| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 24 Mar 2011 16:45:40 -0700 From: Michel Lespinasse <walken@...gle.com> To: Christoph Hellwig <hch@...radead.org> Cc: Sean Noonan <Sean.Noonan@...sigma.com>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, Martin Bligh <Martin.Bligh@...sigma.com>, Trammell Hudson <Trammell.Hudson@...sigma.com>, Christos Zoulas <Christos.Zoulas@...sigma.com>, "linux-xfs@....sgi.com" <linux-xfs@....sgi.com>, Stephen Degler <Stephen.Degler@...sigma.com>, linux-mm@...ck.org Subject: Re: XFS memory allocation deadlock in 2.6.38 On Thu, Mar 24, 2011 at 10:43 AM, Christoph Hellwig <hch@...radead.org> wrote: > Michel, > > can you take a look at this bug report? It looks like a regression > in your mlock handling changes. I had a quick look and at this point I can describe how the patch will affect behavior of this test, but not why this causes a deadlock with xfs. The test creates a writable, shared mapping of a file that does not have data blocks allocated on disk, and also uses the MAP_POPULATE flag. Before 5ecfda041e4b4bd858d25bbf5a16c2a6c06d7272, make_pages_present during the mmap would cause data blocks to get allocated on disk with an xfs_vm_page_mkwrite call, and then the file pages would get mapped as writable ptes. After 5ecfda041e4b4bd858d25bbf5a16c2a6c06d7272, make_pages_present does NOT cause data blocks to get allocated on disk. Instead, xfs_vm_readpages is called, which (I suppose) does not allocate the data blocks and returns zero filled pages instead, which get mapped as readonly ptes. Later, the test tries writing into the mmap'ed block, causing minor page faults, xfs_vm_page_mkwrite calls and data block allocations to occur. Regarding the deadlock: I am curious to see if it could be made to happen before 5ecfda041e4b4bd858d25bbf5a16c2a6c06d7272. Could you test what happens if you remove the MAP_POPULATE flag from your mmap call, and instead read all pages from userspace right after the mmap ? I expect you would then be able to trigger the deadlock before 5ecfda041e4b4bd858d25bbf5a16c2a6c06d7272. This leaves the issue of the change of behavior for MAP_POPULATE on ftruncated file holes. I'm not sure what to say there though, because MAP_POPULATE is documented to cause file read-ahead (and it still does after 5ecfda041e4b4bd858d25bbf5a16c2a6c06d7272), but that doesn't say anything about block allocation. Hope this helps, -- Michel "Walken" Lespinasse A program is never fully debugged until the last user dies. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists