Received: by 2002:a05:7412:5112:b0:fa:6e18:a558 with SMTP id fm18csp628172rdb; Tue, 23 Jan 2024 09:38:55 -0800 (PST) X-Google-Smtp-Source: AGHT+IGaDLUjThJPO3IAsLRJMF2X4UwcyypNy9DituR8iYgWIpzRjWt0T3e1kn/ABBRwNVChVo4q X-Received: by 2002:a05:6a21:9995:b0:19c:5037:9d8c with SMTP id ve21-20020a056a21999500b0019c50379d8cmr2519843pzb.14.1706031535363; Tue, 23 Jan 2024 09:38:55 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1706031535; cv=pass; d=google.com; s=arc-20160816; b=P79hJehgRInXr07Z+/iOOWhx0KYkKHxcypcGuAn0UXSjgd03fh4mz1zWxIIWBDrrAC a9EAPCqe5rtVOMAxZ12NzivX50Rq2zlsuIWD2fadSMv9ChQCsuyaQ/Uoa/KGL8QepWDf yI686jybwdA6RVMt5M/exFOGKHchS1pw9Z9Eh1x0GvABJEQyU3sag2FG1FV4I8Drt1y5 GPd0uDun2Jhq4GqbOvsYNsC5FHoOO07s2uwBrp/22KpngLa6xPI1Hx+C7oXqMDF1M4EC qU2h6pbjPlDCEhXg9+qdD9LxygWsJdtNbLpdGHQHETNWurG70Q6cy6DbHWWx08irKPBo YoBQ== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:date:message-id; bh=A9Gt/A9I0uhI2DXdN2UvkPoIyqLKDzM6ZuDh5Tpiywg=; fh=zq5/iR0SAY5/LTlou3+xPQOMuVP4QRV+GfkbZJ/enmM=; b=pRAHddOY2xcj1cs5c25ZWw8uwLvtYW/J1V/iaAuHa8tFP/MFxoPo7dd+eZSllgSYoj 5L6AKC/KboxXnHZQzRPYEUlMCaf/aZAYh1rg6bQdprJYpp9xVnCmLAFWECHj9hHKZ9G+ pjQrHgmyNQJc4yr5wD9T3kQ5+86QnvUxwFQOXShObpTcFVUnopMQQ14QZE+HY1oYf9Tt OL807GE9eCWsaCinBuGUQnPHhDu/TdI08qf52YlWnll22u/p3cQwQef+xtFUAuhPikS+ yYsE5kMIvangiJ5tEZSQOJBoLr40K3YUUn1tuu2Z7Z8q8BPWne4gO7WcJXTLBoBYx2im B4Mg== ARC-Authentication-Results: i=2; mx.google.com; arc=pass (i=1 spf=pass spfdomain=arm.com dmarc=pass fromdomain=arm.com); spf=pass (google.com: domain of linux-kernel+bounces-35778-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-kernel+bounces-35778-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com Return-Path: Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [139.178.88.99]) by mx.google.com with ESMTPS id w2-20020a056a0014c200b006dbdb4599c4si4594667pfu.109.2024.01.23.09.38.55 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 23 Jan 2024 09:38:55 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-35778-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) client-ip=139.178.88.99; Authentication-Results: mx.google.com; arc=pass (i=1 spf=pass spfdomain=arm.com dmarc=pass fromdomain=arm.com); spf=pass (google.com: domain of linux-kernel+bounces-35778-linux.lists.archive=gmail.com@vger.kernel.org designates 139.178.88.99 as permitted sender) smtp.mailfrom="linux-kernel+bounces-35778-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sv.mirrors.kernel.org (Postfix) with ESMTPS id 1F6BB283B1F for ; Tue, 23 Jan 2024 17:27:14 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 5A2DD8004C; Tue, 23 Jan 2024 17:26:58 +0000 (UTC) Received: from foss.arm.com (foss.arm.com [217.140.110.172]) by smtp.subspace.kernel.org (Postfix) with ESMTP id E55AC80031 for ; Tue, 23 Jan 2024 17:26:54 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=217.140.110.172 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706030817; cv=none; b=OqWzvkdcyzmkJFqqFHvfrlhNg0BXIidFwYqxNgthz/Fen194+bsReV7RarbT+bICoFPl5D0+e4yH5xGoEP3bYPTU/37KPgWj6rzZzUqQeIg3/NmtXAvDCjsAf367p1ZUHhBEv4V12wQLwjJGQ7clObf94cc+RgTdd6PcF2iDMiA= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706030817; c=relaxed/simple; bh=fDm705gR6ubXMJtAald4dja1fG2IaPg+9g99pf/J8GQ=; h=Message-ID:Date:MIME-Version:Subject:To:Cc:References:From: In-Reply-To:Content-Type; b=dg805yURzcaxHcUuhKH14X2Wr0kMqv0RLqhudi7jz/S7oe+CAo+RHtxdiE2fUvCIlTCKm6SxTP9QA2WWZODIrHIVcgqHDkErcNx1Me0K9SRNuY1x4Nh5qG3tXo7nxRb0s0+qavoS8ZuXOYdoxn2C+F4pNM2tGE13oYVj11c3d34= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com; spf=pass smtp.mailfrom=arm.com; arc=none smtp.client-ip=217.140.110.172 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=arm.com Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 788951FB; Tue, 23 Jan 2024 09:27:39 -0800 (PST) Received: from [10.57.77.165] (unknown [10.57.77.165]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 0B9AC3F5A1; Tue, 23 Jan 2024 09:26:52 -0800 (PST) Message-ID: Date: Tue, 23 Jan 2024 17:26:51 +0000 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: [RESEND PATCH] mm: align larger anonymous mappings on THP boundaries Content-Language: en-GB To: Yang Shi Cc: Matthew Wilcox , Yang Shi , riel@surriel.com, cl@linux.com, akpm@linux-foundation.org, linux-kernel@vger.kernel.org, linux-mm@kvack.org References: <20231214223423.1133074-1-yang@os.amperecomputing.com> <1e8f5ac7-54ce-433a-ae53-81522b2320e1@arm.com> From: Ryan Roberts In-Reply-To: Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit On 23/01/2024 17:14, Yang Shi wrote: > On Tue, Jan 23, 2024 at 1:41 AM Ryan Roberts wrote: >> >> On 22/01/2024 19:43, Yang Shi wrote: >>> On Mon, Jan 22, 2024 at 3:37 AM Ryan Roberts wrote: >>>> >>>> On 20/01/2024 16:39, Matthew Wilcox wrote: >>>>> On Sat, Jan 20, 2024 at 12:04:27PM +0000, Ryan Roberts wrote: >>>>>> However, after this patch, each allocation is in its own VMA, and there is a 2M >>>>>> gap between each VMA. This causes 2 problems: 1) mmap becomes MUCH slower >>>>>> because there are so many VMAs to check to find a new 1G gap. 2) It fails once >>>>>> it hits the VMA limit (/proc/sys/vm/max_map_count). Hitting this limit then >>>>>> causes a subsequent calloc() to fail, which causes the test to fail. >>>>>> >>>>>> Looking at the code, I think the problem is that arm64 selects >>>>>> ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT. But __thp_get_unmapped_area() allocates >>>>>> len+2M then always aligns to the bottom of the discovered gap. That causes the >>>>>> 2M hole. As far as I can see, x86 allocates bottom up, so you don't get a hole. >>>>> >>>>> As a quick hack, perhaps >>>>> #ifdef ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT >>>>> take-the-top-half >>>>> #else >>>>> current-take-bottom-half-code >>>>> #endif >>>>> >>>>> ? >>> >>> Thanks for the suggestion. It makes sense to me. Doing the alignment >>> needs to take into account this. >>> >>>> >>>> There is a general problem though that there is a trade-off between abutting >>>> VMAs, and aligning them to PMD boundaries. This patch has decided that in >>>> general the latter is preferable. The case I'm hitting is special though, in >>>> that both requirements could be achieved but currently are not. >>>> >>>> The below fixes it, but I feel like there should be some bitwise magic that >>>> would give the correct answer without the conditional - but my head is gone and >>>> I can't see it. Any thoughts? >>> >>> Thanks Ryan for the patch. TBH I didn't see a bitwise magic without >>> the conditional either. >>> >>>> >>>> Beyond this, though, there is also a latent bug where the offset provided to >>>> mmap() is carried all the way through to the get_unmapped_area() >>>> impelementation, even for MAP_ANONYMOUS - I'm pretty sure we should be >>>> force-zeroing it for MAP_ANONYMOUS? Certainly before this change, for arches >>>> that use the default get_unmapped_area(), any non-zero offset would not have >>>> been used. But this change starts using it, which is incorrect. That said, there >>>> are some arches that override the default get_unmapped_area() and do use the >>>> offset. So I'm not sure if this is a bug or a feature that user space can pass >>>> an arbitrary value to the implementation for anon memory?? >>> >>> Thanks for noticing this. If I read the code correctly, the pgoff used >>> by some arches to workaround VIPT caches, and it looks like it is for >>> shared mapping only (just checked arm and mips). And I believe >>> everybody assumes 0 should be used when doing anonymous mapping. The >>> offset should have nothing to do with seeking proper unmapped virtual >>> area. But the pgoff does make sense for file THP due to the alignment >>> requirements. I think it should be zero'ed for anonymous mappings, >>> like: >>> >>> diff --git a/mm/mmap.c b/mm/mmap.c >>> index 2ff79b1d1564..a9ed353ce627 100644 >>> --- a/mm/mmap.c >>> +++ b/mm/mmap.c >>> @@ -1830,6 +1830,7 @@ get_unmapped_area(struct file *file, unsigned >>> long addr, unsigned long len, >>> pgoff = 0; >>> get_area = shmem_get_unmapped_area; >>> } else if (IS_ENABLED(CONFIG_TRANSPARENT_HUGEPAGE)) { >>> + pgoff = 0; >>> /* Ensures that larger anonymous mappings are THP aligned. */ >>> get_area = thp_get_unmapped_area; >>> } >> >> I think it would be cleaner to just zero pgoff if file==NULL, then it covers the >> shared case, the THP case, and the non-THP case properly. I'll prepare a >> separate patch for this. > > IIUC I don't think this is ok for those arches which have to > workaround VIPT cache since MAP_ANONYMOUS | MAP_SHARED with NULL file > pointer is a common case for creating tmpfs mapping. For example, > arm's arch_get_unmapped_area() has: > > if (aliasing) > do_align = filp || (flags & MAP_SHARED); > > The pgoff is needed if do_align is true. So we should just zero pgoff > iff !file && !MAP_SHARED like what my patch does, we can move the > zeroing to a better place. We crossed streams - I sent out the patch just as you sent this. My patch is implemented as I proposed. I'm not sure I agree with what you are saying. The mmap man page says this: The contents of a file mapping (as opposed to an anonymous mapping; see MAP_ANONYMOUS below), are initialized using length bytes starting at offset offset in the file (or other object) referred to by the file descriptor fd. So that implies offset is only relavent when a file is provided. It then goes on to say: MAP_ANONYMOUS The mapping is not backed by any file; its contents are initialized to zero. The fd argument is ignored; however, some implementations require fd to be -1 if MAP_ANONYMOUS (or MAP_ANON) is specified, and portable applications should ensure this. The offset argument should be zero. So users are expected to pass offset=0 when mapping anon memory, for both shared and private cases. Infact, in the line above where you made your proposed change, pgoff is also being zeroed for the (!file && (flags & MAP_SHARED)) case. > >> >> >>> >>>> >>>> Finally, the second test failure I reported (ksm_tests) is actually caused by a >>>> bug in the test code, but provoked by this change. So I'll send out a fix for >>>> the test code separately. >>>> >>>> >>>> diff --git a/mm/huge_memory.c b/mm/huge_memory.c >>>> index 4f542444a91f..68ac54117c77 100644 >>>> --- a/mm/huge_memory.c >>>> +++ b/mm/huge_memory.c >>>> @@ -632,7 +632,7 @@ static unsigned long __thp_get_unmapped_area(struct file *filp, >>>> { >>>> loff_t off_end = off + len; >>>> loff_t off_align = round_up(off, size); >>>> - unsigned long len_pad, ret; >>>> + unsigned long len_pad, ret, off_sub; >>>> >>>> if (off_end <= off_align || (off_end - off_align) < size) >>>> return 0; >>>> @@ -658,7 +658,13 @@ static unsigned long __thp_get_unmapped_area(struct file *filp, >>>> if (ret == addr) >>>> return addr; >>>> >>>> - ret += (off - ret) & (size - 1); >>>> + off_sub = (off - ret) & (size - 1); >>>> + >>>> + if (current->mm->get_unmapped_area == arch_get_unmapped_area_topdown && >>>> + !off_sub) >>>> + return ret + size; >>>> + >>>> + ret += off_sub; >>>> return ret; >>>> } >>> >>> I didn't spot any problem, would you please come up with a formal patch? >> >> Yeah, I'll aim to post today. > > Thanks! > >> >>