Re: Fw: crash on x86_64 - mm related?

From: Hugh Dickins
Date: Thu Dec 01 2005 - 15:21:58 EST

Next message: Zwane Mwaikambo: "Re: [PATCH] x86_64: Display HPET timer option"
Previous message: Dinakar Guniguntala: "Perf degradation from -rt14 onwards"
In reply to: Ryan Richter: "Re: Fw: crash on x86_64 - mm related?"
Next in thread: Kai Makisara: "Re: Fw: crash on x86_64 - mm related?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 1 Dec 2005, Ryan Richter wrote:
> On Thu, Dec 01, 2005 at 11:38:20AM -0800, Linus Torvalds wrote:
> > > >
> > > > Bad page state at free_hot_cold_page (in process 'taper', page ffff81000260b6f8)
> > > > flags:0x010000000000000c mapping:ffff8100355f1dd8 mapcount:2 count:0
> > > > Backtrace:
> >
> > Ryan, can you test 2.6.15-rc4 and report what it does?
> >
> > The "Bad page state" messages may (should) remain, but the crashes should
> > be gone and the machine should hopefully continue functioning fine. And,
> > perhaps more importantly, you should hopefully have a _new_ message about
> > incomplete pfn mappings that should help pinpoint which driver causes
> > this..

But we already know which driver does this: drivers/scsi/st.c.

> Will do, I plan to take this machine down Saturday to run memtest86 for
> a while (just to be sure - 2/3 of the RAM is new, but I should be seeing
> machine checks if that were the problem, no?) so I'll boot this after that.

Nick and I had already been looking at drivers/scsi/{sg.c,st.c},
brought there by __put_page in sg.c's peculiar sg_rb_correct4mmap,
which we'd like to remove. But that's irrelevant to your pain, except...

One extract from the patches I'd like to send Doug and Kai for 2.6.15
or 2.6.16 is this below: since the incomplete get_user_pages path omits
to reset res, but has already released all the pages, it will result in
premature freeing of user pages, and behaviour just like you've seen.

Though I'd have thought incomplete get_user_pages was an exceptional
case, and a bit surprised you'd encounter it. Perhaps there's some
other premature freeing in the driver, and this instance has nothing
whatever to do with it.

If the problem were easily reproducible, it'd be great if you could
try this patch; but I think you've said it's not :-(

Hugh

--- 2.6.14/drivers/scsi/st.c 2005-10-28 01:02:08.000000000 +0100
+++ linux/drivers/scsi/st.c 2005-12-01 20:06:02.000000000 +0000
@@ -4511,6 +4511,7 @@ static int sgl_map_user_pages(struct sca
if (res > 0) {
for (j=0; j < res; j++)
page_cache_release(pages[j]);
+ res = 0;
}
kfree(pages);
return res;
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Zwane Mwaikambo: "Re: [PATCH] x86_64: Display HPET timer option"
Previous message: Dinakar Guniguntala: "Perf degradation from -rt14 onwards"
In reply to: Ryan Richter: "Re: Fw: crash on x86_64 - mm related?"
Next in thread: Kai Makisara: "Re: Fw: crash on x86_64 - mm related?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]