Received: by 2002:a05:6a10:a0d1:0:0:0:0 with SMTP id j17csp2906091pxa; Tue, 25 Aug 2020 06:39:17 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzcR/w3wxDzVfscvuBA3fqhmsMGa7QEuSygQXk6IlOywCKUJcYsJJFEfB6cmRxF9cU7KzOF X-Received: by 2002:a17:906:5e0b:: with SMTP id n11mr11138851eju.523.1598362757165; Tue, 25 Aug 2020 06:39:17 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1598362757; cv=none; d=google.com; s=arc-20160816; b=ONDR7Q0+6AbIDZ4Uhpmsm8mVQnqlArV89VJrQ9PGepXJWBtZVZIybE3r7UA2wqBTWY y/azMGD9QpZZg9SzCic2vluvzVm+O1vS/tonod/ldqUI/tZpglJbguP69g+9laqo/WQe CU8XATRENZzVpQ8a1TWlUQ/KvV2hbAw+2WSxWnUtsXB6RKeiJO9QuOKveDOlAvh6Tboh F7QVre7FEVJO+inRmKWBSsQiGiHxCh+3EEQRBLVCp9hJ59VtY3HepcPVW4umDfKEpjvV gTVd5mAo34S0rSxS+7NczK6W/3iHSx9JKfHI43ohe4osPpkpBubNAFos5qOUvsJf23RN R1OQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :dkim-signature; bh=tw5dcUYU1cuOf4FiFUQPG5KaP/PO9JilKtZRxZg/G8g=; b=S+4TkhN41R/ie08c27y62Q0byWY8AFHmcHB/yg9BU/IF5yk3OvnmNFl6PuMEGBQOiK LmQOycBTD2Bed75rtlPCJNLPcnLo7NNiHju6886Ym1cETUzPjoOpIRuABjDf6PKdcRAJ zweXhhwZurILDSBAP4IQOJv3hvE6zEwg2UP6XrjZSb2jILflh7mOzPgjSiSY2RsqyMLi 4KARMZDaNKapArvdpL2g8FEwPS5dLKYZyl5ZR6dY+hfefS8xVm/MmEQ/HVURGBNWYOlh w25qFzGn9fihNmL3lBa/BEXiZK9HMjmR8TcY432wS5Hs9cd/OYZf0MqMSy5m1JcCrCxr ZspQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@infradead.org header.s=casper.20170209 header.b=ojprYWBY; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id ju9si8851405ejb.266.2020.08.25.06.38.54; Tue, 25 Aug 2020 06:39:17 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=fail header.i=@infradead.org header.s=casper.20170209 header.b=ojprYWBY; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726864AbgHYMk3 (ORCPT + 99 others); Tue, 25 Aug 2020 08:40:29 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44478 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726723AbgHYMk2 (ORCPT ); Tue, 25 Aug 2020 08:40:28 -0400 Received: from casper.infradead.org (casper.infradead.org [IPv6:2001:8b0:10b:1236::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 32EFFC061574; Tue, 25 Aug 2020 05:40:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=casper.20170209; h=In-Reply-To:Content-Type:MIME-Version: References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description; bh=tw5dcUYU1cuOf4FiFUQPG5KaP/PO9JilKtZRxZg/G8g=; b=ojprYWBY613BEb+StdJ0sxAyYt xMBg5qD1i74X/rjfNcU3gB4uY9pUinU2iATgkX0wej7DwChopPzimexI44FgtHomC+/S2vxY5Sep8 T7rDlQiBkUFG9SX5ljMSX0SpUSTlLEBqhL3QIxD5RlFAvxm8bQWfYs7rXEjhBcKobos3I50NoqAYZ /hDcxtVuham4kEwH1msCu8TAeXpk2xEEiIW/LsnJa3WUcQsN1LCiVfCM+UAw8iHdMp0DV++omjnsU hnS4vi39EcNhowoNyU1vySJ2NofttZbo8aNEma3HQlamiZN6quSfpYv+kZjnoYeP27AKSMYQFyODi adgr5+fw==; Received: from willy by casper.infradead.org with local (Exim 4.92.3 #3 (Red Hat Linux)) id 1kAYFU-0004As-Sf; Tue, 25 Aug 2020 12:40:24 +0000 Date: Tue, 25 Aug 2020 13:40:24 +0100 From: Matthew Wilcox To: Dave Chinner Cc: Andreas Dilger , linux-xfs@vger.kernel.org, linux-fsdevel@vger.kernel.org, "Darrick J . Wong" , linux-nvdimm@lists.01.