From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1F20BEB64DC for ; Wed, 28 Jun 2023 15:47:25 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 997808D0006; Wed, 28 Jun 2023 11:47:24 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 9478D8D0001; Wed, 28 Jun 2023 11:47:24 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 7E8168D0006; Wed, 28 Jun 2023 11:47:24 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com [216.40.44.11]) by kanga.kvack.org (Postfix) with ESMTP id 69B4D8D0001 for ; Wed, 28 Jun 2023 11:47:24 -0400 (EDT) Received: from smtpin13.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay10.hostedemail.com (Postfix) with ESMTP id 1C31DC0140 for ; Wed, 28 Jun 2023 15:47:24 +0000 (UTC) X-FDA: 80952586008.13.D662C52 Received: from dfw.source.kernel.org (dfw.source.kernel.org [139.178.84.217]) by imf06.hostedemail.com (Postfix) with ESMTP id 0E86C18001A for ; Wed, 28 Jun 2023 15:47:21 +0000 (UTC) Authentication-Results: imf06.hostedemail.com; dkim=pass header.d=kernel.org header.s=k20201202 header.b=Q7WRoGUf; spf=pass (imf06.hostedemail.com: domain of will@kernel.org designates 139.178.84.217 as permitted sender) smtp.mailfrom=will@kernel.org; dmarc=pass (policy=none) header.from=kernel.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1687967242; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding:in-reply-to: references:dkim-signature; bh=L1D3kzYp74bTc6MklXWPe/RPfxOnbnYqjTR79BG7rN0=; b=TSD6LCwoVWr33fj0BuW5vxhGImUU7rpUdeoPXhFR5yVdanBjifmBBcXI3o3ocNK+X5FalR rrPhenXkav+0cKfOunolQs3m9Yr0ZkBkjMFf/MByXXjPGelCwV4JDJQxVEqZkNqyYKwsE4 KMhcwGgQAnYV5OS05DfTHJrH3nsLkzs= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1687967242; a=rsa-sha256; cv=none; b=g5KWcFBQBSkTVTe5EJRx0xo2FJyxx3IA14ZZLf1r+CkCqVZ7FDBOqgtYhVENHVM0Y3jMFj PCMGkYkYF/ZOb3ci+Q99tWXKZDK6+0hepdKfcCR3U+Uf8Bb1xvqU3tVyER1e7N/38hcprc bjI6vC2eeCrUS57VKnBksWIR0xx81Fo= ARC-Authentication-Results: i=1; imf06.hostedemail.com; dkim=pass header.d=kernel.org header.s=k20201202 header.b=Q7WRoGUf; spf=pass (imf06.hostedemail.com: domain of will@kernel.org designates 139.178.84.217 as permitted sender) smtp.mailfrom=will@kernel.org; dmarc=pass (policy=none) header.from=kernel.org Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by dfw.source.kernel.org (Postfix) with ESMTPS id 08B3F61365; Wed, 28 Jun 2023 15:47:21 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 0D01FC433C0; Wed, 28 Jun 2023 15:47:18 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1687967240; bh=NaJqZ2ApNgDPBLvZRnIp1B5BubLgjeBxwt12aOAKPHA=; h=Date:From:To:Cc:Subject:From; b=Q7WRoGUfJrPklVHJuFxP7MfizJsd0R1fmkdD+aoOfEygbPXA44X8Htid6r9aoc/4a x53326Ag1IeUTCqEnTQStNqFfqc0zrfVc5jluVb4lEfrq6VjkIp7A/1H9IQHpZAA2x f+pT+2P42hdmHd+b3ibmC0YSsInwrv1bkTjvrrQXAMHJMx0oTpVHAy/M3igW1IzbrS jO9KUV+/0/57N+aewds2CGubkQM5CRJFN79GoJUth1/HqVVYut+FAYLeHHpSeRajQZ oqd8AGi6qk2AiypVgKTcYnBkJI4yo0u6DRQmysPVs6LtNbNn6vINrcOVfl5eTxF35S 1iUW7SKWyBXKg== Date: Wed, 28 Jun 2023 16:47:15 +0100 From: Will Deacon To: catalin.marinas@arm.com Cc: ryabinin.a.a@gmail.com, andreyknvl@gmail.com, pcc@google.com, kasan-dev@googlegroups.com, linux-mm@kvack.org, linux-arm-kernel@lists.infradead.org Subject: HW-KASAN and CONFIG_SLUB_DEBUG_ON=y screams about redzone corruption Message-ID: <20230628154714.GB22090@willie-the-truck> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.10.1 (2018-07-13) X-Rspamd-Queue-Id: 0E86C18001A X-Rspam-User: X-Stat-Signature: pywx9hbbeigfh9zm9oh6nan6syggf1u9 X-Rspamd-Server: rspam03 X-HE-Tag: 1687967241-283893 X-HE-Meta: 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 VActT8+f 