| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20170811024632.GC26027@yexl-desktop>
Date: Fri, 11 Aug 2017 10:46:32 +0800
From: kernel test robot <xiaolong.ye@...el.com>
To: Florian Westphal <fw@...len.de>
Cc: "David S. Miller" <davem@...emloft.net>,
Hannes Frederic Sowa <hannes@...essinduktion.org>,
LKML <linux-kernel@...r.kernel.org>,
Stephen Rothwell <sfr@...b.auug.org.au>, lkp@...org
Subject: [lkp-robot] [rtnetlink] 6853dd4881:
net/core/rtnetlink.c:#suspicious_rcu_dereference_check()usage
FYI, we noticed the following commit:
commit: 6853dd488119a42d01ad994060dc10b95c687c76 ("rtnetlink: protect handler table with rcu")
https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git master
in testcase: trinity
with following parameters:
runtime: 300s
test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/
on test machine: qemu-system-i386 -enable-kvm -m 256M
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
+---------------------------------------------------------------+------------+------------+
| | 0cc09020ae | 6853dd4881 |
+---------------------------------------------------------------+------------+------------+
| boot_successes | 67 | 0 |
| boot_failures | 1 | 8 |
| BUG:kernel_reboot-without-warning_in_boot_stage | 1 | |
| net/core/rtnetlink.c:#suspicious_rcu_dereference_check()usage | 0 | 8 |
+---------------------------------------------------------------+------------+------------+
[ 0.038738] WARNING: suspicious RCU usage
[ 0.039302] 4.13.0-rc4-01017-g6853dd4 #282 Not tainted
[ 0.040014] -----------------------------
[ 0.040585] net/core/rtnetlink.c:174 suspicious rcu_dereference_check() usage!
[ 0.041791]
[ 0.041791] other info that might help us debug this:
[ 0.041791]
[ 0.042899]
[ 0.042899] rcu_scheduler_active = 1, debug_locks = 1
[ 0.043366] no locks held by swapper/1.
[ 0.043914]
[ 0.043914] stack backtrace:
[ 0.044528] CPU: 0 PID: 1 Comm: swapper Not tainted 4.13.0-rc4-01017-g6853dd4 #282
[ 0.045583] Call Trace:
[ 0.045975] dump_stack+0x16/0x20
[ 0.046694] lockdep_rcu_suspicious+0xd8/0xe0
[ 0.047325] ? rtnl_net_notifyid+0xb0/0xb0
[ 0.047899] __rtnl_register+0xa8/0x100
[ 0.048465] rtnl_register+0x25/0x50
[ 0.048983] net_ns_init+0x142/0x16a
[ 0.049500] ? net_defaults_init+0x27/0x27
[ 0.050017] do_one_initcall+0xa2/0x200
[ 0.050583] ? parameq+0x18/0x70
[ 0.051079] ? repair_env_string+0xb/0x54
[ 0.051646] ? parse_args+0x197/0x2b0
[ 0.052179] kernel_init_freeable+0xe6/0x185
[ 0.053351] ? do_early_param+0x7f/0x7f
[ 0.053909] ? rest_init+0x200/0x200
[ 0.054429] kernel_init+0x10/0x100
[ 0.054945] ? schedule_tail_wrapper+0x9/0xc
[ 0.055548] ret_from_fork+0x19/0x24
[ 0.056974] workqueue: round-robin CPU selection forced, expect performance impact
[ 0.058266] clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 6370867519511994 ns
[ 0.059599] futex hash table entries: 256 (order: 1, 13312 bytes)
[ 0.060134] xor: measuring software checksum speed
[ 0.093352] pIII_sse : 8708.400 MB/sec
[ 0.126677] prefetch64-sse: 11397.600 MB/sec
[ 0.127110] xor: using function: prefetch64-sse (11397.600 MB/sec)
[ 0.127681] prandom: seed boundary self test passed
[ 0.128722] prandom: 100 self tests passed
[ 0.129595] regulator-dummy: no parameters
[ 0.130312] random: get_random_u32 called from bucket_table_alloc+0x16c/0x1e0 with crng_init=0
[ 0.131294] NET: Registered protocol family 16
