From: bugzilla-daemon@bugzilla.kernel.org
To: linuxppc-dev@lists.ozlabs.org
Subject: [Bug 204371] BUG kmalloc-4k (Tainted: G W ): Object padding overwritten
Date: Thu, 08 Aug 2019 11:26:58 +0000 [thread overview]
Message-ID: <bug-204371-206035-3TOBxXIdie@https.bugzilla.kernel.org/> (raw)
In-Reply-To: <bug-204371-206035@https.bugzilla.kernel.org/>
https://bugzilla.kernel.org/show_bug.cgi?id=204371
--- Comment #10 from David Sterba (dsterba@suse.com) ---
In my case it happened on 5.3-rc3, with a strestest. The same machine has been
running fstests periodically, with slab debug on, but there are no slab reports
like that.
[ 8516.870046] BUG kmalloc-4k (Not tainted): Poison overwritten
[ 8516.875873]
-----------------------------------------------------------------------------
[ 8516.885864] Disabling lock debugging due to kernel taint
[ 8516.891312] INFO: 0x000000001c70c8c9-0x000000003cd1e164. First byte 0x16
instead of 0x6b
[ 8516.899717] INFO: Allocated in btrfs_read_tree_root+0x46/0x120 [btrfs]
age=1769 cpu=7 pid=8717
[ 8516.908544] __slab_alloc.isra.53+0x3e/0x70
[ 8516.912861] kmem_cache_alloc_trace+0x1b0/0x330
[ 8516.917581] btrfs_read_tree_root+0x46/0x120 [btrfs]
[ 8516.922737] btrfs_read_fs_root+0xe/0x40 [btrfs]
[ 8516.927552] create_reloc_root+0x17f/0x2a0 [btrfs]
[ 8516.932536] btrfs_init_reloc_root+0x72/0xe0 [btrfs]
[ 8516.937686] record_root_in_trans+0xbb/0xf0 [btrfs]
[ 8516.942750] btrfs_record_root_in_trans+0x50/0x70 [btrfs]
[ 8516.948340] start_transaction+0xa1/0x550 [btrfs]
[ 8516.953237] __btrfs_prealloc_file_range+0xca/0x490 [btrfs]
[ 8516.959003] btrfs_prealloc_file_range+0x10/0x20 [btrfs]
[ 8516.964509] prealloc_file_extent_cluster+0x13e/0x2b0 [btrfs]
[ 8516.970447] relocate_file_extent_cluster+0x8d/0x530 [btrfs]
[ 8516.976305] relocate_data_extent+0x80/0x110 [btrfs]
[ 8516.981469] relocate_block_group+0x473/0x720 [btrfs]
[ 8516.986711] btrfs_relocate_block_group+0x15f/0x2c0 [btrfs]
[ 8516.992470] INFO: Freed in btrfs_drop_snapshot+0x832/0xbb0 [btrfs] age=331
cpu=5 pid=8717
[ 8517.000865] kfree+0x29a/0x2d0
[ 8517.004098] btrfs_drop_snapshot+0x832/0xbb0 [btrfs]
[ 8517.009279] clean_dirty_subvols+0xf7/0x120 [btrfs]
[ 8517.014369] relocate_block_group+0x25a/0x720 [btrfs]
[ 8517.019616] btrfs_relocate_block_group+0x15f/0x2c0 [btrfs]
[ 8517.025385] btrfs_relocate_chunk+0x49/0x100 [btrfs]
[ 8517.030557] __btrfs_balance+0xa00/0xdb0 [btrfs]
[ 8517.035365] btrfs_balance+0x3b8/0xbb0 [btrfs]
[ 8517.040011] btrfs_ioctl_balance+0x2d5/0x380 [btrfs]
[ 8517.045176] btrfs_ioctl+0x16db/0x3460 [btrfs]
[ 8517.049772] do_vfs_ioctl+0xa5/0x710
[ 8517.053491] ksys_ioctl+0x70/0x80
[ 8517.056958] __x64_sys_ioctl+0x16/0x20
[ 8517.060845] do_syscall_64+0x5c/0x1d0
[ 8517.064650] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 8518.630509] INFO: 0x00000000088ac804-0x00000000600f3eff. First byte 0x17
instead of 0x6b
[ 8518.640015] Object 0000000064763fee: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.650047] INFO: Allocated in btrfs_read_tree_root+0x46/0x120 [btrfs]
age=2298 cpu=4 pid=8634
[ 8518.658240] Object 000000001d16ab39: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.667744] __slab_alloc.isra.53+0x3e/0x70
[ 8518.667751] kmem_cache_alloc_trace+0x1b0/0x330
[ 8518.676569] Object 000000000f5b2c4b: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.686125] btrfs_read_tree_root+0x46/0x120 [btrfs]
[ 8518.686186] btrfs_read_fs_root+0xe/0x40 [btrfs]
[ 8518.690444] Object 000000000e589530: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.695159] create_reloc_root+0x17f/0x2a0 [btrfs]
[ 8518.695226] btrfs_init_reloc_root+0x72/0xe0 [btrfs]
[ 8518.704680] Object 00000000e3821ddd: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.709851] record_root_in_trans+0xbb/0xf0 [btrfs]
[ 8518.709912] btrfs_record_root_in_trans+0x50/0x70 [btrfs]
[ 8518.714606] Object 000000009552602b: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.724164] start_transaction+0xa1/0x550 [btrfs]
[ 8518.724225] btrfs_start_transaction_fallback_global_rsv+0x34/0x1f0 [btrfs]
[ 8518.729096] Object 00000000048bc005: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.734242] btrfs_unlink+0x34/0xd0 [btrfs]
[ 8518.734251] vfs_unlink+0x106/0x1f0
[ 8518.743763] Object 00000000e803d7b6: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.748767] do_unlinkat+0x2bf/0x330
[ 8518.748775] do_syscall_64+0x5c/0x1d0
[ 8518.754301] Object 00000000774a30d7: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.763804] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 8518.763864] INFO: Freed in btrfs_drop_snapshot+0x832/0xbb0 [btrfs] age=746
cpu=5 pid=8717
[ 8518.768641] Object 000000007b92411f: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.775730] kfree+0x29a/0x2d0
[ 8518.775789] btrfs_drop_snapshot+0x832/0xbb0 [btrfs]
[ 8518.785253] Object 00000000ae532d5f: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.789626] clean_dirty_subvols+0xf7/0x120 [btrfs]
[ 8518.789693] relocate_block_group+0x25a/0x720 [btrfs]
[ 8518.793253] Object 000000002df294e8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.802820] btrfs_relocate_block_group+0x15f/0x2c0 [btrfs]
[ 8518.802886] btrfs_relocate_chunk+0x49/0x100 [btrfs]
[ 8518.806528] Object 00000000df2dd63a: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.810370] __btrfs_balance+0xa00/0xdb0 [btrfs]
[ 8518.810437] btrfs_balance+0x3b8/0xbb0 [btrfs]
[ 8518.819894] Object 00000000682d1c71: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.825135] btrfs_ioctl_balance+0x2d5/0x380 [btrfs]
[ 8518.825202] btrfs_ioctl+0x16db/0x3460 [btrfs]
[ 8518.833522] Object 00000000eb8c2c61: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.843038] do_vfs_ioctl+0xa5/0x710
[ 8518.843044] ksys_ioctl+0x70/0x80
[ 8518.846228] Object 00000000574d97aa: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.851322] __x64_sys_ioctl+0x16/0x20
[ 8518.851329] do_syscall_64+0x5c/0x1d0
[ 8518.860844] Object 00000000a5c7d1b2: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.865870] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 8518.865876] INFO: Slab 0x000000001ef6adf1 objects=7 used=7
fp=0x00000000b9747429 flags=0x3ffff000010200
[ 8518.871058] Object 000000009c9435a8: 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b
6b 6b 6b kkkkkkkkkkkkkkkk
[ 8518.880559] INFO: Object 0x000000003bdbade7 @offset=8872
fp=0x00000000b9747429
[ 8522.364211] Redzone 00000000be2e5096: bb bb bb bb bb bb bb bb
........
