From patchwork Wed Mar 13 14:57:17 2019
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Qian Cai <cai@lca.pw>
X-Patchwork-Id: 10851315
Return-Path: <owner-linux-mm@kvack.org>
Received: from mail.wl.linuxfoundation.org (pdx-wl-mail.web.codeaurora.org
 [172.30.200.125])
	by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id D9A63139A
	for <patchwork-linux-mm@patchwork.kernel.org>;
 Wed, 13 Mar 2019 14:57:47 +0000 (UTC)
Received: from mail.wl.linuxfoundation.org (localhost [127.0.0.1])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id C1DF4284C5
	for <patchwork-linux-mm@patchwork.kernel.org>;
 Wed, 13 Mar 2019 14:57:47 +0000 (UTC)
Received: by mail.wl.linuxfoundation.org (Postfix, from userid 486)
	id B5F0B28AC6; Wed, 13 Mar 2019 14:57:47 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	pdx-wl-mail.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.0 required=2.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE autolearn=ham
	version=3.3.1
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id 201B8284C5
	for <patchwork-linux-mm@patchwork.kernel.org>;
 Wed, 13 Mar 2019 14:57:46 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id ED8828E0003; Wed, 13 Mar 2019 10:57:45 -0400 (EDT)
Delivered-To: linux-mm-outgoing@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 40)
	id E87C88E0001; Wed, 13 Mar 2019 10:57:45 -0400 (EDT)
X-Original-To: int-list-linux-mm@kvack.org
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id D76DF8E0003; Wed, 13 Mar 2019 10:57:45 -0400 (EDT)
X-Original-To: linux-mm@kvack.org
X-Delivered-To: linux-mm@kvack.org
Received: from mail-qt1-f198.google.com (mail-qt1-f198.google.com
 [209.85.160.198])
	by kanga.kvack.org (Postfix) with ESMTP id AE98F8E0001
	for <linux-mm@kvack.org>; Wed, 13 Mar 2019 10:57:45 -0400 (EDT)
Received: by mail-qt1-f198.google.com with SMTP id 43so2086050qtz.8
        for <linux-mm@kvack.org>; Wed, 13 Mar 2019 07:57:45 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:dkim-signature:from:to:cc:subject:date
         :message-id;
        bh=Un1Wj5GPEV4DDdwQhW14uochoQcu3HXcwsxXJUzPAR4=;
        b=H+u/k5whsi5wotiD64cl08oc3qOwmUKQm7nLOWYJ8VwCeZDGLw/7pU2j2ocHv8qRSF
         3BQh/R0tLkXTTpeJRQAL9gtj1kdrlCZkh7vcjCZF2cXM/eRpyUN62xB9hnfiO+RbdmjF
         +bZr4SOeg0X4e3SV9zUSajrcXe5+ZgehtEbM8c2ykp6uRnCGTfVWSeSHc/LlR1WWsqrF
         /BqxbTy8ls5Iyf5PUe01JaW337B8dfD1divJ2Gnn5Q8WN+qCkhzyTp728yTRfvJBeuj5
         BElsi6Kjri8ZkBOuwLPcDefwqlpFA0Qf7zbMI7ePyxaSgrNyDakp4T9aNreniWb+xTWG
         UBfg==
X-Gm-Message-State: APjAAAVQqjnbZ4ZsqHX5H0gsMyP6QD0B4ltaiqasEZVEOIw3NISi3DYt
	bbqI4YBr5R/dJxEoArkFGMCShR04+GZgyPOYr8sR6ArUcjH/0Iu9SoDw2KrM0zxZ3qEAclw16kY
	+p68xurdyi8MSz/jn5RdSuIMZN8uTBsmiKPTdCTkhLVXgWwZVTUxpAVkvF+FkD4KieA1K6HLHOg
	j+4M4621/CVNoIP32v0sra/qrpey42oc+r3l08UADtLR24TgIe1m7rFsrBOH2m8sTZKVhGJtS4z
	kXU7Ltxu7kGw9QNxFttAH08iJy8XToYBxolngIQcr0eJBrnp9TDZjyG6IWVOMPKaqfMeRUF8Y1v
	ucMpxh4wVvG1mLrOzY4Ynbkh+R/X6N8a9Sy2SX1HZQtCwHxxH9VpB2dAnOXr1B8SOFnppH9z5ro
	e
X-Received: by 2002:a37:b704:: with SMTP id h4mr24413683qkf.39.1552489065405;
        Wed, 13 Mar 2019 07:57:45 -0700 (PDT)
X-Received: by 2002:a37:b704:: with SMTP id h4mr24413625qkf.39.1552489064209;
        Wed, 13 Mar 2019 07:57:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1552489064; cv=none;
        d=google.com; s=arc-20160816;
        b=hQ9tn44gXjMgCITKN8+YVnCT+RiXYHZxAjmszXQIVgB7zbP90e6Inz0fXpz+BwV/kc
