lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <20220613075939.GF7252@xsang-OptiPlex-9020>
Date:   Mon, 13 Jun 2022 15:59:39 +0800
From:   kernel test robot <oliver.sang@...el.com>
To:     "Matthew Wilcox (Oracle)" <willy@...radead.org>
Cc:     0day robot <lkp@...el.com>, LKML <linux-kernel@...r.kernel.org>,
        linux-ext4@...r.kernel.org, lkp@...ts.01.org, ltp@...ts.linux.it,
        Jan Kara <jack@...e.com>,
        "Matthew Wilcox (Oracle)" <willy@...radead.org>, tytso@....edu,
        Andreas Dilger <adilger.kernel@...ger.ca>,
        linux-fsdevel@...r.kernel.org
Subject: [ext4]  fa96490369: WARNING:at_fs/ext4/inode.c:#ext4_invalidate_folio



Greeting,

FYI, we noticed the following commit (built with gcc-11):

commit: fa964903692268d3913cdaf489f80db849a3e928 ("[PATCH 3/3] ext4: Use generic_quota_read()")
url: https://github.com/intel-lab-lkp/linux/commits/Matthew-Wilcox-Oracle/Cache-quota-files-in-the-page-cache/20220606-021629
base: https://git.kernel.org/cgit/linux/kernel/git/tytso/ext4.git dev
patch link: https://lore.kernel.org/linux-ext4/20220605143815.2330891-4-willy@infradead.org

in testcase: ltp
version: ltp-x86_64-14c1f76-1_20220604
with following parameters:

	disk: 1HDD
	fs: btrfs
	test: fs-03
	ucode: 0xec

test-description: The LTP testsuite contains a collection of tools for testing the Linux kernel and related features.
test-url: http://linux-test-project.github.io/


on test machine: 8 threads 1 sockets Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz with 32G memory

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):



If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>


[ 366.801777][ T5247] WARNING: CPU: 5 PID: 5247 at fs/ext4/inode.c:3228 ext4_invalidate_folio (fs/ext4/inode.c:3228) 
[  366.811124][ T5247] Modules linked in: loop binfmt_misc dm_mod btrfs blake2b_generic xor raid6_pq intel_rapl_msr intel_rapl_common zstd_compress libcrc32c i915 sd_mod t10_pi crc64_rocksoft_generic crc64_rocksoft crc64 sg x86_pkg_temp_thermal intel_gtt drm_buddy intel_powerclamp ipmi_devintf ipmi_msghandler coretemp kvm_intel kvm irqbypass crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel drm_dp_helper wmi_bmof mei_wdt ttm rapl intel_cstate drm_kms_helper ahci libahci syscopyarea sysfillrect i2c_designware_platform intel_uncore mei_me libata sysimgblt i2c_designware_core mei idma64 fb_sys_fops wmi video intel_pmc_core acpi_pad drm fuse ip_tables
[  366.869509][ T5247] CPU: 5 PID: 5247 Comm: umount Tainted: G          I       5.18.0-rc5-00028-gfa9649036922 #1
[  366.879632][ T5247] Hardware name: Dell Inc. OptiPlex 7050/062KRH, BIOS 1.2.0 12/22/2016
[ 366.887739][ T5247] RIP: 0010:ext4_invalidate_folio (fs/ext4/inode.c:3228) 
[ 366.893597][ T5247] Code: e8 f5 12 c7 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 c1 00 00 00 48 8b 03 a9 00 00 01 00 74 02 <0f> 0b 5b 4c 89 ea 4c 89 e6 48 89 ef 5d 41 5c 41 5d e9 3a 4a df ff
All code
========
   0:	e8 f5 12 c7 ff       	callq  0xffffffffffc712fa
   5:	48 89 da             	mov    %rbx,%rdx
   8:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
   f:	fc ff df 
  12:	48 c1 ea 03          	shr    $0x3,%rdx
  16:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
  1a:	0f 85 c1 00 00 00    	jne    0xe1
  20:	48 8b 03             	mov    (%rbx),%rax
  23:	a9 00 00 01 00       	test   $0x10000,%eax
  28:	74 02                	je     0x2c
  2a:*	0f 0b                	ud2    		<-- trapping instruction
  2c:	5b                   	pop    %rbx
  2d:	4c 89 ea             	mov    %r13,%rdx
  30:	4c 89 e6             	mov    %r12,%rsi
  33:	48 89 ef             	mov    %rbp,%rdi
  36:	5d                   	pop    %rbp
  37:	41 5c                	pop    %r12
  39:	41 5d                	pop    %r13
  3b:	e9 3a 4a df ff       	jmpq   0xffffffffffdf4a7a

