From: Nathan Lynch <nathanl@austin.ibm.com>
To: Heiko Carstens <heiko.carstens@de.ibm.com>
Cc: rusty@rustcorp.com.au, paulus@au1.ibm.com, linux-kernel@vger.kernel.org
Subject: Re: [BUG] mm_struct leak on cpu hotplug (s390/ppc64)
Date: Tue, 04 Jan 2005 20:41:17 -0600 [thread overview]
Message-ID: <1104892877.8954.27.camel@localhost.localdomain> (raw)
In-Reply-To: <20050104131101.GA3560@osiris.boeblingen.de.ibm.com>
On Tue, 2005-01-04 at 14:11 +0100, Heiko Carstens wrote:
> Hi,
>
> there is an mm_struct memory leak when using cpu hotplug. Appearently
> start_secondary in smp.c initializes active_mm of the cpu's idle task
> and increases init_mm's mm_count. But on cpu_die the idle task's
> active_mm doesn't get dropped and therefore on the next cpu_up event
> (->start_secondary) it gets overwritten and the result is a forgotten
> reference count to whatever mm_struct was active when the cpu
> was taken down previously.
>
> The patch below should fix this for s390 (at least it works fine for
> me), but I'm not sure if it's ok to call mmdrop from __cpu_die.
>
> Also this very same leak exists for ppc64 as well.
>
> Any opinions?
Wouldn't it be better to fix this in generic code instead of duplicating
it in each architecture? It looks like the same thing would occur on
ia64 also.
What about something like this? Tested on ppc64.
Index: 2.6.10/kernel/sched.c
===================================================================
--- 2.6.10.orig/kernel/sched.c 2004-12-24 21:35:24.000000000 +0000
+++ 2.6.10/kernel/sched.c 2005-01-05 01:48:47.520250232 +0000
@@ -4088,6 +4088,9 @@
migrate_nr_uninterruptible(rq);
BUG_ON(rq->nr_running != 0);
+ /* Must manually drop reference to avoid leaking mm_structs. */
+ mmdrop(rq->idle->active_mm);
+
/* No need to migrate the tasks: it was best-effort if
* they didn't do lock_cpu_hotplug(). Just wake up
* the requestors. */
next prev parent reply other threads:[~2005-01-05 2:40 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-01-04 13:11 [BUG] mm_struct leak on cpu hotplug (s390/ppc64) Heiko Carstens
2005-01-05 2:41 ` Nathan Lynch [this message]
2005-01-05 11:08 ` Ingo Molnar
2005-01-05 14:22 ` Heiko Carstens
2005-01-05 15:44 ` Nathan Lynch
2005-01-07 11:43 ` Ingo Molnar
2005-01-07 21:43 ` [PATCH] introduce idle_task_exit Nathan Lynch
2005-01-07 21:44 ` [PATCH] ppc64: call idle_task_exit from cpu_die Nathan Lynch
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1104892877.8954.27.camel@localhost.localdomain \
--to=nathanl@austin.ibm.com \
--cc=heiko.carstens@de.ibm.com \
--cc=linux-kernel@vger.kernel.org \
--cc=paulus@au1.ibm.com \
--cc=rusty@rustcorp.com.au \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).