Received: by 2002:a05:6358:795:b0:dc:4c66:fc3e with SMTP id n21csp663841rwj;
        Sat, 29 Oct 2022 08:53:46 -0700 (PDT)
X-Google-Smtp-Source: AMsMyM7qDsT5ZuXpZPkQQJAE425v6hPhuvucS1zPIE6mjQCvOxjK+GDUqGJVcOYbM0VPSUXkCzZF
X-Received: by 2002:a17:902:f551:b0:186:be04:6670 with SMTP id h17-20020a170902f55100b00186be046670mr4904312plf.159.1667058826208;
        Sat, 29 Oct 2022 08:53:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1667058826; cv=none;
        d=google.com; s=arc-20160816;
        b=oTbI4dphM902ja6cUdtuvKQH0aYlQsGtzX03bzWhRPJ+w4n1EQAxyo28/GgM/IJKFv
         H6w4KvnA7VzFiOkKUwZnne7LUpT3t/IT4Y3j90YDPNffxbotfursr8PGGcezTHY085TA
         wqlhi4Un4dbv4v+PY/BMqvDDjofjorZ1BL+xxx3u2VmtNcHsFSr5t/zQLiT36Gh0sy6u
         XS1eo/zEd7uhGM6Ia9Rt/yBTw3D5NegfN7jSGHZ2tI8wJiT6OqOegWEtKXk1eb+roZyT
         +vpJzWhoXF2ZMGDbETE2VBcwXcWMLN8sPbitvMYlrBbtG41F6xCAOIbSBoEIJaBL1Ry/
         qRvA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:content-language:subject:user-agent:mime-version
         :date:message-id:dkim-signature;
        bh=uMNe3Zs21+GPV1KtpZCV5C5G/1DpC63E56r9ScdrInc=;
        b=yQyAcKnV8221Zh0LR42QUdcF6G2aP5CEfe/HhJS7aiVLQJBSZk0P/eRNkXhKBgx6YV
         785QMpxv/xHIP23H5yaO4bHgZh6V8p1vNP7BNLYnz4L7Hhk6HO63WPD8yVOAw0v2rRVo
         pcYEKRMl4n93jEBjC6HTmLs+auiQhPFRkWftsCNTk20gYCxphtS1gwreWugISiUBDZDZ
         igNBqcZtf+q7PtDUTN0y0kggasYgRLyWTZ/VSWqcAeaPasuM+/oAtuZ/r6rQbhP79s4T
         Gg/QpzAxvN8pBqzkxaJnmqbb36HBDafT+cwj0rV6+7/JDP/vSMAZNI1btRXMR/HxJ41w
         WlNQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@efficios.com header.s=smtpout1 header.b="vf/OzoyS";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=efficios.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id iz1-20020a170902ef8100b0017f802fcffesi2180234plb.410.2022.10.29.08.53.32;
        Sat, 29 Oct 2022 08:53:46 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@efficios.com header.s=smtpout1 header.b="vf/OzoyS";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=efficios.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229982AbiJ2OkP (ORCPT <rfc822;arvinlake4755@gmail.com>
        + 99 others); Sat, 29 Oct 2022 10:40:15 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:40182 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230035AbiJ2OkF (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 29 Oct 2022 10:40:05 -0400
Received: from smtpout.efficios.com (smtpout.efficios.com [167.114.26.122])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 96E8A11A12;
        Sat, 29 Oct 2022 07:40:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=efficios.com;
        s=smtpout1; t=1667054399;
        bh=rruJccRKIMZ8eJABATaLJQ6F9UAAHLyJzTHes90xSQ4=;
        h=Date:Subject:To:Cc:References:From:In-Reply-To:From;
        b=vf/OzoySYni98wQ3AxC/oqgNJQPeMMJD+GTD2sBi3DyS0UjUALOZf1wnoC4zLw51Y
         HOIhFSE1lhAULSUMzCFwaorlMFU+aALgVVh6cPu+qvLu4r/CA5wjPi2lk3VRLSkH9/
         VD6r2MW7+cbWGRATZQhMTKEb28YllymZbPucUQucChC72MYPo5qX1naF9wL86D+JRK
         LnN4qkACkY5tkjONnsRN4zJGVuWDZ4bLiUPvx9Cqw/bRkp81ue4HK7fTb5rKkPgYxX
         ZPrgIsR0a4bW410eKACGzXvfpuhKnPfgRk+GAe6SEHcxp88KzXJImphGHg0WwzonMp
         H0l9vHBWaQ+Lg==
Received: from [10.1.0.216] (192-222-188-69.qc.cable.ebox.net [192.222.188.69])
        by smtpout.efficios.com (Postfix) with ESMTPSA id 4N02BR37gVz11Tq;
        Sat, 29 Oct 2022 10:39:59 -0400 (EDT)
Message-ID: <f66cdb16-8a3b-35c1-9c24-c32c5c7b19fb@efficios.com>
Date:   Sat, 29 Oct 2022 10:40:02 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.4.0
Subject: Re: [RFC PATCH 2/2] tracing/user_events: Fixup enable faults asyncly
Content-Language: en-US
To:     Beau Belgrave <beaub@linux.microsoft.com>
Cc:     rostedt@goodmis.org, mhiramat@kernel.org,
        dcook@linux.microsoft.com, alanau@linux.microsoft.com,
        linux-trace-devel@vger.kernel.org, linux-kernel@vger.kernel.org
References: <20221027224011.2075-1-beaub@linux.microsoft.com>
 <20221027224011.2075-3-beaub@linux.microsoft.com>
 <a18e940d-8423-0294-23b4-f2702313f3eb@efficios.com>
 <20221028224256.GA202@W11-BEAU-MD.localdomain>
From:   Mathieu Desnoyers <mathieu.desnoyers@efficios.com>
