WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

Re: [Xen-devel] xen irq unmask bug brainstroming

To: "Jeremy Fitzhardinge" <jeremy@xxxxxxxx>, "Fengzhe Zhang" <fengzhe.zhang@xxxxxxxxx>
Subject: Re: [Xen-devel] xen irq unmask bug brainstroming
From: "Jan Beulich" <JBeulich@xxxxxxxxxx>
Date: Tue, 15 Feb 2011 10:28:51 +0000
Cc: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>, Eddie Dong <eddie.dong@xxxxxxxxx>, Xin Li <xin.li@xxxxxxxxx>
Delivery-date: Tue, 15 Feb 2011 02:29:43 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <1A42CE6F5F474C41B63392A5F80372B2335E8D61@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <1A42CE6F5F474C41B63392A5F80372B2335E8D61@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
>>> On 15.02.11 at 07:28, "Zhang, Fengzhe" <fengzhe.zhang@xxxxxxxxx> wrote:
> Hi, we found a bug related to xen spin unlock ipi. Looking forward to 
> brainstorming for a clean fixup.
> 
> How the bug happens:
> 1. Dom0 poweroff.
> 2. CPU0 takes down other CPUs.
> 3. IRQs are unmasked in function fixup_irqs on other CPUs.
> 4. IPI IRQ for "lock_kicker_irq" is unmasked (which should never happen).
> 5. Other CPUs receives lock_kicker_irq and dummy_handler (handler for ipi 
> XEN_SPIN_UNLOCK_VECTOR) is invoked.
> 6. Dummy_handler reports bug and crashes Dom0.
> 
> Main cause:
> Function fixup_irqs masks and then unmasks each irq when taking cpus down. 
> And Xen irq_chip structure does not distinguish disable_ops from mask_ops. So 
> when the lock_kicker_irq is unmasked, it is effectively re-enabled.
> 
> A possible fixup:
> Provide a dedicated disable_ops for xen irq_chip structure. Prevent 
> unmask_ops to enable irqs that are disabled.

Other alternatives (based on what we do in non-pvops, where we
don't have this problem): Either mark the kicker IRQ properly as
IRQ_PER_CPU (IRQF_PERCPU is being passed, but this additionally
requires CONFIG_IRQ_PER_CPU to be set), and then exclude
per-CPU IRQs from being fixed up (which they obviously should be).

Or don't use the kernel's IRQ subsystem altogether, and instead
directly map the kick logic to event channels. (This is what we do,
but we have the per-CPU handling above in place nevertheless
to cover IPIs and timer vIRQ.)

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

<Prev in Thread] Current Thread [Next in Thread>