(2013/07/16 9:27), HATAYAMA Daisuke wrote:
(2013/07/15 23:20), Vivek Goyal wrote:
On Fri, Jul 12, 2013 at 08:05:31PM +0900, HATAYAMA Daisuke wrote:
[..]
How about
static int mmap_vmcore_fault(struct vm_area_struct *vma, struct vm_fault *vmf)
{
...
char *buf;
int rc;
#ifndef CONFIG_S390
return VM_FAULT_SIGBUS;
#endif
page = find_or_create_page(mapping, index, GFP_KERNEL);
Considering again, I don't think WARN_ONCE() is good now. The fact that fault
occurs on
mmap() region indicates some kind of buggy situation occurs on the process. The
process
should be killed as soon as possible. If user still wants to get crash dump, he
should
try again in another process.
I don't understand that. Process should be killed only if there was no
mapping created for the region process is trying to access.
If there is a mapping but we are trying to fault in the actual contents,
then it is not a problem of process. Process is accessing a region of
memory which it is supposed to access.
Potential problem here is that remap_pfn_range() did not map everything
it was expected to so we have to resort on page fault handler to read
that in. So it is more of a kernel issue and not process issue and for
that WARN_ONCE() sounds better?
On the current design, there's no page faults on memory mapped by
remap_pfn_range().
They map a whole range in the current design. If there are page faults, page
table of the process
is broken in their some page entries. This indicates the process's bahaviour is
affected by
some software/hardware bugs. In theory, process could result in arbitrary
behaviour. We cannot
detect the reason and recover the original sane state. The only thing we can do
is to kill
the process and drop the possibility of the process to affect other system
components and of
system to result in worse situation.
In summary, it seems that you two and I have different implementation
policy on how to deal with the process that is no longer in healthy state.
You two's idea is try to continue dump in non-healthy state as much as possible
as long as there is possibility of continuing it, while my idea kill the process
promptly and to retry crash dump in another new process since the process is no
longer
in healthy state and could behave arbitrarily.
The logic in non-healthy states depends on implementation policy since there
is no obviously correct logic. I guess this discussion would not end soon.
I believe it is supposed that maintainer's idea should basically have high
priority over others. So I don't object anymore, though I don't think it best
at all.
--
Thanks.
HATAYAMA, Daisuke
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majord...@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
