| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20150106230818.GB19001@wfg-t540p.sh.intel.com>
Date: Tue, 6 Jan 2015 15:08:18 -0800
From: Fengguang Wu <fengguang.wu@...el.com>
To: Yao Dongdong <yaodongdong@...wei.com>
Cc: Peter Zijlstra <peterz@...radead.org>, LKP <lkp@...org>,
linux-kernel@...r.kernel.org
Subject: [sched/core] BUG: unable to handle kernel NULL pointer dereference
at 0000000000000068
Hi Dongdong,
FYI, here is another bisect result.
git://git.kernel.org/pub/scm/linux/kernel/git/peterz/queue.git sched/core
commit bb82635917a34bfb73b837b2ce34f59e08b3930b
Author: Yao Dongdong <yaodongdong@...wei.com>
AuthorDate: Mon Dec 29 14:41:43 2014 +0800
Commit: Peter Zijlstra <peterz@...radead.org>
CommitDate: Tue Jan 6 13:53:08 2015 +0100
sched/core: remove check of p->sched_class
Search all usage of p->sched_class in sched/core.c, no one check it
before use, so it seems that every task must belong to one sched_class.
Cc: <mingo@...hat.com>
Cc: <peterz@...radead.org>
Signed-off-by: Yao Dongdong <yaodongdong@...wei.com>
Signed-off-by: Peter Zijlstra (Intel) <peterz@...radead.org>
Link: http://lkml.kernel.org/r/1419835303-28958-1-git-send-email-yaodongdong@huawei.com
+------------------------------------------+------------+------------+------------+
| | 8f121c2c3f | bb82635917 | ee733a6b88 |
+------------------------------------------+------------+------------+------------+
| boot_successes | 60 | 0 | 0 |
| boot_failures | 0 | 20 | 12 |
| BUG:unable_to_handle_kernel | 0 | 20 | 12 |
| Oops | 0 | 20 | 12 |
| RIP:do_set_cpus_allowed | 0 | 20 | 12 |
| Kernel_panic-not_syncing:Fatal_exception | 0 | 20 | 12 |
| backtrace:init_idle | 0 | 20 | 12 |
| backtrace:sched_init | 0 | 20 | 12 |
+------------------------------------------+------------+------------+------------+
[ 0.000000] Calgary: detecting Calgary via BIOS EBDA area
[ 0.000000] Calgary: Unable to locate Rio Grande table in EBDA - bailing!
[ 0.000000] Memory: 293508K/327280K available (9326K kernel code, 3522K rwdata, 2656K rodata, 1108K init, 5048K bss, 33772K reserved, 0K cma-reserved)
[ 0.000000] BUG: unable to handle kernel NULL pointer dereference at 0000000000000068
[ 0.000000] IP: [<ffffffff880bebe6>] do_set_cpus_allowed+0x18/0x51
[ 0.000000] PGD 0
[ 0.000000] Oops: 0000 [#1] SMP
[ 0.000000] Modules linked in:
[ 0.000000] CPU: 0 PID: 0 Comm: swapper Not tainted 3.19.0-rc2-gbb82635 #49
[ 0.000000] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 0.000000] task: ffffffff88e14e80 ti: ffffffff88e00000 task.ti: ffffffff88e00000
[ 0.000000] RIP: 0010:[<ffffffff880bebe6>] [<ffffffff880bebe6>] do_set_cpus_allowed+0x18/0x51
[ 0.000000] RSP: 0000:ffffffff88e03ec8 EFLAGS: 00010002
[ 0.000000] RAX: 0000000000000000 RBX: ffffffff88e14e80 RCX: 0000000000000001
[ 0.000000] RDX: 0000000000000000 RSI: ffffffff88a146c8 RDI: ffffffff88e14e80
[ 0.000000] RBP: ffffffff88e03ed8 R08: ffffffff88e15000 R09: 0000000000000000
[ 0.000000] R10: ffffffff8916a4e8 R11: 0000000000000000 R12: ffffffff88a146c8
[ 0.000000] R13: 0000000000000008 R14: 0000000000000002 R15: 0000000000000000
[ 0.000000] FS: 0000000000000000(0000) GS:ffff880013a00000(0000) knlGS:0000000000000000
[ 0.000000] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[ 0.000000] CR2: 0000000000000068 CR3: 0000000008e0e000 CR4: 00000000000006b0
[ 0.000000] Stack:
[ 0.000000] ffffffff88e14e80 ffff880013a11a00 ffffffff88e03f18 ffffffff880bf136
[ 0.000000] 00000000ffffffff ffff880013a11a00 0000000000000008 0000000000000008
[ 0.000000] 0000000000011a00 0000000000014500 ffffffff88e03f48 ffffffff891a8c10
[ 0.000000] Call Trace:
[ 0.000000] [<ffffffff880bf136>] init_idle+0x88/0x142
