lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:   Tue, 18 Jun 2019 08:30:54 +0800
From:   kernel test robot <rong.a.chen@...el.com>
To:     Matthew Garrett <matthewgarrett@...gle.com>
Cc:     Mimi Zohar <zohar@...ux.ibm.com>,
        Matthew Garrett <mjg59@...gle.com>,
        LKML <linux-kernel@...r.kernel.org>,
        Mimi Zohar <zohar@...ux.vnet.ibm.com>,
        linux-integrity@...r.kernel.org, lkp@...org
Subject: [IMA] f241bb1f42:
 BUG:sleeping_function_called_from_invalid_context_at_mm/slab.h

FYI, we noticed the following commit (built with gcc-7):

commit: f241bb1f42aa95a996c0c6ec8ff38e4306ec0281 ("IMA: support for per policy rule template formats")
https://git.kernel.org/cgit/linux/kernel/git/zohar/linux-integrity.git next-queued-testing

in testcase: rcutorture
with following parameters:

	runtime: 300s
	test: default
	torture_type: srcud

test-description: rcutorture is rcutorture kernel module load/unload test.
test-url: https://www.kernel.org/doc/Documentation/RCU/torture.txt


on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 2G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+----------------------------------------------------------------+------------+------------+
|                                                                | 2cd4737bc8 | f241bb1f42 |
+----------------------------------------------------------------+------------+------------+
| boot_successes                                                 | 26         | 0          |
| boot_failures                                                  | 12         | 7          |
| BUG:soft_lockup-CPU##stuck_for#s                               | 1          |            |
| RIP:__do_softirq                                               | 1          |            |
| RIP:generic_exec_single                                        | 1          |            |
| Kernel_panic-not_syncing:softlockup:hung_tasks                 | 1          |            |
| BUG:kernel_reboot-without-warning_in_test_stage                | 11         |            |
| BUG:sleeping_function_called_from_invalid_context_at_mm/slab.h | 0          | 7          |
+----------------------------------------------------------------+------------+------------+