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH 9/9] iomap: Change calling convention for zeroing Message-ID: <20200825124024.GN17456@casper.infradead.org> References: <20200824145511.10500-1-willy@infradead.org> <20200824145511.10500-10-willy@infradead.org> <20200825002735.GI12131@dread.disaster.area> <20200825032603.GL17456@casper.infradead.org> <20200825042711.GL12131@dread.disaster.area> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20200825042711.GL12131@dread.disaster.area> Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Aug 25, 2020 at 02:27:11PM +1000, Dave Chinner wrote: > On Mon, Aug 24, 2020 at 09:35:59PM -0600, Andreas Dilger wrote: > > On Aug 24, 2020, at 9:26 PM, Matthew Wilcox wrote: > > > > > > On Tue, Aug 25, 2020 at 10:27:35AM +1000, Dave Chinner wrote: > > >>> do { > > >>> - unsigned offset, bytes; > > >>> - > > >>> - offset = offset_in_page(pos); > > >>> - bytes = min_t(loff_t, PAGE_SIZE - offset, count); > > >>> + loff_t bytes; > > >>> > > >>> if (IS_DAX(inode)) > > >>> - status = dax_iomap_zero(pos, offset, bytes, iomap); > > >>> + bytes = dax_iomap_zero(pos, length, iomap); > > >> > > >> Hmmm. everything is loff_t here, but the callers are defining length > > >> as u64, not loff_t. Is there a potential sign conversion problem > > >> here? (sure 64 bit is way beyond anything we'll pass here, but...) > > > > > > I've gone back and forth on the correct type for 'length' a few times. > > > size_t is too small (not for zeroing, but for seek()). An unsigned type > > > seems right -- a length can't be negative, and we don't want to give > > > the impression that it can. But the return value from these functions > > > definitely needs to be signed so we can represent an error. So a u64 > > > length with an loff_t return type feels like the best solution. And > > > the upper layers have to promise not to pass in a length that's more > > > than 2^63-1. > > > > The problem with allowing a u64 as the length is that it leads to the > > possibility of an argument value that cannot be returned. Checking > > length < 0 is not worse than checking length > 0x7ffffffffffffff, > > and has the benefit of consistency with the other argument types and > > signs... The callee should just trust that the caller isn't going to do that. File sizes can't be more than 2^63-1 bytes, so an extent of a file also can't be more than 2^63-1 bytes. > I think the problem here is that we have no guaranteed 64 bit size > type. when that was the case with off_t, we created loff_t to always > represent a 64 bit offset value. However, we never created one for > the count/size that is passed alongside loff_t in many places - it > was said that "syscalls are limited to 32 bit sizes" and > "size_t is 64 bit on 64 bit platforms" and so on and so we still > don't have a clean way to pass 64 bit sizes through the IO path. > > We've been living with this shitty situation for a long time now, so > perhaps it's time for us to define lsize_t for 64 bit lengths and > start using that everywhere that needs a 64 bit clean path > through the code, regardless of whether the arch is 32 or 64 bit... > > Thoughts? I don't think the THP patches should be blocked on this expedition. We have a guaranteed 64 bit type -- it's u64. I don't think defining lsize_t is going to fix anything. The next big problem to fix will be supporting storage >16EiB, but I think that's a project that can start in ten years and still be here before anyone but the TLAs have that much storage in a single device. Any objection to leaving this patch as-is with a u64 length?