         ztXrOULyP1+coz+yWlJ7GuyxEMPKcJ1fGF3SrjLFXjl7QWnlDPwUomj7Xl5Xmv1nYzVI
         zUPXPYaB02cokWvcf3Edy3pe7P5k0c3+CmKs3W24UF0vuMjKf2MAej5pdv3bSgfQuoHF
         8XPn0O+poCkmKsdICW2hwISbkuRMQS14/M81RNQNXaLyE/ATVsZQHhIt/JS1DX5HrXYX
         iIScDV7QpMPiQsA0/j45HZ7zv9y2vetQMTr+HPrdallMvQsQfr99waKh0ih+cH/ThSV4
         O0wA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
 s=arc-20160816;
        h=message-id:date:subject:cc:to:from:dkim-signature;
        bh=Un1Wj5GPEV4DDdwQhW14uochoQcu3HXcwsxXJUzPAR4=;
        b=fYoQHUI7YNloLXRPVh6aZ5bKQKdjPkGQJ/fHeVqRwr7o8s4dl8iGDudK8Q3JNqZmNA
         fk3mEjTgszYLTDePiuknLTCTQrK6uE3TtRlfuaa2Ub1cYYMy+akB4h0hfFFkM2Enj9OM
         h4MUhouD7/OYN4ow3eC0P+pYpSwGkn1NJ6VhE/8fxbHUxudnK4+CYNzJiLxRxkdLgdJg
         ks/ZUTDAEDyWTYlPne/35qYPx2JJ0cjiV73/w4gGP+wEDEj3AqUW17uhGt+g3Jed+wyc
         p6cR0NNmPZa3QJ9A0WddtBdiWuZrnZqykFwc2baNOnWLqNNzUhwquWXwfbSIH89aD2PR
         SO4A==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@lca.pw header.s=google header.b=IxW5mbW8;
       spf=pass (google.com: domain of cai@lca.pw designates 209.85.220.65 as
 permitted sender) smtp.mailfrom=cai@lca.pw
Received: from mail-sor-f65.google.com (mail-sor-f65.google.com.
 [209.85.220.65])
        by mx.google.com with SMTPS id e6sor14561544qtg.6.2019.03.13.07.57.44
        for <linux-mm@kvack.org>
        (Google Transport Security);
        Wed, 13 Mar 2019 07:57:44 -0700 (PDT)
Received-SPF: pass (google.com: domain of cai@lca.pw designates 209.85.220.65
 as permitted sender) client-ip=209.85.220.65;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@lca.pw header.s=google header.b=IxW5mbW8;
       spf=pass (google.com: domain of cai@lca.pw designates 209.85.220.65 as
 permitted sender) smtp.mailfrom=cai@lca.pw
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=lca.pw; s=google;
        h=from:to:cc:subject:date:message-id;
        bh=Un1Wj5GPEV4DDdwQhW14uochoQcu3HXcwsxXJUzPAR4=;
        b=IxW5mbW8OXhWYBl5olTK0B4P4DCUucECOk4BS6ZorrPhOInBXBY8Ll0COS9gSTZgjc
         W42sTm9x9tH3qiNfjLBfVuCc63CEIutI4JDGjggyTlcovacih/UCrW/erEvpQYwiTvU0
         dxNBramECvQraogjqbu1WQJP5xCmW5sy5ZRXyxEStYJ7R49ZNkdEke86Rebr6B5VQkgS
         aUZIrQXhpoiCg63BuS56GnFtuB/VMLt+c7L6Hy0bfYht0GQLci1aUVfzT8UYDS7sL0dU
         vc0hruN0qK6Nc5F7nnTlpyQJABDow6oCBb3jBb2Zj+FWGm9JqYaYIjNSv94DE9+DUs2B
         HFqA==
X-Google-Smtp-Source: 
 APXvYqytxb63jyMnDlJeptDoovBqtzEN/GpsodLxiXOb+sB9nGXC86ZavBMJf5o3MI71ggxndlF0+A==
X-Received: by 2002:ac8:371d:: with SMTP id o29mr4020271qtb.389.1552489063708;
        Wed, 13 Mar 2019 07:57:43 -0700 (PDT)
Received: from ovpn-121-103.rdu2.redhat.com
 (pool-71-184-117-43.bstnma.fios.verizon.net. [71.184.117.43])
        by smtp.gmail.com with ESMTPSA id
 a43sm8172501qta.54.2019.03.13.07.57.42
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Wed, 13 Mar 2019 07:57:42 -0700 (PDT)
From: Qian Cai <cai@lca.pw>
To: akpm@linux-foundation.org
Cc: catalin.marinas@arm.com,
	paulus@ozlabs.org,
	benh@kernel.crashing.org,
	mpe@ellerman.id.au,
	linux-mm@kvack.org,
	linux-kernel@vger.kernel.org,
	kvm-ppc@vger.kernel.org,
	linuxppc-dev@lists.ozlabs.org,
	Qian Cai <cai@lca.pw>
Subject: [PATCH v2] kmemleak: skip scanning holes in the .bss section
Date: Wed, 13 Mar 2019 10:57:17 -0400
Message-Id: <20190313145717.46369-1-cai@lca.pw>
X-Mailer: git-send-email 2.17.2 (Apple Git-113)
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
X-Virus-Scanned: ClamAV using ClamSMTP

