From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=43/C=RJ=kvack.org=owner-linux-mm@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-7.1 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,INCLUDES_PATCH,MAILING_LIST_MULTI,SIGNED_OFF_BY,
	SPF_PASS autolearn=ham autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 76C47C43381
	for <linux-mm@archiver.kernel.org>; Wed,  6 Mar 2019 22:48:13 +0000 (UTC)
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by mail.kernel.org (Postfix) with ESMTP id 22154206DD
	for <linux-mm@archiver.kernel.org>; Wed,  6 Mar 2019 22:48:13 +0000 (UTC)
Authentication-Results: mail.kernel.org;
	dkim=pass (1024-bit key) header.d=kernel.org header.i=@kernel.org header.b="fwYQm7zP"
DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 22154206DD
Authentication-Results: mail.kernel.org; dmarc=fail (p=none dis=none) header.from=kernel.org
Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=owner-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix)
	id B03768E0003; Wed,  6 Mar 2019 17:48:12 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id AB2FB8E0002; Wed,  6 Mar 2019 17:48:12 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 9A2138E0003; Wed,  6 Mar 2019 17:48:12 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from mail-pf1-f199.google.com (mail-pf1-f199.google.com [209.85.210.199])
	by kanga.kvack.org (Postfix) with ESMTP id 5BF1E8E0002
	for <linux-mm@kvack.org>; Wed,  6 Mar 2019 17:48:12 -0500 (EST)
Received: by mail-pf1-f199.google.com with SMTP id w16so15234873pfn.3
        for <linux-mm@kvack.org>; Wed, 06 Mar 2019 14:48:12 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:dkim-signature:date:from:to:cc:subject
         :in-reply-to:message-id:references:user-agent:mime-version;
        bh=soZWRnZFDAu8eyVknTj3xABsMQImB044ENoSiineYnc=;
        b=DF/+w+tNwIBB66HM7391cFIHgSPBzQwSXQ4zNwKjWYsnl8GS2NV4Wg6Vodu+jMOa2P
         d2u0nzWLwGP8+RwzrrSBqabE0kN1MLY0JEVtsEifdXpcScDBRwXPpVp6UuSmZ7GE0j95
         OvH5HjkQxfu9Oer1ThiMFbDSa5fjT9TPGYCPCgD69jIF2jYLlvKTI7nEDE1+FlaygLgb
         tPIu9yBOqeFcaEVBm/I89f7z1gNNYMmDobuNcb1O/hxLioT1ZCM2qQiVsMZeDy7pXmN9
         31pg2QuNl0UvMD7v3YTdNbYrzyBhqnDCTUSyk7C4fiLori/QJ6HXectaZIRGKzAMnLSL
         ejfg==
X-Gm-Message-State: APjAAAWwwLB4PJgCZpDD9soGkfjCFW3Ga48Z97eLDmi5tRgdQdDHz1v7
	zAtbus8u9SICvCsZXL3UkjR8nn0cwgkXZ56sT5eIu1IERlz4+I3zjMu12E9boBJauFV9hdaWkDg
	fXcsHEaNdMzuTiG2ugHSEIDD5t9hF0BEYmFEBhhz+adJY6imhSHz9YopTmIikotbhzA==
X-Received: by 2002:a17:902:8203:: with SMTP id x3mr9420581pln.159.1551912492026;
        Wed, 06 Mar 2019 14:48:12 -0800 (PST)
X-Google-Smtp-Source: APXvYqyaN+C7YOMN/omio8/vU5iAwb3n7LX9uXxFFSUYSFZPZ/vjiD2gU6pi2YccGGt5GbqtlS7C
X-Received: by 2002:a17:902:8203:: with SMTP id x3mr9420517pln.159.1551912490946;
        Wed, 06 Mar 2019 14:48:10 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1551912490; cv=none;
        d=google.com; s=arc-20160816;
        b=q5br6YbAHMF9GP+Vfnw/IpoohUg/7ePMxCY3NDHUIhuz2aVliGyokx3IOXz21Z/sdp
         6k4ptPkAi50ZwS2DFqXIdCk2rKyCiRFvrtE/diwGehktk7D7YAOsAhPOZVkiaxeiqX8h
         AKY8gUvMOj2Np6ALw6KszXysC2+gP1KPghhcUWsuLe3XbfVSnFk+NSncan+r/K81XS7q
         bhZw0GQwZl8pxSFytI5Gpa0Rpv+6LJjzD0BZhAqHrS0fN4yWaLiflE4icqNZJEKxvYcg
         UoyNNbRFmhqWJYWzBD6GsyGaEHisgaOAH69nmw9ovZ27d5XrlNk1DZijBtUjZbDIV2aH
         DrMQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=mime-version:user-agent:references:message-id:in-reply-to:subject
         :cc:to:from:date:dkim-signature;
        bh=soZWRnZFDAu8eyVknTj3xABsMQImB044ENoSiineYnc=;
        b=jMl8hCzJkwuHPThYo8a65a2Y1T4sa6b0nHUwMDdTH4vqKTNCe3yqis4Rg1MK2sP48s
         fPuU7l4zA1kPlkZujnc68c5j49DQaMecGeh4kJMmnNg/j4vPh07hI5l8Ub1QxIBONip5
         84hyV1JM4WDMb14XvU4O+Sao4nBptmjjufAKlNB5ZVFOXWplFkisrMF4Vy0InzEXp+gR
         26dfU49AT0OSuCyyanCj1QQUJwYcaDsqrlbF4/cLXnRZh2RzHmg96WwW4WILOBJw5YC7
         jmndlJPKxStZRWtlXJwX78FU+qgeFij+prAG8qfFJvBx9e7umvY3DmAbpDFrIJI9P3W+
         nADg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=fwYQm7zP;
       spf=pass (google.com: domain of jikos@kernel.org designates 198.145.29.99 as permitted sender) smtp.mailfrom=jikos@kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: from mail.kernel.org (mail.kernel.org. [198.145.29.99])
        by mx.google.com with ESMTPS id k29si2484487pgb.267.2019.03.06.14.48.10
        for <linux-mm@kvack.org>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Wed, 06 Mar 2019 14:48:10 -0800 (PST)
Received-SPF: pass (google.com: domain of jikos@kernel.org designates 198.145.29.99 as permitted sender) client-ip=198.145.29.99;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=fwYQm7zP;
       spf=pass (google.com: domain of jikos@kernel.org designates 198.145.29.99 as permitted sender) smtp.mailfrom=jikos@kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: from pobox.suse.cz (prg-ext-pat.suse.com [213.151.95.130])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by mail.kernel.org (Postfix) with ESMTPSA id 23AA420675;
	Wed,  6 Mar 2019 22:48:05 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1551912490;
	bh=e9RSnELXLOjF1US988iwHM5qMpBbVvt+Th4lFBfyF3A=;
	h=Date:From:To:cc:Subject:In-Reply-To:References:From;
	b=fwYQm7zP2769SP+uuMgs5aFPFjAMChvalElqTU0GL5DR5mYI9mvuhGBGUWILIh+QV
	 jT77XiDHJTbm2Z6njrqg8qwby36azquuPpsZuoCuuHxLmXDOGJAvPmvz/I8Bh5UqTt
	 r/u5DdUkBzFZ5KPMcoHfuXvOr1FDRi9jJKqOUTK0=
Date: Wed, 6 Mar 2019 23:48:03 +0100 (CET)
From: Jiri Kosina <jikos@kernel.org>
To: Andrew Morton <akpm@linux-foundation.org>
cc: Vlastimil Babka <vbabka@suse.cz>, 
    Linus Torvalds <torvalds@linux-foundation.org>, 
    linux-kernel@vger.kernel.org, linux-mm@kvack.org, 
    linux-api@vger.kernel.org, Peter Zijlstra <peterz@infradead.org>, 
    Greg KH <gregkh@linuxfoundation.org>, Jann Horn <jannh@google.com>, 
    Andy Lutomirski <luto@amacapital.net>, Cyril Hrubis <chrubis@suse.cz>, 
    Daniel Gruss <daniel@gruss.cc>, Dave Chinner <david@fromorbit.com>, 
    Dominique Martinet <asmadeus@codewreck.org>, 
    Kevin Easton <kevin@guarana.org>, 
    "Kirill A. Shutemov" <kirill@shutemov.name>, 
    Matthew Wilcox <willy@infradead.org>, Tejun Heo <tj@kernel.org>
Subject: Re: [PATCH 0/3] mincore() and IOCB_NOWAIT adjustments
In-Reply-To: <20190306143547.c686225447822beaf3b6e139@linux-foundation.org>
Message-ID: <nycvar.YFH.7.76.1903062342020.19912@cbobk.fhfr.pm>
References: <nycvar.YFH.7.76.1901051817390.16954@cbobk.fhfr.pm> <20190130124420.1834-1-vbabka@suse.cz> <nycvar.YFH.7.76.1903061310170.19912@cbobk.fhfr.pm> <20190306143547.c686225447822beaf3b6e139@linux-foundation.org>
User-Agent: Alpine 2.21 (LSU 202 2017-01-01)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>

