[PATCH 3/5] cpufreq: Synchronize the cpufreq store_*() routines withCPU hotplug

From: Srivatsa S. Bhat
Date: Fri Sep 06 2013 - 15:57:50 EST

Next message: Srivatsa S. Bhat: "[PATCH 4/5] cpufreq: Remove temporary fix for race between CPUhotplug and sysfs-writes"
Previous message: Srivatsa S. Bhat: "[PATCH 2/5] cpufreq: Invoke __cpufreq_remove_dev_finish() afterreleasing cpu_hotplug.lock"
In reply to: Srivatsa S. Bhat: "[PATCH 2/5] cpufreq: Invoke __cpufreq_remove_dev_finish() afterreleasing cpu_hotplug.lock"
Next in thread: Srivatsa S. Bhat: "[PATCH 4/5] cpufreq: Remove temporary fix for race between CPUhotplug and sysfs-writes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The functions that are used to write to cpufreq sysfs files (such as
store_scaling_max_freq()) are not hotplug safe. They can race with CPU
hotplug tasks and lead to problems such as trying to acquire an already
destroyed timer-mutex etc.

Eg:

__cpufreq_remove_dev()
__cpufreq_governor(policy, CPUFREQ_GOV_STOP);
policy->governor->governor(policy, CPUFREQ_GOV_STOP);
cpufreq_governor_dbs()
case CPUFREQ_GOV_STOP:
mutex_destroy(&cpu_cdbs->timer_mutex)
cpu_cdbs->cur_policy = NULL;
<PREEMPT>
store()
__cpufreq_set_policy()
__cpufreq_governor(policy, CPUFREQ_GOV_LIMITS);
policy->governor->governor(policy, CPUFREQ_GOV_LIMITS);
case CPUFREQ_GOV_LIMITS:
mutex_lock(&cpu_cdbs->timer_mutex); <-- Warning (destroyed mutex)
if (policy->max < cpu_cdbs->cur_policy->cur) <- cur_policy == NULL

So use get_online_cpus()/put_online_cpus() in the store_*() functions, to
synchronize with CPU hotplug. However, there is an additional point to note
here: some parts of the CPU teardown in the cpufreq subsystem are done in
the CPU_POST_DEAD stage, with cpu_hotplug.lock *released*. So, using the
get/put_online_cpus() functions alone is insufficient; we should also ensure
that we don't race with those latter steps in the hotplug sequence. We can
easily achieve this by checking if the CPU is online before proceeding with
the store, since the CPU would have been marked offline by the time the
CPU_POST_DEAD notifiers are executed.

Reported-by: Stephen Boyd <sboyd@xxxxxxxxxxxxxx>
Signed-off-by: Srivatsa S. Bhat <srivatsa.bhat@xxxxxxxxxxxxxxxxxx>
---

drivers/cpufreq/cpufreq.c | 11 +++++++++--
1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/drivers/cpufreq/cpufreq.c b/drivers/cpufreq/cpufreq.c
index a6fe3fd..c2eb413 100644
--- a/drivers/cpufreq/cpufreq.c
+++ b/drivers/cpufreq/cpufreq.c
@@ -717,8 +717,13 @@ static ssize_t store(struct kobject *kobj, struct attribute *attr,
struct freq_attr *fattr = to_attr(attr);
ssize_t ret = -EINVAL;

+ get_online_cpus();
+
+ if (!cpu_online(policy->cpu))
+ goto unlock;
+
if (!down_read_trylock(&cpufreq_rwsem))
- goto exit;
+ goto unlock;

if (lock_policy_rwsem_write(policy->cpu) < 0)
goto up_read;
@@ -732,7 +737,9 @@ static ssize_t store(struct kobject *kobj, struct attribute *attr,

up_read:
up_read(&cpufreq_rwsem);
-exit:
+unlock:
+ put_online_cpus();
+
return ret;
}

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Srivatsa S. Bhat: "[PATCH 4/5] cpufreq: Remove temporary fix for race between CPUhotplug and sysfs-writes"
Previous message: Srivatsa S. Bhat: "[PATCH 2/5] cpufreq: Invoke __cpufreq_remove_dev_finish() afterreleasing cpu_hotplug.lock"
In reply to: Srivatsa S. Bhat: "[PATCH 2/5] cpufreq: Invoke __cpufreq_remove_dev_finish() afterreleasing cpu_hotplug.lock"
Next in thread: Srivatsa S. Bhat: "[PATCH 4/5] cpufreq: Remove temporary fix for race between CPUhotplug and sysfs-writes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]