The commit 2d4f567103ff ("KVM: PPC: Introduce kvm_tmp framework") adds
kvm_tmp[] into the .bss section and then free the rest of unused spaces
back to the page allocator.

kernel_init
  kvm_guest_init
    kvm_free_tmp
      free_reserved_area
        free_unref_page
          free_unref_page_prepare

With DEBUG_PAGEALLOC=y, it will unmap those pages from kernel. As the
result, kmemleak scan will trigger a panic below when it scans the .bss
section with unmapped pages.

Since this is done way before the first kmemleak_scan(), just go
lockless to make the implementation simple and skip those pages when
scanning the .bss section. Later, those pages could be tracked by
kmemleak again once allocated by the page allocator. Overall, this is
such a special case, so no need to make it a generic to let kmemleak
gain an ability to skip blocks in scan_large_block() for now.

BUG: Unable to handle kernel data access at 0xc000000001610000
Faulting instruction address: 0xc0000000003cc178
Oops: Kernel access of bad area, sig: 11 [#1]
LE PAGE_SIZE=64K MMU=Hash SMP NR_CPUS=256 DEBUG_PAGEALLOC NUMA pSeries
CPU: 3 PID: 130 Comm: kmemleak Kdump: loaded Not tainted 5.0.0+ #9
REGS: c0000004b05bf940 TRAP: 0300   Not tainted  (5.0.0+)
NIP [c0000000003cc178] scan_block+0xa8/0x190
LR [c0000000003cc170] scan_block+0xa0/0x190
Call Trace:
[c0000004b05bfbd0] [c0000000003cc170] scan_block+0xa0/0x190 (unreliable)
[c0000004b05bfc30] [c0000000003cc2c0] scan_large_block+0x60/0xa0
[c0000004b05bfc70] [c0000000003ccc64] kmemleak_scan+0x254/0x960
[c0000004b05bfd40] [c0000000003cdd50] kmemleak_scan_thread+0xec/0x12c
[c0000004b05bfdb0] [c000000000104388] kthread+0x1b8/0x1c0
[c0000004b05bfe20] [c00000000000b364] ret_from_kernel_thread+0x5c/0x78
Instruction dump:
7fa3eb78 4844667d 60000000 60000000 60000000 60000000 3bff0008 7fbcf840
409d00b8 4bfffeed 2fa30000 409e00ac <e87f0000> e93e0128 7fa91840
419dffdc

Signed-off-by: Qian Cai <cai@lca.pw>
Acked-by: Catalin Marinas <catalin.marinas@arm.com>
Acked-by: Michael Ellerman <mpe@ellerman.id.au> (powerpc)
---

v2: make the function __init per Andrew.

