Re: [2.6.7-mm4: OOPS] kernel BUG at mm/mmap.c:1793

From: Hugh Dickins
Date: Wed Jun 30 2004 - 15:27:23 EST

Next message: John Heffner: "Re: 2.6.7-mm1 - 2.6.7-mm4 weird http behavior"
Previous message: David S. Miller: "Re: 2.6.7-mm1 - 2.6.7-mm4 weird http behavior"
In reply to: E. Gryaznova: "Re: [2.6.7-mm4: OOPS] kernel BUG at mm/mmap.c:1793"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 30 Jun 2004, Andrew Morton wrote:
> "E. Gryaznova" <grev@xxxxxxxxxxx> wrote:
> >
> > this is reproducible for me problem:
> > This wilson mmap test (attached) causes the kernel BUG at mm/mmap.c:1793
> > immediately after running.
>
> I cannot trigger it here. Does it happen every time? How much memory does
> that machine have?

I get it as easily as Lena does, perhaps you've a smallish stack rlimit.

The problem is in the flexible mmap patch: arch_get_unmapped_area_topdown
is liable to give your mmap vm_start above TASK_SIZE with vm_end wrapped;
which is confusing, and ends up as that BUG_ON(mm->map_count).

The patch below stops that behaviour, but it's not the full solution:
wilson_mmap_test -s 1000 then simply cannot allocate memory for the
large mmap, whereas it works fine non-top-down.

I think it's wrong to interpret a large or rlim_infinite stack rlimit
as an inviolable request to reserve that much for the stack: it makes
much less VM available than bottom up, not what was intended. Perhaps
top down should go bottom up (instead of belly up) when it fails -
but I'd probably better leave that to Ingo.

Or perhaps the default should place stack below text (as WLI suggested
and ELF intended, with its text defaulting to 0x08048000, small progs
sharing page table between stack and text and data); with a further
personality for those needing bigger stack.

Hugh

--- 2.6.7-mm4/mm/mmap.c 2004-06-29 12:18:55.000000000 +0100
+++ linux/mm/mmap.c 2004-06-30 20:20:50.026826472 +0100
@@ -1100,12 +1100,12 @@ arch_get_unmapped_area_topdown(struct fi
return addr;
}

+try_again:
/* make sure it can fit in the remaining address space */
if (mm->free_area_cache < len)
goto fail;

/* either no address requested or cant fit in requested address hole */
-try_again:
addr = (mm->free_area_cache - len) & PAGE_MASK;
do {
/*

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: John Heffner: "Re: 2.6.7-mm1 - 2.6.7-mm4 weird http behavior"
Previous message: David S. Miller: "Re: 2.6.7-mm1 - 2.6.7-mm4 weird http behavior"
In reply to: E. Gryaznova: "Re: [2.6.7-mm4: OOPS] kernel BUG at mm/mmap.c:1793"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]