Re: [PATCH v1] Revert "software node: Simplify software_node_release() function"
From: Heikki Krogerus
Date: Mon Mar 02 2020 - 08:57:45 EST
On Thu, Feb 27, 2020 at 04:00:01PM -0800, Brendan Higgins wrote:
> This reverts commit 3df85a1ae51f6b256982fe9d17c2dc5bfb4cc402.
>
> The reverted commit says "It's possible to release the node ID
> immediately when fwnode_remove_software_node() is called, no need to
> wait for software_node_release() with that." However, releasing the node
> ID before waiting for software_node_release() to be called causes the
> node ID to be released before the kobject and the underlying sysfs
> entry; this means there is a period of time where a sysfs entry exists
> that is associated with an unallocated node ID.
>
> Once consequence of this is that there is a race condition where it is
> possible to call fwnode_create_software_node() with no parent node
> specified (NULL) and have it fail with -EEXIST because the node ID that
> was assigned is still associated with a stale sysfs entry that hasn't
> been cleaned up yet.
>
> Although it is difficult to reproduce this race condition under normal
> conditions, it can be deterministically reproduced with the following
> minconfig on UML:
>
> CONFIG_KUNIT_DRIVER_PE_TEST=y
> CONFIG_DEBUG_KERNEL=y
> CONFIG_DEBUG_OBJECTS=y
> CONFIG_DEBUG_OBJECTS_TIMERS=y
> CONFIG_DEBUG_KOBJECT_RELEASE=y
> CONFIG_KUNIT=y
>
> Running the tests with this configuration causes the following failure:
>
> <snip>
> kobject: 'node0' ((____ptrval____)): kobject_release, parent (____ptrval____) (delayed 400)
> ok 1 - pe_test_uints
> sysfs: cannot create duplicate filename '/kernel/software_nodes/node0'
> CPU: 0 PID: 28 Comm: kunit_try_catch Not tainted 5.6.0-rc3-next-20200227 #14
> <snip>
> kobject_add_internal failed for node0 with -EEXIST, don't try to register things with the same name in the same directory.
> kobject: 'node0' ((____ptrval____)): kobject_release, parent (____ptrval____) (delayed 100)
> # pe_test_uint_arrays: ASSERTION FAILED at drivers/base/test/property-entry-test.c:123
> Expected node is not error, but is: -17
> not ok 2 - pe_test_uint_arrays
> <snip>
>
> Reported-by: Heidi Fahim <heidifahim@xxxxxxxxxx>
> Signed-off-by: Brendan Higgins <brendanhiggins@xxxxxxxxxx>
> Cc: Heikki Krogerus <heikki.krogerus@xxxxxxxxxxxxxxx>
> Cc: Hans de Goede <hdegoede@xxxxxxxxxx>
> Cc: Rafael J. Wysocki <rafael.j.wysocki@xxxxxxxxx>
Reviewed-by: Heikki Krogerus <heikki.krogerus@xxxxxxxxxxxxxxx>
> ---
> drivers/base/swnode.c | 14 +++++++-------
> 1 file changed, 7 insertions(+), 7 deletions(-)
>
> diff --git a/drivers/base/swnode.c b/drivers/base/swnode.c
> index 0b081dee1e95c..de8d3543e8fe3 100644
> --- a/drivers/base/swnode.c
> +++ b/drivers/base/swnode.c
> @@ -608,6 +608,13 @@ static void software_node_release(struct kobject *kobj)
> {
> struct swnode *swnode = kobj_to_swnode(kobj);
>
> + if (swnode->parent) {
> + ida_simple_remove(&swnode->parent->child_ids, swnode->id);
> + list_del(&swnode->entry);
> + } else {
> + ida_simple_remove(&swnode_root_ids, swnode->id);
> + }
> +
> if (swnode->allocated) {
> property_entries_free(swnode->node->properties);
> kfree(swnode->node);
> @@ -773,13 +780,6 @@ void fwnode_remove_software_node(struct fwnode_handle *fwnode)
> if (!swnode)
> return;
>
> - if (swnode->parent) {
> - ida_simple_remove(&swnode->parent->child_ids, swnode->id);
> - list_del(&swnode->entry);
> - } else {
> - ida_simple_remove(&swnode_root_ids, swnode->id);
> - }
> -
> kobject_put(&swnode->kobj);
> }
> EXPORT_SYMBOL_GPL(fwnode_remove_software_node);
> --
> 2.25.1.481.gfbce0eb801-goog
thanks,
--
heikki