Page MenuHomeFreeBSD
Differential D42509

vm_phys: fix freelist_contig
ClosedPublic
Actions

Authored by dougm on Nov 8 2023, 5:15 PM.
Tags
None
Referenced Files
F102553219: D42509.id129968.diff
Wed, Nov 13, 11:29 PM
Unknown Object (File)
Tue, Nov 12, 2:19 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
Unknown Object (File)
Thu, Nov 7, 1:31 PM
View All Files
Subscribers
imp
jhibbits

Details

Reviewers
alc
markj
Commits
rG4be96902ba82: vm_phys: fix freelist_contig
rG210fce73ae0e: vm_phys: fix freelist_contig
rG2a4897bd4e1b: vm_phys: fix freelist_contig
Summary

vm_phys_find_freelist_contig is called to search a list of max-sized free page blocks and find one that, when joined with adjacent blocks in memory, can satisfy a request for a memory allocation bigger than any single max-sized free page block. In commit fa8a6585c7522b7de6d29802967bd5eba2f2dcf1, I defined this function in order to offer two improvements: 1) reduce the worst-case search time, and 2) allow solutions that include less-than max-sized free page blocks at the front or back of the giant allocation. However, it turns out that this change introduced an error, reported in In Bug 274592. That error concerns failing to check segment boundaries. This change fixes an error in vm_phys_find_freelist_config that resolves that bug. It also abandons improvement 2), because the value of that improvement is small and because preserving it would require more testing than I am able to do.

Test Plan

The reporter of Bug 274592 reports that, for a test that previously failed about half the time, now 10-12 consecutive tests succeed.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

dougm requested review of this revision.Nov 8 2023, 5:15 PM
dougm created this revision.
dougm updated this revision to Diff 129892.Nov 9 2023, 7:41 AM

Don't modify m_ret in the loop, in case iteration happens and that breaks FOREACH. Save the potential return value in m_val instead.

jhibbits added a subscriber: jhibbits.Nov 9 2023, 4:42 PM
markj added a comment.Nov 9 2023, 4:50 PM

Could you please add some assertions to vm_phys_alloc_contig() to verify that the returned range, if any, satisfies the constraints?

sys/vm/vm_phys.c
1363–1365
1379

or m_ret->phys_addr.

1402–1404
1414–1416

There's no reason to expect this condition to be true in general, so "verify" sounds a bit misleading.

1428–1431

The loop variable is called m_ret, but it is never returned.

1430

Rather than advancing pa for each blocking, translating it to a vm_page, and then checking its order, would it be marginally more efficient to simply advance a vm_page pointer by adding 1 << (VM_NFREEORDER - 1) to it in each iteration?

dougm updated this revision to Diff 129909.Nov 9 2023, 8:25 PM

Apply suggestions from @markj.

dougm updated this revision to Diff 129921.Nov 10 2023, 3:15 AM

Add a missing assignment.

dougm updated this revision to Diff 129922.Nov 10 2023, 3:48 AM

Re-enter an iterator for checking empty blocks.

alc added inline comments.Nov 10 2023, 6:29 PM
sys/vm/vm_phys.c
1408

This assumes that there is an initialized page structure at m_ret + npages. That is not a valid assumption. You still need "pa" to perform the bounds checks.

alc added inline comments.Nov 10 2023, 6:31 PM
sys/vm/vm_phys.c
960

This is asking for trouble from someone who doesn't carefully read all of the code.

alc added inline comments.Nov 10 2023, 6:42 PM
sys/vm/vm_phys.c
1413

This really ought to have a comment saying that it ensures that the loop that follows is only looking at legitimate vm_page structures.

dougm updated this revision to Diff 129954.Nov 10 2023, 7:37 PM

Address feedback from @alc.

markj added inline comments.Nov 10 2023, 7:57 PM
sys/vm/vm_phys.c
1567

m_run + npages could be outside the segment containing m_run.

dougm updated this revision to Diff 129956.Nov 10 2023, 8:00 PM

Fix an assertion identified by @markj.

alc added a comment.Nov 11 2023, 7:15 PM

We may want to issue this as an errata for 14.0, so can we have a minimal version without style changes?

sys/vm/vm_phys.c
1567
1569

Use m_run->segind instead to compute this faster.

