lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20170710024056.GB26389@yexl-desktop>
Date:   Mon, 10 Jul 2017 10:40:56 +0800
From:   kernel test robot <xiaolong.ye@...el.com>
To:     Ben Hutchings <ben@...adent.org.uk>
Cc:     Michal Hocko <mhocko@...nel.org>,
        Linus Torvalds <torvalds@...ux-foundation.org>,
        Willy Tarreau <w@....eu>, Hugh Dickins <hughd@...gle.com>,
        Oleg Nesterov <oleg@...hat.com>,
        "Jason A. Donenfeld" <Jason@...c4.com>,
        Rik van Riel <riel@...hat.com>,
        Larry Woodman <lwoodman@...hat.com>,
        "Kirill A. Shutemov" <kirill@...temov.name>,
        Tony Luck <tony.luck@...el.com>,
        "James E.J. Bottomley" <jejb@...isc-linux.org>,
        Helge Diller <deller@....de>,
        James Hogan <james.hogan@...tec.com>,
        Laura Abbott <labbott@...hat.com>, Greg KH <greg@...ah.com>,
        "security@...nel.org" <security@...nel.org>,
        Qualys Security Advisory <qsa@...lys.com>,
        LKML <linux-kernel@...r.kernel.org>,
        Ximin Luo <infinity0@...ian.org>, lkp@...org
Subject: [lkp-robot] [mm]  a99d848d3b: kernel_BUG_at_mm/mmap.c


FYI, we noticed the following commit:

commit: a99d848d3bc6586e922584ce8ec673a451a09cf1 ("mm: larger stack guard gap, between vmas")
url: https://github.com/0day-ci/linux/commits/Ben-Hutchings/mmap-Skip-a-single-VM_NONE-mapping-when-checking-the-stack/20170707-131750


in testcase: trinity
with following parameters:

	runtime: 300s

test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/


on test machine: qemu-system-x86_64 -enable-kvm -m 512M

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+------------------------------------------+------------+------------+
|                                          | 9b51f04424 | a99d848d3b |
+------------------------------------------+------------+------------+
| boot_successes                           | 88         | 0          |
| boot_failures                            | 11         | 14         |
| BUG:kernel_hang_in_test_stage            | 11         |            |
| kernel_BUG_at_mm/mmap.c                  | 0          | 14         |
| invalid_opcode:#[##]                     | 0          | 14         |
| Kernel_panic-not_syncing:Fatal_exception | 0          | 14         |
+------------------------------------------+------------+------------+



[    7.169579] kernel BUG at mm/mmap.c:388!
[    7.170690] invalid opcode: 0000 [#1] PREEMPT SMP
[    7.171625] CPU: 0 PID: 1 Comm: init Not tainted 4.12.0-06091-ga99d848 #3
[    7.172985] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.9.3-20161025_171302-gandalf 04/01/2014
[    7.174982] task: ffff8ab880048000 task.stack: ffffacde40008000
[    7.176176] RIP: 0010:validate_mm+0x213/0x224
[    7.177045] RSP: 0000:ffffacde4000bb90 EFLAGS: 00010282
[    7.178094] RAX: 0000000000000290 RBX: 00000000ffffffff RCX: b0e7f7ea00000000
[    7.179508] RDX: 00000001b0449a78 RSI: 0000000000000001 RDI: 0000000000000246
[    7.180915] RBP: ffffacde4000bbd0 R08: ffff8ab880048770 R09: 0000000051472920
[    7.182313] R10: ffff8ab898919020 R11: ffffffffb12d8eaa R12: ffff8ab89e560b00
[    7.183758] R13: 0000000000000001 R14: 0000000000000000 R15: 00007fffdd106000
[    7.185175] FS:  0000000000000000(0000) GS:ffff8ab89f800000(0000) knlGS:0000000000000000
[    7.186776] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    7.187916] CR2: 0000000000000000 CR3: 0000000017e25000 CR4: 00000000000006f0
[    7.189313] Call Trace:
[    7.189828]  __vma_adjust+0x657/0x6ca
[    7.190583]  ? tlb_flush_mmu+0x15/0x18
[    7.191331]  shift_arg_pages+0x152/0x167
[    7.192162]  setup_arg_pages+0x1c1/0x1f4
[    7.192970]  load_elf_binary+0x344/0xe48
[    7.193782]  ? kvm_clock_read+0x25/0x35
[    7.194553]  ? kvm_sched_clock_read+0x9/0x12
[    7.195412]  ? search_binary_handler+0x52/0xce
[    7.196281]  search_binary_handler+0x5f/0xce
[    7.197150]  do_execveat_common+0x4dc/0x64c
[    7.198121]  ? rest_init+0x143/0x143
[    7.198851]  do_execve+0x1e/0x20
[    7.199519]  run_init_process+0x26/0x28
[    7.200288]  kernel_init+0x4f/0xe6
[    7.200977]  ret_from_fork+0x25/0x30
[    7.201679] Code: 41 8b 74 24 70 39 de 74 15 83 fb ff 74 15 89 da 48 c7 c7 d6 c8 23 b0 e8 ba f6 fc ff eb 05 45 85 f6 74 0a 4c 89 e7 e8 67 42 ff ff <0f> 0b 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d c3 55 48 89 e5 
[    7.205614] RIP: validate_mm+0x213/0x224 RSP: ffffacde4000bb90
[    7.206830] ---[ end trace 95e0c74c93056b9b ]---


To reproduce:

        git clone https://github.com/01org/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script  # job-script is attached in this email



Thanks,
Xiaolong

View attachment "config-4.12.0-06091-ga99d848" of type "text/plain" (123758 bytes)

View attachment "job-script" of type "text/plain" (3738 bytes)

Download attachment "dmesg.xz" of type "application/octet-stream" (13536 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