From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pb0-f54.google.com (mail-pb0-f54.google.com [209.85.160.54]) by kanga.kvack.org (Postfix) with ESMTP id 2DC4E6B0037 for ; Thu, 12 Dec 2013 20:33:22 -0500 (EST) Received: by mail-pb0-f54.google.com with SMTP id un15so1555442pbc.41 for ; Thu, 12 Dec 2013 17:33:21 -0800 (PST) Received: from e28smtp08.in.ibm.com (e28smtp08.in.ibm.com. [122.248.162.8]) by mx.google.com with ESMTPS id ot3si217369pac.108.2013.12.12.17.33.19 for (version=TLSv1 cipher=RC4-SHA bits=128/128); Thu, 12 Dec 2013 17:33:20 -0800 (PST) Received: from /spool/local by e28smtp08.in.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for from ; Fri, 13 Dec 2013 07:03:17 +0530 Received: from d28relay02.in.ibm.com (d28relay02.in.ibm.com [9.184.220.59]) by d28dlp02.in.ibm.com (Postfix) with ESMTP id ACCEC3940023 for ; Fri, 13 Dec 2013 07:03:14 +0530 (IST) Received: from d28av04.in.ibm.com (d28av04.in.ibm.com [9.184.220.66]) by d28relay02.in.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id rBD1X6GL49283318 for ; Fri, 13 Dec 2013 07:03:07 +0530 Received: from d28av04.in.ibm.com (localhost [127.0.0.1]) by d28av04.in.ibm.com (8.14.4/8.14.4/NCO v10.0 AVout) with ESMTP id rBD1XDwQ011743 for ; Fri, 13 Dec 2013 07:03:14 +0530 Date: Fri, 13 Dec 2013 09:33:12 +0800 From: Wanpeng Li Subject: Re: kernel BUG at mm/mempolicy.c:1204! Message-ID: <52aa63e0.e3d8420a.3892.421bSMTPIN_ADDED_BROKEN@mx.google.com> Reply-To: Wanpeng Li References: <20131212225119.GA18718@redhat.com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="xHFwDpU9dbj6ez1V" Content-Disposition: inline In-Reply-To: <20131212225119.GA18718@redhat.com> Sender: owner-linux-mm@kvack.org List-ID: To: Dave Jones Cc: Naoya Horiguchi , Lee Schermerhorn , Christoph Lameter , linux-mm@kvack.org, Linux Kernel --xHFwDpU9dbj6ez1V Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi Dave, On Thu, Dec 12, 2013 at 05:51:19PM -0500, Dave Jones wrote: >Just hit this with my fuzz tester. > >kernel BUG at mm/mempolicy.c:1204! >invalid opcode: 0000 [#1] PREEMPT SMP DEBUG_PAGEALLOC >CPU: 3 PID: 7056 Comm: trinity-child3 Not tainted 3.13.0-rc3+ #2 >task: ffff8801ca5295d0 ti: ffff88005ab20000 task.ti: ffff88005ab20000 >RIP: 0010:[] [] new_vma_page+0x70/0x90 >RSP: 0000:ffff88005ab21db0 EFLAGS: 00010246 >RAX: fffffffffffffff2 RBX: 0000000000000000 RCX: 0000000000000000 >RDX: 0000000008040075 RSI: ffff8801c3d74600 RDI: ffffea00079a8b80 >RBP: ffff88005ab21dc8 R08: 0000000000000004 R09: 0000000000000000 >R10: 0000000000000000 R11: 0000000000000000 R12: fffffffffffffff2 >R13: ffffea00079a8b80 R14: 0000000000400000 R15: 0000000000400000 >FS: 00007ff49c6f4740(0000) GS:ffff880244e00000(0000) knlGS:0000000000000000 >CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 >CR2: 00007ff49c68f994 CR3: 000000005a205000 CR4: 00000000001407e0 >DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 >DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 >Stack: > ffffea00079a8b80 ffffea00079a8bc0 ffffea00079a8ba0 ffff88005ab21e50 > ffffffff811adc7a 0000000000000000 ffff8801ca5295d0 0000000464e224f8 > 0000000000000000 0000000000000002 0000000000000000 ffff88020ce75c00 >Call Trace: > [] migrate_pages+0x12a/0x850 > [] ? alloc_pages_vma+0x1b0/0x1b0 > [] SYSC_mbind+0x513/0x6a0 > [] ? lock_release_holdtime.part.29+0xee/0x170 > [] SyS_mbind+0xe/0x10 > [] ia32_do_call+0x13/0x13 >Code: 85 c0 75 2f 4c 89 e1 48 89 da 31 f6 bf da 00 02 00 65 44 8b 04 25 08 f7 1c 00 e8 ec fd ff ff 5b 41 5c 41 5d 5d c3 0f 1f 44 00 00 <0f> 0b 66 0f 1f 44 00 00 4c 89 e6 48 89 df ba 01 00 00 00 e8 48 >RIP [] new_vma_page+0x70/0x90 > RSP > > >That's.. > >1200 /* >1201 * queue_pages_range() confirms that @page belongs to some vma, >1202 * so vma shouldn't be NULL. >1203 */ >1204 BUG_ON(!vma); >1205 > How about this one? >-- >To unsubscribe, send a message with 'unsubscribe linux-mm' in >the body to majordomo@kvack.org. For more info on Linux MM, >see: http://www.linux-mm.org/ . >Don't email: email@kvack.org --xHFwDpU9dbj6ez1V Content-Type: text/x-diff; charset=us-ascii Content-Disposition: attachment; filename="0001-1.patch" --xHFwDpU9dbj6ez1V--