Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1753301AbbHCMVS (ORCPT <rfc822;w@1wt.eu>);
	Mon, 3 Aug 2015 08:21:18 -0400
Received: from mailout4.samsung.com ([203.254.224.34]:55144 "EHLO
	mailout4.samsung.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1752403AbbHCMVQ (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Mon, 3 Aug 2015 08:21:16 -0400
X-AuditID: cbfee68d-f79106d00000728c-74-55bf5cba0b57
Date: Mon, 03 Aug 2015 12:21:14 +0000 (GMT)
From: GIRISH K S <ks.giri@samsung.com>
Subject: Re: Re: [PATCH 05/15] HMM: introduce heterogeneous memory management
 v4.
To: Jerome Glisse <j.glisse@gmail.com>, Girish KS <girishks2000@gmail.com>
Cc: =?windows-1252?Q?J=3F=3Fe_Glisse?= <jglisse@redhat.com>,
        Christophe Harle <charle@nvidia.com>,
        Mark Hairgrove <mhairgrove@nvidia.com>,
        Dave Airlie <airlied@redhat.com>,
        Arvind Gopalakrishnan <arvindg@nvidia.com>,
        Jatin Kumar <jakumar@nvidia.com>, "joro@8bytes.org" <joro@8bytes.org>,
        Greg Stoner <Greg.Stoner@amd.com>,
        "akpm@linux-foundation.org" <akpm@linux-foundation.org>,
        Cameron Buschardt <cabuschardt@nvidia.com>,
        Rik van Riel <riel@redhat.com>, Paul Blinzer <Paul.Blinzer@amd.com>,
        Lucien Dunning <ldunning@nvidia.com>,
        Johannes Weiner <jweiner@redhat.com>,
        Haggai Eran <haggaie@mellanox.com>,
        Michael Mantor <Michael.Mantor@amd.com>,
        Laurent Morichetti <Laurent.Morichetti@amd.com>,
        Larry Woodman <lwoodman@redhat.com>,
        John Hubbard <jhubbard@nvidia.com>, Brendan Conoboy <blc@redhat.com>,
        John Bridgman <John.Bridgman@amd.com>,
        Subhash Gutti <sgutti@nvidia.com>,
        Roland Dreier <roland@purestorage.com>,
        Duncan Poole <dpoole@nvidia.com>,
        "linux-mm@kvack.org" <linux-mm@kvack.org>,
        Alexander Deucher <Alexander.Deucher@amd.com>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Andrea Arcangeli <aarcange@redhat.com>,
        Leonid Shamis <Leonid.Shamis@amd.com>,
        Sherry Cheung <SCheung@nvidia.com>,
        Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
        Shachar Raindel <raindel@mellanox.com>,
        Liran Liss <liranl@mellanox.com>, Ben Sander <ben.sander@amd.com>,
        Joe Donohue <jdonohue@redhat.com>, Mel Gorman <mgorman@suse.de>,
        "H. Peter Anvin" <hpa@zytor.com>,
        Peter Zijlstra <peterz@infradead.org>
Reply-to: ks.giri@samsung.com
MIME-version: 1.0
X-MTR: 20150803120522942@ks.giri
Msgkey: 20150803120522942@ks.giri
X-EPLocale: en_US.windows-1252
X-Priority: 3
X-EPWebmail-Msg-Type: personal
X-EPWebmail-Reply-Demand: 0
X-EPApproval-Locale: 
X-EPHeader: ML
X-MLAttribute: 
X-RootMTR: 20150803120522942@ks.giri
X-ParentMTR: 
X-Mobile: True,C10
X-ArchiveUser: 
X-CPGSPASS: N
X-ConfirmMail: N,general
Content-type: text/plain; charset=windows-1252
MIME-version: 1.0
