Re: [RFC][PATCH 2/2] PM: Rework handling of interrupts during suspend-resume

From: Rafael J. Wysocki
Date: Tue Feb 24 2009 - 17:42:51 EST

Next message: Andrew Morton: "Re: [PATCH 4/4] mqueue namespace: adapt sysctl"
Previous message: Mimi Zohar: "Re: next-20090220: XFS, IMA: BUG: sleeping function called frominvalid context at mm/slub.c:1613"
Next in thread: Linus Torvalds: "Re: [RFC][PATCH 2/2] PM: Rework handling of interrupts duringsuspend-resume"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tuesday 24 February 2009, Eric W. Biederman wrote:
> "Rafael J. Wysocki" <rjw@xxxxxxx> writes:
>
> > On Monday 23 February 2009, Eric W. Biederman wrote:
> >> "Rafael J. Wysocki" <rjw@xxxxxxx> writes:
> >>
> >> >> I don't know where in the state machine this is getting called but
> >> >> I would suggest doing this before we shutdown cpus.
> >> >
> >> > This is the plan. In fact, I'm going to do this in the next patch after the
> >> > $subject one has been tested and found acceptable.
> >>
> >> Good to hear. Then let's please get a version of the irq disable that calls
> >> shutdown, so we can be certain we don't have hardware irqs in flight.
> >>
> >> For the drivers it should not matter for clean cpu shutdown it will.
> >
> > OK, I will.
>
> My apologies I was wrong. Calling shutdown is not safe.
>
> I just remembered that masking an ioapic from anywhere besides the
> irq handler can lock the ioapic state machine, and lead to non-recoverable
> interrupts. It is rare but I have seen it happen. I wanted to figure out
> how to migrate interrupts outside of interrupt context and this was what
> prevented me. A suspend/resume cycle might be enough of a reset to
> get the ioapic out of that state but I don't know.
>
> The only safe way on x86 to shutdown a level triggered ioapic irq
> outside of irq context is for the driver to program the hardware to
> not generate an irq.

Well, that changes things quite a bit, because it means we can't change the
suspend-resume sequence in a way we thought we could without fixing all
drivers first, but this is exactly what we'd like to avoid by changing the
core.

I think the most important source of level triggered interrupts are PCI
devices, so perhaps we can make the PCI PM core use bit 10 of the PCI Device
Control register to prevent devices from generating INTx after the drivers'
suspend routines have been executed?

> Therefore doing anything with the irqs at the point where we are
> suspending them is a formality, and perhaps simply code that ensures
> in-flight irqs don't make it past a certain point.
>
> I believe we just need to call disable() and print a big nasty warning
> if any irq comes in after the suspend stage.

At the moment we're safe, since PCI devices are put into low power states
in the suspend stage. However, we'd like to make that happen in the "late
suspend" stage to avoid a problem with a shared interrupt occuring after one
of the devices using it has been suspended and its driver's irq handler can't
cope with that.

Thanks,
Rafael
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: [PATCH 4/4] mqueue namespace: adapt sysctl"
Previous message: Mimi Zohar: "Re: next-20090220: XFS, IMA: BUG: sleeping function called frominvalid context at mm/slub.c:1613"
Next in thread: Linus Torvalds: "Re: [RFC][PATCH 2/2] PM: Rework handling of interrupts duringsuspend-resume"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]