Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp25939710rwd; Mon, 3 Jul 2023 03:14:08 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ6O0IvS9+JtHDmCk/c+9ghTBcGEiGBxBT32Xp5RGxU6xBjVG1Fuo9mFf0BELwJawgeZSFSZ X-Received: by 2002:a9d:7553:0:b0:6b8:82ed:ea30 with SMTP id b19-20020a9d7553000000b006b882edea30mr8989639otl.26.1688379248022; Mon, 03 Jul 2023 03:14:08 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1688379247; cv=none; d=google.com; s=arc-20160816; b=DQRKOcTBGsBJ/Ji4g95MmcIyJsXoCWtXhPOHB5IwhVdfwamdoioVaiuv2jDVrhcIQC qCpb3liLfdePZMGy+yHnUeUTLmkj1E1+vX0zIGvcVf9161ZYiyfeYQNaaG6spYvg8RVp qtjS2TYzQfjRWgZdIodyaqmxXRZiqJyZPuyK7d80p66WbcVTEK+itCWgh4fxrfAnNjio ihncY7adEB/kOJihqwHm30iD5x4WVHkP9XfECKw9+aKah408Y+YpvrUTGdo+NFtMMFq5 SGGBj9JKcr21GxL4K7TjDFbLMwCk1/Jr8h3Vepnw6dcev/vfyaKRUmezHfXj8R2/Gxm0 BNUQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:in-reply-to:reply-to :from:references:cc:to:content-language:subject:user-agent :mime-version:date:message-id; bh=3r0bC080Ke+pvy/rsXaj3CNZBwDvXsBMY2oo5NnmiPU=; fh=M20KvQAwPWQf0jbhpiu25wH0npDIIs0GyuP6fAB50dE=; b=bExbEDBSzOPWxOYFUpIzUYlM0ayDqAc+khWkovvjrtRNmYq2V8WOR/LL3dEIBpAvqR pE10oq/O41xJOLE24e5dH68JVto2E4KkRPVwQgUH1PO99j3MMkTl6hn4ULmNxlFNh9Gv HV19kuB1yFoEADbARJrfVVKdyY7ytKVyAg0Yk14lhVaULBCZs2Ae/0RARj1gjwtghwQl 9AcU/RgqP7cpRCbtPaxd8YFFqE6/Ut1t0XxHEFOC22Bv36r2xB7pYx3rWbck3nAeVqbq A975C2yF/XGvkNqSkNtVls8qTUFI/RLQvVK/+og4xemcHEftW6C2IhpQqqaZiFfa6Ffn Qckg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id a19-20020a63e413000000b00553a56f7b31si18298715pgi.330.2023.07.03.03.13.53; Mon, 03 Jul 2023 03:14:07 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230335AbjGCJ7b (ORCPT + 99 others); Mon, 3 Jul 2023 05:59:31 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56058 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232691AbjGCJ6o (ORCPT ); Mon, 3 Jul 2023 05:58:44 -0400 Received: from wp530.webpack.hosteurope.de (wp530.webpack.hosteurope.de [80.237.130.52]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 24817172E for ; Mon, 3 Jul 2023 02:54:44 -0700 (PDT) Received: from [2a02:8108:8980:2478:8cde:aa2c:f324:937e]; authenticated by wp530.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) id 1qGGF0-0001X4-1P; Mon, 03 Jul 2023 11:53:06 +0200 Message-ID: <5c7455db-4ed8-b54f-e2d5-d2811908123d@leemhuis.info> Date: Mon, 3 Jul 2023 11:53:05 +0200 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.12.0 Subject: Re: Fwd: Memory corruption in multithreaded user space program while calling fork Content-Language: en-US, de-DE To: Bagas Sanjaya , Suren Baghdasaryan , Andrew Morton , Jacob Young , Laurent Dufour Cc: Linux Kernel Mailing List , Linux Regressions , Linux Memory Management , Linux PowerPC , Linux ARM References: From: "Linux regression tracking (Thorsten Leemhuis)" Reply-To: Linux regressions mailing list In-Reply-To: Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-bounce-key: webpack.hosteurope.de;regressions@leemhuis.info;1688378085;f7f9c399; X-HE-SMSGID: 1qGGF0-0001X4-1P X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,NICE_REPLY_A, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 02.07.23 14:27, Bagas Sanjaya wrote: > I notice a regression report on Bugzilla [1]. Quoting from it: > >> After upgrading to kernel version 6.4.0 from 6.3.9, I noticed frequent but random crashes in a user space program. After a lot of reduction, I have come up with the following reproducer program: > [...] >> After tuning the various parameters for my computer, exit code 2, which indicates that memory corruption was detected, occurs approximately 99% of the time. Exit code 1, which occurs approximately 1% of the time, means it ran out of statically-allocated memory before reproducing the issue, and increasing the memory usage any more only leads to diminishing returns. There is also something like a 0.1% chance that it segfaults due to memory corruption elsewhere than in the statically-allocated buffer. >> >> With this reproducer in hand, I was able to perform the following bisection: > [...] > > See Bugzilla for the full thread. Additional details from https://bugzilla.kernel.org/show_bug.cgi?id=217624#c5 : ``` I can confirm that v6.4 with 0bff0aaea03e2a3ed6bfa302155cca8a432a1829 reverted no longer causes any memory corruption with either my reproducer or the original program. ``` FWIW: 0bff0aaea03 ("x86/mm: try VMA lock-based page fault handling first") [merged for v6.4-rc1, authored by Suren Baghdasaryan [already CCed]] That's the same commit that causes build problems with go: https://lore.kernel.org/all/dbdef34c-3a07-5951-e1ae-e9c6e3cdf51b@kernel.org/ Ciao, Thorsten (wearing his 'the Linux kernel's regression tracker' hat) -- Everything you wanna know about Linux kernel regression tracking: https://linux-regtracking.leemhuis.info/about/#tldr If I did something stupid, please tell me, as explained on that page. #regzbot introduced: 0bff0aaea03e2a3