From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mout.gmx.net (mout.gmx.net [212.227.17.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 6EA1D230BF0; Fri, 21 Mar 2025 21:19:01 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=212.227.17.20 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1742591945; cv=none; b=AqDzzh0/mJCNQcLix+jar1qn/zORvR9hI7zW+wFqkzkGYcBxlH+dSN1lBupqndHE2/53KJVDrMjFU8yhgOeZsoOSXpXQRZT1Nr1z4+np/hBIC8u7bxVDwYl2W0VlSERyHQjWpFempLRloMnRzDG8YkOfulxD9SVCUqLrILeesjo= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1742591945; c=relaxed/simple; bh=6TBIzoRHgr/D8vEcV3cyu+MgUcHbZgBqS5LJvUN5ZU0=; h=Message-ID:Date:MIME-Version:Subject:To:References:From: In-Reply-To:Content-Type; b=m+N9sIEGEXKoRUfXec7siSF6Ae0QVOLVC9/Eg269kcW69lNi15Gk2979HtN0cZa6njVHMj5nF1xdm7tit89CYjuUfRvDJzMc+GLh8KwRK1VTMdVNRiv6aOKhAeVmNeYxySdlaZn/ioG1O69ybVkSA3ieREEcdmYS3wYzI377PAU= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=gmx.com; spf=pass smtp.mailfrom=gmx.com; dkim=pass (2048-bit key) header.d=gmx.com header.i=quwenruo.btrfs@gmx.com header.b=pTGIut61; arc=none smtp.client-ip=212.227.17.20 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=gmx.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=gmx.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmx.com header.i=quwenruo.btrfs@gmx.com header.b="pTGIut61" DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmx.com; s=s31663417; t=1742591940; x=1743196740; i=quwenruo.btrfs@gmx.com; bh=IVnb8ZwPiwiyfmuh233CWz1oUTuFPqMcfBUsXXDRahk=; h=X-UI-Sender-Class:Message-ID:Date:MIME-Version:Subject:To: References:From:In-Reply-To:Content-Type: Content-Transfer-Encoding:cc:content-transfer-encoding: content-type:date:from:message-id:mime-version:reply-to:subject: to; b=pTGIut61r7AasRG2zD+2+5DHMGKMKsLLH2W+PFegn1fw++Fun6Hqlxt/K8gAkEcz 84rTlyQNseVrv/+65jJIxXxq9MMlzfBKAm3cmPrAwz8bsxQ/ykJvC0f44QN7trCOd ecEcrAwPLvFvG5Eb+iBODZQaj993EL2Dt6UlJlLEbW2BWFYNcjkkyQ5hlXVdabvHK 01lyviXDPFrzNt1TkfgYpyPX6vIFajYEVNLu1Tu2P7gM5iXb4A/ASnICo9dbR8X84 RWg8KKJBfAgAQmapoUsqp0NBVzp+MAcWMXRiRt/kDvvkanuD3s6tpRfUHJSwJH4TH TsExxgs7YtIBOAEssw== X-UI-Sender-Class: 724b4f7f-cbec-4199-ad4e-598c01a50d3a Received: from [172.16.0.191] ([159.196.52.54]) by mail.gmx.net (mrgmx105 [212.227.17.174]) with ESMTPSA (Nemesis) id 1Mkpap-1tSDBU3OxT-00gN1B; Fri, 21 Mar 2025 22:19:00 +0100 Message-ID: Date: Sat, 22 Mar 2025 07:48:54 +1030 Precedence: bulk X-Mailing-List: linux-btrfs@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: [linux-next-20250320][btrfs] Kernel OOPs while running btrfs/108 To: "Ritesh Harjani (IBM)" , Venkat Rao