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2    
   2:	5b                   	pop    %rbx
   3:	4c 89 ea             	mov    %r13,%rdx
   6:	4c 89 e6             	mov    %r12,%rsi
   9:	48 89 ef             	mov    %rbp,%rdi
   c:	5d                   	pop    %rbp
   d:	41 5c                	pop    %r12
   f:	41 5d                	pop    %r13
  11:	e9 3a 4a df ff       	jmpq   0xffffffffffdf4a50
[  366.913124][ T5247] RSP: 0018:ffffc90000e3fab0 EFLAGS: 00010206
[  366.919089][ T5247] RAX: 000000000011601b RBX: ffff8887f2c18dc8 RCX: ffffffff81c7828b
[  366.926940][ T5247] RDX: 1ffff110fe5831b9 RSI: 0000000000000008 RDI: ffff8887f2c18dc8
[  366.934793][ T5247] RBP: ffffea00072cd700 R08: 0000000000000000 R09: ffff8887f2c18dcf
[  366.942641][ T5247] R10: ffffed10fe5831b9 R11: 0000000000000001 R12: 0000000000000000
[  366.950492][ T5247] R13: 0000000000001000 R14: 0000000000000002 R15: 0000000000000001
[  366.958343][ T5247] FS:  00007f5852a94840(0000) GS:ffff8886aaa80000(0000) knlGS:0000000000000000
[  366.967151][ T5247] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  366.973607][ T5247] CR2: 0000561684be9559 CR3: 00000007f60fc006 CR4: 00000000003706e0
[  366.981457][ T5247] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  366.989303][ T5247] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  366.997156][ T5247] Call Trace:
[  367.000322][ T5247]  <TASK>
[ 367.003130][ T5247] truncate_cleanup_folio (mm/truncate.c:159 mm/truncate.c:179) 
[ 367.008372][ T5247] truncate_inode_pages_range (include/linux/pagevec.h:119 (discriminator 3) mm/truncate.c:368 (discriminator 3)) 
[ 367.013965][ T5247] ? truncate_inode_partial_folio (mm/truncate.c:332) 
[ 367.019900][ T5247] ? jbd2_journal_set_features (fs/jbd2/journal.c:682) 
[ 367.025580][ T5247] ? _raw_write_lock (arch/x86/include/asm/atomic.h:202 include/linux/atomic/atomic-instrumented.h:543 include/asm-generic/qrwlock.h:94 include/linux/rwlock_api_smp.h:210 kernel/locking/spinlock.c:300) 
[ 367.030300][ T5247] ? prepare_to_swait_exclusive (kernel/sched/wait.c:414) 
[ 367.036082][ T5247] ? inode_to_bdi (mm/backing-dev.c:995 mm/backing-dev.c:985) 
[ 367.040540][ T5247] ? filemap_check_errors (arch/x86/include/asm/bitops.h:207 include/asm-generic/bitops/instrumented-non-atomic.h:135 mm/filemap.c:351) 
[ 367.045712][ T5247] ? watch_queue_set_size (kernel/watch_queue.c:219) 
[ 367.050864][ T5247] ? filemap_fdatawait_keep_errors (mm/filemap.c:669) 
[ 367.056715][ T5247] ? __cond_resched (kernel/sched/core.c:8177) 
[ 367.061262][ T5247] ? down_write (arch/x86/include/asm/atomic64_64.h:34 include/linux/atomic/atomic-long.h:41 include/linux/atomic/atomic-instrumented.h:1280 kernel/locking/rwsem.c:138 kernel/locking/rwsem.c:255 kernel/locking/rwsem.c:1258 kernel/locking/rwsem.c:1268 kernel/locking/rwsem.c:1515) 
[ 367.065562][ T5247] ? down_write_killable (kernel/locking/rwsem.c:1512) 
[ 367.070715][ T5247] ? v2_free_file_info (fs/quota/quota_v2.c:384) 
[ 367.075530][ T5247] ? kfree (mm/slub.c:1754 mm/slub.c:3510 mm/slub.c:4552) 
[ 367.079385][ T5247] dquot_disable (fs/quota/dquot.c:2355) 
[ 367.083850][ T5247] ext4_quota_off (fs/ext4/super.c:6831) 
[ 367.088314][ T5247] ext4_put_super (fs/ext4/super.c:1173 fs/ext4/super.c:1218) 
[ 367.092779][ T5247] generic_shutdown_super (fs/super.c:464) 
