Received: by 2002:a05:6359:c8b:b0:c7:702f:21d4 with SMTP id go11csp1399573rwb;
        Tue, 27 Sep 2022 12:29:06 -0700 (PDT)
X-Google-Smtp-Source: AMsMyM4QclREpkR6cUCFEu3ddJdrC8D0bsR7x3ZIA2fF97b3KoY2zAJOHbdjYyjZ1JbMeVCbJvdD
X-Received: by 2002:a63:4d4:0:b0:438:ce28:757f with SMTP id 203-20020a6304d4000000b00438ce28757fmr25908064pge.441.1664306946395;
        Tue, 27 Sep 2022 12:29:06 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1664306946; cv=none;
        d=google.com; s=arc-20160816;
        b=e8wrGoxp5qnRWWX9LL7cB34P5rPbp73vVyvUibCCSdAcKLFTqbUNq3dRy28WDPAfO5
         tblalcEYoafgzRENepZcwIiy4kkuJl8aqweaD+tRISsQBY82IObERcOx2dyGfQRbqxUJ
         LaB8akm8mUkx/4ejbvSto/sDlPNhJ56sBD7npqaw5nipLYjXT2HNOk1L3t7sMCwLQpgC
         4JiNEQpJg2eteHv7Tyk+raXWne97n0i82+Y3R8zrJbAgzb4XhBy0MWjekrFcKzsG0m72
         tZVk2U1OspaY/IoGtNdTlEwxryHsc0rX5E4vQKiRxCzs4dHD+68k5yj387Le317n/lpM
         NeZQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-transfer-encoding
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=irMbtd8FZdiIboGibKNEwpTqt4Jj4yNLbVUI1gMwaPk=;
        b=sVGWjMazA+x/lMNtyh2nuo5JuczFNo1Y7WFLAdfhJnKdty6JjcOte0jLZkJRS/wzKI
         ewrbHSsE605/aD/X98o0e4L3FygRdPh+OvFaEMvfS8w8ZvzQP9qBCiRa8QuPDMhgHN7o
         Anm2xjUa5iRxXX6RGlhdZGTNpILFZkSg2lmoGPpN4sFoxrQwPuHJRD0lxbL6EUGlLrls
         Fw9mAv4DL1cmv9Xlf7PzyebLhN0s+v+dBatENFyzFzVhQq+p+HDwfACnOSpvtL06MkK2
         I8d5nUOsuVJuOtINPo8slxqHV3uwrUGKtqKMRCNMNephkhDQTztgk8SsDtlK2PapcvRy
         EiSQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20210112 header.b=e0FQ6dEV;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id s8-20020a170902a50800b0017687e1c8e9si2472348plq.131.2022.09.27.12.28.54;
        Tue, 27 Sep 2022 12:29:06 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20210112 header.b=e0FQ6dEV;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229567AbiI0TXX (ORCPT <rfc822;andrey.bzh.r@gmail.com>
        + 99 others); Tue, 27 Sep 2022 15:23:23 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35590 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229542AbiI0TXV (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 27 Sep 2022 15:23:21 -0400
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0C7ADD74E7
        for <linux-kernel@vger.kernel.org>; Tue, 27 Sep 2022 12:23:21 -0700 (PDT)
Received: by mail-pl1-x62f.google.com with SMTP id iw17so10000263plb.0
        for <linux-kernel@vger.kernel.org>; Tue, 27 Sep 2022 12:23:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=in-reply-to:content-transfer-encoding:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date:from:to
         :cc:subject:date;
        bh=irMbtd8FZdiIboGibKNEwpTqt4Jj4yNLbVUI1gMwaPk=;
        b=e0FQ6dEVHGBnnI6HqwHOLFzljuzwHYhz+8RFJ0db4risESGFamZ+UkWBPp8hD8O4qr
         4VyJSyWkkMh8iRaCxLOZFA2R3V/It7lko9Ic4CYQYVi6wHUO7A/zCpLRexsMrFULSCH4
         L5cbdNFEbn0q08Zv5vq4ZRaNt90B4qavACQ1ZEfTAbMExzqvrr6rSJH7AKHC6r5R+Tyy
         77E9rONRP2Lk3ZVQrDVzqJgInQVokonQBKLs2S0uum07//G6kgoCBoSoe9R4QFxmI89K
         vSQcEtob0Rgd9W21dmpmg+3xKF56nL/WTSwkOajK+Edlm+bkLNz/y5P/1M2xjSHHcI1z
         2ogQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=in-reply-to:content-transfer-encoding:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :x-gm-message-state:from:to:cc:subject:date;
        bh=irMbtd8FZdiIboGibKNEwpTqt4Jj4yNLbVUI1gMwaPk=;
        b=vYu9y0tcy4pTID22Fyqm5OwjdWOS6rFjk09mfrwYBii98icd78TUK2T8xNj6JQaBjJ
         YOhZK63c3HppXYr/1PcNWeciiceavKG2y1rGLJl37sqP6qAV+N1+0t0OzpYV98Pz5jVb
         TrsdmEMMmhirNSi2Jcj6s28TUVk+M7Lor+RVsmLr71lWDRO9YbCD2l2ORs2vXS+t+KIj
         VlGCjKEL67YCEPDKMmytjnzeBmLU1nH88rPwuWsinRZqbha+eDxZIiL5ESllhTkkFoxO
         e+nzVpj6CLzv0bE0/AV1cahJ1HRFMN2UiE9lBQ2SBV0PeF8b9bjBtrMsUGUIt7ZTykNF
         /UZQ==
X-Gm-Message-State: ACrzQf209q2BSFa4Z/7sosoeKNi+NyWipQ7x7W2bxoGm9Jo61MNsJuNl
        eptYtOI+ohGEp6znyCEma6o=
X-Received: by 2002:a17:903:509:b0:179:ffcf:d275 with SMTP id jn9-20020a170903050900b00179ffcfd275mr333187plb.150.1664306600434;
        Tue, 27 Sep 2022 12:23:20 -0700 (PDT)
