From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 9D116C54E58
	for <linux-mm@archiver.kernel.org>; Fri, 15 Mar 2024 09:47:19 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id F16998010F; Fri, 15 Mar 2024 05:47:18 -0400 (EDT)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id EC6D2800B4; Fri, 15 Mar 2024 05:47:18 -0400 (EDT)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id D8E748010F; Fri, 15 Mar 2024 05:47:18 -0400 (EDT)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0013.hostedemail.com [216.40.44.13])
	by kanga.kvack.org (Postfix) with ESMTP id CA687800B4
	for <linux-mm@kvack.org>; Fri, 15 Mar 2024 05:47:18 -0400 (EDT)
Received: from smtpin18.hostedemail.com (a10.router.float.18 [10.200.18.1])
	by unirelay09.hostedemail.com (Postfix) with ESMTP id 93A3380F36
	for <linux-mm@kvack.org>; Fri, 15 Mar 2024 09:47:18 +0000 (UTC)
X-FDA: 81898795356.18.0DFB5AD
Received: from out-187.mta1.migadu.com (out-187.mta1.migadu.com [95.215.58.187])
	by imf02.hostedemail.com (Postfix) with ESMTP id 4F98A8000A
	for <linux-mm@kvack.org>; Fri, 15 Mar 2024 09:47:15 +0000 (UTC)
Authentication-Results: imf02.hostedemail.com;
	dkim=pass header.d=linux.dev header.s=key1 header.b=tCtIRsDC;
	spf=pass (imf02.hostedemail.com: domain of chengming.zhou@linux.dev designates 95.215.58.187 as permitted sender) smtp.mailfrom=chengming.zhou@linux.dev;
	dmarc=pass (policy=none) header.from=linux.dev
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com;
	s=arc-20220608; t=1710496037;
	h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:dkim-signature;
	bh=+/vakx78+sEV9QsMCP2nwlQKJ4QPOe67TJg3tqtM1qw=;
	b=vbEFC3JJ/vJmF/W53IKXA0lH6FOC+KvGTjE/j7WLCYKWFqelZHlV0pOSOuLAhzMzqirv4h
	VrWWDQQKIm4uWyT3FOWW54ISSKoDSGbXJzw+AJsbg89TA1dgy1u6Wsi2T7P/sH0UyaCzrd
	XU7tWNsNyMFmkRRTuD9utl/ZCrqCnVk=
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1710496037; a=rsa-sha256;
	cv=none;
	b=Xer5HvhbGyKGDAbGuwl+4mYMYwZhLjTu9blbFumt3jlOgMvMzfXM8Mq7KPOOLze6KrIcDY
	xqGM2WvhMvHASlSk1jZjEJQ87UYH7uubMnWsCffq/pufUvVUp0OyH11PcLFZB8VOxaEhA7
	yTr10hvRW7eKlUgMw2oJgYyBN0G7D+g=
ARC-Authentication-Results: i=1;
	imf02.hostedemail.com;
	dkim=pass header.d=linux.dev header.s=key1 header.b=tCtIRsDC;
	spf=pass (imf02.hostedemail.com: domain of chengming.zhou@linux.dev designates 95.215.58.187 as permitted sender) smtp.mailfrom=chengming.zhou@linux.dev;
	dmarc=pass (policy=none) header.from=linux.dev
Message-ID: <ae197190-6a15-49c5-ab3c-3eaac6dd4c5c@linux.dev>
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux.dev; s=key1;
	t=1710496031;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=+/vakx78+sEV9QsMCP2nwlQKJ4QPOe67TJg3tqtM1qw=;
	b=tCtIRsDCZRb4O6oyZYK3Bw2EaLfVQFGMRIIGH21Q/6Zih8cwZbzAlwfYDFoWs3iyqaTKec
	jh+WBpVE3XdAwx6l99gVghldWylYZnbVB/sTf2jilmnfLqB9qsN+0/VXPoiwvqX5+pZwmz
	7yB7W1qUzQ/BkX/S8ceJmRXGpN+kep8=
Date: Fri, 15 Mar 2024 17:47:04 +0800
MIME-Version: 1.0
Subject: Re: [PATCH] mm: cachestat: avoid bogus workingset test during
 swapping & invalidation races
Content-Language: en-US
To: Johannes Weiner <hannes@cmpxchg.org>
Cc: Andrew Morton <akpm@linux-foundation.org>, Nhat Pham <nphamcs@gmail.com>,
 linux-mm@kvack.org, linux-kernel@vger.kernel.org,
 Jann Horn <jannh@google.com>
References: <20240314164941.580454-1-hannes@cmpxchg.org>
 <1551fa14-2a95-49fd-ab1a-11c38ae29486@linux.dev>
 <20240315093010.GB581298@cmpxchg.org>
X-Report-Abuse: Please report any abuse attempt to abuse@migadu.com and include these headers.
From: Chengming Zhou <chengming.zhou@linux.dev>
In-Reply-To: <20240315093010.GB581298@cmpxchg.org>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Migadu-Flow: FLOW_OUT
X-Stat-Signature: eyjj8ecxuqt3yb5c8jai3yxq8hwqpoju
X-Rspamd-Server: rspam10
X-Rspamd-Queue-Id: 4F98A8000A
X-Rspam-User: 
X-HE-Tag: 1710496035-987408
X-HE-Meta: U2FsdGVkX19A5OBkaqs6yoO1V6D4d08xSwq5VsdCeWWMVR41BaK6l+sR3aPOR6ycUZuWtsdYUO5guHLlQ/r1sKdAOg7Cgk11nWAvSCAT1bi9NE10ap1DFiuniZ5+72otEoUuEbYHgM/iWPc4NilxoAFzWY8htlDAA6gP79UaOaPZ9ugC5uCg3UgHarJVRa2hyqhNg1tZ1j4KdCCQYsUg1v+TA4IQNylZ92ZiIp9YQbiJ6wLa6eqiBfyl51BByHOBQIAiDbV7QAW7+nbLq9pGLzRnaGN9KMEFKvOT7rp6JqyTpdiBZ2+tWaC5hnpG5jOHhGAQq+Ve/yCBqtqO/buej6sEUziGpD6sy0c1k/YpXPgK+Ga8bMb1ayNIw8tC2NUyZ3RqcGbvzzzkrX6OiPeIOC9b/A9d50HQqUWs+oyOrs9nZazUk7REi9orLUR5Cw5IohkasNRPgGlNuDc1xZA5TpjQcZ1kznrp6VsqpeMuEPTxxNnIj69IBxWxjG5FRPuwdBl1l0969dRi2mVDucJhhGJi1x065WXheK68VsIBmEjoQ6cu201+dLxhEhxIk0b/xueor0zDrbmPeJPs6txHsaBraCXXYuC843txkfvJ0C8q/MdFzU3DcArtnmVihFhwF2kwNyCQ57daBW0024S3u82qK1mHxFf+lswfHDVvBdxvVk0AXnFNO4im2dN0gLtZP2h1qQ+6MdhkOBH1QOFQEOBrR1QAPCeBhU82FDepBVR4GGVOqUK36bGYZ9MtWJ0YhKO97NwDoel5Qy0aw/kN6kSZ8r/YKxZ4P1ZtKZa4lho=
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>

