From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id C4F3ACD4F23 for ; Wed, 4 Sep 2024 19:19:05 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 4E8B46B040F; Wed, 4 Sep 2024 15:19:05 -0400 (EDT) Received: by kanga.kvack.org (Postfix, from userid 40) id 494C46B0414; Wed, 4 Sep 2024 15:19:05 -0400 (EDT) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 2E8636B040F; Wed, 4 Sep 2024 15:19:05 -0400 (EDT) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0012.hostedemail.com [216.40.44.12]) by kanga.kvack.org (Postfix) with ESMTP id 0F71F6B040A for ; Wed, 4 Sep 2024 15:19:05 -0400 (EDT) Received: from smtpin07.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay01.hostedemail.com (Postfix) with ESMTP id A899F1C39F0 for ; Wed, 4 Sep 2024 19:19:04 +0000 (UTC) X-FDA: 82528018608.07.89AE156 Received: from mx6.ucr.edu (mx6.ucr.edu [138.23.62.71]) by imf11.hostedemail.com (Postfix) with ESMTP id 6356E4001F for ; Wed, 4 Sep 2024 19:18:59 +0000 (UTC) Authentication-Results: imf11.hostedemail.com; dkim=pass header.d=ucr.edu header.s=selector3 header.b=OgiLnwTv; dkim=pass header.d=ucr.edu header.s=rmail header.b=Pa9nVWU2; spf=temperror (imf11.hostedemail.com: error in processing during lookup of jpu007@ucr.edu: DNS error) smtp.mailfrom=jpu007@ucr.edu; dmarc=pass (policy=none) header.from=ucr.edu ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1725477447; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=wp619eUyj/srIfkacGO/5/4OpMLHA+ypleVADcaGWJ0=; b=wWRKm9AOz3lqUvaQmHyZpu8hj0YTQWhTaV0n5Q2MoMLF4GdUX2jjxM1vK4g0aj6mln8+8A C8p51jD9PsK88RTJpUXl30bBoWi6e05jc+TKwwwAD3mrn3A9bBOMIY2/brlrZR4VKwmAuT dSMn+b1eOaD4b6aTnU3EffJ/P5Gr/hc= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1725477447; a=rsa-sha256; cv=none; b=iCBk6m6/JM1SUQmotlrxArKwqlxMk1AqgPHQph5g6Y101V3lWWDW3OhuZlybHrhIcYuCKT F8y9qAN6TN9xoyk0RUvZWoB5mOefWEY//XPqnvllPoIwmZD+D8EeDtXIjrfNwUdju+dE1B 28sUli1KlwfsQfTbUr7KxUtnc5FZt2g= ARC-Authentication-Results: i=1; imf11.hostedemail.com; dkim=pass header.d=ucr.edu header.s=selector3 header.b=OgiLnwTv; dkim=pass header.d=ucr.edu header.s=rmail header.b=Pa9nVWU2; spf=temperror (imf11.hostedemail.com: error in processing during lookup of jpu007@ucr.edu: DNS error) smtp.mailfrom=jpu007@ucr.edu; dmarc=pass (policy=none) header.from=ucr.edu DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=ucr.edu; i=@ucr.edu; q=dns/txt; s=selector3; t=1725477539; x=1757013539; h=dkim-signature:x-google-dkim-signature: x-forwarded-encrypted:x-gm-message-state: x-google-smtp-source:mime-version:references:in-reply-to: