linux-fsdevel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
From: Jan Kara <jack@suse.cz>
To: linux-fsdevel@vger.kernel.org
Cc: Ross Zwisler <ross.zwisler@linux.intel.com>,
	Dan Williams <dan.j.williams@intel.com>,
	"Wilcox, Matthew R" <matthew.r.wilcox@intel.com>
Subject: DAX data corruption for mmaped and written files
Date: Thu, 24 Mar 2016 14:12:23 +0100	[thread overview]
Message-ID: <20160324131223.GJ4025@quack.suse.cz> (raw)

Hello,

yesterday I have been stress-testing mmap code with my new fault locking
patches and I have found a data corruption issue when file is written both
via mmap and standard write(2). The problem is following:

CPU1					CPU2
dax_io()				dax_fault()
  get_block() - allocates block
  ...					  get_block() - finds allocated block
					    - zeroes it inside fs
					  fault completese

  if (buffer_unwritten(bh) || buffer_new(bh)) -> new buffer
    dax_new_buf() -> zeroes buffer which may
		     overwrite user data

In some cases the race can also go the other way around and we lose data
written by write.

So either we need to do the zeroing inside fs also for write(2) path (but
that would essentially mean we would write the block twice for each
allocating write) or we would need dax_io() to also use radix tree locking
to serialize against page faults (in the same way page cache does this with
page lock). Any opinion on what would be better?

								Honza
-- 
Jan Kara <jack@suse.com>
SUSE Labs, CR

             reply	other threads:[~2016-03-24 13:11 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-03-24 13:12 Jan Kara [this message]
2016-03-24 22:37 ` DAX data corruption for mmaped and written files Ross Zwisler
2016-03-28 22:39 ` Dave Chinner
2016-03-31 13:47   ` Jan Kara

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20160324131223.GJ4025@quack.suse.cz \
    --to=jack@suse.cz \
    --cc=dan.j.williams@intel.com \
    --cc=linux-fsdevel@vger.kernel.org \
    --cc=matthew.r.wilcox@intel.com \
    --cc=ross.zwisler@linux.intel.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).