interrupts
disabled.

It is quite possible that a better long-term fix is to make rt_mutex_unlock()
disable irqs when acquiring the rt_mutex structure's ->wait_lock.

Signed-off-by: Paul E. McKenney <paul.mckenney@linaro.org>
Signed-off-by: Paul E. McKenney <paulmck@linux.vnet.ibm.com>
---
 kernel/signal.c |   19 +++++++++++++------
 1 files changed, 13 insertions(+), 6 deletions(-)

diff --git a/kernel/signal.c b/kernel/signal.c
index ff76786..415d85d 100644
--- a/kernel/signal.c
+++ b/kernel/signal.c
@@ -1178,18 +1178,25 @@ struct sighand_struct *__lock_task_sighand(struct task_struct *tsk,
 {
 	struct sighand_struct *sighand;
 
-	rcu_read_lock();
 	for (;;) {
+		local_irq_save(*flags);
+		rcu_read_lock();
 		sighand = rcu_dereference(tsk->sighand);
-		if (unlikely(sighand == NULL))
+		if (unlikely(sighand == NULL)) {
+			rcu_read_unlock();
+			local_irq_restore(*flags);
 			break;
+		}
 
-		spin_lock_irqsave(&sighand->siglock, *flags);
-		if (likely(sighand == tsk->sighand))
+		spin_lock(&sighand->siglock);
+		if (likely(sighand == tsk->sighand)) {
+			rcu_read_unlock();
 			break;
-		spin_unlock_irqrestore(&sighand->siglock, *flags);
+		}
+		spin_unlock(&sighand->siglock);
+		rcu_read_unlock();
+		local_irq_restore(*flags);
 	}
-	rcu_read_unlock();
 
 	return sighand;
 }