Re: [dm-devel] [PATCH 0/6] dax poison recovery with RWF_RECOVERY_DATA flag

From: Dan Williams
Date: Thu Nov 04 2021 - 12:08:55 EST

Next message: Rob Herring: "Re: [PATCH v3 1/7] dt-bindings: watchdog: convert Broadcom's WDT to the json-schema"
Previous message: Javier Martinez Canillas: "[PATCH v2 2/2] drm: Move nomodeset kernel parameter to the DRM subsystem"
In reply to: Christoph Hellwig: "Re: [dm-devel] [PATCH 0/6] dax poison recovery with RWF_RECOVERY_DATA flag"
Next in thread: Christoph Hellwig: "Re: [dm-devel] [PATCH 0/6] dax poison recovery with RWF_RECOVERY_DATA flag"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Nov 4, 2021 at 1:36 AM Christoph Hellwig <hch@xxxxxxxxxxxxx> wrote:
>
> On Wed, Nov 03, 2021 at 11:21:39PM -0700, Dan Williams wrote:
> > The concern I have with dax_clear_poison() is that it precludes atomic
> > error clearing.
>
> atomic as in clear poison and write the actual data? Yes, that would
> be useful, but it is not how the Intel pmem support actually works, right?

Yes, atomic clear+write new data. The ability to atomic clear requires
either a CPU with the ability to overwrite cachelines without doing a
RMW cycle (MOVDIR64B), or it requires a device with a suitable
slow-path mailbox command like the one defined for CXL devices (see
section 8.2.9.5.4.3 Clear Poison in CXL 2.0).

I don't know why you think these devices don't perform wear-leveling
with spare blocks?

> > Also, as Boris and I discussed, poisoned pages should
> > be marked NP (not present) rather than UC (uncacheable) [1].
>
> This would not really have an affect on the series, right? But yes,
> that seems like the right thing to do.

It would because the implementations would need to be careful to clear
poison in an entire page before any of it could be accessed. With an
enlightened write-path RWF flag or custom fault handler it could do
sub-page overwrites of poison. Not that I think the driver should
optimize for multiple failed cachelines in a page, but it does mean
dax_clear_poison() fails in more theoretical scenarios.

> > With
> > those 2 properties combined I think that wants a custom pmem fault
> > handler that knows how to carefully write to pmem pages with poison
> > present, rather than an additional explicit dax-operation. That also
> > meets Christoph's requirement of "works with the intended direct
> > memory map use case".
>
> So we have 3 kinds of accesses to DAX memory:
>
> (1) user space mmap direct access.
> (2) iov_iter based access (could be from kernel or userspace)
> (3) open coded kernel access using ->direct_access
>
> One thing I noticed: (2) could also work with kernel memory or pages,
> but that doesn't use MC safe access.

Yes, but after the fight to even get copy_mc_to_kernel() to exist for
pmem_copy_to_iter() I did not have the nerve to push for wider usage.

> Which seems like a major independent
> of this discussion.
>
> I suspect all kernel access could work fine with a copy_mc_to_kernel
> helper as long as everyone actually uses it,

All kernel accesses do use it. They either route to
pmem_copy_to_iter(), or like dm-writecache, call it directly. Do you
see a kernel path that does not use that helper?

> missing required bits of (2) and (3) together with something like the
> ->clear_poison series from Jane. We just need to think hard what we
> want to do for userspace mmap access.

dax_clear_poison() is at least ready to go today and does not preclude
adding the atomic and finer grained support later.

Next message: Rob Herring: "Re: [PATCH v3 1/7] dt-bindings: watchdog: convert Broadcom's WDT to the json-schema"
Previous message: Javier Martinez Canillas: "[PATCH v2 2/2] drm: Move nomodeset kernel parameter to the DRM subsystem"
In reply to: Christoph Hellwig: "Re: [dm-devel] [PATCH 0/6] dax poison recovery with RWF_RECOVERY_DATA flag"
Next in thread: Christoph Hellwig: "Re: [dm-devel] [PATCH 0/6] dax poison recovery with RWF_RECOVERY_DATA flag"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]