lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:   Thu, 18 May 2017 13:20:38 +0800
From:   kernel test robot <xiaolong.ye@...el.com>
To:     Bart Van Assche <bart.vanassche@...disk.com>
Cc:     LKML <linux-kernel@...r.kernel.org>,
        Bart Van Assche <bart.vanassche@...disk.com>, lkp@...org
Subject: [scsi]  66de5f1b19: BUG:unable_to_handle_kernel


FYI, we noticed the following commit:

commit: 66de5f1b197e175840a132f7ee8927bfc3ff92b3 ("scsi: Move scsi_device.cmd_list manipulation code")
https://github.com/bvanassche/linux for-next

in testcase: boot

on test machine: qemu-system-x86_64 -enable-kvm -cpu kvm64,+ssse3 -smp 2 -m 8G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+------------------------------------------------------------------+------------+------------+
|                                                                  | 002c9890c6 | 66de5f1b19 |
+------------------------------------------------------------------+------------+------------+
| boot_successes                                                   | 6          | 0          |
| boot_failures                                                    | 4          | 10         |
| invoked_oom-killer:gfp_mask=0x                                   | 4          |            |
| Mem-Info                                                         | 4          |            |
| Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 4          |            |
| BUG:unable_to_handle_kernel                                      | 0          | 10         |
| Oops:#[##]                                                       | 0          | 10         |
| Kernel_panic-not_syncing:Fatal_exception_in_interrupt            | 0          | 10         |
+------------------------------------------------------------------+------------+------------+



[   38.475923] BUG: unable to handle kernel NULL pointer dereference at 0000000000000008
[   38.475979] IP: scsi_put_command+0x31/0x5d
[   38.475981] PGD 0 
[   38.475983] P4D 0 
[   38.475984] 
[   38.475989] Oops: 0002 [#1] SMP
[   38.476013] Modules linked in:
[   38.476021] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.11.0-12455-g66de5f1 #1
[   38.476044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.9.3-20161025_171302-gandalf 04/01/2014
[   38.476048] task: ffff88022a2c0000 task.stack: ffffc90000c54000
[   38.476053] RIP: 0010:scsi_put_command+0x31/0x5d
[   38.476055] RSP: 0000:ffff88023fc03e30 EFLAGS: 00010082
[   38.476081] RAX: 0000000000000246 RBX: ffff880207e70d40 RCX: 0000000000000000
[   38.476084] RDX: ffff880207e70d80 RSI: 0000000000000000 RDI: 0000000000000000
[   38.476086] RBP: ffff88023fc03e38 R08: 0000000000000000 R09: ffffffff81121b01
[   38.476110] R10: ffff88023fc03d68 R11: 0000000000000000 R12: ffff880207e70c00
[   38.476113] R13: ffff880207e70d40 R14: ffff880208010000 R15: 0000000000000000
[   38.476118] FS:  0000000000000000(0000) GS:ffff88023fc00000(0000) knlGS:0000000000000000
[   38.476142] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   38.476144] CR2: 0000000000000008 CR3: 0000000001e11000 CR4: 00000000000006f0
[   38.476175] Call Trace:
[   38.476178]  <IRQ>
[   38.476214]  scsi_end_request+0x130/0x17b
[   38.476241]  scsi_io_completion+0x1ce/0x49f
[   38.476246]  scsi_finish_command+0x113/0x11c
[   38.476272]  scsi_softirq_done+0xe5/0x107
[   38.476280]  blk_done_softirq+0x7c/0x83
[   38.476310]  __do_softirq+0xff/0x267
[   38.476339]  irq_exit+0x58/0x99
[   38.476345]  smp_apic_timer_interrupt+0x3d/0x48
[   38.476372]  apic_timer_interrupt+0x89/0x90
[   38.476402] RIP: 0010:console_unlock+0x221/0x42e
[   38.476404] RSP: 0000:ffffc90000c57d58 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10
[   38.476410] RAX: 0000000000000000 RBX: ffffffff8212d220 RCX: 0000000000000000
[   38.476433] RDX: 00000000000003f9 RSI: 0000000000000046 RDI: 0000000000000246
[   38.476436] RBP: ffffc90000c57da0 R08: 0000000000000000 R09: 0000000000000000
[   38.476439] R10: ffffffff81aa0735 R11: ffffffff8212d227 R12: 0000000000000000
[   38.476442] R13: ffffffff81f561c0 R14: 0000000000000000 R15: 0000000000000040
[   38.476444]  </IRQ>
[   38.476474]  vprintk_emit+0x215/0x227
[   38.476503]  ? cnic_init+0x7f/0x7f
[   38.476507]  ? set_debug_rodata+0x17/0x17
[   38.476533]  vprintk_default+0x1d/0x1f
[   38.476537]  vprintk_func+0x4a/0x4c
[   38.476564]  printk+0x43/0x4b
[   38.476570]  bnx2x_init+0x1d/0xea
[   38.476574]  ? cnic_init+0x7f/0x7f
[   38.476600]  do_one_initcall+0x90/0x137
[   38.476605]  ? set_debug_rodata+0x17/0x17
[   38.476630]  kernel_init_freeable+0x179/0x1fc
[   38.476636]  ? rest_init+0x87/0x87
[   38.476661]  kernel_init+0xe/0xfa
[   38.476666]  ret_from_fork+0x2c/0x40
[   38.476669] Code: 48 89 e5 53 48 8b 47 38 48 89 fb 48 8d 78 38 e8 70 84 4a 00 48 8b 4b 40 48 8d 53 40 48 39 ca 75 02 0f 0b 48 8b 7b 40 48 8b 4b 48 <48> 89 4f 08 48 89 39 48 8b 73 38 48 89 53 40 48 89 53 48 48 8d 
[   38.476988] RIP: scsi_put_command+0x31/0x5d RSP: ffff88023fc03e30
[   38.476990] CR2: 0000000000000008
[   38.477022] ---[ end trace ab7b630f48deb907 ]---


To reproduce:

        git clone https://github.com/01org/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script  # job-script is attached in this email



Thanks,
Kernel Test Robot

View attachment "config-4.11.0-12455-g66de5f1" of type "text/plain" (105411 bytes)

View attachment "job-script" of type "text/plain" (4188 bytes)

Download attachment "dmesg.xz" of type "application/octet-stream" (9472 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