Received: from strix-laptop (2001-b011-20e0-1b32-d148-19d6-82fa-6094.dynamic-ip6.hinet.net. [2001:b011:20e0:1b32:d148:19d6:82fa:6094])
        by smtp.gmail.com with ESMTPSA id p3-20020a1709026b8300b0016d773aae60sm1949566plk.19.2022.09.27.12.23.15
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 27 Sep 2022 12:23:19 -0700 (PDT)
Date:   Wed, 28 Sep 2022 03:23:13 +0800
From:   Chih-En Lin <shiyn.lin@gmail.com>
To:     Nadav Amit <namit@vmware.com>
Cc:     Andrew Morton <akpm@linux-foundation.org>,
        Qi Zheng <zhengqi.arch@bytedance.com>,
        David Hildenbrand <david@redhat.com>,
        Matthew Wilcox <willy@infradead.org>,
        Christophe Leroy <christophe.leroy@csgroup.eu>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "linux-mm@kvack.org" <linux-mm@kvack.org>,
        Luis Chamberlain <mcgrof@kernel.org>,
        Kees Cook <keescook@chromium.org>,
        Iurii Zaikin <yzaikin@google.com>,
        Vlastimil Babka <vbabka@suse.cz>,
        William Kucharski <william.kucharski@oracle.com>,
        "Kirill A . Shutemov" <kirill.shutemov@linux.intel.com>,
        Peter Xu <peterx@redhat.com>,
        Suren Baghdasaryan <surenb@google.com>,
        Arnd Bergmann <arnd@arndb.de>,
        Tong Tiangen <tongtiangen@huawei.com>,
        Pasha Tatashin <pasha.tatashin@soleen.com>,
        Li kunyu <kunyu@nfschina.com>,
        Anshuman Khandual <anshuman.khandual@arm.com>,
        Minchan Kim <minchan@kernel.org>,
        Yang Shi <shy828301@gmail.com>, Song Liu <song@kernel.org>,
        Miaohe Lin <linmiaohe@huawei.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Sebastian Andrzej Siewior <bigeasy@linutronix.de>,
        Andy Lutomirski <luto@kernel.org>,
        Fenghua Yu <fenghua.yu@intel.com>,
        Dinglan Peng <peng301@purdue.edu>,
        Pedro Fonseca <pfonseca@purdue.edu>,
        Jim Huang <jserv@ccns.ncku.edu.tw>,
        Huichun Feng <foxhoundsk.tw@gmail.com>
Subject: Re: [RFC PATCH v2 7/9] mm: Add the break COW PTE handler
Message-ID: <YzNNoWfTDHNWDLa0@strix-laptop>
References: <20220927162957.270460-1-shiyn.lin@gmail.com>
 <20220927162957.270460-8-shiyn.lin@gmail.com>
 <8F98262B-206B-434C-88B9-9F3A6919782D@vmware.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <8F98262B-206B-434C-88B9-9F3A6919782D@vmware.com>
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM,
        RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Sep 27, 2022 at 06:15:34PM +0000, Nadav Amit wrote:
> On Sep 27, 2022, at 9:29 AM, Chih-En Lin <shiyn.lin@gmail.com> wrote:
> 
> > To handle the COW PTE with write fault, introduce the helper function
> > handle_cow_pte(). The function provides two behaviors. One is breaking
> > COW by decreasing the refcount, pgables_bytes, and RSS. Another is
> > copying all the information in the shared PTE table by using
> > copy_pte_page() with a wrapper.
> > 
> > Also, add the wrapper functions to help us find out the COWed or
> > COW-available PTE table.
> > 
> 
> [ snip ]
> 
> > +static inline int copy_cow_pte_range(struct vm_area_struct *vma,
> > +				     pmd_t *dst_pmd, pmd_t *src_pmd,
> > +				     unsigned long start, unsigned long end)
> > +{
> > +	struct mm_struct *mm = vma->vm_mm;
> > +	struct mmu_notifier_range range;
> > +	int ret;
> > +	bool is_cow;
> > +
> > +	is_cow = is_cow_mapping(vma->vm_flags);
> > +	if (is_cow) {
> > +		mmu_notifier_range_init(&range, MMU_NOTIFY_PROTECTION_PAGE,
> > +					0, vma, mm, start, end);
> > +		mmu_notifier_invalidate_range_start(&range);
> > +		mmap_assert_write_locked(mm);
> > +		raw_write_seqcount_begin(&mm->write_protect_seq);
> > +	}
> > +
> > +	ret = copy_pte_range(vma, vma, dst_pmd, src_pmd, start, end);
> > +
> > +	if (is_cow) {
> > +		raw_write_seqcount_end(&mm->write_protect_seq);
> > +		mmu_notifier_invalidate_range_end(&range);
> 
> Usually, I would expect mmu-notifiers and TLB flushes to be initiated at the
> same point in the code. Presumably you changed protection, so you do need a
> TLB flush, right? Is it done elsewhere?

