Re: [patch] Re: using long instead of atomic_t when only set/read is required

From: Paul E. McKenney
Date: Mon Mar 03 2008 - 16:13:09 EST

Next message: Segher Boessenkool: "Re: bisected boot regression post 2.6.25-rc3.. please revert"
Previous message: Roland McGrath: "Re: [patch] x86, i387: fix ptrace leakage using init_fpu()"
In reply to: Rafael J. Wysocki: "Re: [patch] Re: using long instead of atomic_t when only set/read is required"
Next in thread: Linus Torvalds: "Re: [patch] Re: using long instead of atomic_t when only set/readis required"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Mar 03, 2008 at 09:27:29PM +0100, Rafael J. Wysocki wrote:
> On Monday, 3 of March 2008, Pavel Machek wrote:
> > Hi!
> >
> > > > Ok, so linux actually atomicity of long?
> > ^~-- assumes should be here.
> >
> > > No it doesn't. And even if it did you couldn't use long for this because
> > > atomic_t also ensures the points operations complete are defined. You
> > > might just about get away with volatile long * objects on x86 for simple
> > > assignments but for anything else gcc can and will generate code to
> > > update values whichever way it feels best - which includes turning
> > >
> > > long *x = a + b;
> > >
> > > into
> > >
> > > *x = a;
> > > *x += b;
> >
> > Ok, I can understand the gcc side. But do we actually run on an
> > architecture where
> >
> > long *x;
> >
> > *x = 0;
> >
> > racing with
> >
> > *x = 0x12345678;
> >
> > can produce
> >
> > *x == 0x12340000;
> >
> > or something like that?
>
> Well something like this could happen, in theory, on a "32-bit" architecture
> with a 16-bit bus. In that case, one can imagine, the first word of the
> first write may be sent through the bus immediately followed by the first
> word of the second write, followed by the second word of the second
> write and by the second word of the first write, in this order.
>
> > I'm told RCU relies on architectures not doing this, and I'd like to get this
> > clarified.
>
> Yes, it would be good to know that for sure.

Most rcu_assign_pointer() calls are protected by locks, but there might
be a few that are not. However, the case that concerns me most would be
the following:

o Task 0 writes the lower 16 bits of the pointer.

o Task 1 reads the lower 16 bits of the pointer.

o Task 1 reads the upper 16 bits of the pointer.

o Task 0 writes the upper 16 bits of the pointer.

This would result in task 1 getting a mish-mash of the old and new
versions of the pointer. Very bad!!! RCU heavily relies on the reader
seeing either the initial value of the pointer or on the value written
by some single write.

But doesn't this require a -multi-CPU- system with a 16-bit data path
from the ALU to the L0 cache? This seems a bit unlikely. Or am I being
naive about embedded CPUs?

On the other hand, if you have a 32-bit single-CPU system with a 16-bit
path to memory, all we need is that interrupts be restricted to happening
at instruction boundaries rather than in the middle of instructions.

Thanx, Paul
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Segher Boessenkool: "Re: bisected boot regression post 2.6.25-rc3.. please revert"
Previous message: Roland McGrath: "Re: [patch] x86, i387: fix ptrace leakage using init_fpu()"
In reply to: Rafael J. Wysocki: "Re: [patch] Re: using long instead of atomic_t when only set/read is required"
Next in thread: Linus Torvalds: "Re: [patch] Re: using long instead of atomic_t when only set/readis required"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]