[ 367.098029][ T5247] kill_block_super (fs/super.c:1395) 
[ 367.102680][ T5247] deactivate_locked_super (fs/super.c:339) 
[ 367.107923][ T5247] cleanup_mnt (fs/namespace.c:138 fs/namespace.c:1187) 
[ 367.112210][ T5247] ? path_umount (fs/namespace.c:1808) 
[ 367.116682][ T5247] task_work_run (kernel/task_work.c:166 (discriminator 1)) 
[ 367.121091][ T5247] exit_to_user_mode_loop (include/linux/resume_user_mode.h:49 kernel/entry/common.c:169) 
[ 367.126338][ T5247] exit_to_user_mode_prepare (kernel/entry/common.c:201) 
[ 367.131756][ T5247] syscall_exit_to_user_mode (arch/x86/include/asm/jump_label.h:27 include/linux/context_tracking_state.h:31 include/linux/context_tracking.h:40 kernel/entry/common.c:132 kernel/entry/common.c:296) 
[ 367.137112][ T5247] do_syscall_64 (arch/x86/entry/common.c:87) 
[ 367.141398][ T5247] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:115) 
[  367.147174][ T5247] RIP: 0033:0x7f5852cd3e27
[ 367.151460][ T5247] Code: 00 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 39 00 0c 00 f7 d8 64 89 01 48
All code
========
   0:	00 0c 00             	add    %cl,(%rax,%rax,1)
   3:	f7 d8                	neg    %eax
   5:	64 89 01             	mov    %eax,%fs:(%rcx)
   8:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
   c:	c3                   	retq   
   d:	66 0f 1f 44 00 00    	nopw   0x0(%rax,%rax,1)
  13:	31 f6                	xor    %esi,%esi
  15:	e9 09 00 00 00       	jmpq   0x23
  1a:	66 0f 1f 84 00 00 00 	nopw   0x0(%rax,%rax,1)
  21:	00 00 
  23:	b8 a6 00 00 00       	mov    $0xa6,%eax
  28:	0f 05                	syscall 
  2a:*	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax		<-- trapping instruction
  30:	73 01                	jae    0x33
  32:	c3                   	retq   
  33:	48 8b 0d 39 00 0c 00 	mov    0xc0039(%rip),%rcx        # 0xc0073
  3a:	f7 d8                	neg    %eax
  3c:	64 89 01             	mov    %eax,%fs:(%rcx)
  3f:	48                   	rex.W

Code starting with the faulting instruction
===========================================
   0:	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax
   6:	73 01                	jae    0x9
   8:	c3                   	retq   
   9:	48 8b 0d 39 00 0c 00 	mov    0xc0039(%rip),%rcx        # 0xc0049
  10:	f7 d8                	neg    %eax
  12:	64 89 01             	mov    %eax,%fs:(%rcx)
  15:	48                   	rex.W


To reproduce:

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        sudo bin/lkp install job.yaml           # job file is attached in this email
        bin/lkp split-job --compatible job.yaml # generate the yaml file for lkp run
        sudo bin/lkp run generated-yaml-file

        # if come across any failure that blocks the test,
        # please remove ~/.lkp and /lkp dir to run from a clean state.



-- 
0-DAY CI Kernel Test Service
https://01.org/lkp



View attachment "config-5.18.0-rc5-00028-gfa9649036922" of type "text/plain" (166032 bytes)

View attachment "job-script" of type "text/plain" (6054 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (46824 bytes)

View attachment "ltp" of type "text/plain" (55650 bytes)

View attachment "job.yaml" of type "text/plain" (4920 bytes)

View attachment "reproduce" of type "text/plain" (142 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