From: Matthew Wilcox <willy@infradead.org>
To: Tong Tiangen <tongtiangen@huawei.com>
Cc: Andrew Morton <akpm@linux-foundation.org>,
Naoya Horiguchi <naoya.horiguchi@nec.com>,
Miaohe Lin <linmiaohe@huawei.com>,
wangkefeng.wang@huawei.com, linux-mm@kvack.org,
linux-kernel@vger.kernel.org
Subject: Re: [PATCH v2] mm: memory-failure: use rcu lock instead of tasklist_lock when collect_procs()
Date: Mon, 21 Aug 2023 19:33:13 +0100 [thread overview]
Message-ID: <ZOOt6S+I9ywyNQjP@casper.infradead.org> (raw)
In-Reply-To: <20230821091312.2034844-1-tongtiangen@huawei.com>
On Mon, Aug 21, 2023 at 05:13:12PM +0800, Tong Tiangen wrote:
> We found a softlock issue in our test, analyzed the logs, and found that
> the relevant CPU call trace as follows:
>
> CPU0:
> _do_fork
> -> copy_process()
> -> write_lock_irq(&tasklist_lock) //Disable irq,waiting for
> //tasklist_lock
>
> CPU1:
> wp_page_copy()
> ->pte_offset_map_lock()
> -> spin_lock(&page->ptl); //Hold page->ptl
> -> ptep_clear_flush()
> -> flush_tlb_others() ...
> -> smp_call_function_many()
> -> arch_send_call_function_ipi_mask()
> -> csd_lock_wait() //Waiting for other CPUs respond
> //IPI
>
> CPU2:
> collect_procs_anon()
> -> read_lock(&tasklist_lock) //Hold tasklist_lock
> ->for_each_process(tsk)
> -> page_mapped_in_vma()
> -> page_vma_mapped_walk()
> -> map_pte()
> ->spin_lock(&page->ptl) //Waiting for page->ptl
>
> We can see that CPU1 waiting for CPU0 respond IPI,CPU0 waiting for CPU2
> unlock tasklist_lock, CPU2 waiting for CPU1 unlock page->ptl. As a result,
> softlockup is triggered.
>
> For collect_procs_anon(), we will not modify the tasklist, but only perform
> read traversal. Therefore, we can use rcu lock instead of spin lock
> tasklist_lock, from this, we can break the softlock chain above.
The only thing that's giving me pause is that there's no discussion
about why this is safe. "We're not modifying it" isn't really enough
to justify going from read_lock() to rcu_read_lock(). When you take a
normal read_lock(), writers are not permitted and so you see an atomic
snapshot of the list. With rcu_read_lock() you can see inconsistencies.
For example, if new tasks can be added to the tasklist, they may not
be seen by an iteration. Is this OK? Tasks may be removed from the
tasklist after they have been seen by the iteration. Is this OK?
As I understand the list RCU code, it guarantees that all tasks which
were on the list before rcu_read_lock() and remain on the list after
rcu_read_unlock() will be seen by a list iteration, while tasks which
are added or removed during that time may or may not be seen.
next prev parent reply other threads:[~2023-08-21 18:33 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-08-21 9:13 Tong Tiangen
2023-08-21 18:33 ` Matthew Wilcox [this message]
2023-08-22 3:41 ` Tong Tiangen
2023-08-22 12:08 ` Matthew Wilcox
2023-08-25 6:02 ` Naoya Horiguchi
2023-08-26 1:46 ` Tong Tiangen
2023-08-26 20:28 ` Matthew Wilcox
2023-08-28 2:36 ` Tong Tiangen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZOOt6S+I9ywyNQjP@casper.infradead.org \
--to=willy@infradead.org \
--cc=akpm@linux-foundation.org \
--cc=linmiaohe@huawei.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=naoya.horiguchi@nec.com \
--cc=tongtiangen@huawei.com \
--cc=wangkefeng.wang@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox