From: David Howells <dhowells@redhat.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: dhowells@redhat.com, akpm@linux-foundation.org, npiggin@suse.de,
paulmck@linux.vnet.ibm.com, corbet@lwn.net,
linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org,
linux-mm@kvack.org
Subject: Re: [PATCH] radix_tree_tag_get() is not as safe as the docs make out
Date: Tue, 06 Apr 2010 22:12:24 +0100 [thread overview]
Message-ID: <27737.1270588344@redhat.com> (raw)
In-Reply-To: <alpine.LFD.2.00.1004061236290.3487@i5.linux-foundation.org>
Linus Torvalds <torvalds@linux-foundation.org> wrote:
> Looks like a reasonable patch, but the one thing you didn't say is whether
> there is any code that relies on the incorrectly documented behavior?
Sorry, yes. I've made an assumption in FS-Cache that I can rely on the result
of radix_tree_tag_get() simply by wrapping it in an rcu_read_lock()'d section.
This has proven not to be so, since the BUG_ON() at line 602 in
lib/radix-tree.c triggered.
I was protecting set/clear/delete from each other, but not protecting get from
set/clear/delete.
> How did you find this? Do we need to fix actual code too? The only user
> seems to be your fscache/page.c thing, and I'm not seeing any locking
> except for the rcu locking that is apparently not sufficient.
As mentioned above, someone reported a bug in fscache that led me to this:
https://www.redhat.com/archives/linux-cachefs/2010-April/msg00013.html
I may need to fix fscache, but I wanted to see if anyone would suggest an
alternate patch that would continue to let me make a test without having to
grab the spinlock first.
I'll update the patch to reflect this, whatever the final patch ends up being.
David
WARNING: multiple messages have this Message-ID (diff)
From: David Howells <dhowells@redhat.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: dhowells@redhat.com, akpm@linux-foundation.org, npiggin@suse.de,
paulmck@linux.vnet.ibm.com, corbet@lwn.net,
linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org,
linux-mm@kvack.org
Subject: Re: [PATCH] radix_tree_tag_get() is not as safe as the docs make out
Date: Tue, 06 Apr 2010 22:12:24 +0100 [thread overview]
Message-ID: <27737.1270588344@redhat.com> (raw)
In-Reply-To: <alpine.LFD.2.00.1004061236290.3487@i5.linux-foundation.org>
Linus Torvalds <torvalds@linux-foundation.org> wrote:
> Looks like a reasonable patch, but the one thing you didn't say is whether
> there is any code that relies on the incorrectly documented behavior?
Sorry, yes. I've made an assumption in FS-Cache that I can rely on the result
of radix_tree_tag_get() simply by wrapping it in an rcu_read_lock()'d section.
This has proven not to be so, since the BUG_ON() at line 602 in
lib/radix-tree.c triggered.
I was protecting set/clear/delete from each other, but not protecting get from
set/clear/delete.
> How did you find this? Do we need to fix actual code too? The only user
> seems to be your fscache/page.c thing, and I'm not seeing any locking
> except for the rcu locking that is apparently not sufficient.
As mentioned above, someone reported a bug in fscache that led me to this:
https://www.redhat.com/archives/linux-cachefs/2010-April/msg00013.html
I may need to fix fscache, but I wanted to see if anyone would suggest an
alternate patch that would continue to let me make a test without having to
grab the spinlock first.
I'll update the patch to reflect this, whatever the final patch ends up being.
David
--
To unsubscribe, send a message with 'unsubscribe linux-mm' in
the body to majordomo@kvack.org. For more info on Linux MM,
see: http://www.linux-mm.org/ .
Don't email: <a href=mailto:"dont@kvack.org"> email@kvack.org </a>
next prev parent reply other threads:[~2010-04-06 21:13 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-04-06 19:31 [PATCH] radix_tree_tag_get() is not as safe as the docs make out David Howells
2010-04-06 19:31 ` David Howells
2010-04-06 19:39 ` Linus Torvalds
2010-04-06 19:39 ` Linus Torvalds
2010-04-06 21:12 ` David Howells [this message]
2010-04-06 21:12 ` David Howells
2010-04-06 19:48 ` Nick Piggin
2010-04-06 19:48 ` Nick Piggin
2010-04-06 21:18 ` David Howells
2010-04-06 21:18 ` David Howells
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=27737.1270588344@redhat.com \
--to=dhowells@redhat.com \
--cc=akpm@linux-foundation.org \
--cc=corbet@lwn.net \
--cc=linux-fsdevel@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=npiggin@suse.de \
--cc=paulmck@linux.vnet.ibm.com \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.