From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 4EB7CC48BC4 for ; Fri, 23 Feb 2024 04:56:47 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id CE7936B0087; Thu, 22 Feb 2024 23:56:46 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id C97ED6B0088; Thu, 22 Feb 2024 23:56:46 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id B125A6B0089; Thu, 22 Feb 2024 23:56:46 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0013.hostedemail.com [216.40.44.13]) by kanga.kvack.org (Postfix) with ESMTP id 998096B0087 for ; Thu, 22 Feb 2024 23:56:46 -0500 (EST) Received: from smtpin30.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay10.hostedemail.com (Postfix) with ESMTP id 3A554C106F for ; Fri, 23 Feb 2024 04:56:46 +0000 (UTC) X-FDA: 81821858412.30.7DB928E Received: from mail-pl1-f172.google.com (mail-pl1-f172.google.com [209.85.214.172]) by imf01.hostedemail.com (Postfix) with ESMTP id 4E6BC40003 for ; Fri, 23 Feb 2024 04:56:44 +0000 (UTC) Authentication-Results: imf01.hostedemail.com; dkim=pass header.d=chromium.org header.s=google header.b=RYF4LGRD; spf=pass (imf01.hostedemail.com: domain of senozhatsky@chromium.org designates 209.85.214.172 as permitted sender) smtp.mailfrom=senozhatsky@chromium.org; dmarc=pass (policy=none) header.from=chromium.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1708664204; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=SCPo7AaoNg2kAPqMxRK9lUE0qucuwoQy/TvW5rUQ/sw=; b=77bFyyfx/fSvopJ3Auyq83sBT3j8yswFxjFMiyuMV8JpB/+nmIdYByetFssywHuTT0tZFy Kp1Qom3rvu0T3Upp8pmzvpzsrLi7rPlvfrJAANXr9XaLpcsWPd5s3LUn59fb9WYRizuSL7 8cE3DNKfGWA+q7Dcy02EvaQaKLqXSzA= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1708664204; a=rsa-sha256; cv=none; b=0znx6voVkBaIDr0HrzdlHaVoi94xoQ6XftHVS8qt0WS2OFyEjKMEptvC76DvblA8HFDH40 ZlQwsK9AGek20/DOtjpANmSpZOKLMWXBQZ8Tld/L/ICcbAyU2v0LBwpnQC0ImUsJXicjrV FTnmh6wF2e5Ep3pt5W4kffHY7lV7LmQ= ARC-Authentication-Results: i=1; imf01.hostedemail.com; dkim=pass header.d=chromium.org header.s=google header.b=RYF4LGRD; spf=pass (imf01.hostedemail.com: domain of senozhatsky@chromium.org designates 209.85.214.172 as permitted sender) smtp.mailfrom=senozhatsky@chromium.org; dmarc=pass (policy=none) header.from=chromium.org Received: by mail-pl1-f172.google.com with SMTP id d9443c01a7336-1dba94f9201so4676785ad.0 for ; Thu, 22 Feb 2024 20:56:43 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1708664203; x=1709269003; darn=kvack.org; h=in-reply-to:content-transfer-encoding:content-disposition :mime-version:references:message-id:subject:cc:to:from:date:from:to :cc:subject:date:message-id:reply-to; bh=SCPo7AaoNg2kAPqMxRK9lUE0qucuwoQy/TvW5rUQ/sw=; b=RYF4LGRD4KjKcvzuhQMbfJLnpdNIcVHMvdUdFlHxg2gnTc31Ox0wI01cQzBeYA/TBv QXGNFy2yG2TlEkfzs4iIHdwB8Mvlc/KFgsd7NdRtorNgS03X0D9k8MZ9+INArQPWPP+O wDwL0+toVQ4X2+lB8eVx50LT0l19+ROtJrCz4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1708664203; x=1709269003; h=in-reply-to:content-transfer-encoding:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=SCPo7AaoNg2kAPqMxRK9lUE0qucuwoQy/TvW5rUQ/sw=; b=LuCDF8BtsqhiIPjfzfQPnoqfLHqkfdAklK0acTX/XaB2KI+AmhX+xy8vw9Aer9Tl5P HQCZhwI6O6fe6prxwPBMIH7rMX1KB7iGUUvOXl8DF3W2MmKLxRtKf7BAn7jQOnqTmr0K j2EVN+dRkzfQxUXnfg/rTB354BwbXBHc9VVjw+e1Nv1YlmpN+KTyffnv4wnQ+161TeeD xl/Hl5OB1gSwGKSQUTrOD0Kora6gFLoES8KU0wzLM1fdwfLCGeisGwRJoeTHUmn4ypev