[PATCH 3.4 85/92] mm: make sendfile(2) killable

From: lizf
Date: Mon Apr 18 2016 - 06:51:52 EST

Next message: lizf: "[PATCH 3.4 87/92] mvsas: Fix NULL pointer dereference in mvs_slot_task_free"
Previous message: lizf: "[PATCH 3.4 84/92] drm/nouveau/gem: return only valid domain when there's only one"
In reply to: lizf: "[PATCH 3.4 84/92] drm/nouveau/gem: return only valid domain when there's only one"
Next in thread: lizf: "[PATCH 3.4 87/92] mvsas: Fix NULL pointer dereference in mvs_slot_task_free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jan Kara <jack@xxxxxxxx>

3.4.112-rc1 review patch. If anyone has any objections, please let me know.

------------------

commit 296291cdd1629c308114504b850dc343eabc2782 upstream.

Currently a simple program below issues a sendfile(2) system call which
takes about 62 days to complete in my test KVM instance.

int fd;
off_t off = 0;

fd = open("file", O_RDWR | O_TRUNC | O_SYNC | O_CREAT, 0644);
ftruncate(fd, 2);
lseek(fd, 0, SEEK_END);
sendfile(fd, fd, &off, 0xfffffff);

Now you should not ask kernel to do a stupid stuff like copying 256MB in
2-byte chunks and call fsync(2) after each chunk but if you do, sysadmin
should have a way to stop you.

We actually do have a check for fatal_signal_pending() in
generic_perform_write() which triggers in this path however because we
always succeed in writing something before the check is done, we return
value > 0 from generic_perform_write() and thus the information about
signal gets lost.

Fix the problem by doing the signal check before writing anything. That
way generic_perform_write() returns -EINTR, the error gets propagated up
and the sendfile loop terminates early.

Signed-off-by: Jan Kara <jack@xxxxxxxx>
Reported-by: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
Cc: Al Viro <viro@xxxxxxxxxxxxxxxxxx>
Signed-off-by: Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Zefan Li <lizefan@xxxxxxxxxx>
---
mm/filemap.c | 9 +++++----
1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/mm/filemap.c b/mm/filemap.c
index 79c4b2b..448f9ca 100644
--- a/mm/filemap.c
+++ b/mm/filemap.c
@@ -2402,6 +2402,11 @@ again:
break;
}

+ if (fatal_signal_pending(current)) {
+ status = -EINTR;
+ break;
+ }
+
status = a_ops->write_begin(file, mapping, pos, bytes, flags,
&page, &fsdata);
if (unlikely(status))
@@ -2442,10 +2447,6 @@ again:
written += copied;

balance_dirty_pages_ratelimited(mapping);
- if (fatal_signal_pending(current)) {
- status = -EINTR;
- break;
- }
} while (iov_iter_count(i));

return written ? written : status;
--
1.9.1

Next message: lizf: "[PATCH 3.4 87/92] mvsas: Fix NULL pointer dereference in mvs_slot_task_free"
Previous message: lizf: "[PATCH 3.4 84/92] drm/nouveau/gem: return only valid domain when there's only one"
In reply to: lizf: "[PATCH 3.4 84/92] drm/nouveau/gem: return only valid domain when there's only one"
Next in thread: lizf: "[PATCH 3.4 87/92] mvsas: Fix NULL pointer dereference in mvs_slot_task_free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]