Re: [PATCH] zap_pte_range should not mark non-uptodate pages dirty
From: Andrew Morton
Date: Thu Oct 21 2004 - 21:18:46 EST
Andrea Arcangeli <andrea@xxxxxxxxxx> wrote:
>
> On Fri, Oct 22, 2004 at 02:30:04AM +0200, Andrea Arcangeli wrote:
> > If you want to shootdown ptes before clearing the bitflag, that's fine
>
> small correction s/before/after/. doing the pte shootdown before
> clearing the uptodate bitflag, would still not guarantee to read
> uptodate data after the invalidate (a minor page fault could still
> happen between the shootdown and the clear_bit; while after clearing the
> uptodate bit a major fault hitting the disk and refreshing the pagecache
> contents will be guaranteed - modulo bhs, well at least nfs is sure ok
> in that respect ;).
Yeah. I think the only 100% reliable way to do this is:
lock_page()
unmap_mapping_range(page)
ClearPageUptodate(page);
invalidate(page); /* Try to free the thing */
unlock_page(page);
(Can do it for a whole range of pages if we always agree to lock pages in
file-index-ascending order).
but hrm, we don't even have the locking there to prevent do_no_page() from
reinstantiating the pte immediately after the unmap_mapping_range().
So what to do?
- The patch you originally sent has a race window which can be made
nonfatal by removing the BUGcheck in mpage_writepage().
- NFS should probably be taught to use unmap_mapping_range() regardless
of what we do, so the existing-mmaps-hold-stale-data problem gets fixed
up.
- invalidate_inode_pages2() isn't successfully invalidating the page if
it has buffers.
This is the biggest problem, because the pages can trivially have
buffers - just write()ing to them will attach buffers, if they're ext2-
or ext3-backed.
It means that a direct-IO write to a section of a file which is mmapped
causes pagecache and disk to get out of sync. Question is: do we care,
or do we say "don't do that"? Nobody seems to have noticed thus far and
it's a pretty dopey thing to be doing.
If we _do_ want to fix it, it seems the simplest approach would be to
nuke the pte's in invalidate_inode_pages2(). And we'd need some "oh we
raced - try again" loop in there to handle the "do_no_page()
reinstantiated a pte" race.
Fun.
Something like this? Slow as a dog, but possibly correct ;)
void invalidate_inode_pages2(struct address_space *mapping)
{
struct pagevec pvec;
pgoff_t next = 0;
int i;
pagevec_init(&pvec, 0);
while (pagevec_lookup(&pvec, mapping, next, PAGEVEC_SIZE)) {
for (i = 0; i < pagevec_count(&pvec); i++) {
struct page *page = pvec.pages[i];
lock_page(page);
if (page->mapping == mapping) { /* truncate race? */
wait_on_page_writeback(page);
next = page->index + 1;
while (page_mapped(page)) {
unmap_mapping_range(mapping,
page->index << PAGE_CACHE_SHIFT,
page->index << PAGE_CACHE_SHIFT+1,
0);
clear_page_dirty(page);
}
invalidate_complete_page(mapping, page);
}
unlock_page(page);
}
pagevec_release(&pvec);
cond_resched();
}
}
The unmapping from pagetables means that invalidate_complete_page() will
generally successfully remove the page from pagecache. That mostly fixes
the direct-write-of-mmapped-data coherency problem: the pages simply aren't
in pagecache any more so we'll surely redo physical I/O.
But it's not 100% reliable because ->invalidatepage isn't 100% reliable and
it really sucks that we're offering behaviour which only works most of the
time :(
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/