BRnkq7vR+6QXjuyz76lWb23abAY2nmAHUwn6zwHMRIuhbN+jjAbC+s/Lsuu15gboBrqJ B36Q== X-Forwarded-Encrypted: i=1; AJvYcCWUsmjcoLEcCGWR8DtQ0p8ANhaXrUfZ3s9O03DWi4a83X0WNatp+W9pldJY8xoWwnbPjQ4IaM9J27E3+SnH0AGIg5E= X-Gm-Message-State: AOJu0YyIILnFNJLVyMK5RutaqRW1/afItAdAN2SK9J41QlT6gcok6nSA NvrqNXw01u4VkOgSXRG6YhwSLFfDhPQOdMgLvdLT3nkBhFvDDS4RpGbCdaFuwA== X-Google-Smtp-Source: AGHT+IFtUST4+htakKmG8Y3sAyE5cLu98WD3+yVHYfz1lIMWII2hBKIr1BSH5S/2czmVObI+uFDPMA== X-Received: by 2002:a17:902:d4c8:b0:1dc:6ccd:e73 with SMTP id o8-20020a170902d4c800b001dc6ccd0e73mr418785plg.8.1708664203134; Thu, 22 Feb 2024 20:56:43 -0800 (PST) Received: from google.com ([2401:fa00:8f:203:b194:4f71:568a:eeb0]) by smtp.gmail.com with ESMTPSA id p7-20020a170903248700b001d714a1530bsm10823045plw.176.2024.02.22.20.56.41 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 22 Feb 2024 20:56:42 -0800 (PST) Date: Fri, 23 Feb 2024 13:56:39 +0900 From: Sergey Senozhatsky To: Yosry Ahmed Cc: Sergey Senozhatsky , Tetsuo Handa , Johannes Weiner , Nhat Pham , Minchan Kim , linux-mm Subject: Re: [mm/page_alloc or mm/vmscan or mm/zswap] use-after-free in obj_malloc() Message-ID: <20240223045639.GM11472@google.com> References: <20240223044808.GK11472@google.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: X-Rspamd-Queue-Id: 4E6BC40003 X-Rspam-User: X-Stat-Signature: 793jtcwusrfk4os1yxstqmw7rtthykny X-Rspamd-Server: rspam03 X-HE-Tag: 1708664204-625884 X-HE-Meta: U2FsdGVkX1+G5V8qjcWHGIG+Qsx3p0OI5JqdrsU+tejVfFrHj7846TKhg9l+qr0m8pZOXkRB5jjXfE3hnxAn860J8V1Sez1n36rJ1TTWKbO9FgQafUGip1iHYwA3P8XiyM3XZAbYC3r5lYTWezkNSxQFgU1ixLq3ZB+0F67imS9nvdqOB6dAmpIDBSowN4cOPxF/Litd6fsoPGws0RXCItVWoajhisIyJaKcbcxqTryXFNiDJgNl2q1Fk8O6CcNO98Yy4a9GTjeB5244YZHHBs3PiMR9AHQM6Xhdd9TgjjbP76IKr9EFBmP40isATjlCsrC7+qkpG8NyRH9dKzL7cbwu74QBValnoHT5IBd8HWduiEc9DmymlPTwPYlygSYEa+lwQ55s6siMHa9Frhy1pLDu+34vzne5b/Kv+JlyvW4mbMzDXlSyt2qQ2hTnYc6iK1G5PpzG0CmFEym+qB6yz2x8pzrW5w/+W4km70Dni7KcQM/L9VQ1j7uYQB2f7IGbKw/JEkAcEEUDsRQ9oVpb8RXXcX/e5Gp7+4bEc7Xja/TUHTfdtr0hxWa69RJtXv/nD6NzPfDJ/eXYAc6BNw0lnT1LnkVtkqbGMqI/kEgAAKvqD/wwwSgswb7eoejOhrydm0PDove/k9ZQEORpu+NwEJidCufAeBlxF3TiTMZjf6I7vaXVi9PN+VLjyaIXrmTY2VQIqxkg7lzv8bhEeCbP7XeD6u+oKSYlOWNBfo1dJrAhNE5XgNorbSJmi//MPX60Z74CSasZTlCyAtCnhKKKX389/smdN5zAQCS2PqLPr0zTNtPgY47DXUE/OW6026dObH458oL/I+o66XNtTxg1G9Ax47rAmkMMmT3GDbbO27GBC+vYevbxMNf+zKUznGIfBlC23WqMj3FGf8P0M9G9BBUpZi0Y/f1uZtw6Bx7tbbVFfOUCI/gRmDxn1Eq+TO6NtDf0jOQWvoCCUfl2ALS 6HAksIb2 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000004, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: On (24/02/22 20:50), Yosry Ahmed wrote: > On Thu, Feb 22, 2024 at 8:48 PM Sergey Senozhatsky > wrote: > > > > On (24/02/22 18:27), Yosry Ahmed wrote: > > > I also don't see any recent changes in mm/zsmalloc.c that modify this > > > code, so maybe it wasn't introduce in 6.7. I will defer to Minchan and > > > Sergey, I don't think zswap is an active actor in this bug report. > > > > Yeah. [1] are the only recent zsmalloc patches I can recall, and those > > patches touch zsmalloc locking (zspages migration/compaction). > > > > https://lore.kernel.org/lkml/20240219-b4-szmalloc-migrate-v1-0-34cd49c6545b@bytedance.com/ > > These are not in 6.8.0-rc5 anyway, right? I see them in next-20240223, which seems to be 6.8-rc6 (according to Makefile)