Re: msync(2) bug(?), returns AOP_WRITEPAGE_ACTIVATE to userland

On Thu, 11 Oct 2007, Ryan Finnie wrote:

quoted text

> On 10/11/07, Andrew Morton <akpm@linux-foundation.org> wrote: > > shit. That's a nasty bug. Really userspace should be testing for -1, but > > the msync() library function should only ever return 0 or -1. > > > > Does this fix it? > > > > --- a/mm/page-writeback.c~a > > +++ a/mm/page-writeback.c > > @@ -850,8 +850,10 @@ retry: > > > > ret = (*writepage)(page, wbc, data); > > > > - if (unlikely(ret == AOP_WRITEPAGE_ACTIVATE)) > > + if (unlikely(ret == AOP_WRITEPAGE_ACTIVATE)) { > > unlock_page(page); > > + ret = 0; > > + } > > if (ret || (--(wbc->nr_to_write) <= 0)) > > done = 1; > > if (wbc->nonblocking && bdi_write_congested(bdi)) { > > _ > > > > Pekka Enberg replied with an identical patch a few days ago, but for > some reason the same condition flows up to msync as -1 EIO instead of > AOP_WRITEPAGE_ACTIVATE with that patch applied. The last part of the > thread is below. Thanks.

Each time I sit down to follow what's going on with writepage and unionfs and msync, I get distracted: I really haven't researched this properly. But I keep suspecting that the answer might be the patch below (which rather follows what drivers/block/rd.c is doing). I'm especially worried that, rather than just AOP_WRITEPAGE_ACTIVATE being returned to userspace, bad enough in itself, you might be liable to hit that BUG_ON(page_mapped(page)). shmem_writepage does not expect to be called by anyone outside mm/vmscan.c, but unionfs can now get to it? Please let us know if this patch does fix it: then I'll try harder to work out what goes on. Thanks, Hugh --- 2.6.23/mm/shmem.c 2007-10-09 21:31:38.000000000 +0100 +++ linux/mm/shmem.c 2007-10-12 01:25:46.000000000 +0100 @@ -916,6 +916,11 @@ static int shmem_writepage(struct page * struct inode *inode; BUG_ON(!PageLocked(page)); + if (!wbc->for_reclaim) { + set_page_dirty(page); + unlock_page(page); + return 0; + } BUG_ON(page_mapped(page)); mapping = page->mapping; -

unsubscribe notice

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/


linux-kernel:
Ingo Molnar	Re: [PATCH 00/34] AMD IOMMU driver
Linus Torvalds	Linux 2.6.27-rc8
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Ryan Hope	reiser4 for 2.6.27-rc1
git:
Linus Torvalds	Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Jon Smirl	Re: VCS comparison table
Junio C Hamano	Re: [PATCH] Teach remote machinery about remotes.default config variable
Dmitry Kakurin	Re: Git on MSys (or how to make it easy for Windows users to compile git)
linux-netdev:
Octavian Purdila	race in skb_splice_bits?
Wolfgang Walter	Re: Kernel oops with 2.6.26, padlock and ipsec: probably problem with fpu state ch...
Ingo Molnar	Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison overwritten
Rick Jones	Re: 2.6.24 BUG: soft lockup - CPU#X
openbsd-misc:
Richard Stallman	Real men don't attack straw men
chefren	Kuro5hin: OpenBSD Founder Theo deRaadt Has Conflict of Interest With AMD
Pieter Verberne	File collision while using pkg_add
Jason Dixon	Re: Hardware recommendation for firewalls (more than 4 NICs)


high memory	22 hours ago	Linux kernel
semaphore access speed	1 day ago	Applications and Utilities
the kernel how to power off the machine	1 day ago	Linux kernel
Easter Eggs in windows XP	1 day ago	Windows
Shared swap partition	1 day ago	Linux general
Root password	1 day ago	Linux general
Where/when DNOTIFY is used?	1 day ago	Linux kernel
How to convert Linux Kernel built-in module into a loadable module	1 day ago	Linux kernel
Linux 2.6.24 and I/O schedulers	1 day ago	Linux kernel
USB Driver -- Interrupt Polling -- A Little Help Please	1 day ago	Linux general

Re: msync(2) bug(?), returns AOP_WRITEPAGE_ACTIVATE to userland

Online users