On Fri, Dec 31, 2010 at 08:31:41PM +1100, Nick Piggin wrote: > On Fri, Dec 31, 2010 at 10:29 AM, Joel Becker <Joel.Becker@xxxxxxxxxx> wrote: > > Nick, > > While visiting some issues in ocfs2_page_mkwrite(), I realized > > that we're returning 0 to mean "Please try again Mr VM", but the caller > > 0 has always meant minor fault, which means the filesystem satisfied > the request without doing IO. In the change to bit mask return values, > I kept it compatible by having major fault be presence of a bit, and minor > fault indicate absence. Ok, good, the 0 is intentionally somewhat-working. > NOPAGE basically means no further action on part of the VM is required. > It was used to consolidate pfn based fault handler with page based fault > handler. And then, later, it was further used in this case to allow the > filesystem to have the VM try again in rare / difficult to handle error cases > exactly like truncate races. Ok, so it's not "no further action" anymore, it is "I don't have a page, check again to see if I'm supposed to give you one." That's how I read the code. Cool. > No it was all back compatible. That is to say, the ones that return SIGBUS > in these cases were already broken, but the patch didn't break them further. > Actaully it closed up races a bit, if I recall. But yes they should have all > been converted to the new calling convention and returning with page > locked. > > If the filesystem returns 0, it means minor fault, and the VM will actually > install the page (unless the hack to check page->mapping catches it). Right, but does it install the page passed into page_mkwrite()? The way I read the code, it actually rechecks the pte and installs the page it now finds. > > Back to the ocfs2 issue. Am I correctly reading the current > > code that we can safely throw away the page passed in to page_mkwrite() > > if a pagecache flush has dropped it? > > Well you just return NOPAGE and the VM throws the page away. I mean, as we discuss below, that I ignore the page passed to page_mkwrite() and rediscover the mapping ourselves. > > Currently, we presume that the > > page passed in must be the one we make writable. We make a quick check > > of page->mapping == inode->i_mapping, returning 0 (for "try again") > > immediately if that's false. But once we get into the meat of our > > locking and finally lock the page for good, we assume mapping==i_mapping > > still holds. That obviously breaks when the pagecache gets truncated. > > At this late stage, we -EINVAL (clearly wrong). > > The better way to do this would be to just return VM_FAULT_NOPAGE > in any case you need the VM to retry the fault. When you reach the > business end of your handler, you want to hold the page locked, after > you verify it is correct, and return that to the fault handler. This is going to be hard. Our write_end() assumes it must unlock the pages (which is normal behavior for write(2)), but in the page_mkwrite() case we need to avoid the unlock to follow your recommendation (we use our write_begin/write_end pair to trigger any allocation or zeroing needed before the page is writable). > > It looks hard to lock the page for good high up at our first > > check of the mapping. Wengang has proposed to simply ignore the page > > passed into page_mkwrite() and just find_or_create_page() the sucker at > > the place we're ready to consider it stable. As I see it, the two > > places that call page_mkwrite() are going to revalidate the pte anyway, > > and they'll find the newly created page if find_or_create_page() gets a > > different. Is that safe behavior? > > I can't see the point. If you can find_or_create_page, then you can > lock_page, by definition. Then check the mapping and > VM_FAULT_SIGBUS if it is wrong. The find_or_create_page() is deep at the meat of the function, not the cursory check at the top. The idea is that at this point, find_or_create_page() will return a locked page that must, by definition, be part of the correct mapping. > Messing with the wrong page will only see the result ignored by the VM, > and push an incorrect page through parts of your fault handler, which > is potentially confusing at best, I would have thought. If the VM is rechecking the pte after we return from page_mkwrite(), won't it see any new page created? Joel -- "Egotist: a person more interested in himself than in me." - Ambrose Bierce http://www.jlbec.org/ jlbec@xxxxxxxxxxxx -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html