From: Charan Teja Kalla <charan.kalla@oss.qualcomm.com>
To: Barry Song <21cnbao@gmail.com>, Chris Li <chrisl@kernel.org>
Cc: david@redhat.com, Liam.Howlett@oracle.com,
lorenzo.stoakes@oracle.com, akpm@linux-foundation.org,
shikemeng@huaweicloud.com, kasong@tencent.com, nphamcs@gmail.com,
bhe@redhat.com, zhangpeng.00@bytedance.com, linux-mm@kvack.org,
linux-kernel@vger.kernel.org
Subject: Re: [PATCH V2] mm: swap: check for stable address space before operating on the VMA
Date: Sun, 28 Sep 2025 21:31:05 +0530 [thread overview]
Message-ID: <a3b3f044-5a84-44e6-a2f1-0e590a9beed6@oss.qualcomm.com> (raw)
In-Reply-To: <CAGsJ_4zhL=4qJDmGA5E-z7=VixkUXOi+qBnN3S-WWH2UbYj=ZA@mail.gmail.com>
Thanks Barry/Chris for checking it.
On 9/26/2025 2:00 PM, Barry Song wrote:
>> 2) __oom_reap_task_mm()
>> It holds the mmap read lock when setting the MMF_UNSTABLE as far as I can tell.
>> So checking the MMF_UNSTABLE with another __oom_reap_task_mm() does
>> not exclude each other.
>> This is more of a question for oom reaping.
>> Does MMF_UNSTABLE have the test vs set racing here? It seems this
>> check does not protect against __oom_reap_task_mm(). I have no idea
>> if this race is triggerable. Just want someone else to double check if
>> my understanding is correct or not.
> I haven’t actually run the code.
> My guess is there’s a race when checking MMF_UNSTABLE against the
> OOM reaper. I think it’s fine either way—whether we skip an OOM-reaped
> mm upfront or take a middle path—since the OOM reaper will handle those
> PTEs with the PTL just like unuse_pte() does and eventually free the mm
> of the reaped process. It’s probably better to skip it early and avoid
> unnecessary unuse_pte() calls.
>
I am sorry that I can't really see any stability issue b/n oom reaper
and unuse_mm(), but yes that unnecessary unuse_pte() calls, as Barry
mentioned, after reaping.
>> I can see this patch does protect the intended race in dup_mm() vs
>> unuse_mm(), it adds value.
> This also seems to add values for OOM-reaped processes to avoid a
> useless unuse(), in case we aren’t skipping this mm right now. I’m
> not sure if we’ve been skipping OOM-reaped processes elsewhere.
>
I don't see any explicit flags that tells the process is already
oom-reaped/under it. There is MMF_OOM_REAP_QUEUED, but this doesn't tell
if it is already reaped.
If the unnecessary calls to unuse_vma() is really of a concern, then
check the MMF_UNSTABLE while traversing VMA may be a solution but this
looks ugly.
> Hi Charan, do you have any observations on this? If an additional value is
> added, could we record it in the changelog? Otherwise, can we add some
> description in the changelog to address Chris’ concern?
I do see that Chris ask can go as completely different change as the
mentioned problem exist even before this change, please CMIW.
Thanks,
Charan
prev parent reply other threads:[~2025-09-28 16:01 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-09-24 18:11 Charan Teja Kalla
2025-09-24 18:15 ` David Hildenbrand
2025-09-25 17:35 ` Chris Li
2025-09-26 8:30 ` Barry Song
2025-09-28 16:01 ` Charan Teja Kalla [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=a3b3f044-5a84-44e6-a2f1-0e590a9beed6@oss.qualcomm.com \
--to=charan.kalla@oss.qualcomm.com \
--cc=21cnbao@gmail.com \
--cc=Liam.Howlett@oracle.com \
--cc=akpm@linux-foundation.org \
--cc=bhe@redhat.com \
--cc=chrisl@kernel.org \
--cc=david@redhat.com \
--cc=kasong@tencent.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=lorenzo.stoakes@oracle.com \
--cc=nphamcs@gmail.com \
--cc=shikemeng@huaweicloud.com \
--cc=zhangpeng.00@bytedance.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox