RE: [PATCH] aio: fix kernel bug when page is temporally busy

From: Ananiev, Leonid I
Date: Thu Feb 15 2007 - 14:11:49 EST

Next message: Mathieu Desnoyers: "Re: [PATCH 02/05] Linux Kernel Markers, architecture independant code."
Previous message: Mathieu Desnoyers: "Re: [PATCH 05/05] Linux Kernel Markers, non optimized architectures"
In reply to: Zach Brown: "Re: [PATCH] aio: fix kernel bug when page is temporally busy"
Next in thread: Zach Brown: "Re: [PATCH] aio: fix kernel bug when page is temporally busy"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> It returns -EIOCBRETRY without guaranteeing that kick_iocb() will be
> called. This can lead to operations hanging

If EIOCBRETRY then generic_file_aio_write() will be recalled for the
same iocb.

> It overwrites -EIOCBQUEUED, leading to an aio_complete() while a
> retry is happening.

EIOCBQUEUED or EIOCBRETRY does not lead to aio_complete() call:
if (ret != -EIOCBRETRY && ret != -EIOCBQUEUED) {
aio_complete(iocb, ret, 0);

> This can lead to reference count confusion.
But just reference count confusion was deleted by patch. Isn't it?

Leonid

-----Original Message-----
From: Zach Brown [mailto:zach.brown@xxxxxxxxxx]
Sent: Thursday, February 15, 2007 9:25 PM
To: Ananiev, Leonid I
Cc: Ken Chen; suparna@xxxxxxxxxx; Andrew Morton;
linux-kernel@xxxxxxxxxxxxxxx; linux-aio; Chris Mason
Subject: Re: [PATCH] aio: fix kernel bug when page is temporally busy

> If invalidate_inode_pages2_range() will return EIOCBRETRY as the patch
> "aio: fix kernel bug when page is temporally busy"

Sorry Leonid, this patch is not safe.

It returns -EIOCBRETRY without guaranteeing that kick_iocb() will be
called. This can lead to operations hanging, both AIO and calls that
come through do_sync_{read,write}.

It overwrites -EIOCBQUEUED, leading to an aio_complete() while a
retry is happening. This can lead to reference count confusion.
Double-frees, referencing freed memory, that kind of thing. This
isn't a new problem. The current code that overwrites with -EIO has
this problem. But moving to -EIOCBRETRY does introduce new behaviour
of aio_complete() and the retry path racing.

I'll have a candidate patch to address the problem of EIO being
raised on the way back up from a path which has returned -EIOCBQUEUED.

- z
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mathieu Desnoyers: "Re: [PATCH 02/05] Linux Kernel Markers, architecture independant code."
Previous message: Mathieu Desnoyers: "Re: [PATCH 05/05] Linux Kernel Markers, non optimized architectures"
In reply to: Zach Brown: "Re: [PATCH] aio: fix kernel bug when page is temporally busy"
Next in thread: Zach Brown: "Re: [PATCH] aio: fix kernel bug when page is temporally busy"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]