From owner-freebsd-current Mon Jul 29 5:17:36 2002 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5992937B400 for ; Mon, 29 Jul 2002 05:17:31 -0700 (PDT) Received: from birch.ripe.net (birch.ripe.net [193.0.1.96]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6D1D243E5E for ; Mon, 29 Jul 2002 05:17:30 -0700 (PDT) (envelope-from marks@ripe.net) Received: from laptop.6bone.nl (cow.ripe.net [193.0.1.239]) by birch.ripe.net (8.12.5/8.11.6) with SMTP id g6TCHTlQ005102; Mon, 29 Jul 2002 14:17:29 +0200 Received: (nullmailer pid 631 invoked by uid 1000); Mon, 29 Jul 2002 12:17:28 -0000 Date: Mon, 29 Jul 2002 14:17:28 +0200 From: Mark Santcroos To: Seigo Tanimura Cc: current@FreeBSD.ORG Subject: Re: A fix of recent bugs in swapping in/out a process Message-ID: <20020729121728.GA537@laptop.6bone.nl> References: <200207281252.g6SCpvSH064272@silver.carrots.uucp.r.dl.itc.u-tokyo.ac.jp> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200207281252.g6SCpvSH064272@silver.carrots.uucp.r.dl.itc.u-tokyo.ac.jp> User-Agent: Mutt/1.3.99i X-Handles: MS6-6BONE, MS18417-RIPE Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, Just want to let you know that this patch fixes the 'fault on nofault entry' panics I had. It was very easily reproducable with: --- char *buf; int n=0; buf=(char *)malloc(1); for(;;) buf=(char *)realloc(buf,n++*1024*1024); --- Ran some tests now and as said it didn't happen again. Thanks alot. Mark On Sun, Jul 28, 2002 at 09:51:57PM +0900, Seigo Tanimura wrote: > If you are having a trouble of a broken thread state (eg a thread with > TDS_RUNQ on no run queue) or a mysterious page fault on a kernel > memory (probably in mi_switch()), you may want to try my patch at: > > http://people.FreeBSD.org/~tanimura/patches/procswap.diff.gz > > In a nutshell, this patch fixes three bugs: > > > 1. a thread with TDS_RUNQ on no run queue. > > This is due to wakeup() and wakeup_one() setting the state to a thread > to TDS_RUNQ even if the thread has been swapped out. As a thread > being or having been swapped out cannot be scheduled immediately, > introduce a new thread state TDS_SWAPPED to note that. > > > 2. a possible race condition for multiple threads to swap in a single > process. > > Since faultin() may block (and likely to do so) without leaving any > flags for a process being swapped in, more than one threads can call > faultin() for the same process. Avoid this by adding a new process > state flag PS_SWAPPINGIN to a process being swapped in. > > > 3. a running thread being swapped out. > > Swapout_procs() and swapout() do not check the states of the threads > in a process about to be swapped out. This causes the pcb and the > kernel stack of a running thread being unmapped, resulting in a > page fault in cpu_switch(). Do not swap out a process unless all of > its threads are either in a run queue or sleeping. > > Eventually, it may become our option to swap out only threads that are > safe to do so. > > -- > Seigo Tanimura > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message -- Mark Santcroos RIPE Network Coordination Centre http://www.ripe.net/home/mark/ New Projects Group/TTM To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message