lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20170516012052.GC17692@yexl-desktop>
Date:   Tue, 16 May 2017 09:20:52 +0800
From:   kernel test robot <xiaolong.ye@...el.com>
To:     David Howells <dhowells@...hat.com>
Cc:     LKML <linux-kernel@...r.kernel.org>,
        David Howells <dhowells@...hat.com>, lkp@...org
Subject: [lkp-robot] eb0e7965df:
 BUG:stack_guard_page_was_hit_at#(stack_is#..#)


FYI, we noticed the following commit:

commit: eb0e7965df102d1f17bacaf096c6459a655cc4b6 ("Add commands to create or update a superblock")
https://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git mount-context

in testcase: trinity
with following parameters:

	runtime: 300s

test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/


on test machine: qemu-system-x86_64 -enable-kvm -m 420M

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+------------------------------------------------------------------+------------+------------+
|                                                                  | 767a8bf9ed | eb0e7965df |
+------------------------------------------------------------------+------------+------------+
| boot_successes                                                   | 2          | 0          |
| boot_failures                                                    | 2          | 18         |
| invoked_oom-killer:gfp_mask=0x                                   | 2          |            |
| Mem-Info                                                         | 2          |            |
| Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 2          |            |
| BUG:stack_guard_page_was_hit_at#(stack_is#..#)                   | 0          | 18         |
| Kernel_panic-not_syncing:Fatal_exception                         | 0          | 18         |
| BUG:kernel_in_stage                                              | 0          | 1          |
+------------------------------------------------------------------+------------+------------+



[    0.212451] BUG: stack guard page was hit at ffffc900000d4dae (stack is ffffc900000d0000..ffffc900000d3fff)
[    0.213791] kernel stack overflow (page fault): 0000 [#1] SMP
[    0.214574] Modules linked in:
[    0.215121] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.11.0-04409-geb0e796 #4
[    0.216274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.9.3-20161025_171302-gandalf 04/01/2014
[    0.217649] task: ffff88000b9b0000 task.stack: ffffc900000d0000
[    0.218413] RIP: 0010:legacy_monolithic_mount_data+0x39/0xb0
[    0.219157] RSP: 0000:ffffc900000d3d50 EFLAGS: 00010282
[    0.219888] RAX: ffff88000bbd2000 RBX: ffffc900000d3db6 RCX: 00000000000003c7
[    0.220756] RDX: 657a697365676170 RSI: 00000000000001b0 RDI: ffff88000bbd2008
[    0.221615] RBP: ffffc900000d3d60 R08: ffff88000be1e880 R09: ffff88000b801b40
[    0.222468] R10: ffff88000bbd2000 R11: ffffc900000d3dc3 R12: ffff88000bbce800
[    0.223343] R13: ffffc900000d3db6 R14: ffffffff823591a0 R15: 0000000000000800
[    0.224240] FS:  0000000000000000(0000) GS:ffff88000be00000(0000) knlGS:0000000000000000
[    0.225466] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    0.226213] CR2: ffffc900000d4dae CR3: 0000000001e09000 CR4: 00000000000006f0
[    0.227070] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[    0.227947] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[    0.228801] Call Trace:
[    0.229305]  vfs_kern_mount+0x78/0xf0
[    0.229898]  kern_mount_data+0x19/0x30
[    0.230500]  init_hugetlbfs_fs+0xde/0x155
[    0.231118]  ? proc_create_data+0x76/0xb0
[    0.231737]  ? init_ramfs_fs+0x20/0x20
[    0.232359]  ? set_debug_rodata+0x12/0x12
[    0.232978]  do_one_initcall+0x43/0x170
[    0.233585]  ? set_debug_rodata+0x12/0x12
[    0.234226]  kernel_init_freeable+0x1a2/0x22a
[    0.234876]  ? rest_init+0x90/0x90
[    0.235447]  kernel_init+0xe/0x100
[    0.236022]  ret_from_fork+0x2c/0x40
[    0.236611] Code: 00 00 48 85 f6 74 7f 55 48 89 e5 41 54 53 48 8b 47 58 48 89 f3 49 89 fc 48 85 c0 74 42 48 8b 13 48 8d 78 08 48 83 e7 f8 48 89 10 <48> 8b 93 f8 0f 00 00 48 89 90 f8 0f 00 00 48 29 f8 48 29 c3 05 
[    0.238964] RIP: legacy_monolithic_mount_data+0x39/0xb0 RSP: ffffc900000d3d50
[    0.239821] ---[ end trace d151a8672ac0b6e9 ]---


To reproduce:

        git clone https://github.com/01org/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script  # job-script is attached in this email



Thanks,
Xiaolong

View attachment "config-4.11.0-04409-geb0e796" of type "text/plain" (158428 bytes)

View attachment "job-script" of type "text/plain" (3697 bytes)

Download attachment "dmesg.xz" of type "application/octet-stream" (7444 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