Bagalkote , LKML , linuxppc-dev@lists.ozlabs.org, Madhavan Srinivasan , linux-btrfs@vger.kernel.org References: <87h63ms7gk.fsf@gmail.com> Content-Language: en-US From: Qu Wenruo Autocrypt: addr=quwenruo.btrfs@gmx.com; keydata= xsBNBFnVga8BCACyhFP3ExcTIuB73jDIBA/vSoYcTyysFQzPvez64TUSCv1SgXEByR7fju3o 8RfaWuHCnkkea5luuTZMqfgTXrun2dqNVYDNOV6RIVrc4YuG20yhC1epnV55fJCThqij0MRL 1NxPKXIlEdHvN0Kov3CtWA+R1iNN0RCeVun7rmOrrjBK573aWC5sgP7YsBOLK79H3tmUtz6b 9Imuj0ZyEsa76Xg9PX9Hn2myKj1hfWGS+5og9Va4hrwQC8ipjXik6NKR5GDV+hOZkktU81G5 gkQtGB9jOAYRs86QG/b7PtIlbd3+pppT0gaS+wvwMs8cuNG+Pu6KO1oC4jgdseFLu7NpABEB AAHNIlF1IFdlbnJ1byA8cXV3ZW5ydW8uYnRyZnNAZ214LmNvbT7CwJQEEwEIAD4CGwMFCwkI BwIGFQgJCgsCBBYCAwECHgECF4AWIQQt33LlpaVbqJ2qQuHCPZHzoSX+qAUCZxF1YAUJEP5a sQAKCRDCPZHzoSX+qF+mB/9gXu9C3BV0omDZBDWevJHxpWpOwQ8DxZEbk9b9LcrQlWdhFhyn xi+l5lRziV9ZGyYXp7N35a9t7GQJndMCFUWYoEa+1NCuxDs6bslfrCaGEGG/+wd6oIPb85xo naxnQ+SQtYLUFbU77WkUPaaIU8hH2BAfn9ZSDX9lIxheQE8ZYGGmo4wYpnN7/hSXALD7+oun tZljjGNT1o+/B8WVZtw/YZuCuHgZeaFdhcV2jsz7+iGb+LsqzHuznrXqbyUQgQT9kn8ZYFNW 7tf+LNxXuwedzRag4fxtR+5GVvJ41Oh/eygp8VqiMAtnFYaSlb9sjia1Mh+m+OBFeuXjgGlG VvQFzsBNBFnVga8BCACqU+th4Esy/c8BnvliFAjAfpzhI1wH76FD1MJPmAhA3DnX5JDORcga CbPEwhLj1xlwTgpeT+QfDmGJ5B5BlrrQFZVE1fChEjiJvyiSAO4yQPkrPVYTI7Xj34FnscPj /IrRUUka68MlHxPtFnAHr25VIuOS41lmYKYNwPNLRz9Ik6DmeTG3WJO2BQRNvXA0pXrJH1fN GSsRb+pKEKHKtL1803x71zQxCwLh+zLP1iXHVM5j8gX9zqupigQR/Cel2XPS44zWcDW8r7B0 q1eW4Jrv0x19p4P923voqn+joIAostyNTUjCeSrUdKth9jcdlam9X2DziA/DHDFfS5eq4fEv ABEBAAHCwHwEGAEIACYCGwwWIQQt33LlpaVbqJ2qQuHCPZHzoSX+qAUCZxF1gQUJEP5a0gAK CRDCPZHzoSX+qHGpB/kB8A7M7KGL5qzat+jBRoLwB0Y3Zax0QWuANVdZM3eJDlKJKJ4HKzjo B2Pcn4JXL2apSan2uJftaMbNQbwotvabLXkE7cPpnppnBq7iovmBw++/d8zQjLQLWInQ5kNq Vmi36kmq8o5c0f97QVjMryHlmSlEZ2Wwc1kURAe4lsRG2dNeAd4CAqmTw0cMIrR6R/Dpt3ma +8oGXJOmwWuDFKNV4G2XLKcghqrtcRf2zAGNogg3KulCykHHripG3kPKsb7fYVcSQtlt5R6v HZStaZBzw4PcDiaAF3pPDBd+0fIKS6BlpeNRSFG94RYrt84Qw77JWDOAZsyNfEIEE0J6LSR/ In-Reply-To: <87h63ms7gk.fsf@gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: quoted-printable X-Provags-ID: V03:K1:KrvDeZvtsqNSrCoAVASEESa18NJsdNZpjHKd+tDcWSKwywxBg2C NcmB3OBewOOoRlhThBmNteyR8R265tgfs68UYy0jmsq8BW1JC1+RXWzSGjjoYj6zL/8zA+Y SFV2lbTMQP969l8OoEVW3hTMyiKcrfHwWm5mPBmATsACRxO5Mp696UlMPmYVxwXhHgqfvLq wpxl+Ba4h1VMTfbK3VZ8A== X-Spam-Flag: NO UI-OutboundReport: notjunk:1;M01:P0:6b4HYme8cCo=;7/4LADUfwpjs2m4KsnLBPcDpPD/ T3Km1GLLE6sS70m/FlrmG2A83tt2UY6sIO/AgmsysqvVHafnzTFes/AXLJ7CO8c5wpWXHVDJe J+k2uV+61BSZzFYY5c/NecHCgcg5xedbxrTIY9Fxw8x55nhbkJqbnnkNL7B75P/AhYXabEEOR MYWSAxkL2vJpr9ugw3cZO7E4CDc5aTnelz+bXCg8e6OLdMiHy/ObGro7Hr5fatO4UVWDSi3/N DL8i1qZhafxyeUopZ4f9OaXKg9UvmTgLwb/YNp0SY+dYXWrnRYrunLa7fyIWvxXN5lcl6HgZ/ TditZY9fWDVGwmbf5SrReNp48M7kUXhgahd3lUv+ly56TjKHUot6I1Aq/wgrWVqR/YtqTMW6/ DRSWgHcDqzFji/u1CpAKvwnowIMRCUt0GwePXW1Cq8siir6XeIDT3SUTXcZedUI8iWEI7oGq8 qF9nYdBSKvS1swhoJjQL9Xp2bvpFwkU8oXX3I713apgyXpofDCExGisn/snsbMhLvRiL5BpSh gzrBQ03RY5rx4EGrfkb5zPJr8yYBa2dmyQKakLCTSNBus5k68oZS3LBPrFhWVD0ao8n8vIQ05 7j57ovmp6FV1pTyPOk2p0EbC3rMv4tFedYN4QCpfwi4xdlvusd3efgjnNb5BePHbIOD6huGz4 /Ut5AH2ZjpHdgyrZO6LvNVFUswpAAG42mPUdYoewwXs0bfZaaPymKABh3+sNGq28I65XeigVq U+WTBTcQQBMOUo/cWy4y0S8V8xhtKfpSQT0rd46ByHpxCBudn+YaRiltCCaXgXkKVNlRJPNWK yEV1VNVJyRW/EPmrSfho1CODwK9ktA2ptSiN4qZATyhgEt7qZIt2FZ+7z+vtLqO5vqkH7iYmk eVBVI1UKUEqtchg6c2bmqvmJ7ZrHaujQMrKemEJiO9Xqc4IIMDEROoqpxMwkG9kJILn/VMdOf oNEUsN3voMc/kpyrx5Rr2jJMQgFNnqHkP48pUzCNUigdFU3LtrG+Y9XwElZfUU1g+ZRduDuFm VqKTXiFv4Svi07DfOdxUxt1YIwiemP24Eq7rNAzwjFPU8N5rWsb8z0XcL510cu83tZeOiq/2y zkbMJbzxkO2Uuulaxkzn8ZIzb0b88xXnfQ/d4xY0F1uMiA6h/Ac1Jyre5N0d1M9tPvwTMzl7J eDEAF6N1vjNcyiu51OFQtpP6WZWEjyX+JOEvKxMLHB3iJdqwrLa4NWIjqZl7HeAHfvmwrC2m2 BJJmvVEH9N9AdXlar1hJlFmIGkvCkANU95giUSg/dA5SHNj5SsX19ScPHp8NWQ88IpRRogzTG 2H8hfuYPYN/Vrs4CC+TDUG/qRID0J44UNYuNt3HoNp4tSHC655dGFQE+vZgGefGyQGIiVe//K V+OjJgHxSiDLK3Kitt2mJ5rti9w5JaTCtAzePZhUDFtezEePFf2mqpwduRNaVzH4qoAvYYnED o06yxBr63qVutye5vfaJjL+14xj0c4ouKCeCJ5Jn4/JKuQCO9tHwi2JVr4Cc2ZgodGw4hYw== =E5=9C=A8 2025/3/22 02:26, Ritesh Harjani (IBM) =E5=86=99=E9=81=93: > > +linux-btrfs > > Venkat Rao Bagalkote writes: > >> Greetings!!! >> >> >> I am observing Kernel oops while running brtfs/108 TC on IBM Power Syst= em. >> >> Repo: Linux-Next (next-20250320) > > Looks like this next tag had many btrfs related changes - > https://web.git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/= log/fs/btrfs?h=3Dnext-20250320 > >> >> Traces: >> >> [=C2=A0 418.392604] run fstests btrfs/108 at 2025-03-21 05:11:21 >> [=C2=A0 418.560137] Kernel attempted to read user page (0) - exploit at= tempt? >> (uid: 0) >> [=C2=A0 418.560156] BUG: Kernel NULL pointer dereference on read at 0x0= 0000000 > > NULL pointer dereference... > >> [=C2=A0 418.560161] Faulting instruction address: 0xc0000000010ef8b0 >> [=C2=A0 418.560166] Oops: Kernel access of bad area, sig: 11 [#1] >> [=C2=A0 418.560169] LE PAGE_SIZE=3D64K MMU=3DRadix=C2=A0 SMP NR_CPUS=3D= 8192 NUMA pSeries >> [=C2=A0 418.560174] Modules linked in: btrfs blake2b_generic xor raid6_= pq >> zstd_compress loop nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib >> nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct >> nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 bonding nf_defrag_ipv4 >> tls rfkill ip_set nf_tables nfnetlink sunrpc