1572
dougm updated this revision to Diff 129963.Nov 11 2023, 7:39 PM

Apply @alc suggestions. Remove some inessential parts.

alc added inline comments.Nov 11 2023, 7:51 PM
sys/vm/vm_phys.c
1545

This assertion is redundant. We know that the domain is locked, and we are still operating on the same domain.

1570

The NULL check is now pointless.

dougm updated this revision to Diff 129965.Nov 11 2023, 8:00 PM

As @alc suggests, remove a redundant assertion (aren't they all redundant?), and a pointless NULL check, and a comment which in no way improved performance.

alc added inline comments.Nov 11 2023, 8:02 PM
sys/vm/vm_phys.c
1406–1411

I don't see the point of introducing a new variable, m_ret,

1430

The semi-colon at the end of the line is too easy to overlook.

dougm added inline comments.Nov 11 2023, 8:19 PM
sys/vm/vm_phys.c
1406–1411

Suppose that m_ret is advanced in line 1400, and then that the FOREACH loop iteration ends with 'continue', rather than 'return'. Then the TAILQ_FOREACH advances m to the next item in the list. If there is no m_ret, and m was instead advanced in line 1400, where will the TAILQ_FOREACH take us next? Maybe it'll skip way ahead in the list. Maybe it'll skip back, so that we have an infinite loop.

dougm updated this revision to Diff 129966.Nov 11 2023, 8:20 PM

For @alc, change a semicolon to empty braces.

alc added inline comments.Nov 11 2023, 9:39 PM
sys/vm/vm_phys.c
1477–1478
dougm updated this revision to Diff 129968.Nov 11 2023, 9:47 PM

Fix a comment, suggested by @alc.

alc added inline comments.Nov 11 2023, 10:01 PM
sys/vm/vm_phys.c
1363–1365

This comment is not currently very descriptive of what this function does.

1377–1378

This describes what the code does, but not why. Specifically, why do we care that the preceding block is free?

1409

I don't see how 'size' is correct here.

alc added inline comments.Nov 11 2023, 10:03 PM
sys/vm/vm_phys.c
1409

You're relying on size being greater than max_size. Okay.

alc added inline comments.Nov 11 2023, 10:07 PM
sys/vm/vm_phys.c
1376–1378

I would KASSERT(size >= max_size, ...

alc added inline comments.Nov 11 2023, 10:09 PM
sys/vm/vm_phys.c
1376–1378

Actually, strictly greater than.

alc added a comment.Nov 11 2023, 10:24 PM

I'm convinced that it's correct. That said, even the person who reported the problem is probably not exercising this while loop:

while (!vm_addr_ok(VM_PAGE_TO_PHYS(m_ret),
    size, alignment, boundary) &&
    ...
sys/vm/vm_phys.c
1415
dougm updated this revision to Diff 129969.Nov 11 2023, 10:36 PM

Add assertion. Add/update some comments.

alc added inline comments.Nov 12 2023, 9:56 PM
sys/vm/vm_phys.c
1383
dougm updated this revision to Diff 129987.Nov 12 2023, 10:06 PM

Edit a couple of comments.

markj added inline comments.Nov 13 2023, 3:41 PM
sys/vm/vm_phys.c
1418–1419

Is this check inverted? Certainly the ! looks wrong.

1573
dougm updated this revision to Diff 130024.Nov 13 2023, 5:21 PM

Fix typos identified by @markj.

alc accepted this revision.Nov 13 2023, 5:39 PM
This revision is now accepted and ready to land.Nov 13 2023, 5:39 PM
markj accepted this revision.Nov 13 2023, 7:15 PM
Closed by commit rG2a4897bd4e1b: vm_phys: fix freelist_contig (authored by dougm). · Explain WhyNov 15 2023, 9:38 AM
This revision was automatically updated to reflect the committed changes.
dougm added a commit: rG2a4897bd4e1b: vm_phys: fix freelist_contig.
Herald added a subscriber: imp. · View Herald TranscriptNov 15 2023, 9:38 AM
dougm added a commit: rG210fce73ae0e: vm_phys: fix freelist_contig.Nov 25 2023, 1:26 AM
markj added a commit: rG4be96902ba82: vm_phys: fix freelist_contig.Dec 5 2023, 6:28 PM

Revision Contents
Changeset List

PathSize
sys/
vm/
146 lines

Diff 130124

View Options

sys/vm/vm_phys.c

Loading...