From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 3912CC433EF for ; Sat, 16 Apr 2022 19:30:40 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 8B79D6B0072; Sat, 16 Apr 2022 15:30:39 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 866EF6B0073; Sat, 16 Apr 2022 15:30:39 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 708086B0074; Sat, 16 Apr 2022 15:30:39 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from forelay.hostedemail.com (smtprelay0129.hostedemail.com [216.40.44.129]) by kanga.kvack.org (Postfix) with ESMTP id 638FA6B0072 for ; Sat, 16 Apr 2022 15:30:39 -0400 (EDT) Received: from smtpin28.hostedemail.com (10.5.19.251.rfc1918.com [10.5.19.251]) by forelay05.hostedemail.com (Postfix) with ESMTP id 0DAD018327A1C for ; Sat, 16 Apr 2022 19:30:39 +0000 (UTC) X-FDA: 79363734198.28.F800053 Received: from mail-vs1-f53.google.com (mail-vs1-f53.google.com [209.85.217.53]) by imf10.hostedemail.com (Postfix) with ESMTP id 96FDAC0009 for ; Sat, 16 Apr 2022 19:30:38 +0000 (UTC) Received: by mail-vs1-f53.google.com with SMTP id n5so9572601vsc.4 for ; Sat, 16 Apr 2022 12:30:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8QFtLU2ByPJKT644LrsIvu21BExtTz3PUu+pDyzM+k8=; b=QRUSDsUJMz4kfN2qvFWFn9lYT5qOp2iiFwvGmzYY2/vtQ+DOq8bK+C32UFXYan5YWQ ieiwo3SQt0Uf6WksgX/jCoTK7urIZBY3KSY0Jd1pIgagPaapRemgglTKi23RZBUOdFhO Ge1Jws0wnsW3lWyGvb5tYBATnoBd4ouuQRAwj7cDFKrnAmy5crpVdG0CnPM1M/fqTJJ+ YF9F47d7cXxRykoKJDlrto7u1z1Pupyn0wBYHLy7Mw4NxgUmSY95pgbTaUOHQ6eLytTB mS6sOfU4XKKfRwIpc9zkWwtKdqEaReYyH4Jos3S8NHJ1cmINA0pXf5CvrobEhjtZ6euV LWsg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8QFtLU2ByPJKT644LrsIvu21BExtTz3PUu+pDyzM+k8=; b=qjgQ9+NH2EOwItZ1imY03WCiZ+h/rgnGFnPntZxQW1/cq5XgX1tRUwbtj/gOPSlPTF DfEf42dN0L4qx69lKWTxEkOT3ooVopifN8taxlMYZ3a2l+PMOkQkfU41pXPf9x6yKCsv ozXlXLjZ6+g+2tfOzQG8jyTGP1G/L+oNsofh4yabZjB8GKlIFmV8Pp/Gv+WlxF7y4Nwr LSTuYXUIn765jzXB0X1JJEwUcZwaCHyfqECKKerd9Q899DRZmCnyAWoUsRrrRE6A/4ec Qa+ualYbnoXhNasAAucC993uwjD+nOYMCnrNw26Me6EJSAL/6FmQPLByzKYpsrkwQwiH 6NaA== X-Gm-Message-State: AOAM5333u9AbdM2aQkf/8h6Ri81Gi9D5W8m+ekL9N3EufV3k2h1QkR72 6VpmckOD7ug6lMfabjpXyd+MxTrZfwu/C2ZIAtghBg== X-Google-Smtp-Source: ABdhPJxOmo1KBxfMb61qRXT2tFhtNwO8TeRjuNgzgtTNiDCiTp6TmCRNRp6nj4XESdxCnGzM4552l2uEsIecWx9C8t4= X-Received: by 2002:a05:6102:2922:b0:325:7818:8669 with SMTP id cz34-20020a056102292200b0032578188669mr1227883vsb.41.1650137437605; Sat, 16 Apr 2022 12:30:37 -0700 (PDT) MIME-Version: 1.0 References: <20220404143501.2016403-1-Liam.Howlett@oracle.com> <20220413235051.3a4eb7c86d31656c7aea250c@linux-foundation.org> <20220414135706.rcn7zr36s2hcd5re@revolver> <20220414171521.bgdvrirumd4atjhs@revolver> <20220414121911.8bb89fc3681b13af1566d79c@linux-foundation.org> <20220416010259.4gbz5hgvm2lgr3sj@revolver> <20220416151923.ig5zavuptjsufm3d@revolver> In-Reply-To: <20220416151923.ig5zavuptjsufm3d@revolver> From: Yu Zhao Date: Sat, 16 Apr 2022 13:30:01 -0600 Message-ID: Subject: Re: [PATCH v7 00/70] Introducing the Maple Tree To: Liam Howlett Cc: Andrew Morton , "maple-tree@lists.infradead.org" , "linux-mm@kvack.org" , "linux-kernel@vger.kernel.org" Content-Type: text/plain; charset="UTF-8" Authentication-Results: imf10.hostedemail.com; dkim=pass header.d=google.com header.s=20210112 header.b=QRUSDsUJ; dmarc=pass (policy=reject) header.from=google.com; spf=pass (imf10.hostedemail.com: domain of yuzhao@google.com designates 209.85.217.53 as permitted sender) smtp.mailfrom=yuzhao@google.com X-Rspam-User: X-Rspamd-Server: rspam08 X-Rspamd-Queue-Id: 96FDAC0009 X-Stat-Signature: y88fkwdehwwo89pha7zytzbu575zb7oq X-HE-Tag: 1650137438-675785 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: On Sat, Apr 16, 2022 at 9:19 AM Liam Howlett wrote: > > How did you hit this issue? Just on boot? I was hoping this is known to you or you have something