From: Eric Biggers <ebiggers@kernel.org>
To: Aleksei Nikiforov <aleksei.nikiforov@linux.ibm.com>
Cc: Andrew Morton <akpm@linux-foundation.org>,
Alexander Potapenko <glider@google.com>,
Marco Elver <elver@google.com>,
Dmitry Vyukov <dvyukov@google.com>,
kasan-dev@googlegroups.com, linux-mm@kvack.org,
linux-kernel@vger.kernel.org,
Ilya Leoshkevich <iii@linux.ibm.com>,
Alexei Starovoitov <ast@kernel.org>
Subject: Re: [PATCH] mm/kmsan: Fix kmsan kmalloc hook when no stack depots are allocated yet
Date: Tue, 21 Oct 2025 20:02:13 -0700 [thread overview]
Message-ID: <20251022030213.GA35717@sol> (raw)
In-Reply-To: <335827e0-0a4c-43c3-a79b-6448307573fd@linux.ibm.com>
On Fri, Oct 10, 2025 at 10:07:04AM +0200, Aleksei Nikiforov wrote:
> On 10/9/25 05:31, Andrew Morton wrote:
> > On Tue, 30 Sep 2025 13:56:01 +0200 Aleksei Nikiforov <aleksei.nikiforov@linux.ibm.com> wrote:
> >
> > > If no stack depot is allocated yet,
> > > due to masking out __GFP_RECLAIM flags
> > > kmsan called from kmalloc cannot allocate stack depot.
> > > kmsan fails to record origin and report issues.
> > >
> > > Reusing flags from kmalloc without modifying them should be safe for kmsan.
> > > For example, such chain of calls is possible:
> > > test_uninit_kmalloc -> kmalloc -> __kmalloc_cache_noprof ->
> > > slab_alloc_node -> slab_post_alloc_hook ->
> > > kmsan_slab_alloc -> kmsan_internal_poison_memory.
> > >
> > > Only when it is called in a context without flags present
> > > should __GFP_RECLAIM flags be masked.
> > >
> > > With this change all kmsan tests start working reliably.
> >
> > I'm not seeing reports of "hey, kmsan is broken", so I assume this
> > failure only occurs under special circumstances?
>
> Hi,
>
> kmsan might report less issues than it detects due to not allocating stack
> depots and not reporting issues without stack depots. Lack of reports may go
> unnoticed, that's why you don't get reports of kmsan being broken.
Yes, KMSAN seems to be at least partially broken currently. Besides the
fact that the kmsan KUnit test is currently failing (which I reported at
https://lore.kernel.org/r/20250911175145.GA1376@sol), I've confirmed
that the poly1305 KUnit test causes a KMSAN warning with Aleksei's patch
applied but does not cause a warning without it. The warning did get
reached via syzbot somehow
(https://lore.kernel.org/r/751b3d80293a6f599bb07770afcef24f623c7da0.1761026343.git.xiaopei01@kylinos.cn/),
so KMSAN must still work in some cases. But it didn't work for me.
(That particular warning in the architecture-optimized Poly1305 code is
actually a false positive due to memory being initialized by assembly
code. But that's besides the point. The point is that I should have
seen the warning earlier, but I didn't. And Aleksei's patch seems to
fix KMSAN to work reliably. It also fixes the kmsan KUnit test.)
I don't really know this code, but I can at least give:
Tested-by: Eric Biggers <ebiggers@kernel.org>
If you want to add a Fixes commit I think it is either 97769a53f117e2 or
8c57b687e8331. Earlier I had confirmed that reverting those commits
fixed the kmsan test too
(https://lore.kernel.org/r/20250911192953.GG1376@sol).
- Eric
next prev parent reply other threads:[~2025-10-22 3:03 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-09-30 11:56 Aleksei Nikiforov
2025-10-09 3:31 ` Andrew Morton
2025-10-10 8:07 ` Aleksei Nikiforov
2025-10-22 3:02 ` Eric Biggers [this message]
2025-10-22 21:36 ` Andrew Morton
2025-10-23 1:39 ` Alexei Starovoitov
2025-10-31 11:57 ` Alexander Potapenko
2025-10-22 9:43 ` Alexander Potapenko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20251022030213.GA35717@sol \
--to=ebiggers@kernel.org \
--cc=akpm@linux-foundation.org \
--cc=aleksei.nikiforov@linux.ibm.com \
--cc=ast@kernel.org \
--cc=dvyukov@google.com \
--cc=elver@google.com \
--cc=glider@google.com \
--cc=iii@linux.ibm.com \
--cc=kasan-dev@googlegroups.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox