* [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test
@ 2021-08-02 18:08 Shakeel Butt
2021-08-02 23:52 ` Nathan Chancellor
2021-08-03 3:30 ` Roman Gushchin
0 siblings, 2 replies; 3+ messages in thread
From: Shakeel Butt @ 2021-08-02 18:08 UTC (permalink / raw)
To: Christoph Lameter, Pekka Enberg, David Rientjes, Vlastimil Babka
Cc: Michal Hocko, Roman Gushchin, Wang Hai, Muchun Song,
Andrew Morton, linux-mm, linux-kernel, Shakeel Butt,
Nathan Chancellor, Joonsoo Kim
The unit test kmalloc_pagealloc_invalid_free makes sure that for the
higher order slub allocation which goes to page allocator, the free is
called with the correct address i.e. the virtual address of the head
page.
The commit f227f0faf63b ("slub: fix unreclaimable slab stat for bulk
free") unified the free code paths for page allocator based slub
allocations but instead of using the address passed by the caller, it
extracted the address from the page. Thus making the unit test
kmalloc_pagealloc_invalid_free moot. So, fix this by using the address
passed by the caller.
Should we fix this? I think yes because dev expect kasan to catch these
type of programming bugs.
Fixes: f227f0faf63b ("slub: fix unreclaimable slab stat for bulk free")
Signed-off-by: Shakeel Butt <shakeelb@google.com>
Reported-by: Nathan Chancellor <nathan@kernel.org>
Cc: Michal Hocko <mhocko@suse.com>
Cc: Roman Gushchin <guro@fb.com>
Cc: Muchun Song <songmuchun@bytedance.com>
Cc: Christoph Lameter <cl@linux.com>
Cc: Pekka Enberg <penberg@kernel.org>
Cc: David Rientjes <rientjes@google.com>
Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com>
Cc: Vlastimil Babka <vbabka@suse.cz>
Cc: Andrew Morton <akpm@linux-foundation.org>
---
mm/slub.c | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/mm/slub.c b/mm/slub.c
index af984e4990e8..60aeedc436d5 100644
--- a/mm/slub.c
+++ b/mm/slub.c
@@ -3236,12 +3236,12 @@ struct detached_freelist {
struct kmem_cache *s;
};
-static inline void free_nonslab_page(struct page *page)
+static inline void free_nonslab_page(struct page *page, void *object)
{
unsigned int order = compound_order(page);
VM_BUG_ON_PAGE(!PageCompound(page), page);
- kfree_hook(page_address(page));
+ kfree_hook(object);
mod_lruvec_page_state(page, NR_SLAB_UNRECLAIMABLE_B, -(PAGE_SIZE << order));
__free_pages(page, order);
}
@@ -3282,7 +3282,7 @@ int build_detached_freelist(struct kmem_cache *s, size_t size,
if (!s) {
/* Handle kalloc'ed objects */
if (unlikely(!PageSlab(page))) {
- free_nonslab_page(page);
+ free_nonslab_page(page, object);
p[size] = NULL; /* mark object processed */
return size;
}
@@ -4258,7 +4258,7 @@ void kfree(const void *x)
page = virt_to_head_page(x);
if (unlikely(!PageSlab(page))) {
- free_nonslab_page(page);
+ free_nonslab_page(page, object);
return;
}
slab_free(page->slab_cache, page, object, NULL, 1, _RET_IP_);
--
2.32.0.554.ge1b32706d8-goog
^ permalink raw reply related [flat|nested] 3+ messages in thread* Re: [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test
2021-08-02 18:08 [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test Shakeel Butt
@ 2021-08-02 23:52 ` Nathan Chancellor
2021-08-03 3:30 ` Roman Gushchin
1 sibling, 0 replies; 3+ messages in thread
From: Nathan Chancellor @ 2021-08-02 23:52 UTC (permalink / raw)
To: Shakeel Butt
Cc: Christoph Lameter, Pekka Enberg, David Rientjes, Vlastimil Babka,
Michal Hocko, Roman Gushchin, Wang Hai, Muchun Song,
Andrew Morton, linux-mm, linux-kernel, Joonsoo Kim
On Mon, Aug 02, 2021 at 11:08:18AM -0700, Shakeel Butt wrote:
> The unit test kmalloc_pagealloc_invalid_free makes sure that for the
> higher order slub allocation which goes to page allocator, the free is
> called with the correct address i.e. the virtual address of the head
> page.
>
> The commit f227f0faf63b ("slub: fix unreclaimable slab stat for bulk
> free") unified the free code paths for page allocator based slub
> allocations but instead of using the address passed by the caller, it
> extracted the address from the page. Thus making the unit test
> kmalloc_pagealloc_invalid_free moot. So, fix this by using the address
> passed by the caller.