pseries_rng vmx_crypto fus= e >> ext4 mbcache jbd2 sd_mod sg ibmvscsi scsi_transport_srp ibmveth >> [=C2=A0 418.560212] CPU: 1 UID: 0 PID: 37583 Comm: rm Kdump: loaded Not >> tainted 6.14.0-rc7-next-20250320 #1 VOLUNTARY >> [=C2=A0 418.560218] Hardware name: IBM,9080-HEX Power11 >> [=C2=A0 418.560223] NIP:=C2=A0 c0000000010ef8b0 LR: c00800000bb190ac CT= R: >> c0000000010ef888 >> [=C2=A0 418.560227] REGS: c0000000a252f5a0 TRAP: 0300=C2=A0=C2=A0 Not t= ainted >> (6.14.0-rc7-next-20250320) >> [=C2=A0 418.560232] MSR:=C2=A0 8000000000009033 = =C2=A0 CR: >> 44008444=C2=A0 XER: 20040000 >> [=C2=A0 418.560240] CFAR: c00800000bc1df84 DAR: 0000000000000000 DSISR: >> 40000000 IRQMASK: 1 >> [=C2=A0 418.560240] GPR00: c00800000bb190ac c0000000a252f840 c000000001= 6a8100 >> 0000000000000000 >> [=C2=A0 418.560240] GPR04: 0000000000000000 0000000000010000 0000000000= 000000 >> fffffffffffe0000 >> [=C2=A0 418.560240] GPR08: c00000010724aad8 0000000000000003 0000000000= 001000 >> c00800000bc1df70 >> [=C2=A0 418.560240] GPR12: c0000000010ef888 c000000affffdb00 0000000000= 000000 >> 0000000000000000 >> [=C2=A0 418.560240] GPR16: 0000000000000000 0000000000000000 0000000000= 000000 >> 0000000000000000 >> [=C2=A0 418.560240] GPR20: c0000000777a8000 c00000006a9c9000 c000000107= 24a950 >> c0000000777a8000 >> [=C2=A0 418.560240] GPR24: fffffffffffffffe c00000010724aad8 0000000000= 010000 >> 00000000000000a0 >> [=C2=A0 418.560240] GPR28: 0000000000010000 c00c00000048c3c0 0000000000= 000000 >> 0000000000000000 >> [=C2=A0 418.560287] NIP [c0000000010ef8b0] _raw_spin_lock_irq+0x28/0x98 >> [=C2=A0 418.560294] LR [c00800000bb190ac] wait_subpage_spinlock+0x64/0x= d0 [btrfs] > > > btrfs is working on subpage size support for a while now. > Adding +linux-btrfs, in case if they are already aware of this problem. > > I am not that familiar with btrfs code. But does this look like that the > subpage (folio->private became NULL here) somehow? The for-next branch seems to have some conflicts, IIRC the following two commits are no longer in our tree anymore: btrfs: kill EXTENT_FOLIO_PRIVATE btrfs: add mapping_set_release_always to inode's mapping I believe those two may be the cause. Mind to test with the our current for-next branch? Where that's all of our development happening, and I run daily subpage fstests on it to make sure at least that branch is safe: https://github.com/btrfs/linux/tree/for-next And appreciate if you can verify if the NULL pointer dereference is still there on that branch. Thanks, Qu > > -ritesh > >> [=C2=A0 418.560339] Call Trace: >> [=C2=A0 