from:date:message-id:subject:to:cc:content-type: content-transfer-encoding:x-cse-connectionguid: x-cse-msgguid; bh=V4W941XLc6H/+dnu0gbSD9ilMORE5y9ZR1cBEZLstFs=; b=OgiLnwTvoqS5aAsKAzGbBbhPyKqzC+RXkeZbXL4+37paGqInN3lNyd0W ad3+Phoxny5fhefIfLiuTrzG84BB5GSHErLPCBAcdVLvczaomDuZ73IRW xu0xCnzKx7zgbkqHDS4YgQx1G1ZtJmKcRvZVpiRKcMiDaoUDZN16Hnx+3 R56wmxjcQQ3Ib429aaOZT/XPX5VpAN24M8vU9zlSaRZDzKKKXZNl3qqlX 8iuLznh0PJY++hyzQUdG9fxeKSvGQ0BHweiv1C6maaoB55u2Cm+ZLUvgj gnazVu9POx82B40zm22Yso6/qDzQ0zYVIQpzZf097s8o+L1jyAzXLb9+S w==; X-CSE-ConnectionGUID: uZtr/xoxQ/mnZJpZOa28rg== X-CSE-MsgGUID: jOoIjaNOQcqCq0kK7c3IBA== Received: from mail-io1-f70.google.com ([209.85.166.70]) by smtpmx6.ucr.edu with ESMTP/TLS/TLS_AES_256_GCM_SHA384; 04 Sep 2024 12:18:58 -0700 Received: by mail-io1-f70.google.com with SMTP id ca18e2360f4ac-82a3754a02bso733941839f.0 for ; Wed, 04 Sep 2024 12:18:58 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ucr.edu; s=rmail; t=1725477537; x=1726082337; darn=kvack.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=wp619eUyj/srIfkacGO/5/4OpMLHA+ypleVADcaGWJ0=; b=Pa9nVWU21aeYCF/s6rOIsXHdGzuE1sDg51Ix3vOb33GM/unCADD6ChNFp9yR0QYOcZ vvvxczvbyJqTDP7V5byrkYNm+b9a2RLayfAwLw67jZhtSrH43z2Uyaa87Vo6318PZd2O KMFkbZtW6CsAlZo20/lvcCQOMKcU3TVb3CdrU= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1725477537; x=1726082337; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=wp619eUyj/srIfkacGO/5/4OpMLHA+ypleVADcaGWJ0=; b=RraZbGmNqn86rjjVqIBxd/TorrkYCcRmbIISUMHvqQ92wBIZEGy2jaOoFKbi1rDA1u XIglMGdVabNRiR11HWj3/MfvTd4IHDjisp/32CFD08WUSLGmM0AUHrKD9FiZ+L5Kq1Y3 FDUOZWAd7b0nUV4eN9oHCYriLHbdOO3GFjDOiJe8ca5+q7zhMXxBeBrR4OsUfBoXyYgm AqdEleMl1iU5YAYTDT2Ajh+ru8WqQ5ay11JSysSQS4SPz8CKKzt5shyHLGvR4sXyuMZz QxD3+PgDhEuWXuEWaPxtzJwVYh+/EGW3/3pB9Umsm99gNxxQv6cMUhyk5WxXGXzW+3Sw l24Q== X-Forwarded-Encrypted: i=1; AJvYcCUkpsvXJ34uLWrf7iiTuOG89+86JbJsq9ekgqOv/SeWZyr6OQ4AXIhf2QPla7TJdmQRL/RPU5VKJw==@kvack.org X-Gm-Message-State: AOJu0YycDhKo1XCWmKokwrxCZmyd7hVeRG7VFrr0Omlm2/dLwLYzVKnG dxEMUkx4k6i1jXpTXGJn9y8YIyl4OXMEKX6Gv0aThCkJ43/IFGZYlWcfgqTsYDOdKFryBv2p+In NEXK8Zt1Uc7ebi4RQxPq1VWHukH1+kz8dGmZPE4Jpv2e4Mu5d0SHNt7FNLUIBZd4UlcjGSsUB6y 3TNWegKM8QdHdD+3tYLmlQyahM X-Received: by 2002:a05:6602:6b07:b0:824:d9c0:3fc6 with SMTP id ca18e2360f4ac-82a3730aecfmr1566823439f.3.1725477537304; Wed, 04 Sep 2024 12:18:57 -0700 (PDT) X-Google-Smtp-Source: AGHT+IH8Djcz+0ooKKXLxn8YKkL5axvVjXixex3XMagQYxCNHQNt+JxXVPIaHG4A9H0SHwKI9lJoq0O3HO/addLf7wA= X-Received: by 2002:a05:6602:6b07:b0:824:d9c0:3fc6 with SMTP id ca18e2360f4ac-82a3730aecfmr1566821739f.3.1725477537024; Wed, 04 Sep 2024 12:18:57 