Received: by 2002:a6b:fb09:0:0:0:0:0 with SMTP id h9csp1045956iog; Wed, 15 Jun 2022 19:24:14 -0700 (PDT) X-Google-Smtp-Source: AGRyM1vgbQmqaK1VbIQ2Xc1cwArw4td4cyXUr6iqMYTJnRFergHYexYgRKV36bQHhuDSpOP6dlT8 X-Received: by 2002:a17:90b:3805:b0:1e6:85aa:51b with SMTP id mq5-20020a17090b380500b001e685aa051bmr2586546pjb.182.1655346254268; Wed, 15 Jun 2022 19:24:14 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1655346254; cv=none; d=google.com; s=arc-20160816; b=sA1TOxunx0ENI4hASKGP/rL++XaG/VF5vxVAjG1pEFrgjxtEIthb6PS2pnP0SMaMvh asGqhRdzxh4Xygtj/qWzbNKMmqyDY9gMddXY6KvhMYIal33DTlz0oZyOer2UhSfa7beQ yoCzRKvUvCdCBNciEPpbrOrJZOjwpOpmfLRbYuO83HhR6MtYD7VBgzm/plpLGxQpiKZT eUMF2P7I7FIf9zvmow9wzuOJqUgUUKgZTHJZALy5agvD6G2Nw/AdixCc63C7aXkxtrwT BrutmTHlbv8CgXt0G1L0CJngZFpFw3aAC4zVgbZIaz3zNY5uZaewWkTGeX4ym2sehfLl VFtg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=2wf+GQo1lkMGfk2sOlGy5EOrnw/TgqIePJAT4UiFG+A=; b=sM6HtGud/FhRlIidqxA1KGUAJTcYLVCU3RcoLHNUoqzDyFKE6Inx8rRdI4zo+YBM9v qOCUox3yu0IVGcwkckh961VfH/jFOXamUVd2EkaaM+zj5wrl7KBno7mEHTIyF60leqgh 5iwcX/2IxYhSwMIg8AtdYOUYcdWxd3mJoSw8zQlu/qwZnXn7KBjOlpHy2oWXLd4f1gxB IDMVcGT+GnMsGeIjzCb6tt1Olwwlah9zerfSfIPEH64dJoSCtDIO/yLIUP05sMGAH9s4 JWe5XyUH96r9acACv2v8S4D4Wq/vFAhoxcXSvSeu/UeA4lSIaKR0Yescieq1Yo4/SLvl OMfw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=sbzqhCSB; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id a188-20020a6366c5000000b003fdf16f1011si961409pgc.358.2022.06.15.19.24.02; Wed, 15 Jun 2022 19:24:14 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=sbzqhCSB; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1357345AbiFPB7O (ORCPT + 99 others); Wed, 15 Jun 2022 21:59:14 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36166 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S242636AbiFPB7M (ORCPT ); Wed, 15 Jun 2022 21:59:12 -0400 Received: from mail-vk1-xa29.google.com (mail-vk1-xa29.google.com [IPv6:2607:f8b0:4864:20::a29]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 8735659315 for ; Wed, 15 Jun 2022 18:59:11 -0700 (PDT) Received: by mail-vk1-xa29.google.com with SMTP id x190so51287vkc.9 for ; Wed, 15 Jun 2022 18:59:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=2wf+GQo1lkMGfk2sOlGy5EOrnw/TgqIePJAT4UiFG+A=; b=sbzqhCSBgGcqBDteaf4vfkNKOjSVtDqKJunMUhsu7AjKY+THtxWSShfj/LVlwkcU06 AD7AIT2YOeyLnPOdksCcl+hEAItYDTaDPsTjrPnjv43pzZ2YSt+hXHJk/Z91QBp8ECmI kEWpNBJZaupNmk4U9AAtJXZDW8Yjw/GGyEDFSHP9CLD0aA8m8L/6YC5QigppT2MK3/Lh fzHhAWQXw6reqAdTbEBPuyCRBLRWg4CDwoCKk3d8szKBKoI/mVe3nECHnCbYFXM6++OU YImQZkmBkjlR/8/QMnMjsd3yGh/VlouahhwETg8F1Zo0uLDG0JnyLwqGEQXI02Hdl3F6 TO3Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=2wf+GQo1lkMGfk2sOlGy5EOrnw/TgqIePJAT4UiFG+A=; b=KFgX/sec+SrYZ/CjMIUMxDW+dGPcU9gn/97AZcZZjr8LoImk1yOiR4O7A3AOPWD2F/ vtcmOigZ9KxMOTHB/nRHeiFQNyLYxAuuLZUx8IL8KbCvRn/ux6PcIzGMdNcSJxYg1UsL VZEoetupJQN/Ton944QG8RKee6qerfNgDOpRRoioaYvB8l0hXKg/6BCSlij5E1y5KrY9 9+pKPoAplAAZXOm0nEB18+yrjCWditSb1yGupesWjL44watXi8ItClEkvCqO44CZvL1k GhK/7ODIHhjRaYmUrUQ7ux0oDfd42HeM6zCmuO8F5XwCqMlPGISml/GGIeDcWa1QScCM 1Axw== X-Gm-Message-State: AJIora8jq6PXMwPKCu36Fc69YXKZuWZgCcbuuG9hc8HVb6ZJjejBYLlN PyKVuAgONZLRkOA2aQ6Co1W5gH2m8W0U0+yoRn+1aUEfKDeXyQ== X-Received: by 2002:a1f:a504:0:b0:35e:4fd4:d3bf with SMTP id o4-20020a1fa504000000b0035e4fd4d3bfmr1196702vke.7.1655344750439; Wed, 