hi, Jann Horn, as you educated me last time, I know this b82c7add4c is v5:) the CONFIG_SLUB_RCU_DEBUG is really enabled, and we saw lots of WARNING in dmesg https://download.01.org/0day-ci/archive/20240807/202408071606.258f19a0-oliver.sang@xxxxxxxxx/dmesg.xz not sure if it's expected? below report (parsed one of WARNING) just FYI. Hello, kernel test robot noticed "WARNING:at_mm/slub.c:#slab_free_after_rcu_debug" on: commit: b82c7add4c7fd6beefefbaf67e9a0378ec2e6ee1 ("slub: introduce CONFIG_SLUB_RCU_DEBUG") https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git master [test failed on linux-next/master 1e391b34f6aa043c7afa40a2103163a0ef06d179] in testcase: boot compiler: gcc-12 test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 16G (please refer to attached dmesg/kmsg for entire log/backtrace) If you fix the issue in a separate patch/commit (i.e. not just a new version of the same patch/commit), kindly add following tags | Reported-by: kernel test robot <oliver.sang@xxxxxxxxx> | Closes: https://lore.kernel.org/oe-lkp/202408071606.258f19a0-oliver.sang@xxxxxxxxx [ 1.253080][ C1] ------------[ cut here ]------------ [ 1.253941][ C1] WARNING: CPU: 1 PID: 0 at mm/slub.c:4550 slab_free_after_rcu_debug (mm/slub.c:4550) [ 1.254388][ C1] Modules linked in: [ 1.255015][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.11.0-rc1-00103-gb82c7add4c7f #1 [ 1.256371][ C1] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 1.257395][ C1] RIP: 0010:slab_free_after_rcu_debug (mm/slub.c:4550) [ 1.258255][ C1] Code: 00 c7 44 24 0c 00 00 00 00 0f 85 11 ff ff ff f7 c2 04 02 00 00 40 0f 94 c7 41 0f 94 c7 40 0f b6 ff 89 7c 24 0c e9 f6 fe ff ff <0f> 0b 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 84 All code ======== 0: 00 c7 add %al,%bh 2: 44 24 0c rex.R and $0xc,%al 5: 00 00 add %al,(%rax) 7: 00 00 add %al,(%rax) 9: 0f 85 11 ff ff ff jne 0xffffffffffffff20 f: f7 c2 04 02 00 00 test $0x204,%edx 15: 40 0f 94 c7 sete %dil 19: 41 0f 94 c7 sete %r15b 1d: 40 0f b6 ff movzbl %dil,%edi 21: 89 7c 24 0c mov %edi,0xc(%rsp) 25: e9 f6 fe ff ff jmpq 0xffffffffffffff20 2a:* 0f 0b ud2 <-- trapping instruction 2c: 48 8d 65 d8 lea -0x28(%rbp),%rsp 30: 5b pop %rbx 31: 41 5c pop %r12 33: 41 5d pop %r13 35: 41 5e pop %r14 37: 41 5f pop %r15 39: 5d pop %rbp 3a: c3 retq 3b: cc int3 3c: cc int3 3d: cc int3 3e: cc int3 3f: 84 .byte 0x84 Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 48 8d 65 d8 lea -0x28(%rbp),%rsp 6: 5b pop %rbx 7: 41 5c pop %r12 9: 41 5d pop %r13 b: 41 5e pop %r14 d: 41 5f pop %r15 f: 5d pop %rbp 10: c3 retq 11: cc int3 12: cc int3 13: cc int3 14: cc int3 15: 84 .byte 0x84 [ 1.263025][ C1] RSP: 0000:ffffc900001f8d70 EFLAGS: 00010202 [ 1.263973][ C1] RAX: ffff8883ad600000 RBX: ffff888100bbb480 RCX: 0000000000000f01 [ 1.264356][ C1] RDX: 0000000080000000 RSI: ffffffff8e009f01 RDI: ffff8883ad604fe0 [ 1.265346][ C1] RBP: ffffc900001f8da8 R08: ffffffff92b46324 R09: ffff8883ad206890 [ 1.266351][ C1] R10: ffffc900001f89c8 R11: ffffffff92b580f4 R12: ffffea000402ee00 [ 1.267008][ C1] R13: ffff8883ad604fe0 R14: 0000000000000002 R15: 0000000000000f01 [ 1.267008][ C1] FS: 0000000000000000(0000) GS:ffff8883af100000(0000) knlGS:0000000000000000 [ 1.267397][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1.268008][ C1] CR2: 0000000000000000 CR3: 