https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191166#M8308 <HTML><HEAD></HEAD><BODY><DIV></DIV><DIV>I checked with an engineer here and you may have found a bug. To have it handled properly, you need to submit a Service Request on it. To enter a service request to Freescale, <A href="https://www.freescale.com/webapp/servicerequest.create_SR.framework" rel="nofollow" target="_blank">click here</A>.</DIV><DIV>&nbsp;</DIV><DIV>---Tom</DIV></BODY></HTML> Fri, 10 Oct 2008 23:04:18 GMT J2MEJediMaster 2008-10-10T23:04:18Z https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191164#M8306 <HTML><HEAD></HEAD><BODY><SPAN>While trying to get the new 2.6.25 ltib working we came across very strange things while mounting larger</SPAN><BR /><SPAN>(&gt;20MB) jffs2 partitions on NOR-Flash. Our configuration is very similar to EVB board, the main difference</SPAN><BR /><SPAN>is 128MB DDR and 32MB NOR-Flash. We got u-boot as well as kernel running and everything is fine when working on nfs root.</SPAN><BR /><BR /><SPAN>When trying to mount a jffs2 partition we've got bad page and crash deep in</SPAN><BR /><SPAN>jffs2/malloc.c jffs2_alloc_inode_cache() where kmem_cache_alloc() is used.</SPAN><BR /><SPAN>More detailed investigation shows that this is only a follow-up symptom, things get mixed-up already when calling kmalloc() in jffs2/build.c function do_mount_fs().</SPAN><BR /><BR /><SPAN style="text-decoration: underline;">What is interesting, this crash occurs only if:</SPAN><BR /><SPAN>- SLUB allocator is used</SPAN><BR /><SPAN>- Partition is larger than ~20MB (w/ 128k erase block) which results to kmalloc of more than 8k (&gt;single page)</SPAN><BR /><SPAN>- "compile kernel with frame pointers" is off in kernel config</SPAN><BR /><BR /><SPAN>Tracing down the issue we found that kmalloc() in do_mount_fs() returns a totally invalid pointer. But deeper in kmalloc code everything looks ok down to mm/page_alloc.c __get_free_pages(), only the returned pointer is mixed-up somewhere on its way. Looking at the stack content at various points shows that stack pointer is not getting back where it was before kmalloc() call, it is off by -0x10.</SPAN><BR /><SPAN>I attached a sample stack log with some comments to document this.</SPAN><BR /><DIV> </DIV><BR /><SPAN>We are now really concerned about using the new kernel / slub allocator.</SPAN><BR /><BR /><SPAN>Could someone look deeper into this ?</SPAN><BR /></BODY></HTML> Fri, 03 Oct 2008 21:30:45 GMT https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191164#M8306 Plasmasam 2008-10-03T21:30:45Z https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191165#M8307 <HTML><HEAD></HEAD><BODY>Doing some further investigation shows that this might not be related to jffs2 at all but that kmalloc is here generally broken with SLUB if size &gt; PAGE_SIZE ! (I have put the same call to kmalloc outside of jffs2 code)<BR /><DIV></DIV></BODY></HTML> Fri, 03 Oct 2008 21:59:19 GMT https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191165#M8307 Plasmasam 2008-10-03T21:59:19Z https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191166#M8308 <HTML><HEAD></HEAD><BODY><DIV></DIV><DIV>I checked with an engineer here and you may have found a bug. To have it handled properly, you need to submit a Service Request on it. To enter a service request to Freescale, <A href="https://www.freescale.com/webapp/servicerequest.create_SR.framework" rel="nofollow" target="_blank">click here</A>.</DIV><DIV>&nbsp;</DIV><DIV>---Tom</DIV></BODY></HTML> Fri, 10 Oct 2008 23:04:18 GMT https://community.nxp.com/t5/ColdFire-68K-Microcontrollers/stack-corruption-in-jffs2-using-SLUB-2-6-25-kernel-on-cf5475/m-p/191166#M8308 J2MEJediMaster 2008-10-10T23:04:18Z