In-Reply-To: <20221028224256.GA202@W11-BEAU-MD.localdomain>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,SPF_HELO_NONE,
        SPF_PASS autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 2022-10-28 18:42, Beau Belgrave wrote:
> On Fri, Oct 28, 2022 at 06:19:10PM -0400, Mathieu Desnoyers wrote:
>> On 2022-10-27 18:40, Beau Belgrave wrote:
>>> When events are enabled within the various tracing facilities, such as
>>> ftrace/perf, the event_mutex is held. As events are enabled pages are
>>> accessed. We do not want page faults to occur under this lock. Instead
>>> queue the fault to a workqueue to be handled in a process context safe
>>> way without the lock.
>>>
>>> The enable address is disabled while the async fault-in occurs. This
>>> ensures that we don't attempt fault-in more than is necessary. Once the
>>> page has been faulted in, the address write is attempted again. If the
>>> page couldn't fault-in, then we wait until the next time the event is
>>> enabled to prevent any potential infinite loops.
>>
>> I'm also unclear about how the system call initiating the enabled state
>> change is delayed (or not) when a page fault is queued.
>>
> 
> It's not, if needed we could call schedule_delayed_work(). However, I
> don't think we need it. When pin_user_pages_remote is invoked, it's with
> FOLL_NOFAULT. This will tell us if we need to fault pages in, we then
> call fixup_user_fault with unlocked value passed. This will cause the
> fixup to retry and get the page in.
> 
> It's called out in the comments for this exact purpose (lucked out
> here):
> mm/gup.c
>   * This is meant to be called in the specific scenario where for locking reasons
>   * we try to access user memory in atomic context (within a pagefault_disable()
>   * section), this returns -EFAULT, and we want to resolve the user fault before
>   * trying again.
> 
> The fault in happens in a workqueue, this is the same way KVM does it's
> async page fault logic, so it's not a new pattern. As soon as the
> fault-in is done, we have a page we should be able to use, so we
> re-attempt the write immediately. If the write fails, another queue
> happens and we could loop, but not like the unmap() case I replied with
> earlier.
> 
>> I would expect that when a page fault is needed, after enqueuing work to the
>> worker thread, the system call initiating the state change would somehow
>> wait for a completion (after releasing the user events mutex). That
>> completion would be signaled by the worker thread either if the page fault
>> fails, or if the state change is done.
>>
> 
> I didn't see a generic fault-in + notify anywhere, do you know of one I
> could use? Otherwise, it seems the pattern used is check fault, fault-in
> via workqueue, re-attempt.

I don't think we're talking about the same thing. I'll try stating my 
concern in a different way.

user_event_enabler_write() calls user_event_enabler_queue_fault() when 
it cannot perform the enabled state update immediately (because a page 
fault is needed).

But then AFAIU it returns immediately to the caller. The caller could 
very well expect that the event has been enabled, as requested, 
immediately when the enabler write returns. The fact that enabling the 
event can be delayed for an arbitrary amount of time due to page faults 
means that we have no hard guarantee that the event is enabled as 
requested upon return to the caller.

I'd like to add a completion there, to be waited for after 
user_event_enabler_queue_fault(), but before returning from 
user_event_enabler_create(). Waiting for the completion should be done 
without any mutexes held, so after releasing event_mutex.

The completion would be placed on the stack of 
user_event_enabler_create(), and a reference to the completion would be 
placed in the queued fault request. The completion notification would be 
emitted by the worker thread either when enabling is done, or if a page 
fault fails.

See include/linux/completion.h

Thoughts ?

Thanks,

Mathieu


> 
>> Thoughts ?
>>
>> Thanks,
>>
>> Mathieu
>>
> 
> Thanks,
> -Beau

-- 
Mathieu Desnoyers
EfficiOS Inc.
https://www.efficios.com