Re: [PATCH] per-backing dev unplugging #2
From: Jens Axboe
Date: Fri Mar 12 2004 - 15:19:58 EST
On Fri, Mar 12 2004, Andrew Morton wrote:
> Chris Mason <mason@xxxxxxxx> wrote:
> >
> > During a mixed load test including fsx-linux and a bunch of procs
> > running cp/read/rm loops, I got a null pointer deref with the call
> > trace:
> >
> > __lock_page->sync_page->block_sync_page
> >
> > I don't see how we can trust page->mapping in this path, can't it
> > disappear? If so, it would be a bug without Jens' patch too, just
> > harder to hit.
>
> yup. I wonder why you hit it now.
>
> diff -puN fs/buffer.c~per-backing_dev-unplugging-block_sync_page-fix fs/buffer.c
> --- 25/fs/buffer.c~per-backing_dev-unplugging-block_sync_page-fix Fri Mar 12 11:59:37 2004
> +++ 25-akpm/fs/buffer.c Fri Mar 12 12:00:20 2004
> @@ -2928,7 +2928,10 @@ EXPORT_SYMBOL(try_to_free_buffers);
>
> int block_sync_page(struct page *page)
> {
> - blk_run_address_space(page->mapping);
> + struct address_space *mapping = page->mapping;
> +
> + if (mapping)
> + blk_run_address_space(mapping);
> return 0;
> }
>
>
> This should be sufficient. All callers of lock_page() should have a ref on
> the inode so ->mapping should be stable even if truncate whips the page off
> the inode.
blk_run_address_space() already checks for mapping == NULL, so the above
cannot make any difference.
--
Jens Axboe
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/