[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

zap_page_range(): TLB flush race

To: linux-kernel@vger.rutgers.edu, linux-mm@kvack.org
Subject: zap_page_range(): TLB flush race
From: Manfred Spraul <manfreds@colorfullife.com>
Date: Sat, 08 Apr 2000 22:06:13 +0200
Sender: owner-linux-mm@kvack.org

it seems we have a smp race in zap_page_range():

When we remove a page from the page tables, we must call:

	flush_cache_page();
	pte_clear();
	flush_tlb_page();
	free_page();

We must not free the page before we have called flush_tlb_xy(),
otherwise the second cpu could access memory that already freed.

but zap_page_range() calls free_page() before the flush_tlb() call.

Is that really a bug, has anyone a good idea how to fix that?

filemap_sync() calls flush_tlb_page() for each page, but IMHO this is a
really bad idea, the performance will suck with multi-threaded apps on
SMP.

Perhaps build a linked list, and free later?
We could abuse the next pointer from "struct page".
--
	Manfred

--
To unsubscribe, send a message with 'unsubscribe linux-mm' in
the body to majordomo@kvack.org.  For more info on Linux MM,
see: http://www.linux.eu.org/Linux-MM/

Follow-Ups:
- Re: zap_page_range(): TLB flush race
  - From: kanoj@google.engr.sgi.com (Kanoj Sarcar)

Prev by Date: Re: Is Linux kernel 2.2.x Pageable?
Next by Date: Re: zap_page_range(): TLB flush race
Prev by thread: Re: Query on memory management
Next by thread: Re: zap_page_range(): TLB flush race
Index(es):
- Date
- Thread