You're right.
I will add TLB flushes here.
Thanks.

> > +	}
> > +
> > +	return ret;
> > +}
> > +
> > +/*
> > + * Break COW PTE, two state here:
> > + *   - After fork :   [parent, rss=1, ref=2, write=NO , owner=parent]
> > + *                 to [parent, rss=1, ref=1, write=YES, owner=NULL  ]
> > + *                    COW PTE become [ref=1, write=NO , owner=NULL  ]
> > + *                    [child , rss=0, ref=2, write=NO , owner=parent]
> > + *                 to [child , rss=1, ref=1, write=YES, owner=NULL  ]
> > + *                    COW PTE become [ref=1, write=NO , owner=parent]
> > + *   NOTE
> > + *     - Copy the COW PTE to new PTE.
> > + *     - Clear the owner of COW PTE and set PMD entry writable when it is owner.
> > + *     - Increase RSS if it is not owner.
> > + */
> > +static int break_cow_pte(struct vm_area_struct *vma, pmd_t *pmd,
> > +			 unsigned long addr)
> > +{
> > +	struct mm_struct *mm = vma->vm_mm;
> > +	unsigned long pte_start, pte_end;
> > +	unsigned long start, end;
> > +	struct vm_area_struct *prev = vma->vm_prev;
> > +	struct vm_area_struct *next = vma->vm_next;
> > +	pmd_t cowed_entry = *pmd;
> > +
> > +	if (cow_pte_count(&cowed_entry) == 1) {
> > +		cow_pte_fallback(vma, pmd, addr);
> > +		return 1;
> > +	}
> > +
> > +	pte_start = start = addr & PMD_MASK;
> > +	pte_end = end = (addr + PMD_SIZE) & PMD_MASK;
> > +
> > +	pmd_clear(pmd);
> > +	/*
> > +	 * If the vma does not cover the entire address range of the PTE table,
> > +	 * it should check the previous and next.
> > +	 */
> > +	if (start < vma->vm_start && prev) {
> > +		/* The part of address range is covered by previous. */
> > +		if (start < prev->vm_end)
> > +			copy_cow_pte_range(prev, pmd, &cowed_entry,
> > +					   start, prev->vm_end);
> > +		start = vma->vm_start;
> > +	}
> > +	if (end > vma->vm_end && next) {
> > +		/* The part of address range is covered by next. */
> > +		if (end > next->vm_start)
> > +			copy_cow_pte_range(next, pmd, &cowed_entry,
> > +					   next->vm_start, end);
> > +		end = vma->vm_end;
> > +	}
> > +	if (copy_cow_pte_range(vma, pmd, &cowed_entry, start, end))
> > +		return -ENOMEM;
> > +
> > +	/*
> > +	 * Here, it is the owner, so clear the ownership. To keep RSS state and
> > +	 * page table bytes correct, it needs to decrease them.
> > +	 * Also, handle the address range issue here.
> > +	 */
> > +	if (cow_pte_owner_is_same(&cowed_entry, pmd)) {
> > +		set_cow_pte_owner(&cowed_entry, NULL);
> 
> Presumably there is some assumption on atomicity here. Otherwise, two
> threads can run the following code, which is wrong, no? Yet, I do not see
> anything that provides such atomicity.

I may have multiple process access here. But for the thread, I assume
that they need to hold the mmap_lock. Maybe I need to add the assert
here too.

> 
> > +		if (pte_start < vma->vm_start && prev &&
> > +		    pte_start < prev->vm_end)
> > +			cow_pte_rss(mm, vma->vm_prev, pmd,
> > +				    pte_start, prev->vm_end, false /* dec */);
> > +		if (pte_end > vma->vm_end && next &&
> > +		    pte_end > next->vm_start)
> > +			cow_pte_rss(mm, vma->vm_next, pmd,
> > +				    next->vm_start, pte_end, false /* dec */);
> > +		cow_pte_rss(mm, vma, pmd, start, end, false /* dec */);
> > +		mm_dec_nr_ptes(mm);
> > +	}
> > +
> > +	/* Already handled it, don't reuse cowed table. */
> > +	pmd_put_pte(vma, &cowed_entry, addr, false);
> > +
> > +	VM_BUG_ON(cow_pte_count(pmd) != 1);
> 
> Don’t use VM_BUG_ON().

Sure. I will change it to VM_WARN_ON().

Thanks,
Chih-En Lin