[PATCH AUTOSEL 09/14] mm/hwpoison: fix error page recovered but reported "not recovered"

From: Greg Kroah-Hartman
Date: Thu Apr 28 2022 - 11:43:33 EST

Next message: Greg Kroah-Hartman: "[PATCH AUTOSEL 10/14] mm/mlock: fix potential imbalanced rlimit ucounts adjustment"
Previous message: Greg Kroah-Hartman: "[PATCH AUTOSEL 06/14] mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and __mcopy_atomic()"
In reply to: Greg Kroah-Hartman: "[PATCH AUTOSEL 06/14] mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and __mcopy_atomic()"
Next in thread: Greg Kroah-Hartman: "[PATCH AUTOSEL 10/14] mm/mlock: fix potential imbalanced rlimit ucounts adjustment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Naoya Horiguchi <naoya.horiguchi@xxxxxxx>

commit 046545a661af2beec21de7b90ca0e35f05088a81 upstream.

When an uncorrected memory error is consumed there is a race between the
CMCI from the memory controller reporting an uncorrected error with a
UCNA signature, and the core reporting and SRAR signature machine check
when the data is about to be consumed.

If the CMCI wins that race, the page is marked poisoned when
uc_decode_notifier() calls memory_failure() and the machine check
processing code finds the page already poisoned. It calls
kill_accessing_process() to make sure a SIGBUS is sent. But returns the
wrong error code.

Console log looks like this:

mce: Uncorrected hardware memory error in user-access at 3710b3400
Memory failure: 0x3710b3: recovery action for dirty LRU page: Recovered
Memory failure: 0x3710b3: already hardware poisoned
Memory failure: 0x3710b3: Sending SIGBUS to einj_mem_uc:361438 due to hardware memory corruption
mce: Memory error not recovered

kill_accessing_process() is supposed to return -EHWPOISON to notify that
SIGBUS is already set to the process and kill_me_maybe() doesn't have to
send it again. But current code simply fails to do this, so fix it to
make sure to work as intended. This change avoids the noise message
"Memory error not recovered" and skips duplicate SIGBUSs.

[tony.luck@xxxxxxxxx: reword some parts of commit message]

Link: https://lkml.kernel.org/r/20220113231117.1021405-1-naoya.horiguchi@xxxxxxxxx
Fixes: a3f5d80ea401 ("mm,hwpoison: send SIGBUS with error virutal address")
Signed-off-by: Naoya Horiguchi <naoya.horiguchi@xxxxxxx>
Reported-by: Youquan Song <youquan.song@xxxxxxxxx>
Cc: Tony Luck <tony.luck@xxxxxxxxx>
Signed-off-by: Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
---
mm/memory-failure.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/mm/memory-failure.c b/mm/memory-failure.c
index 15dcedbc1730..682eedb5ea75 100644
--- a/mm/memory-failure.c
+++ b/mm/memory-failure.c
@@ -707,8 +707,10 @@ static int kill_accessing_process(struct task_struct *p, unsigned long pfn,
(void *)&priv);
if (ret == 1 && priv.tk.addr)
kill_proc(&priv.tk, pfn, flags);
+ else
+ ret = 0;
mmap_read_unlock(p->mm);
- return ret ? -EFAULT : -EHWPOISON;
+ return ret > 0 ? -EHWPOISON : -EFAULT;
}

static const char *action_name[] = {
--
2.36.0

Next message: Greg Kroah-Hartman: "[PATCH AUTOSEL 10/14] mm/mlock: fix potential imbalanced rlimit ucounts adjustment"
Previous message: Greg Kroah-Hartman: "[PATCH AUTOSEL 06/14] mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and __mcopy_atomic()"
In reply to: Greg Kroah-Hartman: "[PATCH AUTOSEL 06/14] mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and __mcopy_atomic()"
Next in thread: Greg Kroah-Hartman: "[PATCH AUTOSEL 10/14] mm/mlock: fix potential imbalanced rlimit ucounts adjustment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]