[ 0.000000] [<ffffffff891a8c10>] sched_init+0x2c5/0x333
[ 0.000000] [<ffffffff891861db>] start_kernel+0x32d/0x7f5
[ 0.000000] [<ffffffff89185120>] ? early_idt_handlers+0x120/0x120
[ 0.000000] [<ffffffff8918559c>] x86_64_start_reservations+0x46/0x4f
[ 0.000000] [<ffffffff891856e7>] x86_64_start_kernel+0x142/0x158
[ 0.000000] Code: 31 db 48 83 c4 18 89 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 55 48 ff 05 7a 5b 25 01 48 89 e5 41 54 49 89 f4 53 48 89 fb 48 8b 47 60 <48> 8b 40 68 48 85 c0 74 09 48 ff 05 62 5b 25 01 ff d0 49 8b 04
[ 0.000000] RIP [<ffffffff880bebe6>] do_set_cpus_allowed+0x18/0x51
[ 0.000000] RSP <ffffffff88e03ec8>
[ 0.000000] CR2: 0000000000000068
[ 0.000000] ---[ end trace cfb024ef67550cb2 ]---
[ 0.000000] Kernel panic - not syncing: Fatal exception
git bisect start ee733a6b883a69aa68eed8c099dd802ea3897649 5476cfcec38e569916598de926e1d8d521eb134c --
git bisect good e555423689825a7abe5ca254348eeb72bf0b7706 # 21:59 20+ 0 Merge branch 'sched/urgent'
git bisect good ca341ef32e037d213f1c8eb23a2b0299c8bed830 # 22:10 20+ 0 Merge branch 'locking/urgent'
git bisect bad d8bee0c832391942ca11d4b4cc48ea938ab8b3e5 # 22:23 0- 20 Merge branch 'sched/core'
git bisect good bc55ee242867b7fe61d64af0ff2beddc0c9f6f00 # 22:44 20+ 0 sched: Fix potential call to __ffs(0) in sched_show_task()
git bisect bad bb82635917a34bfb73b837b2ce34f59e08b3930b # 23:24 0- 20 sched/core: remove check of p->sched_class
git bisect good 8f121c2c3fff740ecb97ab1ff1a8aff8a8104989 # 23:33 20+ 0 sched/fair: Fix sched_entity::avg::decay_count initialization
# first bad commit: [bb82635917a34bfb73b837b2ce34f59e08b3930b] sched/core: remove check of p->sched_class
git bisect good 8f121c2c3fff740ecb97ab1ff1a8aff8a8104989 # 23:35 60+ 0 sched/fair: Fix sched_entity::avg::decay_count initialization
# extra tests with DEBUG_INFO
git bisect good bb82635917a34bfb73b837b2ce34f59e08b3930b # 23:41 60+ 0 sched/core: remove check of p->sched_class
# extra tests on HEAD of peterz-queue/master
git bisect bad ee733a6b883a69aa68eed8c099dd802ea3897649 # 23:41 0- 12 Merge branch 'perf/core'
# extra tests on tree/branch peterz-queue/sched/core
git bisect bad bb82635917a34bfb73b837b2ce34f59e08b3930b # 23:41 0- 20 sched/core: remove check of p->sched_class
# extra tests on tree/branch linus/master
git bisect good b1940cd21c0f4abdce101253e860feff547291b0 # 23:43 60+ 1 Linux 3.19-rc3
# extra tests on tree/branch next/master
git bisect good dc0bee272d5803ff1a0f7cf71748cec66fd9cf58 # 00:09 60+ 10 Add linux-next specific files for 20150106
This script may reproduce the error.
----------------------------------------------------------------------------
#!/bin/bash
kernel=$1
kvm=(
qemu-system-x86_64
-cpu kvm64
-enable-kvm
-kernel $kernel
-m 320
-smp 1
-net nic,vlan=1,model=e1000
-net user,vlan=1
-boot order=nc
-no-reboot
-watchdog i6300esb
-rtc base=localtime
-serial stdio
-display none
-monitor null
)
append=(
hung_task_panic=1
earlyprintk=ttyS0,115200
debug
apic=debug
sysrq_always_enabled
rcupdate.rcu_cpu_stall_timeout=100
panic=-1
softlockup_panic=1
nmi_watchdog=panic
oops=panic
load_ramdisk=2
prompt_ramdisk=0
console=ttyS0,115200
console=tty0
vga=normal
root=/dev/ram0
rw
drbd.minor_count=8
)
"${kvm[@]}" --append "${append[*]}"
----------------------------------------------------------------------------
Thanks,
Fengguang
View attachment "dmesg-yocto-vp-58:20150106232308:x86_64-randconfig-j1-0106:3.19.0-rc2-gbb82635:49" of type "text/plain" (14032 bytes)
View attachment "config-3.19.0-rc2-gbb82635" of type "text/plain" (91430 bytes)
_______________________________________________
LKP mailing list
LKP@...ux.intel.com
Powered by blists - more mailing lists