Re: [PATCH] [suggestion] mm/gup: avoid IS_ERR_OR_NULL

From: Jason Gunthorpe
Date: Sat May 20 2023 - 04:26:04 EST

Next message: syzbot: "[syzbot] [kernel?] possible deadlock in scheduler_tick (2)"
Previous message: Takashi Iwai: "Re: [PATCH v2][next] ALSA: mixart: Replace one-element arrays with simple object declarations"
In reply to: Lorenzo Stoakes: "Re: [PATCH] [suggestion] mm/gup: avoid IS_ERR_OR_NULL"
Next in thread: Lorenzo Stoakes: "Re: [PATCH] [suggestion] mm/gup: avoid IS_ERR_OR_NULL"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, May 20, 2023 at 06:19:37AM +0100, Lorenzo Stoakes wrote:
> On Fri, May 19, 2023 at 07:17:41PM -0300, Jason Gunthorpe wrote:
> > On Fri, May 19, 2023 at 03:51:51PM +0100, Lorenzo Stoakes wrote:
> > > Given you are sharply criticising the code I authored here, is it too much
> > > to ask for you to cc- me, the author on commentaries like this? Thanks.
> > >
> > > On Fri, May 19, 2023 at 11:39:13AM +0200, Arnd Bergmann wrote:
> > > > From: Arnd Bergmann <arnd@xxxxxxxx>
> > > >
> > > > While looking at an unused-variable warning, I noticed a new interface coming
> > > > in that requires the use of IS_ERR_OR_NULL(), which tends to indicate bad
> > > > interface design and is usually surprising to users.
> > >
> > > I am not sure I understand your reasoning, why does it 'tend to indicate
> > > bad interface design'? You say that as if it is an obvious truth. Not
> > > obvious to me at all.
> > >
> > > There are 3 possible outcomes from the function - an error, the function
> > > failing to pin a page, or it succeeding in doing so. For some of the
> > > callers that results in an error, for others it is not an error.
> >
> > No, there really isn't.
> >
> > Either it pins the page or it doesn't. Returning "NULL" to mean a
> > specific kind of failure was encountered is crazy.. Especially if we
> > don't document what that specific failure even was.
> >
>
> It's not a specific kind of failure, it's literally "I didn't pin any
> pages" which a caller may or may not choose to interpret as a failure.

Any time gup fails it didn't pin any pages, that is the whole
point. All that is happening is some ill defined subset of gup errors
are returning 0 instead of an error code.

If we want to enable callers to ignore certain errors then we need to
return error codes with well defined meanings, have documentation what
errors are included and actually make it sane.

> That can be a reason for gup returning 0 but also if it you look at the
> main loop in __get_user_pages_locked(), if it can't find the VMA it will
> bail early, OR if the VMA flags are not as expected it'll bail early.

And how does that make any sense? Missing VMA should be EFAULT.

> caller differentiates between an error and not being able to pin -
> uprobe_write_opcode() - which treats failure to pin as a non-error state.

That looks like a bug since the function returns 0 on success but it
clearly didn't succeed.

> Also if we decided at some point to return -EIO as an error suddenly we
> would be treating an error state as not an error state in the proposed code
> which sounds like a foot gun.

No, this returning 0 on failure is a foot gun. Failing to pin a single
page is always an error, the only question is what sub reason caused
the error to happen. There is no third case where it is not an error.

Jason

Next message: syzbot: "[syzbot] [kernel?] possible deadlock in scheduler_tick (2)"
Previous message: Takashi Iwai: "Re: [PATCH v2][next] ALSA: mixart: Replace one-element arrays with simple object declarations"
In reply to: Lorenzo Stoakes: "Re: [PATCH] [suggestion] mm/gup: avoid IS_ERR_OR_NULL"
Next in thread: Lorenzo Stoakes: "Re: [PATCH] [suggestion] mm/gup: avoid IS_ERR_OR_NULL"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]