>
> Should we fix this? I think yes because dev expect kasan to catch these
> type of programming bugs.
>
> Fixes: f227f0faf63b ("slub: fix unreclaimable slab stat for bulk free")
> Signed-off-by: Shakeel Butt <shakeelb@google.com>
> Reported-by: Nathan Chancellor <nathan@kernel.org>
> Cc: Michal Hocko <mhocko@suse.com>
> Cc: Roman Gushchin <guro@fb.com>
> Cc: Muchun Song <songmuchun@bytedance.com>
> Cc: Christoph Lameter <cl@linux.com>
> Cc: Pekka Enberg <penberg@kernel.org>
> Cc: David Rientjes <rientjes@google.com>
> Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com>
> Cc: Vlastimil Babka <vbabka@suse.cz>
> Cc: Andrew Morton <akpm@linux-foundation.org>
Thank you for the quick fix! It passes my tests on arm64 and x86_64 in
QEMU with a few different clang versions.
Tested-by: Nathan Chancellor <nathan@kernel.org>
> ---
> mm/slub.c | 8 ++++----
> 1 file changed, 4 insertions(+), 4 deletions(-)
>
> diff --git a/mm/slub.c b/mm/slub.c
> index af984e4990e8..60aeedc436d5 100644
> --- a/mm/slub.c
> +++ b/mm/slub.c
> @@ -3236,12 +3236,12 @@ struct detached_freelist {
> struct kmem_cache *s;
> };
>
> -static inline void free_nonslab_page(struct page *page)
> +static inline void free_nonslab_page(struct page *page, void *object)
> {
> unsigned int order = compound_order(page);
>
> VM_BUG_ON_PAGE(!PageCompound(page), page);
> - kfree_hook(page_address(page));
> + kfree_hook(object);
> mod_lruvec_page_state(page, NR_SLAB_UNRECLAIMABLE_B, -(PAGE_SIZE << order));
> __free_pages(page, order);
> }
> @@ -3282,7 +3282,7 @@ int build_detached_freelist(struct kmem_cache *s, size_t size,
> if (!s) {
> /* Handle kalloc'ed objects */
> if (unlikely(!PageSlab(page))) {
> - free_nonslab_page(page);
> + free_nonslab_page(page, object);
> p[size] = NULL; /* mark object processed */
> return size;
> }
> @@ -4258,7 +4258,7 @@ void kfree(const void *x)
>
> page = virt_to_head_page(x);
> if (unlikely(!PageSlab(page))) {
> - free_nonslab_page(page);
> + free_nonslab_page(page, object);
> return;
> }
> slab_free(page->slab_cache, page, object, NULL, 1, _RET_IP_);
> --
> 2.32.0.554.ge1b32706d8-goog
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread* Re: [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test
2021-08-02 18:08 [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test Shakeel Butt
2021-08-02 23:52 ` Nathan Chancellor
@ 2021-08-03 3:30 ` Roman Gushchin
1 sibling, 0 replies; 3+ messages in thread
From: Roman Gushchin @ 2021-08-03 3:30 UTC (permalink / raw)
To: Shakeel Butt
Cc: Christoph Lameter, Pekka Enberg, David Rientjes, Vlastimil Babka,
Michal Hocko, Wang Hai, Muchun Song, Andrew Morton, linux-mm,
linux-kernel, Nathan Chancellor, Joonsoo Kim
On Mon, Aug 02, 2021 at 11:08:18AM -0700, Shakeel Butt wrote:
> The unit test kmalloc_pagealloc_invalid_free makes sure that for the
> higher order slub allocation which goes to page allocator, the free is
> called with the correct address i.e. the virtual address of the head
> page.
>
> The commit f227f0faf63b ("slub: fix unreclaimable slab stat for bulk
> free") unified the free code paths for page allocator based slub
> allocations but instead of using the address passed by the caller, it
> extracted the address from the page. Thus making the unit test
> kmalloc_pagealloc_invalid_free moot. So, fix this by using the address
> passed by the caller.
>
> Should we fix this? I think yes because dev expect kasan to catch these
> type of programming bugs.
I think so too.
Acked-by: Roman Gushchin <guro@fb.com>
Thanks!
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2021-08-03 3:30 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-08-02 18:08 [PATCH] slub: fix kmalloc_pagealloc_invalid_free unit test Shakeel Butt
2021-08-02 23:52 ` Nathan Chancellor
2021-08-03 3:30 ` Roman Gushchin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).