This is the mail archive of the systemtap@sourceware.org mailing list for the systemtap project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: double fault -> PAGE_KERNEL flagged memory

From: Mathieu Desnoyers <compudj at krystal dot dyndns dot org>
To: Tom Zanussi <zanussi at us dot ibm dot com>
Cc: "Stone, Joshua I" <joshua dot i dot stone at intel dot com>, michel dot dagenais at polymtl dot ca, systemtap at sources dot redhat dot com, ltt-dev at shafik dot org
Date: Wed, 23 Nov 2005 18:21:45 -0500
Subject: Re: double fault -> PAGE_KERNEL flagged memory
References: <CBDB88BFD06F7F408399DBCF8776B3DC05A8FB95@scsmsx403.amr.corp.intel.com> <20051122140021.GA3907@Krystal> <17283.13647.856527.25948@tut.ibm.com> <20051122152352.GB27520@Krystal> <17283.19630.70083.230792@tut.ibm.com> <20051122185914.GA20878@Krystal> <17284.34532.454560.412291@tut.ibm.com> <20051123175310.GB14338@Krystal> <17284.52705.399716.178073@tut.ibm.com>

* Tom Zanussi (zanussi@us.ibm.com) wrote:

> I just tried a simple experiment instrumenting do_page_fault() to log
> in the same spot LTT does, and also at the very end of of the
> vmalloc_fault case, and see the vmalloc faults (to the relayfs buffer,
> caused by a write from another page fault, since that's all that's
> instrumented) being logged without double faults.  So you don't even
> have to test whether the fault is in the relayfs buffer, just wait
> until the page table has been updated.  What would cause a double
> fault would be if the vmalloc_fault tried logging before the page
> table was updated, which would cause the same vmalloc fault.
> 

Yes, it fits with p. 5-52, vol. 3 from IA32 Intel Software Developer Manual : it
explains that a page fault handler can generate another page fault in its code.
It must save the content of the CR2 register (address of the fault) before a
nested PF can occur.

After having read the "Interrupt 8 - Double fault exception", vol3. p. 5-37 five
times, I get the difference between :

"while calling an exception handler for a prior exception"
and
"while the processor is executing an NMI interrupt handler"

The page fault case causing a double fault is only when the call to the PF
handler will itself generate a page fault. The code of the PF handler seems to
be allowed to generate a PF without any double fault occuring.

But having the PF handler causing a PF on the same address as the preceding one
before the page table has been updated could clearly end up in a recursive page
fault. I just tried it, I don't think this ends up in a double fault
(nothing shown on my debug console) and I get a system freeze (I use spinlocks
to protect my buffer in this test). It looks like a deadlock.

It could be interesting, if we want to instrument this function before the page
table is updated (i.e. have each function entry including this one, getting the
real time spent in the do_page_fault function), to have a small low traffic
memory subsystem reentrant kmalloc'd relayfs channel to log this particular
path.

Mathieu

OpenPGP public key:              http://krystal.dyndns.org:8080/key/compudj.gpg
Key fingerprint:     8CD5 52C3 8E3C 4140 715F  BA06 3F25 A8FE 3BAE 9A68

References:
- double fault
  - From: Stone, Joshua I
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Mathieu Desnoyers
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Tom Zanussi
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Mathieu Desnoyers
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Tom Zanussi
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Mathieu Desnoyers
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Tom Zanussi
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Mathieu Desnoyers
- Re: double fault -> PAGE_KERNEL flagged memory
  - From: Tom Zanussi

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]