Re: [PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock()

[PATCH v3 00/13] mm: free retracted page table by RCU · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 01/13] mm/pgtable: add rcu_read_lock() and rcu_read_unlock()s · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 02/13] mm/pgtable: add PAE safety to __pte_offset_map() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 03/13] arm: adjust_pte() use pte_offset_map_nolock() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock() · Hugh Dickins <hughd@google.com> · 2023-07-12
Re: [PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock() · Aneesh Kumar K.V <hidden> · 2023-07-18
Re: [PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock() · Hugh Dickins <hughd@google.com> · 2023-07-19
Re: [PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock() · Aneesh Kumar K V <hidden> · 2023-07-19
Re: [PATCH v3 04/13] powerpc: assert_pte_locked() use pte_offset_map_nolock() · Jay Patel <hidden> · 2023-07-21
[PATCH v3 04/13 fix] powerpc: assert_pte_locked() use pte_offset_map_nolock(): fix · Hugh Dickins <hughd@google.com> · 2023-07-23
[PATCH v3 05/13] powerpc: add pte_free_defer() for pgtables sharing page · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 06/13] sparc: add pte_free_defer() for pte_t *pgtable_t · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 07/13] s390: add pte_free_defer() for pgtables sharing page · Hugh Dickins <hughd@google.com> · 2023-07-12
Re: [PATCH v3 07/13] s390: add pte_free_defer() for pgtables sharing page · Alexander Gordeev <agordeev@linux.ibm.com> · 2023-07-13
Re: [PATCH v3 07/13] s390: add pte_free_defer() for pgtables sharing page · Claudio Imbrenda <imbrenda@linux.ibm.com> · 2023-07-19
[PATCH v3 07/13 fix] s390: add pte_free_defer() for pgtables sharing page: fix · Hugh Dickins <hughd@google.com> · 2023-07-23
[PATCH v3 08/13] mm/pgtable: add pte_free_defer() for pgtable as page · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 09/13] mm/khugepaged: retract_page_tables() without mmap or vma lock · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 10/13 fix] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock(): fix · Hugh Dickins <hughd@google.com> · 2023-07-23
Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Qi Zheng <hidden> · 2023-08-03
Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Hugh Dickins <hughd@google.com> · 2023-08-06
Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Qi Zheng <hidden> · 2023-08-07
[PATCH v3 10/13 fix2] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock(): fix2 · Hugh Dickins <hughd@google.com> · 2023-08-06
[BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Jann Horn <jannh@google.com> · 2023-08-14
Re: [BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Hugh Dickins <hughd@google.com> · 2023-08-15
Re: [BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · David Hildenbrand <hidden> · 2023-08-15
Re: [BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Hugh Dickins <hughd@google.com> · 2023-08-15
Re: [BUG] Re: [PATCH v3 10/13] mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock() · Hugh Dickins <hughd@google.com> · 2023-08-21
[PATCH v3 11/13] mm/khugepaged: delete khugepaged_collapse_pte_mapped_thps() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 11/13 fix] mm/khugepaged: delete khugepaged_collapse_pte_mapped_thps(): fix · Hugh Dickins <hughd@google.com> · 2023-07-23
[PATCH v3 12/13] mm: delete mmap_write_trylock() and vma_try_start_write() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH mm 12/13] mm: delete mmap_write_trylock() and vma_try_start_write() · Hugh Dickins <hughd@google.com> · 2023-07-12
[PATCH v3 13/13] mm/pgtable: notes on pte_offset_map[_lock]() · Hugh Dickins <hughd@google.com> · 2023-07-12

From: Jay Patel <hidden>
Date: 2023-07-21 13:15:53
Also in: linux-s390, lkml, sparclinux

On Jul 19 2023, Aneesh Kumar K V wrote:

On 7/19/23 10:34 AM, Hugh Dickins wrote:

quoted

On Tue, 18 Jul 2023, Aneesh Kumar K.V wrote:

quoted

Hugh Dickins [off-list ref] writes:

quoted

Instead of pte_lockptr(), use the recently added pte_offset_map_nolock()
in assert_pte_locked().  BUG if pte_offset_map_nolock() fails: this is
stricter than the previous implementation, which skipped when pmd_none()
(with a comment on khugepaged collapse transitions): but wouldn't we want
to know, if an assert_pte_locked() caller can be racing such transitions?

The reason we had that pmd_none check there was to handle khugpaged. In
case of khugepaged we do pmdp_collapse_flush and then do a ptep_clear.
ppc64 had the assert_pte_locked check inside that ptep_clear.

_pmd = pmdp_collapse_flush(vma, address, pmd);
..
ptep_clear()
-> asset_ptep_locked()
---> pmd_none
-----> BUG


The problem is how assert_pte_locked() verify whether we are holding
ptl. It does that by walking the page table again and in this specific
case by the time we call the function we already had cleared pmd .

Aneesh, please clarify, I've spent hours on this.

From all your use of past tense ("had"), I thought you were Acking my
patch; but now, after looking again at v3.11 source and today's,
I think you are NAKing my patch in its present form.

Sorry for the confusion my reply created.

quoted

You are pointing out that anon THP's __collapse_huge_page_copy_succeeded()
uses ptep_clear() at a point after pmdp_collapse_flush() already cleared
*pmd, so my patch now leads that one use of assert_pte_locked() to BUG.
Is that your point?

Yes. I haven't tested this yet to verify that it is indeed hitting that BUG.
But a code inspection tells me we will hit that BUG on powerpc because of
the above details.

Hi Aneesh,

After testing it, I can confirm that it encountered a BUG on powerpc.
Log report as attached

Thanks,
Jay Patel

quoted

I can easily restore that khugepaged comment (which had appeared to me
out of date at the time, but now looks still relevant) and pmd_none(*pmd)
check: but please clarify.

That is correct. if we add that pmd_none check back we should be good here.


-aneesh

Attachments

report.txt [text/plain] 3720 bytes · preview

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help