[v16,01/26] blk-zoned: Fix a reference count leak

Message ID	20241119002815.600608-2-bvanassche@acm.org (mailing list archive)
State	Not Applicable
Headers	show Received: from 009.lax.mailroute.net (009.lax.mailroute.net [199.89.1.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 821231AAC4; Tue, 19 Nov 2024 00:28:34 +0000 (UTC) sender: bvanassche@acm.org) by 009.lax.mailroute.net (Postfix) with ESMTPSA id 4Xslhs5tYPzlgVXv; Tue, 19 Nov 2024 00:28:29 +0000 (UTC) From: Bart Van Assche <bvanassche@acm.org> To: Jens Axboe <axboe@kernel.dk> Cc: linux-block@vger.kernel.org, linux-scsi@vger.kernel.org, Christoph Hellwig <hch@lst.de>, Damien Le Moal <dlemoal@kernel.org>, Jaegeuk Kim <jaegeuk@kernel.org>, Bart Van Assche <bvanassche@acm.org> Subject: [PATCH v16 01/26] blk-zoned: Fix a reference count leak Date: Mon, 18 Nov 2024 16:27:50 -0800 Message-ID: <20241119002815.600608-2-bvanassche@acm.org> In-Reply-To: <20241119002815.600608-1-bvanassche@acm.org> References: <20241119002815.600608-1-bvanassche@acm.org> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable
Series	Improve write performance for zoned UFS devices \| expand [v16,00/26] Improve write performance for zoned UFS devices [v16,01/26] blk-zoned: Fix a reference count leak [v16,02/26] blk-zoned: Split disk_zone_wplugs_work() [v16,03/26] blk-zoned: Split queue_zone_wplugs_show() [v16,04/26] blk-zoned: Only handle errors after pending zoned writes have completed [v16,05/26] blk-zoned: Fix a deadlock triggered by unaligned writes [v16,06/26] blk-zoned: Fix requeuing of zoned writes [v16,07/26] block: Support block drivers that preserve the order of write requests [v16,08/26] dm-linear: Report to the block layer that the write order is preserved [v16,09/26] mq-deadline: Remove a local variable [v16,10/26] blk-mq: Clean up blk_mq_requeue_work() [v16,11/26] block: Optimize blk_mq_submit_bio() for the cache hit scenario [v16,12/26] block: Rework request allocation in blk_mq_submit_bio() [v16,13/26] block: Support allocating from a specific software queue [v16,14/26] blk-mq: Restore the zoned write order when requeuing [v16,15/26] blk-zoned: Document the locking order [v16,16/26] blk-zoned: Document locking assumptions [v16,17/26] blk-zoned: Uninline functions that are not in the hot path [v16,18/26] blk-zoned: Make disk_should_remove_zone_wplug() more robust [v16,19/26] blk-zoned: Add an argument to blk_zone_plug_bio() [v16,20/26] blk-zoned: Support pipelining of zoned writes [v16,21/26] scsi: core: Retry unaligned zoned writes [v16,22/26] scsi: sd: Increase retry count for zoned writes [v16,23/26] scsi: scsi_debug: Add the preserves_write_order module parameter [v16,24/26] scsi: scsi_debug: Support injecting unaligned write errors [v16,25/26] scsi: scsi_debug: Skip host/bus reset settle delay [v16,26/26] scsi: ufs: Inform the block layer about write ordering

Message ID

20241119002815.600608-2-bvanassche@acm.org (mailing list archive)

State

Not Applicable

Headers

From: Bart Van Assche <bvanassche@acm.org>
To: Jens Axboe <axboe@kernel.dk>
Cc: linux-block@vger.kernel.org,
	linux-scsi@vger.kernel.org,
	Christoph Hellwig <hch@lst.de>,
	Damien Le Moal <dlemoal@kernel.org>,
	Jaegeuk Kim <jaegeuk@kernel.org>,
	Bart Van Assche <bvanassche@acm.org>
Subject: [PATCH v16 01/26] blk-zoned: Fix a reference count leak
Date: Mon, 18 Nov 2024 16:27:50 -0800
Message-ID: <20241119002815.600608-2-bvanassche@acm.org>
In-Reply-To: <20241119002815.600608-1-bvanassche@acm.org>
References: <20241119002815.600608-1-bvanassche@acm.org>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

Series

Improve write performance for zoned UFS devices | expand

Fix a reference count leak in disk_zone_wplug_handle_error() Fixes: dd291d77cc90 ("block: Introduce zone write plugging") Signed-off-by: Bart Van Assche <bvanassche@acm.org> --- block/blk-zoned.c | 2 ++ 1 file changed, 2 insertions(+)