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Juefei Pu Date: Wed, 4 Sep 2024 12:18:46 -0700 Message-ID: Subject: Re: BUG: general protection fault in get_mem_cgroup_from_objcg To: Xingyu Li Cc: Roman Gushchin , hannes@cmpxchg.org, mhocko@kernel.org, shakeel.butt@linux.dev, muchun.song@linux.dev, cgroups@vger.kernel.org, linux-mm@kvack.org, linux-kernel@vger.kernel.org, Yu Hao Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Rspamd-Queue-Id: 6356E4001F X-Stat-Signature: izwinhhjnuyyhmdyqzsaehqe4urszj7w X-Rspamd-Server: rspam09 X-Rspam-User: X-HE-Tag: 1725477539-448785 X-HE-Meta: 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 ZmpequcI U7qg+PYBzzEH0J/9BjPI0tfsLPJFqoLlANJ1FhcuM+DQ4XMB+ytu8nIacDinRY6sCNhN5APnahbMAJRVgZFgfcsreSSAkeypNihj0E+HZgs5JegVKDriC2s+ajIcZknFouLw6MM3Dd1xIBo3gyjDg7d/UdcNnzRB4upsfG+2aSQwcS7g9oFvQ4lS6xMSB9evtKsa7L0HkSNgO/grkh7DE9Vmup7EzpgxmnkSkJ0z0XAJnPrzNn+ze6MBfU13CkNblNzKn+oGqL+yY4Xd61g1/ZvLRecH5+aojlOnT9PAstNOD4BGl56Pl9JRBI1QAOz2t+MgY0qcQ46l4OjIEF8z7XMQrqwtl80OWT2/BFsw+XvvMciexSAASGehZCqx+0AAa5gYLJ4nRCfZXKkalbk2m0WZ4XIdN6yvTvsXLDJhVeMiGf3krFHzACQAE10NyGy/GX1IR X-Bogosity: Ham, tests=bogofilter, spamicity=0.000209, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: After several tests, I found that the same PoC can cause multiple different crashes for some unknown reason. Thus, I suspect that the bug is capable of performing unintended memory writing without being caught by KASAN. For reproducibility, I've created a GitHub repo at https://github.com/TomAPU/Linux610BugReort, which contains the software versions we used, the QEMU arguments we used to boot up the kernel, the kernel config we used, the pre-compiled kernel image, Dockerfile that can be used to compile the kernel. I hope this repo will be helpful for analyzing the bug. Yours, Juefei On Thu, Aug 29, 2024 at 4:28=E2=80=AFPM Xingyu Li wrote: > > Juefei: Can you give some input on this? > > On Thu, Aug 29, 2024 at 4:24=E2=80=AFPM Roman Gushchin wrote: > > > > On Wed, Aug 28, 2024 at 10:20:04PM -0700, Xingyu Li wrote: > > > Hi, > > > > > > Here is the kernel config file: > > > https://gist.github.com/TomAPU/64f5db0fe976a3e94a6dd2b621887cdd > > > > > > how long does it take to reproduce? > > > Juefei will follow on this, and I just CC'ed him. > > > > I ran the reproducer for several hours in a vm without much success. > > So in order to make any progress I'd really need a help from your side. > > If you can reproduce it consistently, can you, please, try to bisect it= ? > > > > Thanks! > > > > -- > Yours sincerely, > Xingyu