00000003a7662000 CR4: 00000000000406f0 [ 1.269367][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1.270360][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1.271351][ C1] Call Trace: [ 1.272002][ C1] <IRQ> [ 1.272207][ C1] ? __warn (kernel/panic.c:735) [ 1.272994][ C1] ? slab_free_after_rcu_debug (mm/slub.c:4550) [ 1.274014][ C1] ? report_bug (lib/bug.c:180 lib/bug.c:219) [ 1.274891][ C1] ? handle_bug (arch/x86/kernel/traps.c:239) [ 1.275231][ C1] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1)) [ 1.276013][ C1] ? asm_exc_invalid_op (arch/x86/include/asm/idtentry.h:621) [ 1.276976][ C1] ? memcg_alloc_abort_single (mm/slub.c:4524) [ 1.278267][ C1] ? slab_free_after_rcu_debug (mm/slub.c:4550) [ 1.279254][ C1] rcu_do_batch (arch/x86/include/asm/preempt.h:26 kernel/rcu/tree.c:2576) [ 1.280013][ C1] ? kvm_sched_clock_read (arch/x86/kernel/kvmclock.c:91) [ 1.280520][ C1] ? sched_clock_cpu (kernel/sched/clock.c:270 kernel/sched/clock.c:405) [ 1.281010][ C1] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2493) [ 1.281504][ C1] ? __pfx_sched_clock_cpu (kernel/sched/clock.c:389) [ 1.282010][ C1] rcu_core (kernel/rcu/tree.c:2845) [ 1.282430][ C1] ? irqtime_account_irq (kernel/sched/cputime.c:64) [ 1.282941][ C1] handle_softirqs (arch/x86/include/asm/jump_label.h:27 include/linux/jump_label.h:207 include/trace/events/irq.h:142 kernel/softirq.c:555) [ 1.283144][ C1] ? __pfx_handle_softirqs (kernel/softirq.c:512) [ 1.283666][ C1] ? irqtime_account_irq (kernel/sched/cputime.c:64) [ 1.284147][ C1] __irq_exit_rcu (kernel/softirq.c:589 kernel/softirq.c:428 kernel/softirq.c:637) [ 1.284609][ C1] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1043 arch/x86/kernel/apic/apic.c:1043) [ 1.285176][ C1] </IRQ> [ 1.285640][ C1] <TASK> [ 1.286008][ C1] asm_sysvec_apic_timer_interrupt (arch/x86/include/asm/idtentry.h:702) [ 1.286008][ C1] RIP: 0010:default_idle (arch/x86/include/asm/irqflags.h:37 arch/x86/include/asm/irqflags.h:92 arch/x86/kernel/process.c:743) [ 1.286008][ C1] Code: 4c 01 c7 4c 29 c2 e9 72 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 63 e1 35 00 fb f4 <fa> c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 All code ======== 0: 4c 01 c7 add %r8,%rdi 3: 4c 29 c2 sub %r8,%rdx 6: e9 72 ff ff ff jmpq 0xffffffffffffff7d b: 90 nop c: 90 nop d: 90 nop e: 90 nop f: 90 nop 10: 90 nop 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop 16: 90 nop 17: 90 nop 18: 90 nop 19: 90 nop 1a: 90 nop 1b: f3 0f 1e fa endbr64 1f: eb 07 jmp 0x28 21: 0f 00 2d 63 e1 35 00 verw 0x35e163(%rip) # 0x35e18b 28: fb sti 29: f4 hlt 2a:* fa cli <-- trapping instruction 2b: c3 retq 2c: cc int3 2d: cc int3 2e: cc int3 2f: cc int3 30: 66 66 2e 0f 1f 84 00 data16 nopw %cs:0x0(%rax,%rax,1) 37: 00 00 00 00 3b: 90 nop 3c: 90 nop 3d: 90 nop 3e: 90 nop 3f: 90 nop Code starting with the faulting instruction =========================================== 0: fa cli 1: c3 retq 2: cc int3 3: cc int3 4: cc int3 5: cc int3 6: 66 66 2e 0f 1f 84 00 data16 nopw %cs:0x0(%rax,%rax,1) d: 00 00 00 00 11: 90 nop 12: 90 nop 13: 90 nop 14: 90 nop 15: 90 nop The kernel config and materials to reproduce are available at: https://download.01.org/0day-ci/archive/20240807/202408071606.258f19a0-oliver.sang@xxxxxxxxx -- 0-DAY CI Kernel Test Service https://github.com/intel/lkp-tests/wiki