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <rong.a.chen@...el.com>


[    7.918069] BUG: sleeping function called from invalid context at mm/slab.h:418
[    7.920610] in_atomic(): 1, irqs_disabled(): 0, pid: 1, name: swapper/0
[    7.923304] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.2.0-rc1-00007-gf241bb1 #2
[    7.925336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[    7.927606] Call Trace:
[    7.928472]  dump_stack+0x5c/0x7b
[    7.929481]  ___might_sleep+0xf1/0x110
[    7.930530]  __kmalloc+0x186/0x220
[    7.931507]  template_desc_init_fields+0x1a3/0x2a0
[    7.932919]  ? inode_doinit_with_dentry+0x250/0x4e0
[    7.934281]  ? selinux_inode_getsecid+0x30/0x30
[    7.936534]  ? security_inode_alloc+0x4d/0x90
[    7.938397]  ? __d_instantiate+0x34/0xf0
[    7.939905]  ? set_debug_rodata+0x11/0x11
[    7.941193]  lookup_template_desc+0x7f/0xa0
[    7.942369]  ? hash_setup+0xa6/0xa6
[    7.943381]  ima_template_desc_current+0x2e/0x40
[    7.944663]  hash_setup+0xe/0xa6
[    7.945873]  init_ima+0x18/0x8a
[    7.946830]  ? hash_setup+0xa6/0xa6
[    7.947892]  do_one_initcall+0x46/0x214
[    7.949029]  kernel_init_freeable+0x1c7/0x272
[    7.950376]  ? rest_init+0xd0/0xd0
[    7.951404]  kernel_init+0xa/0x110
[    7.952531]  ret_from_fork+0x35/0x40
[    7.954077] ima: No TPM chip found, activating TPM-bypass!
[    7.955570] ima: Allocated hash algorithm: sha1
[    7.956858] No architecture policies found
[    7.960449] evm: Initialising EVM extended attributes:
[    7.961870] evm: security.selinux
[    7.962906] evm: security.apparmor
[    7.963878] evm: security.ima
[    7.964769] evm: security.capability
[    7.965790] evm: HMAC attrs: 0x1
[    7.968979] PM:   Magic number: 7:687:860
[    7.970343] rtc_cmos 00:00: setting system clock to 2019-06-18T00:52:12 UTC (1560819132)
[   10.026662] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[   10.029407] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[   10.041086] Sending DHCP requests ., OK
[   10.046350] IP-Config: Got DHCP answer from 10.0.2.2, my address is 10.0.2.15
[   10.048145] IP-Config: Complete:
[   10.049163]      device=eth0, hwaddr=52:54:00:12:34:56, ipaddr=10.0.2.15, mask=255.255.255.0, gw=10.0.2.2
[   10.051802]      host=vm-snb-quantal-x86_64-726, domain=, nis-domain=(none)
[   10.053678]      bootserver=10.0.2.2, rootserver=10.0.2.2, rootpath=
[   10.053680]      nameserver0=10.0.2.3
[   10.059316] Freeing unused decrypted memory: 2040K
[   10.062003] Freeing unused kernel image memory: 2504K
[   10.075092] Write protecting the kernel read-only data: 22528k
[   10.077905] Freeing unused kernel image memory: 2012K
[   10.080302] Freeing unused kernel image memory: 1924K
[   10.081764] rodata_test: all tests were successful
[   10.083218] Run /init as init process
[   10.090919] random: init: uninitialized urandom read (12 bytes read)
[   10.205441] random: mountall: uninitialized urandom read (12 bytes read)
LKP: HOSTNAME vm-snb-quantal-x86_64-726, MAC 52:54:00:12:34:56, kernel 5.2.0-rc1-00007-gf241bb1 2, serial console /dev/ttyS0
[   10.349986] udevd[268]: starting version 175
[   10.546386] hostname: the specified hostname is invalid
[   10.546391] 
[   10.552166] Kernel tests: Boot OK!
[   10.552170] 
[   10.555238] /lkp/lkp/src/bin/run-lkp
[   10.555241] 
[   10.564058] piix4_smbus 0000:00:01.3: SMBus Host Controller at 0x700, revision 0
[   10.670662] RESULT_ROOT=/result/rcutorture/300s-default-srcud/vm-snb-quantal-x86_64/quantal-core-x86_64-2019-04-26.cgz/x86_64-rhel-7.6/gcc-7/f241bb1f42aa95a996c0c6ec8ff38e4306ec0281/3
[   10.670667] 
[   10.691373] libata version 3.00 loaded.
[   10.703581] job=/lkp/jobs/scheduled/vm-snb-quantal-x86_64-726/rcutorture-300s-default-srcud-quantal-core-x86_64-2019-0-20190618-5865-18zeb9r-1.yaml
[   10.703586] 
[   10.811722] init: failsafe main process (418) killed by TERM signal
[   10.829247] result_service=raw_upload, RESULT_MNT=/inn/result, RESULT_ROOT=/inn/result/rcutorture/300s-default-srcud/vm-snb-quantal-x86_64/quantal-core-x86_64-2019-04-26.cgz/x86_64-rhel-7.6/gcc-7/f241bb1f42aa95a996c0c6ec8ff38e4306ec0281/3
[   10.829252] 
[   10.836612] ata_piix 0000:00:01.1: version 2.13
[   10.848885] run-job /lkp/jobs/scheduled/vm-snb-quantal-x86_64-726/rcutorture-300s-default-srcud-quantal-core-x86_64-2019-0-20190618-5865-18zeb9r-1.yaml
[   10.848890] 
[   10.865329] Floppy drive(s): fd0 is 2.88M AMI BIOS
[   10.868606] random: dd: uninitialized urandom read (4096 bytes read)
[   10.896214] FDC 0 is a S82078B
[   10.901731] init: rc-sysinit main process (442) killed by TERM signal
[   10.928934] scsi host0: ata_piix
[   10.957326] scsi host1: ata_piix
[   10.958503] ata1: PATA max MWDMA2 cmd 0x1f0 ctl 0x3f6 bmdma 0xc0c0 irq 14
[   10.960303] ata2: PATA max MWDMA2 cmd 0x170 ctl 0x376 bmdma 0xc0c8 irq 15
[   10.979394] parport_pc 00:04: reported by Plug and Play ACPI
[   10.981457] parport0: PC-style at 0x378, irq 7 [PCSPP,TRISTATE]
[   10.981953] /usr/bin/wget -q --timeout=1800 --tries=1 --local-encoding=UTF-8 http://inn:80/~lkp/cgi-bin/lkp-jobfile-append-var?job_file=/lkp/jobs/scheduled/vm-snb-quantal-x86_64-726/rcutorture-300s-default-srcud-quantal-core-x86_64-2019-0-20190618-5865-18zeb9r-1.yaml&job_state=running -O /dev/null
[   10.981958] 
[   11.000909] ppdev: user-space parallel port driver
[   11.005896] bochs-drm 0000:00:02.0: remove_conflicting_pci_framebuffers: bar 0: 0xfd000000 -> 0xfdffffff
[   11.008124] bochs-drm 0000:00:02.0: remove_conflicting_pci_framebuffers: bar 2: 0xfebf0000 -> 0xfebf0fff
[   11.010168] bochs-drm 0000:00:02.0: vgaarb: deactivate vga console
[   11.012995] Console: switching to colour dummy device 80x25
[   11.013930] [drm] Found bochs VGA, ID 0xb0c0.
[   11.014714] [drm] Framebuffer size 16384 kB @ 0xfd000000, mmio @ 0xfebf0000.
[   11.015998] [TTM] Zone  kernel: Available graphics memory: 1017352 KiB
[   11.017033] [TTM] Initializing pool allocator
[   11.017691] [TTM] Initializing DMA pool allocator
[   11.019198] [drm] Initialized bochs-drm 1.0.0 20130925 for 0000:00:02.0 on minor 0
[   11.023705] fbcon: bochs-drmdrmfb (fb0) is primary device
[   11.024753] Console: switching to colour frame buffer device 128x48
[   11.029324] bochs-drm 0000:00:02.0: fb0: bochs-drmdrmfb frame buffer device
[   11.036999] target ucode: 


To reproduce:

        # build kernel
	cd linux
	cp config-5.2.0-rc1-00007-gf241bb1 .config
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 olddefconfig
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 modules_prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 SHELL=/bin/bash
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 bzImage


        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email



Thanks,
Rong Chen


View attachment "config-5.2.0-rc1-00007-gf241bb1" of type "text/plain" (196407 bytes)

View attachment "job-script" of type "text/plain" (4709 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (13476 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