[ 8522.364214] Padding 000000005d4fac5d: 5a 5a 5a 5a 5a 5a 5a 5a
ZZZZZZZZ
[ 8522.364228] CPU: 3 PID: 2817 Comm: tmux Tainted: G B
5.3.0-rc3-1.ge195904-vanilla+ #474
[ 8522.429558] Hardware name: empty empty/S3993, BIOS PAQEX0-3 02/24/2008
[ 8522.429561] Call Trace:
[ 8522.429581] dump_stack+0x67/0x9b
[ 8522.444139] check_bytes_and_report+0xc9/0xf0
[ 8522.444149] check_object+0x284/0x330
[ 8522.444157] ? __tty_buffer_request_room+0x94/0x1a0
[ 8522.444163] ? __tty_buffer_request_room+0x94/0x1a0
[ 8522.444169] alloc_debug_processing+0x197/0x200
[ 8522.444178] ___slab_alloc+0x500/0x620
[ 8522.470992] ? __tty_buffer_request_room+0x94/0x1a0
[ 8522.471005] ? stack_trace_save+0x70/0x70
[ 8522.480156] ? __tty_buffer_request_room+0x94/0x1a0
[ 8522.480162] ? __slab_alloc.isra.53+0x3e/0x70
[ 8522.489651] __slab_alloc.isra.53+0x3e/0x70
[ 8522.489676] ? __tty_buffer_request_room+0x94/0x1a0
[ 8522.489680] __kmalloc+0x25e/0x370
[ 8522.489689] __tty_buffer_request_room+0x94/0x1a0
[ 8522.507369] tty_insert_flip_string_fixed_flag+0x57/0x130
[ 8522.507412] pty_write+0x52/0x90
[ 8522.507421] n_tty_write+0x402/0x4f0
[ 8522.507433] ? do_wait_intr_irq+0xe0/0xe0
[ 8522.507443] tty_write+0x1a3/0x350
[ 8522.507450] ? process_echoes+0x60/0x60
[ 8522.507459] do_iter_write+0x182/0x1f0
[ 8522.507466] ? import_iovec+0x8b/0xb0
[ 8522.507473] vfs_writev+0x92/0x120
[ 8522.507497] ? do_writev+0xde/0x130
[ 8522.546489] do_writev+0xde/0x130
[ 8522.546500] do_syscall_64+0x5c/0x1d0
[ 8522.553740] entry_SYSCALL_64_after_hwframe+0x49/0xbe
--
You are receiving this mail because:
You are on the CC list for the bug.
next prev parent reply other threads:[~2019-08-08 11:28 UTC|newest]
Thread overview: 42+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <bug-204371-206035@https.bugzilla.kernel.org/>
2019-07-29 23:28 ` [Bug 204371] BUG kmalloc-4k (Tainted: G W ): Object padding overwritten bugzilla-daemon
2019-07-30 18:52 ` bugzilla-daemon
2019-07-31 12:00 ` Michael Ellerman
2019-08-17 8:09 ` christophe leroy
2019-07-31 9:03 ` bugzilla-daemon
2019-07-31 12:09 ` bugzilla-daemon
2019-08-01 12:47 ` bugzilla-daemon
2019-08-06 20:47 ` bugzilla-daemon
2019-08-06 20:48 ` bugzilla-daemon
2019-08-06 20:51 ` bugzilla-daemon
2019-08-08 10:53 ` bugzilla-daemon
2019-08-08 11:26 ` bugzilla-daemon [this message]
2019-08-09 12:31 ` Michael Ellerman
2019-08-09 12:31 ` bugzilla-daemon
2019-08-11 20:03 ` bugzilla-daemon
2019-08-11 21:18 ` bugzilla-daemon
2019-08-13 9:19 ` bugzilla-daemon
2019-08-13 9:20 ` bugzilla-daemon
2019-08-13 15:38 ` bugzilla-daemon
2019-08-14 8:56 ` bugzilla-daemon
2019-08-14 15:12 ` bugzilla-daemon
2019-08-14 16:10 ` bugzilla-daemon
2019-08-14 17:44 ` bugzilla-daemon
2019-08-14 17:45 ` bugzilla-daemon
2019-08-14 17:48 ` bugzilla-daemon
2019-08-14 17:53 ` bugzilla-daemon
2019-08-14 20:28 ` bugzilla-daemon
2019-08-14 20:33 ` bugzilla-daemon
2019-08-15 14:38 ` bugzilla-daemon
2019-08-15 16:45 ` bugzilla-daemon
2019-08-15 17:07 ` bugzilla-daemon
2019-08-15 17:11 ` bugzilla-daemon
2019-08-15 17:56 ` bugzilla-daemon
2019-08-15 18:33 ` bugzilla-daemon
2019-08-16 8:22 ` bugzilla-daemon
2019-08-16 14:35 ` bugzilla-daemon
2019-08-16 14:38 ` bugzilla-daemon
2019-08-16 15:20 ` bugzilla-daemon
2019-08-16 18:02 ` bugzilla-daemon
2019-08-16 20:51 ` bugzilla-daemon
2019-08-17 8:09 ` bugzilla-daemon
2019-08-22 13:39 ` bugzilla-daemon
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=bug-204371-206035-3TOBxXIdie@https.bugzilla.kernel.org/ \
--to=bugzilla-daemon@bugzilla.kernel.org \
--cc=linuxppc-dev@lists.ozlabs.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).