I found the following warning in my log this evening. I don’t know if or how it can be reproduced. Linux 5.10.77 amd64. Kernel config attached. (The kernel taint is merely because of the struct randomization plugin.) zzy .. kernel: ------------[ cut here ]------------ kernel: refcount_t: addition on 0; use-after-free. kernel: WARNING: CPU: 3 PID: 957 at lib/refcount.c:25 refcount_warn_saturate+0x68/0xf0 kernel: CPU: 3 PID: 957 Comm: Xorg Tainted: G W T 5.10.77 #1 kernel: Hardware name: Supermicro Super Server/H11SSL-NC, BIOS 2.1 02/21/2020 kernel: RIP: 0010:refcount_warn_saturate+0x68/0xf0 kernel: Code: 05 2c 9f f5 01 01 e8 83 82 9e 00 0f 0b c3 80 3d 1c 9f f5 01 00 75 d3 48 c7 c7 f0 2e 1d 96 c6 05 0c 9f f5 01 01 e8 64 82 9e 00 <0f> 0b c3 80 3d ff 9e f5 01 00 75 d3 48 c7 c7 f0 2e 1d 96 c6 05 0c 9f f5 01 01 e8 64 82 9e 00 <0f> 0b c3 80 3d ff 9e f5 01 00 75 b4 48 c7 c7 c8 2e 1d 96 c6 05 ef kernel: RSP: 0018:ffffb4f201cc3c00 EFLAGS: 00010286 kernel: RAX: 0000000000000000 RBX: ffff8a0c00ede458 RCX: 0000000000000027 kernel: RDX: 0000000000000027 RSI: 00000000fffeffff RDI: ffff8a2ace192e88 kernel: RBP: ffffb4f201cc3d38 R08: ffff8a2ace192e80 R09: ffffb4f201cc3a28 kernel: R10: 0000000000000001 R11: 0000000000000001 R12: ffff8a0c911e5000 kernel: R13: ffff8a0cba1fc580 R14: ffffb4f201cc3cc8 R15: ffff8a0c1a440000 kernel: FS: 0000000000000000(0000) GS:ffff8a2ace180000(0000) knlGS:0000000000000000 kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 kernel: CR2: 0000736ef80ab660 CR3: 00000011da80c000 CR4: 0000000000350ee0 kernel: Call Trace: kernel: dma_resv_add_shared_fence+0x122/0x180 kernel: amdgpu_gem_object_close+0x1c3/0x250 kernel: drm_gem_object_release_handle+0x2b/0x90 kernel: ? drm_gem_object_handle_put_unlocked+0xc0/0xc0 kernel: idr_for_each+0x70/0xe0 kernel: drm_gem_release+0x17/0x20 kernel: drm_file_free.part.0+0x273/0x280 kernel: drm_release+0x60/0xe0 kernel: __fput+0x96/0x240 kernel: task_work_run+0x5a/0x90 kernel: do_exit+0x34e/0xaf0 kernel: do_group_exit+0x34/0xb0 kernel: __x64_sys_exit_group+0xf/0x10 kernel: do_syscall_64+0x33/0x40 kernel: entry_SYSCALL_64_after_hwframe+0x44/0xa9 kernel: RIP: 0033:0x736f1c33a699 kernel: Code: Unable to access opcode bytes at RIP 0x736f1c33a66f. kernel: RSP: 002b:00007ffce40b21e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 kernel: RAX: ffffffffffffffda RBX: 0000736f1c42f610 RCX: 0000736f1c33a699 kernel: RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 kernel: RBP: 0000000000000000 R08: fffffffffffffc80 R09: 0000000000000000 kernel: R10: 0000736f1cdbaa40 R11: 0000000000000246 R12: 0000736f1c42f610 kernel: R13: 0000000000000b14 R14: 0000736f1c42fae8 R15: 0000000000000000 kernel: ---[ end trace 52a8b244b766437f ]— ..
Attachment:
kernel-warning-config
Description: Binary data