Message-id: <359230388.367691438604474011.JavaMail.weblogic@epmlwas08c>
X-Brightmail-Tracker: H4sIAAAAAAAAA11Ta0yTVxjO+a6VUPysMM5Q2Ozc3Ey8oKCvshjjj/n9McGoP2aWuIqflQhY
	WiDb+IPRjVAogl0Ltp0paHWDxgLdEGsCBRYuXgJaYAOFrdwGk4sViyDealsM8d+T53bOe05e
	ESmZZKJEyWkZgjJNliJlQihreFz2Bsc3DYc2u1sjwGyzsNDdZybAZLMyoH94kwaXy4JgLu8v
	Bgpv9NHw9/hpGnJ1sxRc0zJwR23zOcZ2QaslAfTVkTDtmSNhsK6ZBO/DZwwYS8YIqB4pZ2Hc
	00NCnrGKBWOOh4JHs9U0FM50kHDdPYHA5TAxMGB9TcNdwz0E52vmGdBOjSJQ1w5RMGnspeDJ
	b2MIWjVOAh6XNdDwsstGQeULgOuzbQTMNPjEwcJJdvfn/HDjRYL/8f5Lhr9h6Gd5+6/r+Zon
	51m+rXSB4kdLmglec2aK4WvdGpafru9mePvtbH6mJoZvO/uUThQfDvnymJCSnCUoN+36NuRE
	Y8EEUsxFf+c0N9E5qChajUQiCSfFnc8larRMhLk4rO0pQAH8Ae4csDFqFOKzWBDurW+nF00t
	JVoUEEwI1/503y9Q3Fpc6mxh32KGW4c9To2/aSW3Hz82DjNvcTiXiCe8N/2tJDcVivsGTX5B
	wkXj554Rf1jMrcDtF4apwGkfY1PxKyLAr8ETuqtEgI/Bl3WuIBbj0twRapHXe61kAK/CHYaq
	d+NcejYU5Jfjlgd1wSyHdXcag55PcYe5P4jDsLVsMtgpwdMFXnYx67h1lVw895/ffwn2YPzH
	2WH/Q5C+e/6c72YDeDP+s9xEvz+XmNuLy6ty6SL0iWGJZFgSNyyJL/WYEVWBIgRFkkJ1VK6M
	3aiSpaoy0+Qbk06l1iDfFtx+NaqpQw+cCU2IEyFpqLj0Yv0hCS3LUn2f2oTiff9UTEZFJJ3y
	LU5axpHYrdu2QHxc/NYt23dsk0aK10TNH5BwclmGcFIQFILyiDIzRVA1IUK0LCoHHb+XVyxX
	N6e7XePnPuzBHw2NDMgjD3yxtmiPI+wzuf1Rr+VrTQX7VV+nq/xudxed3Loypu1fr167ukwv
	qmivC6uN2ZuetXMhe93x/HHh4IqD58Jz9Trb/hezJ+3TO/fJNi3cCk3Mv9KVNfMf58hMsPcr
	Mq7gsPnT3nS54ofKyg3/SynVCVnselKpkr0BFbVfpAAEAAA=
X-Brightmail-Tracker: H4sIAAAAAAAAA11Te0xTVxjPuW/UzmtBOWFCuotkCxm1BSsHJ2aZxN1Ek7EsLMseYXdwBWJf
	6y1Et/3BIhuDUYIgD9tCkEFwjozXBggJT4NsqFWZYyK6gNDgxsPKCkyUrbRlIfvvl9/j+77z
	nXwMLh+mQ5gMvVk06QUtR20hhtfuno3qfL8nSbW2GICqG+todHusGkP2xgYKlY13kWhkpA6g
	lbxRChVeGiPRbw8/J1Fu6RKBvi+h0NX8Ro9j5hC6UvcKKmsORguuFRxNdgzgyD2+TCFb+QyG
	mqdraPTQ9SuO8mxNNLJluwj051IziQoXHThqn5gFaKTTTqH7Df+Q6Jr1JkDFLX9TqGTeCVB+
	2wMCzdnuEOjxtzMAXbH0YujR+R4SPfulkUDfPUWofWkIQ4s9HnGycI5+9SV+qq8K47+49Yzi
	L1nv0XzrhUi+5XExzQ9VrBK8s3wA4y2n5ym+bcJC8wvdtym+dfhTfrEljB/K+YtMlL17/GC6
	KKSKJoWoTzGkZujT4rmjbyUfTtbsV6mj1HEollPoBZ0YzyUcS4w6kqH1LJNTZAnaTA+VKEgS
	t/fQQZMh0ywq0g2SOZ57Tx0brYxWKTXRSrXmgwNqlSpa4/F8eDy9r2AWGFdCT/ZW95PZoCg0
	HzCMnOXgjSfyfBDAQHYfHCwvAT68C96430jlgy0eix3Ati9vkesCwe6BFb2D9Dqm2Behq9fi
	DQSyb8JHtilqHQexiXDW3eUN4+z8Njg2afcKcjYUPnFNe8Mydgf86dwU4eumgPYza5iPfwHO
	ltZjPj4M1paO+LEMVuROExt8mbsB9+HnocPa9N/U3yw/8PPb4eDdDn+WhaVX+/yeCOiovufH
	z8GG83P+mnK4UOCmN7KdP9fjG31//6HSXwfCH3OmvIvAPXOe/XqC9mEVvFxjJ///Lhn7Oqxp
	yiWLQJh1k2TdFLduim/2VAPiItgpGlOM0kdpYoxSEnRSpj5NmWLQtQDvITllHaAyG/UDlgHc
	NllFVXeSnBSypFO6fgAZnAuSrax6KFmqcOoT0WRINmVqRakfaDxfeAYP2Zli8Jyl3pysjtkX
	q4nRxKri1Or9XLAs8LXiJDmbJpjFE6JoFE0bOYwJCMkGnXG7z2ltOub6y93Bq8F/GD4b1ToC
	lq/tYZxju40ZfFA/kVv39Drj7u2aStj+8XxRPXkzY4cu7+Kq852jkjZna1WC9c4F0PP2GxED
	uV8FzghZeyNKLeZww3h2uFNZC5vrT8ztirxs7Clorz3iWMQWJg8EHU5SucNbt54cH608Pc0R
	UrqgjsRNkvAveKKK9F4EAAA=
DLP-Filter: Pass
X-CFilter-Loop: Reflected
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from base64 to 8bit by mail.home.local id t73CLO54025453
Content-Length: 2894
Lines: 61