15 Jun 2022 18:59:10 -0700 (PDT) MIME-Version: 1.0 References: <20220606161940.fh5edq5nyz4jru2u@revolver> <20220615142508.mtp65w6tdiurtvcn@revolver> <20220615185500.i5bzt7srzm6q72na@revolver> <20220616014956.6jgxvbzh4ld3c32q@revolver> In-Reply-To: <20220616014956.6jgxvbzh4ld3c32q@revolver> From: Yu Zhao Date: Wed, 15 Jun 2022 19:58:34 -0600 Message-ID: Subject: Re: [PATCH v9 28/69] mm/mmap: reorganize munmap to use maple states To: Liam Howlett Cc: Qian Cai , "maple-tree@lists.infradead.org" , "linux-mm@kvack.org" , "linux-kernel@vger.kernel.org" , Andrew Morton Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, T_SCC_BODY_TEXT_LINE,USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Jun 15, 2022 at 7:50 PM Liam Howlett wrote: > > * Yu Zhao [220615 17:17]: > > ... > > > > Yes, I used the same parameters with 512GB of RAM, and the kernel with > > > KASAN and other debug options. > > > > Sorry, Liam. I got the same crash :( > > Thanks for running this promptly. I am trying to get my own server > setup now. > > > > > 9d27f2f1487a (tag: mm-everything-2022-06-14-19-05, akpm/mm-everything) > > 00d4d7b519d6 fs/userfaultfd: Fix vma iteration in mas_for_each() loop > > 55140693394d maple_tree: Make mas_prealloc() error checking more generic > > 2d7e7c2fcf16 maple_tree: Fix mt_destroy_walk() on full non-leaf non-alloc nodes > > 4d4472148ccd maple_tree: Change spanning store to work on larger trees > > ea36bcc14c00 test_maple_tree: Add tests for preallocations and large > > spanning writes > > 0d2aa86ead4f mm/mlock: Drop dead code in count_mm_mlocked_page_nr() > > > > ================================================================== > > BUG: KASAN: slab-out-of-bounds in mab_mas_cp+0x2d9/0x6c0 > > Write of size 136 at addr ffff88c35a3b9e80 by task stress-ng/19303 > > > > CPU: 66 PID: 19303 Comm: stress-ng Tainted: G S I 5.19.0-smp-DEV #1 > > Call Trace: > > > > dump_stack_lvl+0xc5/0xf4 > > print_address_description+0x7f/0x460 > > print_report+0x10b/0x240 > > ? mab_mas_cp+0x2d9/0x6c0 > > kasan_report+0xe6/0x110 > > ? mast_spanning_rebalance+0x2634/0x29b0 > > ? mab_mas_cp+0x2d9/0x6c0 > > kasan_check_range+0x2ef/0x310 > > ? mab_mas_cp+0x2d9/0x6c0 > > ? mab_mas_cp+0x2d9/0x6c0 > > memcpy+0x44/0x70 > > mab_mas_cp+0x2d9/0x6c0 > > mas_spanning_rebalance+0x1a3e/0x4f90 > > Does this translate to an inline around line 2997? > And then probably around 2808? $ ./scripts/faddr2line vmlinux mab_mas_cp+0x2d9 mab_mas_cp+0x2d9/0x6c0: mab_mas_cp at lib/maple_tree.c:1988 $ ./scripts/faddr2line vmlinux mas_spanning_rebalance+0x1a3e mas_spanning_rebalance+0x1a3e/0x4f90: mast_cp_to_nodes at lib/maple_tree.c:? (inlined by) mas_spanning_rebalance at lib/maple_tree.c:2997 $ ./scripts/faddr2line vmlinux mas_wr_spanning_store+0x16c5 mas_wr_spanning_store+0x16c5/0x1b80: mas_wr_spanning_store at lib/maple_tree.c:? No idea why faddr2line didn't work for the last two addresses. GDB seems more reliable. (gdb) li *(mab_mas_cp+0x2d9) 0xffffffff8226b049 is in mab_mas_cp (lib/maple_tree.c:1988). (gdb) li *(mas_spanning_rebalance+0x1a3e) 0xffffffff822633ce is in mas_spanning_rebalance (lib/maple_tree.c:2801). quit) (gdb) li *(mas_wr_spanning_store+0x16c5) 0xffffffff8225cfb5 is in mas_wr_spanning_store (lib/maple_tree.c:4030).