29q2YfMEkdB424LnWkBn3AvS979r5TqTkHDSTIc2N28YZ51FOZdPacE5MlxWYp2xCEJ26VJ/gCg/laqwrUjYiNFdJ7LUxgIU6MxQ3ZNYsAs5qvgH2U/30xn4eEw+SKSeBFxqSsyEZGF+7ZNlCIVx8WROjywTU7glkGVIGiBlornvmy/O0dG9D+shUtAHLeK+cDn5DN2Hy+NoXNPT79LqymeWtPJ+9l5H3enKLifI8MDEObPanW4i0A7YGAcsk3A+FdKhJk/nDKYf+TPS/o0Nd90VxLHnA7aeNVvqJyIeq2VC9nMo9OhxXsIiZC/Tk9Zc6CWZ4Vgw71e4eT6MkFaAXlIgc9GzbrxBPPBSAmksSqL15C30ph4r/QlrlMajk8ZyGqyK0C8ya7mTKQDzsWYQDv+oUwg== X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: Hi memory tagging folks, While debugging something else, I ended up running v6.4 on an arm64 (v9) fastmodel with both CONFIG_SLUB_DEBUG_ON=y and CONFIG_KASAN_HW_TAGS=y. This makes the system pretty unusable, as I see a tonne of kmalloc Redzone corruption messages pretty much straight out of startup (example below). Please can you take a look? Cheers, Will --->8 [ 0.000000] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=8, Nodes=1 [ 0.000000] ============================================================================= [ 0.000000] BUG kmalloc-128 (Not tainted): kmalloc Redzone overwritten [ 0.000000] ----------------------------------------------------------------------------- [ 0.000000] [ 0.000000] 0xffff00080001a9b0-0xf1ff00080001a9ff @offset=2480. First byte 0x0 instead of 0xcc [ 0.000000] Allocated in apply_wqattrs_prepare+0x90/0x2a4 age=0 cpu=0 pid=0 [ 0.000000] kmalloc_trace+0x34/0x6c [ 0.000000] apply_wqattrs_prepare+0x90/0x2a4 [ 0.000000] apply_workqueue_attrs+0x5c/0xb4 [ 0.000000] alloc_workqueue+0x368/0x4f8 [ 0.000000] workqueue_init_early+0x2e8/0x3ac [ 0.000000] start_kernel+0x168/0x394 [ 0.000000] __primary_switched+0xbc/0xc4 [ 0.000000] Slab 0xfffffc0020000680 objects=21 used=8 fp=0xffff00080001ac80 flags=0xbfffc0000010200(slab|head|node=0|zone=2|lastcpupid=0xffff|kasantag=0x0) [ 0.000000] Object 0xf1ff00080001a980 @offset=17437937757178562944 fp=0x0000000000000000 [ 0.000000] [ 0.000000] Redzone ffff00080001a900: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a910: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a920: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a930: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a940: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a950: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a960: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Redzone ffff00080001a970: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ [ 0.000000] Object ffff00080001a980: 00 00 00 00 00 00 00 00 ff 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a990: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Object ffff00080001a9f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 0.000000] Redzone ffff00080001aa00: cc cc cc cc cc cc cc cc ........ [ 0.000000] Padding ffff00080001aa54: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZZZZZ [ 0.000000] Padding ffff00080001aa64: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZZZZZ [ 0.000000] Padding ffff00080001aa74: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZ [ 0.000000] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-00001-g56e11237836c #1 [ 0.000000] Hardware name: FVP Base RevC (DT) [ 0.000000] Call trace: [ 0.000000] dump_backtrace+0xec/0x108 [ 0.000000] show_stack+0x18/0x2c [ 0.000000] dump_stack_lvl+0x50/0x68 [ 0.000000] dump_stack+0x18/0x24 [ 0.000000] print_trailer+0x1ec/0x230 [ 0.000000] check_bytes_and_report+0x110/0x154 [ 0.000000] check_object+0x31c/0x360 [ 0.000000] free_to_partial_list+0x174/0x5d8 [ 0.000000] __slab_free+0x220/0x28c [ 0.000000] __kmem_cache_free+0x364/0x3dc [ 0.000000] kfree+0x50/0x70 [ 0.000000] apply_wqattrs_prepare+0x244/0x2a4 [ 0.000000] apply_workqueue_attrs+0x5c/0xb4 [ 0.000000] alloc_workqueue+0x368/0x4f8 [ 0.000000] workqueue_init_early+0x2e8/0x3ac [ 0.000000] start_kernel+0x168/0x394 [ 0.000000] __primary_switched+0xbc/0xc4 [ 0.000000] Disabling lock debugging due to kernel taint [ 0.000000] FIX kmalloc-128: Restoring kmalloc Redzone 0xffff00080001a9b0-0xf1ff00080001a9ff=0xcc [ 0.000000] FIX kmalloc-128: Object at 0xf1ff00080001a980 not freed