------- Original Message -------
Sender : Jerome Glisse<j.glisse@gmail.com>
Date : Aug 03, 2015 17:26 (GMT+05:30)
Title : Re: [PATCH 05/15] HMM: introduce heterogeneous memory management v4.

On Mon, Aug 03, 2015 at 01:20:13PM +0530, Girish KS wrote:
> On 18-Jul-2015 12:47 am, "J��e Glisse" wrote:
> >

[...]

> > +int hmm_mirror_register(struct hmm_mirror *mirror)
> > +{
> > +       struct mm_struct *mm = current->mm;
> > +       struct hmm *hmm = NULL;
> > +       int ret = 0;
> > +
> > +       /* Sanity checks. */
> > +       BUG_ON(!mirror);
> > +       BUG_ON(!mirror->device);
> > +       BUG_ON(!mm);
> > +
> > +       /*
> > +        * Initialize the mirror struct fields, the mlist init and del
> dance is
> > +        * necessary to make the error path easier for driver and for hmm.
> > +        */
> > +       kref_init(&mirror->kref);
> > +       INIT_HLIST_NODE(&mirror->mlist);
> > +       INIT_LIST_HEAD(&mirror->dlist);
> > +       spin_lock(&mirror->device->lock);
> > +       list_add(&mirror->dlist, &mirror->device->mirrors);
> > +       spin_unlock(&mirror->device->lock);
> > +
> > +       down_write(&mm->mmap_sem);
> > +
> > +       hmm = mm->hmm ? hmm_ref(hmm) : NULL;
> 
> Instead of hmm mm->hmm would be the right param to be passed.  Here even
> though mm->hmm is true hmm_ref returns NULL. Because hmm is not updated
> after initialization in the beginning.

ENOPARSE ? While this can be simplified to hmm = hmm_ref(mm->hmm); I do not
see what you mean. The mm struct might already have a valid hmm field set,
and that valid hmm struct might also already be in the process of being
destroy. So hmm_ref() might either return the same hmm pointer if the hmm
object is not about to be release or NULL. But at this point there is no
certainty on the return value of hmm_ref().

I didn't mean hmm = hmm_ref(mm->hmm);. I ll try to put it in a better way. The hmm local variable is initialized to NULL in the start of the function (struct hmm *hmm = NULL;), and this is not modified till it is passed to  hmm_ref.  So hmm_ref would always return a NULL irrespective of mm->hmm is NULL or valid address.  
So  the statement hmm = mm->hmm ? hmm_ref(hmm) : NULL; should be replaced as hmm = mm->hmm ? hmm_ref(mm->hmm) : NULL;. 
Also Assume mm->hmm had a hmm object assigned to it before entering this function. Since the hmm_ref(hmm) returns NULL always, previously assigned mm->hmm address would be overwritten by the  allocation and assignment that happen below in this function.

Note that because we have the mmap sem in write mode we know it is safe
to dereference mm->hmm and even to overwrite that field it if it is being
destroy concurently.

Cheers,
J��e????{.n?+???????+%?????ݶ??w??{.n?+????{??G?????{ay?ʇڙ?,j??f???h?????????z_??(?階?ݢj"???m??????G????????????&???~???iO???z??v?^?m????????????I?