Comments

Damien Le Moal Nov. 19, 2024, 2:23 a.m. UTC | #1

On 11/19/24 9:27 AM, Bart Van Assche wrote:
> Fix a reference count leak in disk_zone_wplug_handle_error()
> 
> Fixes: dd291d77cc90 ("block: Introduce zone write plugging")
> Signed-off-by: Bart Van Assche <bvanassche@acm.org>
> ---
>  block/blk-zoned.c | 2 ++
>  1 file changed, 2 insertions(+)
> 
> diff --git a/block/blk-zoned.c b/block/blk-zoned.c
> index 70211751df16..3346b8c53605 100644
> --- a/block/blk-zoned.c
> +++ b/block/blk-zoned.c
> @@ -1337,6 +1337,8 @@ static void disk_zone_wplug_handle_error(struct gendisk *disk,
>  
>  unlock:
>  	spin_unlock_irqrestore(&zwplug->lock, flags);
> +
> +	disk_put_zone_wplug(zwplug);

The zone wplug put call is right after the single call site to
disk_zone_wplug_handle_error(). The reason it is *not* in that function is that
the reference on the wplug for handling an error is taken when the wplug is
added to the error list. disk_zone_wplug_handle_error() does not itself take a
reference on the wplug.

So how did you come up with this ? What workload/operation did you run to find
an issue ?

>  }
>  
>  static void disk_zone_wplugs_work(struct work_struct *work)

Bart Van Assche Nov. 19, 2024, 8:21 p.m. UTC | #2

On 11/18/24 6:23 PM, Damien Le Moal wrote:
> On 11/19/24 9:27 AM, Bart Van Assche wrote:
>> Fix a reference count leak in disk_zone_wplug_handle_error()
>>
>> Fixes: dd291d77cc90 ("block: Introduce zone write plugging")
>> Signed-off-by: Bart Van Assche <bvanassche@acm.org>
>> ---
>>   block/blk-zoned.c | 2 ++
>>   1 file changed, 2 insertions(+)
>>
>> diff --git a/block/blk-zoned.c b/block/blk-zoned.c
>> index 70211751df16..3346b8c53605 100644
>> --- a/block/blk-zoned.c
>> +++ b/block/blk-zoned.c
>> @@ -1337,6 +1337,8 @@ static void disk_zone_wplug_handle_error(struct gendisk *disk,
>>   
>>   unlock:
>>   	spin_unlock_irqrestore(&zwplug->lock, flags);
>> +
>> +	disk_put_zone_wplug(zwplug);
> 
> The zone wplug put call is right after the single call site to
> disk_zone_wplug_handle_error(). The reason it is *not* in that function is that
> the reference on the wplug for handling an error is taken when the wplug is
> added to the error list. disk_zone_wplug_handle_error() does not itself take a
> reference on the wplug.
> 
> So how did you come up with this ? What workload/operation did you run to find
> an issue ?

Thanks for the feedback. I can't reproduce the refcount leak without my
other patches. I will check with which other patch this patch has to be
combined. This is the script that triggered the leak:

#!/bin/bash

set -eu

qd=${1:-64}
if modprobe -r scsi_debug; then :; fi
params=(
         delay=0
         dev_size_mb=256
         every_nth=$((2 * qd))
         max_queue=${qd}
         ndelay=100000           # 100 us
         opts=0x8000             # SDEBUG_OPT_HOST_BUSY
         preserves_write_order=1
         sector_size=4096
         zbc=host-managed
         zone_nr_conv=0
         zone_size_mb=4
)
modprobe scsi_debug "${params[@]}"
while true; do
         bdev=$(cd 
/sys/bus/pseudo/drivers/scsi_debug/adapter*/host*/target*/*/block && 
echo *) 2>/dev/null
         if [ -e /dev/"${bdev}" ]; then break; fi
         sleep .1
done
dev=/dev/"${bdev}"
[ -b "${dev}" ]
for rw in write randwrite; do
     params=(
         --direct=1
         --filename="${dev}"
         --iodepth="${qd}"
         --ioengine=io_uring
         --ioscheduler=none
         --gtod_reduce=1
         --hipri=0
         --name="$(basename "${dev}")"
         --runtime=30
         --rw="$rw"
         --time_based=1
         --zonemode=zbd
     )
     fio "${params[@]}"
     rc=$?
     if grep -avH " ref 1 " /sys/kernel/debug/block/sda/zone_wplugs; 
then :; fi
     echo ''
     [ $rc = 0 ] || break
done

diff --git a/block/blk-zoned.c b/block/blk-zoned.c
index 70211751df16..3346b8c53605 100644
--- a/block/blk-zoned.c
+++ b/block/blk-zoned.c
@@ -1337,6 +1337,8 @@  static void disk_zone_wplug_handle_error(struct gendisk *disk,
 
 unlock:
 	spin_unlock_irqrestore(&zwplug->lock, flags);
+
+	disk_put_zone_wplug(zwplug);
 }
 
 static void disk_zone_wplugs_work(struct work_struct *work)

[v16,01/26] blk-zoned: Fix a reference count leak

Commit Message

Comments

Patch