| To: | Dave Chinner <david@xxxxxxxxxxxxx> |
|---|---|
| Subject: | Re: [BUG] Slab corruption during XFS writeback under memory pressure |
| From: | Calvin Owens <calvinowens@xxxxxx> |
| Date: | Tue, 19 Jul 2016 14:22:47 -0700 |
| Cc: | <linux-block@xxxxxxxxxxxxxxx>, <kernel-team@xxxxxx>, <linux-kernel@xxxxxxxxxxxxxxx>, <linux-scsi@xxxxxxxxxxxxxxx>, <xfs@xxxxxxxxxxx> |
| Delivered-to: | xfs@xxxxxxxxxxx |
| Dkim-signature: | v=1; a=rsa-sha256; c=relaxed/simple; d=fb.com; h=subject : to : references : cc : from : message-id : date : mime-version : in-reply-to : content-type : content-transfer-encoding; s=facebook; bh=0ADmOVZBCqwdQm0264mWkpHllfs/C8kKlqy4psXq7+s=; b=qCHtC1zRvmQUZ9zVHwKt16MuJl4k6OzUzfkSEBLAmKFBIgske/0CZdyixAQ4Dyo8nmsA IFWLqPPswmEEEAxBCbPSb75MeyH1iThC0b0p4pzU7NzNyW2ix1XIpzPq3hoCxNl3momz wHewaJ0Au0D95Gkq6VgLfck7rsWF4/UIzOI= |
| Dkim-signature: | v=1; a=rsa-sha256; c=relaxed/relaxed; d=fb.onmicrosoft.com; s=selector1-fb-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=0ADmOVZBCqwdQm0264mWkpHllfs/C8kKlqy4psXq7+s=; b=D9PayQak/S9O3rJoRUUoLmUNXHQ1I5uEo9ogvs//h2+mDkHl5+3bYcfdbNkWjew5ZsIg5xHXDgYcIt1X1A/e0IWfkS67+la0izFFgIjhep+bsN2mxUxNROGIV7Pj1jxsv04K7YyfbHaAQYi3BeRTufxofKOK7mCmrtdDoTPchQY= |
| In-reply-to: | <24d2f83f-5281-ab3c-9e91-985a4b8e2f8b@xxxxxx> |
| References: | <28f77d74-5ab4-d913-2921-df90da53f393@xxxxxx> <20160717000003.GW1922@dastard> <20160718060215.GB16044@dastard> <24d2f83f-5281-ab3c-9e91-985a4b8e2f8b@xxxxxx> |
| Spamdiagnosticmetadata: | NSPM |
| Spamdiagnosticoutput: | 1:99 |
| User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Icedove/45.2.0 |
On 07/18/2016 07:05 PM, Calvin Owens wrote: On 07/17/2016 11:02 PM, Dave Chinner wrote:On Sun, Jul 17, 2016 at 10:00:03AM +1000, Dave Chinner wrote:On Fri, Jul 15, 2016 at 05:18:02PM -0700, Calvin Owens wrote:Hello all, I've found a nasty source of slab corruption. Based on seeing similar symptoms on boxes at Facebook, I suspect it's been around since at least 3.10. It only reproduces under memory pressure so far as I can tell: the issue seems to be that XFS reclaims pages from buffers that are still in use by scsi/block. I'm not sure which side the bug lies on, but I've only observed it with XFS.[....]But this indicates that the page is under writeback at this point, so that tends to indicate that the above freeing was incorrect. Hmmm - it's clear we've got direct reclaim involved here, and the suspicion of a dirty page that has had it's bufferheads cleared. Are there any other warnings in the log from XFS prior to kasan throwing the error?Can you try the patch below?Thanks for getting this out so quickly :) So far so good: I booted Linus' tree as of this morning and reproduced the ASAN splat. After applying your patch I haven't triggered it. I'm a bit wary since it was hard to trigger reliably in the first place... so I lined up a few dozen boxes to run the test case overnight. I'll confirm in the morning (-0700) they look good. All right, my testcase ran 2099 times overnight without triggering anything. For the overnight tests, I booted the boxes with "mem=" to artificially limit RAM, which makes my repro *much* more reliable (I feel silly for not thinking of that in the first place). With that setup, I hit the ASAN splat 21 times in 98 runs on vanilla 4.7-rc7. So I'm sold. Tested-by: Calvin Owens <calvinowens@xxxxxx> Again, really appreciate the quick response :) Thanks, Calvin Thanks, Calvin-Dave. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: [PATCH] xfs: Document error handling behavior, Eric Sandeen |
|---|---|
| Next by Date: | Re: [BUG] Slab corruption during XFS writeback under memory pressure, Dave Chinner |
| Previous by Thread: | Re: [BUG] Slab corruption during XFS writeback under memory pressure, Calvin Owens |
| Next by Thread: | Re: [BUG] Slab corruption during XFS writeback under memory pressure, Dave Chinner |
| Indexes: | [Date] [Thread] [Top] [All Lists] |