From: Jan Kiszka <jan.kiszka@siemens.com>
To: "DIAO, Hanson" <hanson.diao@siemens.com>,
"xenomai@xenomai.org" <xenomai@xenomai.org>
Subject: Re: A potential Xenomai Mutex issue
Date: Fri, 23 Aug 2019 08:47:32 +0200 [thread overview]
Message-ID: <43f9470f-ed47-0a2a-71f5-ca9bca08879a@siemens.com> (raw)
In-Reply-To: <DM6PR07MB596162CF3DD4EB4071336D26E7A50@DM6PR07MB5961.namprd07.prod.outlook.com>
On 22.08.19 20:42, DIAO, Hanson via Xenomai wrote:
> Hi all,
>
>
>
> I hope you are doing well. Currently I was working on a critical deadlock issue with Xenomail Library(version 2.6.4). I found that for the Xenomai lock count is not reliable after we called rt_mutex_release. I print the following message to you. I hope some developer can help me fix this issue. I know that this version is EOL, but we still use this old version. Thank you so much.
>
This is on a ARMv7 multicore target, right? Are you already able to reproduce
the issue reliably, possibly in a synthetic environment? Or does your whole
stack have to run on the target for a long time to trigger this? Is the mutex
shared between multiple process or just between threads of the same process?
Next point: You are on 2.6.4 while the last release was 2.6.5. It contained e.g.
8047147aff9d (posix/mutex: handle recursion count completely in user-space).
Maybe something analogously was needed for native as well. And then you could
look at what happened in 3.x mutex-wise to check if you are not missing a
conceptual fix in 2.6.
>
>
> Issue 1:
>
> Before Mutex Lock Mutext addr = 0xb7c059e8,count = 0, owner = 0 This message show the status before rt_mutex_acquire.
>
> After Mutex Lock Mutext addr = 0xb7c059e8,count = 1, owner = 2bd This message show the status after calling rt_mutex_acquire. Everything is right for the rt_mutex_acquire in this scenario.
>
>
>
> Before Mutex unLock Mutext addr = 0xb7c059e8,count = 1, owner = 2bd This message show the status before rt_mutex_release.
>
> After Mutex unLock Mutext addr = 0xb7c059e8,count = 1, owner = 0 This message show the status after rt_mutex_release. It seems that the lock count is not correct after call rt_mutex_release.
>
You seem to look at the wrong data structure. You need to examine
RT_MUTEX_PLACEHOLDER fields.
>
>
> Issue 2:
>
> When our task is call recursive lock. The mutex lock count should more than 1, but the lock count is still 1.
>
>
>
> For the issue 1, I guess that there are something wrong in the release function. I highlighted the code. I am not sure if it is the root cause.
>
Don't use HTML emails on public lists. They often get filtered, at latest on
receiver side.
Jan
>
>
> int rt_mutex_release(RT_MUTEX *mutex)
>
> {
>
> #ifdef CONFIG_XENO_FASTSYNCH
>
> unsigned long status;
>
> xnhandle_t cur;
>
>
>
> cur = xeno_get_current();
>
> if (cur == XN_NO_HANDLE)
>
> return -EPERM;
>
>
>
> status = xeno_get_current_mode();
>
> if (unlikely(status & XNOTHER))
>
> /* See rt_mutex_acquire_inner() */
>
> goto do_syscall;
>
>
>
> if (unlikely(xnsynch_fast_owner_check(mutex->fastlock, cur) != 0))
>
> return -EPERM;
>
>
>
> if (mutex->lockcnt > 1) {
>
> mutex->lockcnt--;
>
> return 0;
>
> }
>
>
>
> if (likely(xnsynch_fast_release(mutex->fastlock, cur)))
>
> {
>
> return 0;
>
> }
>
> do_syscall:
>
> #endif /* CONFIG_XENO_FASTSYNCH */
>
>
>
> return XENOMAI_SKINCALL1(__native_muxid, __native_mutex_release, mutex);
>
> }
>
>
>
>
>
>
>
> For the Mutex lock function, I am so confused with the following comments which I highlighted as below. I am not sure if it supports the recursive lock.
>
> static int rt_mutex_acquire_inner(RT_MUTEX *mutex, RTIME timeout, xntmode_t mode)
>
> {
>
> int err;
>
> #ifdef CONFIG_XENO_FASTSYNCH
>
> unsigned long status;
>
> xnhandle_t cur;
>
>
>
> cur = xeno_get_current();
>
> if (cur == XN_NO_HANDLE)
>
> return -EPERM;
>
>
>
> /*
>
> * We track resource ownership for non real-time shadows in
>
> * order to handle the auto-relax feature, so we must always
>
> * obtain them via a syscall.
>
> */
>
> status = xeno_get_current_mode();
>
> if (unlikely(status & XNOTHER))
>
> goto do_syscall;
>
>
>
> if (likely(!(status & XNRELAX))) {
>
> err = xnsynch_fast_acquire(mutex->fastlock, cur);
>
> if (likely(!err)) {
>
> mutex->lockcnt = 1;
>
> return 0;
>
> }
>
>
>
> if (err == -EBUSY) {
>
> if (mutex->lockcnt == UINT_MAX)
>
> return -EAGAIN;
>
>
>
> mutex->lockcnt++;
>
> return 0;
>
> }
>
>
>
> if (timeout == TM_NONBLOCK && mode == XN_RELATIVE)
>
> return -EWOULDBLOCK;
>
> } else if (xnsynch_fast_owner_check(mutex->fastlock, cur) == 0) {
>
> /*
>
> * The application is buggy as it jumped to secondary mode
>
> * while holding the mutex. Nevertheless, we have to keep the
>
> * mutex state consistent.
>
> *
>
> * We make no efforts to migrate or warn here. There is
>
> * XENO_DEBUG(SYNCH_RELAX) to catch such bugs.
>
> */
>
> if (mutex->lockcnt == UINT_MAX)
>
> return -EAGAIN;
>
>
>
> mutex->lockcnt++;
>
> return 0;
>
> }
>
> do_syscall:
>
> #endif /* CONFIG_XENO_FASTSYNCH */
>
>
>
> err = XENOMAI_SKINCALL3(__native_muxid,
>
> __native_mutex_acquire, mutex, mode, &timeout);
>
>
>
> #ifdef CONFIG_XENO_FASTSYNCH
>
> if (!err)
>
> mutex->lockcnt = 1;
>
> #endif /* CONFIG_XENO_FASTSYNCH */
>
>
>
> return err;
>
> }
>
>
>
>
>
--
Siemens AG, Corporate Technology, CT RDA IOT SES-DE
Corporate Competence Center Embedded Linux
next prev parent reply other threads:[~2019-08-23 6:47 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-08-22 18:42 A potential Xenomai Mutex issue DIAO, Hanson
2019-08-23 6:47 ` Jan Kiszka [this message]
2019-08-23 14:02 ` DIAO, Hanson
2019-08-23 14:16 ` Jan Kiszka
2019-08-23 14:29 ` DIAO, Hanson
2019-08-23 15:23 ` Jan Kiszka
2019-08-23 15:49 ` DIAO, Hanson
2019-08-23 16:18 ` Jan Kiszka
2019-08-23 17:27 ` DIAO, Hanson
2019-08-23 18:17 ` Jan Kiszka
2019-08-23 14:18 ` DIAO, Hanson
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=43f9470f-ed47-0a2a-71f5-ca9bca08879a@siemens.com \
--to=jan.kiszka@siemens.com \
--cc=hanson.diao@siemens.com \
--cc=xenomai@xenomai.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.