On 2024/3/15 17:30, Johannes Weiner wrote:
> On Fri, Mar 15, 2024 at 11:16:35AM +0800, Chengming Zhou wrote:
>> On 2024/3/15 00:49, Johannes Weiner wrote:
>>> When cachestat against shmem races with swapping and invalidation, the
>>> shadow entry might not exist: swapout IO is still in progress and
>>> we're before __remove_mapping; or swapin/invalidation/swapoff has
>>> removed the shadow from swapcache after we saw a shmem swap entry.
>>>
>>> This will send a NULL to workingset_test_recent(). The latter purely
>>> operates on pointer bits, so it won't crash - node 0, memcg ID 0,
>>> eviction timestamp 0, etc. are all valid inputs - but it's a bogus
>>> test. In theory that could result in a false "recently evicted" count.
>>
>> Good catch!
>>
>>>
>>> Such a false positive wouldn't be the end of the world. But for code
>>> clarity and (future) robustness, be explicit about this case.
>>>
>>> Fixes: cf264e1329fb ("cachestat: implement cachestat syscall")
>>> Reported-by: Jann Horn <jannh@google.com>
>>> Signed-off-by: Johannes Weiner <hannes@cmpxchg.org>
>>> ---
>>>  mm/filemap.c | 3 +++
>>>  1 file changed, 3 insertions(+)
>>>
>>> diff --git a/mm/filemap.c b/mm/filemap.c
>>> index 222adac7c9c5..a07c27df7eab 100644
>>> --- a/mm/filemap.c
>>> +++ b/mm/filemap.c
>>> @@ -4199,6 +4199,9 @@ static void filemap_cachestat(struct address_space *mapping,
>>>  				swp_entry_t swp = radix_to_swp_entry(folio);
>>>  
>>
>> IIUC, we should first check if it's a real swap entry using non_swap_entry(), right?
>> Since there maybe other types of entries in shmem.
> 
> Good point, it could be a poisoned entry. I'll add the
> non_swap_entry() check on swp.
> 
>> And need to get_swap_device() to prevent concurrent swapoff here,
>> get_shadow_from_swap_cache() won't do it for us.
> 
> We're holding rcu_read_lock() for the xarray iteration, so if we see
> the swap entry in the shmem mapping, it means we beat shmem_unuse()
> and swapoff hasn't run synchronize_rcu() yet.

Ah, you are right, so it's safe.

> 
> So it's safe. But I think it could use a comment. Maybe the
> documentation of get_swap_device() should mention this option too?