Xen project Mailing List

Re: [Xen-devel] [PATCH v2 3/3] xen: perform XenDevice clean-up in XenBus watch handler

To: Anthony Perard <anthony.perard@xxxxxxxxxx>

From: Paul Durrant <Paul.Durrant@xxxxxxxxxx>

Date: Thu, 12 Sep 2019 15:15:30 +0000

Accept-language: en-GB, en-US

Authentication-results: esa2.hc3370-68.iphmx.com; dkim=none (message not signed) header.i=none; spf=None smtp.pra=Paul.Durrant@xxxxxxxxxx; spf=Pass smtp.mailfrom=Paul.Durrant@xxxxxxxxxx; spf=None smtp.helo=postmaster@xxxxxxxxxxxxxxx

Cc: "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, "qemu-devel@xxxxxxxxxx" <qemu-devel@xxxxxxxxxx>

Delivery-date: Thu, 12 Sep 2019 15:16:07 +0000

Ironport-sdr: 3+/XlMaJNZuDstqazJtQZzKvQtp77ZoKO5tNHMiw/prNrShaiJy+Cz5ecWtYVgNu3TEKWwdsax I4uzmv5YSCdVmE6ZvGpI0WilGgbjNCAJxkTMmtC8X+h0diFOR3VfeWe5a+7AzM8+oPaQn//np0 BW7omwHnP5uGusFPi/n1xK12Uwsb3gAe/mbTlKCZywkrETlQ+w6w0iJUC39s2qJ70AGxe5LC2G 8CimoSLUErrqw2+WcwgVUDBfjtBIRWyrzu0Qbf68CbraMl2oooKT0HPj33bgnLMOj50wuP2Wq1 msA=

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Thread-index: AQHVaWP1a6uo9FDbNkeviSOLMWhOMKcoAmKAgAAj/tA=

Thread-topic: [PATCH v2 3/3] xen: perform XenDevice clean-up in XenBus watch handler

> -----Original Message----- > From: Anthony PERARD <anthony.perard@xxxxxxxxxx> > Sent: 12 September 2019 16:04 > To: Paul Durrant <Paul.Durrant@xxxxxxxxxx> > Cc: qemu-devel@xxxxxxxxxx; xen-devel@xxxxxxxxxxxxxxxxxxxx; Stefano Stabellini > <sstabellini@xxxxxxxxxx> > Subject: Re: [PATCH v2 3/3] xen: perform XenDevice clean-up in XenBus watch > handler > > On Thu, Sep 12, 2019 at 01:16:46PM +0100, Paul Durrant wrote: > > Cleaning up offine XenDevice objects directly in > ^ offline > > > xen_device_backend_changed() is dangerous as xen_device_unrealize() will > > modify the watch list that is being walked. Even the QLIST_FOREACH_SAFE() > > used in notifier_list_notify() is insufficient as *two* notifiers (for > > the frontend and backend watches) are removed, thus potentially rendering > > the 'next' pointer unsafe. > > > > The solution is to use the XenBus backend_watch handler to do the clean-up > > instead, as it is invoked whilst walking a separate watch list. > > > > This patch therefore adds a new 'offline_devices' list to XenBus, to which > > offline devices are added by xen_device_backend_changed(). The XenBus > > backend_watch registration is also changed to not only invoke > > xen_bus_enumerate() but also a new xen_bus_cleanup() function, which will > > walk 'offline_devices' and perform the necessary actions. > > For safety a an extra 'online' check is also added to > ^ one 'a' too many? > > > xen_bus_type_enumerate() to make sure that no attempt is made to create a > > new XenDevice object for a backend that is offline. > > > > NOTE: This patch also include some cosmetic changes: > > - substitute the local variable name 'backend_state' > > in xen_bus_type_enumerate() with 'state', since there > > is no ambiguity with any other state in that context. > > - change xen_device_state_is_active() to > > xen_device_frontend_is_active() (and pass a XenDevice directly) > > since the state tests contained therein only apply to a frontend. > > - use 'state' rather then 'xendev->backend_state' in > > xen_device_backend_changed() to shorten the code. > > > > Signed-off-by: Paul Durrant <paul.durrant@xxxxxxxxxx> > > --- > > > > v2: > > - Make sure we don't try to add a XenDevice to 'offline_devices' more than > > once > > --- > > > > /* > > * If a backend is still 'online' then we should leave it alone but, > > - * if a backend is not 'online', then the device should be destroyed > > - * once the state is Closed. > > + * if a backend is not 'online', then the device is a candidate > > + * for destruction. Hence add it to the 'offline' list to be cleaned > > + * by xen_bus_cleanup(). > > */ > > - if (!xendev->backend_online && > > - (xendev->backend_state == XenbusStateClosed || > > - xendev->backend_state == XenbusStateInitialising || > > - xendev->backend_state == XenbusStateInitWait || > > - xendev->backend_state == XenbusStateUnknown)) { > > - Error *local_err = NULL; > > + if (!online && > > + (state == XenbusStateClosed || state == XenbusStateInitialising || > > + state == XenbusStateInitWait || state == XenbusStateUnknown) && > > + !QLIST_NEXT(xendev, list)) { > > Could you add a note about this QLIST_NEXT? I don't think it's going to > be obvious enough why we check that there are no next item. I might only > understand it just because of your reply to the v1 of the patch. > (Well the changelog of the patch also point out what it's for.) > Sure, it's worth a comment. > > + XenBus *xenbus = XEN_BUS(qdev_get_parent_bus(DEVICE(xendev))); > > > > - if (!xen_backend_try_device_destroy(xendev, &local_err)) { > > - object_unparent(OBJECT(xendev)); > > - } > > + QLIST_INSERT_HEAD(&xenbus->offline_devices, xendev, list); > > > > - if (local_err) { > > - error_report_err(local_err); > > - } > > + /* > > + * Re-write the state to cause a XenBus backend_watch notification, > > + * resulting in a call to xen_bus_cleanup(). > > + */ > > + xen_device_backend_printf(xendev, "state", "%u", state); > > It kind of feels wrong to rely on xenstore to notify QEMU's xenbus > driver that a device needs cleanup. But that does the job. > I had originally considered setting up an event notifier but that seemed like more fds than were strictly necessary ;-) > With a note about the use of QLIST_NEXT and the few typo fixed, the > patch will be good to go. > Cool. I'll tidy up and send a v3. Paul > Thanks, > > -- > Anthony PERARD _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxxx https://lists.xenproject.org/mailman/listinfo/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.