Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp620136pxy;
        Wed, 28 Apr 2021 10:36:47 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxyVv9mniSIKZ/OYC2r4+zlURr4yVKqXPolzV4koSoOz1p7ohBO5+Rv8jnR2dd8bKaUdeh6
X-Received: by 2002:a17:906:3952:: with SMTP id g18mr30512669eje.104.1619631407034;
        Wed, 28 Apr 2021 10:36:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1619631407; cv=none;
        d=google.com; s=arc-20160816;
        b=FlYsicMNyiCdZlgmiPxDVLJRMym8xPZx3yZVhP9SB6jX7ZNf+Rf8OSD8Ele1WLA2ft
         SYOql2YT91rNAipOkeTMDbfQBFGxSXL4HXaJZc/F9VbaLXoP9igoLfkEEyL76dmmlVur
         wJXogGpExFWmVuBpFeFmY8pUjQid9lcBCLJtToAV9MsiJeZEZlER/xWVQVYYMkaMvX1P
         dQs5yqytuH75KYJvRdL4a+W6vxkTH+3D1QTNPvGD6H/xe3w1Hk8s8Rx/HMGuKm76vzxv
         qiCr+YqV/lUtXtCZfuy//sMpi4PulMvIk5OqHZ4JuVu5owk8HcvyqpPXiIYrxJ1a2yKa
         vwDw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:user-agent:in-reply-to:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :dkim-signature:dkim-signature;
        bh=QydOVvpj2OAyZRQLFyThi3nH5+pcZsNgV/K3JPyDtNY=;
        b=JYaf/dxhkfeGMYKRrvgvjpWT70fIDg/vAbWM/nFhhgahX/PVkfL/t91QnXg6NgLApN
         Vd4hBY/DNbE+ItjD9WoJ0l3hxSnRnh9W9h+WEd5XDC845nMRLVtCHK1+35CbQ4jGTD0S
         dHzJJTnt3dEa/NX1pGjZOQHydhHdKFxn7f0eM88IRtRUuhcLQiEcCDngFrNsDxEVF23Q
         1mkLFUfYU4sUK8Xez+gNtutsHUKbc1vmNGv4dtfnMMEHn85i7yrwBV7RIzzzFfH//HyK
         CNnkhjSjaAoars3gw4g4ZEyEjGadREZ1bm5dfPNTkpx1ZFmi9NhaaQV6tqYqEXWviPxt
         8snw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=neutral (no key) header.i=@lespinasse.org;
       dkim=pass (test mode) header.i=@lespinasse.org header.s=srv-13-rsa header.b="x/TTWv4t";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=lespinasse.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id a15si335299edr.347.2021.04.28.10.36.22;
        Wed, 28 Apr 2021 10:36:47 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=neutral (no key) header.i=@lespinasse.org;
       dkim=pass (test mode) header.i=@lespinasse.org header.s=srv-13-rsa header.b="x/TTWv4t";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=lespinasse.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S240391AbhD1PBM (ORCPT <rfc822;machinecat1666@gmail.com>
        + 99 others); Wed, 28 Apr 2021 11:01:12 -0400
Received: from server.lespinasse.org ([63.205.204.226]:57569 "EHLO
        server.lespinasse.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S240496AbhD1O7K (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 28 Apr 2021 10:59:10 -0400
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed;
 d=lespinasse.org; i=@lespinasse.org; q=dns/txt; s=srv-13-ed;
 t=1619621903; h=date : from : to : cc : subject : message-id :
 references : mime-version : content-type : in-reply-to : from;
 bh=QydOVvpj2OAyZRQLFyThi3nH5+pcZsNgV/K3JPyDtNY=;
 b=v0pzT2ftLbgMGbGTh60i1QNqjD03znuBtiCVjyDA+AlHGKjxRg095hn5nSntHwdJwW5G2
 6ieNuTl11n2gIsIBg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lespinasse.org;
 i=@lespinasse.org; q=dns/txt; s=srv-13-rsa; t=1619621903; h=date :
 from : to : cc : subject : message-id : references : mime-version :
 content-type : in-reply-to : from;
 bh=QydOVvpj2OAyZRQLFyThi3nH5+pcZsNgV/K3JPyDtNY=;
 b=x/TTWv4tQOnLutEIDbG9cc6Wu1R2lL73vSbCsE8Edvz0ZzakWl8TXCdqzHPoB4q7KtApc
 PS63BgYRDrK2I9sJbFt8w5Wb3W+YiKEv+O7IVJm/IPQEJcRmH4oiDN7wOBl8+KmMEdOzMEQ
 Bcqg/QcQ7qk+RP6dkeEYE8bVyfEwJQb/LLVgCmYr3sTVHLG47D8GgPAA+ceHeEVOMaND8ZV