 arch/powerpc/kernel/kvm.c |  3 +++
 include/linux/kmemleak.h  |  4 ++++
 mm/kmemleak.c             | 25 ++++++++++++++++++++++++-
 3 files changed, 31 insertions(+), 1 deletion(-)

diff --git a/arch/powerpc/kernel/kvm.c b/arch/powerpc/kernel/kvm.c
index 683b5b3805bd..5cddc8fc56bb 100644
--- a/arch/powerpc/kernel/kvm.c
+++ b/arch/powerpc/kernel/kvm.c
@@ -26,6 +26,7 @@
 #include <linux/slab.h>
 #include <linux/of.h>
 #include <linux/pagemap.h>
+#include <linux/kmemleak.h>
 
 #include <asm/reg.h>
 #include <asm/sections.h>
@@ -712,6 +713,8 @@ static void kvm_use_magic_page(void)
 
 static __init void kvm_free_tmp(void)
 {
+	kmemleak_bss_hole(&kvm_tmp[kvm_tmp_index],
+			  &kvm_tmp[ARRAY_SIZE(kvm_tmp)]);
 	free_reserved_area(&kvm_tmp[kvm_tmp_index],
 			   &kvm_tmp[ARRAY_SIZE(kvm_tmp)], -1, NULL);
 }
diff --git a/include/linux/kmemleak.h b/include/linux/kmemleak.h
index 5ac416e2d339..17d3684e81ab 100644
--- a/include/linux/kmemleak.h
+++ b/include/linux/kmemleak.h
@@ -46,6 +46,7 @@ extern void kmemleak_alloc_phys(phys_addr_t phys, size_t size, int min_count,
 extern void kmemleak_free_part_phys(phys_addr_t phys, size_t size) __ref;
 extern void kmemleak_not_leak_phys(phys_addr_t phys) __ref;
 extern void kmemleak_ignore_phys(phys_addr_t phys) __ref;
+extern void kmemleak_bss_hole(void *start, void *stop) __init;
 
 static inline void kmemleak_alloc_recursive(const void *ptr, size_t size,
 					    int min_count, slab_flags_t flags,
@@ -131,6 +132,9 @@ static inline void kmemleak_not_leak_phys(phys_addr_t phys)
 static inline void kmemleak_ignore_phys(phys_addr_t phys)
 {
 }
+static inline void kmemleak_bss_hole(void *start, void *stop)
+{
+}
 
 #endif	/* CONFIG_DEBUG_KMEMLEAK */
 
diff --git a/mm/kmemleak.c b/mm/kmemleak.c
index 707fa5579f66..a2d894d3de07 100644
--- a/mm/kmemleak.c
+++ b/mm/kmemleak.c
@@ -237,6 +237,10 @@ static int kmemleak_skip_disable;
 /* If there are leaks that can be reported */
 static bool kmemleak_found_leaks;
 
+/* Skip scanning of a range in the .bss section. */
+static void *bss_hole_start;
+static void *bss_hole_stop;
+
 static bool kmemleak_verbose;
 module_param_named(verbose, kmemleak_verbose, bool, 0600);
 
@@ -1265,6 +1269,18 @@ void __ref kmemleak_ignore_phys(phys_addr_t phys)
 }
 EXPORT_SYMBOL(kmemleak_ignore_phys);
 
+/**
+ * kmemleak_bss_hole - skip scanning a range in the .bss section
+ *
+ * @start:	start of the range
+ * @stop:	end of the range
+ */
+void __init kmemleak_bss_hole(void *start, void *stop)
+{
+	bss_hole_start = start;
+	bss_hole_stop = stop;
+}
+
 /*
  * Update an object's checksum and return true if it was modified.
  */
@@ -1531,7 +1547,14 @@ static void kmemleak_scan(void)
 
 	/* data/bss scanning */
 	scan_large_block(_sdata, _edata);
-	scan_large_block(__bss_start, __bss_stop);
+
+	if (bss_hole_start) {
+		scan_large_block(__bss_start, bss_hole_start);
+		scan_large_block(bss_hole_stop, __bss_stop);
+	} else {
+		scan_large_block(__bss_start, __bss_stop);
+	}
+
 	scan_large_block(__start_ro_after_init, __end_ro_after_init);
 
 #ifdef CONFIG_SMP