On Wed, 6 Mar 2019, Andrew Morton wrote:

> > could you please take at least the correct and straightforward fix for 
> > mincore() before we figure out how to deal with the slightly less 
> > practical RWF_NOWAIT? Thanks.
> 
> I assume we're talking about [1/3] and [2/3] from this thread?
> 
> Can we have a resend please?  Gather the various acks and revisions,
> make changelog changes to address the review questions and comments?

1/3 is clearly the one to be merged. The version with all the acks 
gathered is in this thread, at

	https://lore.kernel.org/lkml/de52b3bd-4e39-c133-542a-0a9c5e357404@suse.cz/

Attaching the patch also at the end of this mail so that it could be 
easily picked up.

I am unfortunately not sure what changelog changes you are talking about, 
there were none requested during the review as far as I know.

2/3 is clearly postponed for now, it needs more thinking.

3/3 is actually waiting for your decision, see

	https://lore.kernel.org/lkml/20190212063643.GL15609@dhcp22.suse.cz/

The 1/3 patch to be merged in any case:


=== cut here ===

From: Jiri Kosina <jkosina@suse.cz>
Date: Wed, 16 Jan 2019 20:53:17 +0100
Subject: [PATCH v2] mm/mincore: make mincore() more conservative

The semantics of what mincore() considers to be resident is not completely
clear, but Linux has always (since 2.3.52, which is when mincore() was
initially done) treated it as "page is available in page cache".

That's potentially a problem, as that [in]directly exposes meta-information
about pagecache / memory mapping state even about memory not strictly belonging
to the process executing the syscall, opening possibilities for sidechannel
attacks.

Change the semantics of mincore() so that it only reveals pagecache information
for non-anonymous mappings that belog to files that the calling process could
(if it tried to) successfully open for writing.

[mhocko@suse.com: restructure can_do_mincore() conditions]
Originally-by: Linus Torvalds <torvalds@linux-foundation.org>
Originally-by: Dominique Martinet <asmadeus@codewreck.org>
Cc: Dominique Martinet <asmadeus@codewreck.org>
Cc: Andy Lutomirski <luto@amacapital.net>
Cc: Dave Chinner <david@fromorbit.com>
Cc: Kevin Easton <kevin@guarana.org>
Cc: Matthew Wilcox <willy@infradead.org>
Cc: Cyril Hrubis <chrubis@suse.cz>
Cc: Tejun Heo <tj@kernel.org>
Cc: Kirill A. Shutemov <kirill@shutemov.name>
Cc: Daniel Gruss <daniel@gruss.cc>
Signed-off-by: Jiri Kosina <jkosina@suse.cz>
Signed-off-by: Vlastimil Babka <vbabka@suse.cz>
Acked-by: Josh Snyder <joshs@netflix.com>
Acked-by: Michal Hocko <mhocko@suse.com>
---
 mm/mincore.c | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/mm/mincore.c b/mm/mincore.c
index 218099b5ed31..b8842b849604 100644
--- a/mm/mincore.c
+++ b/mm/mincore.c
@@ -169,6 +169,16 @@ static int mincore_pte_range(pmd_t *pmd, unsigned long addr, unsigned long end,
 	return 0;
 }
 
+static inline bool can_do_mincore(struct vm_area_struct *vma)
+{
+	if (vma_is_anonymous(vma))
+		return true;
+	if (!vma->vm_file)
+		return false;
+	return inode_owner_or_capable(file_inode(vma->vm_file)) ||
+		inode_permission(file_inode(vma->vm_file), MAY_WRITE) == 0;
+}
+
 /*
  * Do a chunk of "sys_mincore()". We've already checked
  * all the arguments, we hold the mmap semaphore: we should
@@ -189,8 +199,13 @@ static long do_mincore(unsigned long addr, unsigned long pages, unsigned char *v
 	vma = find_vma(current->mm, addr);
 	if (!vma || addr < vma->vm_start)
 		return -ENOMEM;
-	mincore_walk.mm = vma->vm_mm;
 	end = min(vma->vm_end, addr + (pages << PAGE_SHIFT));
+	if (!can_do_mincore(vma)) {
+		unsigned long pages = (end - addr) >> PAGE_SHIFT;
+		memset(vec, 1, pages);
+		return pages;
+	}
+	mincore_walk.mm = vma->vm_mm;
 	err = walk_page_range(addr, end, &mincore_walk);
 	if (err < 0)
 		return err;


-- 
Jiri Kosina
SUSE Labs