 qyRoeiMdhcU7ZcbsIrXL3tRexMT8znCDwT/Zv+I8e3V07y3OlHEWb2uXB4NrwjqkimLqeku
 dwPEpKGb8yQQBd/CPngXo6zar+9JaHutiDx2DHNR1JpZkjMwl9RU4K4kL2ag==
Received: by server.lespinasse.org (Postfix, from userid 1000)
        id B1B4816026E; Wed, 28 Apr 2021 07:58:23 -0700 (PDT)
Date:   Wed, 28 Apr 2021 07:58:23 -0700
From:   Michel Lespinasse <michel@lespinasse.org>
To:     Andy Lutomirski <luto@kernel.org>,
        Paul McKenney <paulmck@kernel.org>
Cc:     Michel Lespinasse <michel@lespinasse.org>,
        Linux-MM <linux-mm@kvack.org>,
        Laurent Dufour <ldufour@linux.ibm.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Michal Hocko <mhocko@suse.com>,
        Matthew Wilcox <willy@infradead.org>,
        Rik van Riel <riel@surriel.com>,
        Andrew Morton <akpm@linux-foundation.org>,
        Suren Baghdasaryan <surenb@google.com>,
        Joel Fernandes <joelaf@google.com>,
        Rom Lemarchand <romlem@google.com>,
        Linux-Kernel <linux-kernel@vger.kernel.org>
Subject: Re: [RFC PATCH 13/37] mm: implement speculative handling in
 __handle_mm_fault().
Message-ID: <20210428145823.GA856@lespinasse.org>
References: <20210407014502.24091-1-michel@lespinasse.org>
 <20210407014502.24091-14-michel@lespinasse.org>
 <eee7431c-3dc8-ca3c-02fb-9e059d30e951@kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <eee7431c-3dc8-ca3c-02fb-9e059d30e951@kernel.org>
User-Agent: Mutt/1.10.1 (2018-07-13)
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, Apr 07, 2021 at 08:36:01AM -0700, Andy Lutomirski wrote:
> On 4/6/21 6:44 PM, Michel Lespinasse wrote:
> > The page table tree is walked with local irqs disabled, which prevents
> > page table reclamation (similarly to what fast GUP does). The logic is
> > otherwise similar to the non-speculative path, but with additional
> > restrictions: in the speculative path, we do not handle huge pages or
> > wiring new pages tables.
> 
> Not on most architectures.  Quoting the actual comment in mm/gup.c:
> 
> >  * Before activating this code, please be aware that the following assumptions
> >  * are currently made:
> >  *
> >  *  *) Either MMU_GATHER_RCU_TABLE_FREE is enabled, and tlb_remove_table() is used to
> >  *  free pages containing page tables or TLB flushing requires IPI broadcast.
> 
> On MMU_GATHER_RCU_TABLE_FREE architectures, you cannot make the
> assumption that it is safe to dereference a pointer in a page table just
> because irqs are off.  You need RCU protection, too.
> 
> You have the same error in the cover letter.

Hi Andy,

Thanks for your comment. At first I thought did not matter, because we
only enable ARCH_SUPPORTS_SPECULATIVE_PAGE_FAULT on selected
architectures, and I thought MMU_GATHER_RCU_TABLE_FREE is not set on
these. But I was wrong - MMU_GATHER_RCU_TABLE_FREE is enabled on X86
with paravirt. So I took another look at fast GUP to make sure I
actually understand it.

This brings a question about lockless_pages_from_mm() - I see it
disabling interrupts, which it explains is necessary for disabling THP
splitting IPIs, but I do not see it taking an RCU read lock as would
be necessary for preventing paga table freeing on
MMU_GATHER_RCU_TABLE_FREE configs. I figure local_irq_save()
indirectly takes an rcu read lock somehow ? I think this is something
I should also mention in my explanation, and I have not seen a good
description of this on the fast GUP side...

Thanks,

--
Michel "walken" Lespinasse