* Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> wrote: > On Thu, Oct 3, 2013 at 5:41 PM, Josh Triplett <josh@xxxxxxxxxxxxxxxx> wrote: > > > > Read, yes, but I don't think that's enough to force your example above > > to work in all cases. That requires semantics beyond what RCU's > > primitives guarantee, and I don't think you can draw conclusions about > > those semantics without talking about CPU memory barriers. > > We seriosly depend on nothing leaking out. Not just reads. The "U" in > RCU is "update". So it's reads, and it's writes. The fact that it says > "read" in "rcu_read_lock()" doesn't mean that only reads would be > affected. > > And no, this still has nothing to do with memory barriers. Every single > RCU user depends on the memory freeing being delayed by RCU, for > example. And again, that's not just reads. It's people taking spinlocks > on things that are RCU-protected etc. > > So no, there is no question about this. The only question would be > whether we have some RCU mode that is _buggy_, not whether you need > extra memory barriers. And that is certainly possible. Broken RCU modes are not unheard of, but Paul is extremely methodical about testing and reviewing all the details - including formal proof testing methods. There are lots of high-profile, high-frequency RCU users in the kernel that make use of every aspect of RCU semantics and any breakage would affect them as well. There are over 2000 RCU critical sections in the kernel today, so the likelyhood of the VFS triggering an unknown bug, without other users breaking already, is fairly low. If it happens it will be fixed like other RCU bugs. So I really wouldn't worry about it too much. If you don't mind the additional sys_umount() delay then RCU is goodness. Thanks, Ingo -- To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html