418.560342] [c0000000a252f870] [c00800000bb205dc] >> btrfs_invalidate_folio+0xa8/0x4f0 [btrfs] >> [=C2=A0 418.560384] [c0000000a252f930] [c0000000004cbcdc] >> truncate_cleanup_folio+0x110/0x14c >> [=C2=A0 418.560391] [c0000000a252f960] [c0000000004ccc7c] >> truncate_inode_pages_range+0x100/0x4dc >> [=C2=A0 418.560397] [c0000000a252fbd0] [c00800000bb20ba8] >> btrfs_evict_inode+0x74/0x510 [btrfs] >> [=C2=A0 418.560437] [c0000000a252fc90] [c00000000065c71c] evict+0x164/0= x334 >> [=C2=A0 418.560443] [c0000000a252fd30] [c000000000647c9c] do_unlinkat+0= x2f4/0x3a4 >> [=C2=A0 418.560449] [c0000000a252fde0] [c000000000647da0] sys_unlinkat+= 0x54/0xac >> [=C2=A0 418.560454] [c0000000a252fe10] [c000000000033498] >> system_call_exception+0x138/0x330 >> [=C2=A0 418.560461] [c0000000a252fe50] [c00000000000d05c] >> system_call_vectored_common+0x15c/0x2ec >> [=C2=A0 418.560468] --- interrupt: 3000 at 0x7fffb1b366bc >> [=C2=A0 418.560471] NIP:=C2=A0 00007fffb1b366bc LR: 00007fffb1b366bc CT= R: >> 0000000000000000 >> [=C2=A0 418.560475] REGS: c0000000a252fe80 TRAP: 3000=C2=A0=C2=A0 Not t= ainted >> (6.14.0-rc7-next-20250320) >> [=C2=A0 418.560479] MSR:=C2=A0 800000000280f033 >> =C2=A0 CR: 44008804=C2=A0 XER: 0000= 0000 >> [=C2=A0 418.560490] IRQMASK: 0 >> [=C2=A0 418.560490] GPR00: 0000000000000124 00007ffffcb4e2b0 00007fffb1= c37d00 >> ffffffffffffff9c >> [=C2=A0 418.560490] GPR04: 000000013d660380 0000000000000000 0000000000= 000000 >> 0000000000000003 >> [=C2=A0 418.560490] GPR08: 0000000000000000 0000000000000000 0000000000= 000000 >> 0000000000000000 >> [=C2=A0 418.560490] GPR12: 0000000000000000 00007fffb1dba5c0 00007ffffc= b4e538 >> 000000011972d0e8 >> [=C2=A0 418.560490] GPR16: 000000011972d098 000000011972d060 0000000119= 72d020 >> 000000011972cff0 >> [=C2=A0 418.560490] GPR20: 000000011972d298 000000011972cc10 0000000000= 000000 >> 000000013d6615a0 >> [=C2=A0 418.560490] GPR24: 0000000000000002 000000011972d0b8 0000000119= 72cf98 >> 000000011972d1d0 >> [=C2=A0 418.560490] GPR28: 00007ffffcb4e538 000000013d6602f0 0000000000= 000000 >> 0000000000100000 >> [=C2=A0 418.560532] NIP [00007fffb1b366bc] 0x7fffb1b366bc >> [=C2=A0 418.560536] LR [00007fffb1b366bc] 0x7fffb1b366bc >> [=C2=A0 418.560538] --- interrupt: 3000 >> [=C2=A0 418.560541] Code: 7c0803a6 4e800020 3c4c005c 38428878 7c0802a6 >> 60000000 39200001 992d0932 a12d0008 3ce0fffe 5529083c 61290001 >> <7d001829> 7d063879 40c20018 7d063838 >> [=C2=A0 418.560555] ---[ end trace 0000000000000000 ]--- >> >> >> If you happed to fix this, please add below tag. >> >> >> Reported-by: Venkat Rao Bagalkote >> >> >> Regards, >> >> Venkat. >