I can verify for you. Anyway, this was triggered by the Chrome browser. CompositorTileWorker is the rendering process of Chrome [1]. With some luck, you might be able to reproduce the problem by using Chrome. Chrome unit tests [2] would be a better option, but it'd take some time to set up. [1] https://source.chromium.org/chromium/chromium/src/+/main:content/renderer/categorized_worker_pool.cc;drc=0ac63f839b806e5e8823c5eebd6ca2db3b8f178e;l=201 [2] https://chromium.googlesource.com/chromium/src/+/HEAD/docs/testing/testing_in_chromium.md > > ================================================================== > > BUG: KASAN: invalid-access in mas_destroy+0x10a4/0x126c > > Read of size 8 at addr 7bffff8015c1a110 by task CompositorTileW/9966 > > Pointer tag: [7b], memory tag: [fe] > > > > CPU: 1 PID: 9966 Comm: CompositorTileW Not tainted 5.18.0-rc2-mm1-lockdep+ #2 > > Call trace: > > dump_backtrace+0x1a0/0x200 > > show_stack+0x24/0x30 > > dump_stack_lvl+0x7c/0xa0 > > print_report+0x15c/0x524 > > kasan_report+0x84/0xb4 > > kasan_tag_mismatch+0x28/0x3c > > __hwasan_tag_mismatch+0x30/0x60 > > mas_destroy+0x10a4/0x126c > > mas_nomem+0x40/0xf4 > > mas_store_gfp+0x9c/0xfc > > do_mas_align_munmap+0x344/0x688 > > do_mas_munmap+0xf8/0x118 > > __vm_munmap+0x154/0x1e0 > > __arm64_sys_munmap+0x44/0x54 > > el0_svc_common+0xfc/0x1cc > > do_el0_svc_compat+0x38/0x5c > > el0_svc_compat+0x68/0x118 > > el0t_32_sync_handler+0xc0/0xf0 > > el0t_32_sync+0x190/0x194 > > > > Allocated by task 9966: > > kasan_set_track+0x4c/0x7c > > __kasan_slab_alloc+0x84/0xa8 > > kmem_cache_alloc_bulk+0x300/0x408 > > mas_alloc_nodes+0x188/0x268 > > mas_nomem+0x88/0xf4 > > mas_store_gfp+0x9c/0xfc > > do_mas_align_munmap+0x344/0x688 > > do_mas_munmap+0xf8/0x118 > > __vm_munmap+0x154/0x1e0 > > __arm64_sys_munmap+0x44/0x54 > > el0_svc_common+0xfc/0x1cc > > do_el0_svc_compat+0x38/0x5c > > el0_svc_compat+0x68/0x118 > > el0t_32_sync_handler+0xc0/0xf0 > > el0t_32_sync+0x190/0x194 > > > > Freed by task 9966: > > kasan_set_track+0x4c/0x7c > > kasan_set_free_info+0x2c/0x38 > > ____kasan_slab_free+0x13c/0x184 > > __kasan_slab_free+0x14/0x24 > > slab_free_freelist_hook+0x100/0x1ac > > kmem_cache_free_bulk+0x230/0x3b0 > > mas_destroy+0x10d4/0x126c > > mas_nomem+0x40/0xf4 > > mas_store_gfp+0x9c/0xfc > > do_mas_align_munmap+0x344/0x688 > > do_mas_munmap+0xf8/0x118 > > __vm_munmap+0x154/0x1e0 > > __arm64_sys_munmap+0x44/0x54 > > el0_svc_common+0xfc/0x1cc > > do_el0_svc_compat+0x38/0x5c > > el0_svc_compat+0x68/0x118 > > el0t_32_sync_handler+0xc0/0xf0 > > el0t_32_sync+0x190/0x194 > > > > The buggy address belongs to the object at ffffff8015c1a100 > > which belongs to the cache maple_node of size 256 > > The buggy address is located 16 bytes inside of > > 256-byte region [ffffff8015c1a100, ffffff8015c1a200) > > > > The buggy address belongs to the physical page: > > page:fffffffe00570600 refcount:1 mapcount:0 mapping:0000000000000000 > > index:0xa8ffff8015c1ad00 pfn:0x95c18 > > head:fffffffe00570600 order:3 compound_mapcount:0 compound_pincount:0 > > flags: 0x10200(slab|head|zone=0|kasantag=0x0) > > raw: 0000000000010200 6cffff8080030850 fffffffe003ec608 dbffff8080016280 > > raw: a8ffff8015c1ad00 000000000020001e 00000001ffffffff 0000000000000000 > > page dumped because: kasan: bad access detected > > > > Memory state around the buggy address: > > ffffff8015c19f00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe > > ffffff8015c1a000: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe > > >ffffff8015c1a100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe > > ^ > > ffffff8015c1a200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe > > ffffff8015c1a300: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe > > ==================================================================