[ 0.132993] cpuidle: using governor ladder
[ 0.133391] cpuidle: using governor menu
[ 0.134468] random: get_random_bytes called from kcmp_cookies_init+0x17/0x2e with crng_init=0
[ 0.135257] ACPI: bus type PCI registered
[ 0.135744] PCI: Using configuration type 1 for base access
[ 0.142625] random: get_random_u32 called from copy_process+0x15c/0x1c30 with crng_init=0
[ 0.143565] HugeTLB registered 4.00 MiB page size, pre-allocated 0 pages
[ 0.200068] raid6: mmxx1 gen() 4260 MB/s
[ 0.256684] raid6: mmxx2 gen() 4972 MB/s
[ 0.313351] raid6: sse1x1 gen() 3675 MB/s
[ 0.370016] raid6: sse1x2 gen() 4406 MB/s
[ 0.426688] raid6: sse2x1 gen() 6269 MB/s
[ 0.483353] raid6: sse2x1 xor() 4381 MB/s
[ 0.540025] raid6: sse2x2 gen() 5860 MB/s
[ 0.596687] raid6: sse2x2 xor() 5218 MB/s
[ 0.597315] raid6: using algorithm sse2x1 gen() 6269 MB/s
[ 0.598076] raid6: .... xor() 4381 MB/s, rmw enabled
[ 0.598771] raid6: using intx1 recovery algorithm
[ 0.599888] ACPI: Added _OSI(Module Device)
[ 0.600015] ACPI: Added _OSI(Processor Device)
[ 0.600641] ACPI: Added _OSI(3.0 _SCP Extensions)
[ 0.601317] ACPI: Added _OSI(Processor Aggregator Device)
[ 0.614382] ACPI: Interpreter enabled
[ 0.614949] ACPI: (supports S0 S5)
[ 0.615473] ACPI: Using PIC for interrupt routing
[ 0.616210] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
[ 0.648757] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
[ 0.649660] acpi PNP0A03:00: _OSC: OS supports [Segments]
[ 0.650084] acpi PNP0A03:00: _OSC failed (AE_NOT_FOUND); disabling ASPM
[ 0.651336] PCI host bridge to bus 0000:00
[ 0.651931] pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window]
[ 0.652882] pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window]
[ 0.654292] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
[ 0.655332] pci_bus 0000:00: root bus resource [mem 0x10000000-0xfebfffff window]
[ 0.656391] pci_bus 0000:00: root bus resource [bus 00-ff]
[ 0.656766] pci 0000:00:00.0: [8086:1237] type 00 class 0x060000
[ 0.659017] pci 0000:00:01.0: [8086:7000] type 00 class 0x060100
[ 0.661470] pci 0000:00:01.1: [8086:7010] type 00 class 0x010180
[ 0.672095] pci 0000:00:01.1: reg 0x20: [io 0xc0c0-0xc0cf]
[ 0.677742] pci 0000:00:01.1: legacy IDE quirk: reg 0x10: [io 0x01f0-0x01f7]
[ 0.678717] pci 0000:00:01.1: legacy IDE quirk: reg 0x14: [io 0x03f6]
[ 0.680015] pci 0000:00:01.1: legacy IDE quirk: reg 0x18: [io 0x0170-0x0177]
[ 0.680992] pci 0000:00:01.1: legacy IDE quirk: reg 0x1c: [io 0x0376]
[ 0.684314] pci 0000:00:01.3: [8086:7113] type 00 class 0x068000
[ 0.685720] pci 0000:00:01.3: quirk: [io 0x0600-0x063f] claimed by PIIX4 ACPI
[ 0.686700] pci 0000:00:01.3: quirk: [io 0x0700-0x070f] claimed by PIIX4 SMB
[ 0.688779] pci 0000:00:02.0: [1234:1111] type 00 class 0x030000
[ 0.692021] pci 0000:00:02.0: reg 0x10: [mem 0xfc000000-0xfcffffff pref]
[ 0.702054] pci 0000:00:02.0: reg 0x18: [mem 0xfebf0000-0xfebf0fff]
[ 0.723368] pci 0000:00:02.0: reg 0x30: [mem 0xfebe0000-0xfebeffff pref]
[ 0.728288] pci 0000:00:03.0: [8086:100e] type 00 class 0x020000
[ 0.733359] pci 0000:00:03.0: reg 0x10: [mem 0xfebc0000-0xfebdffff]
[ 0.742417] pci 0000:00:03.0: reg 0x14: [io 0xc000-0xc03f]
[ 0.758251] pci 0000:00:03.0: reg 0x30: [mem 0xfeb80000-0xfebbffff pref]
[ 0.762205] pci 0000:00:04.0: [1af4:1001] type 00 class 0x010000
[ 0.766666] pci 0000:00:04.0: reg 0x10: [io 0xc040-0xc07f]
[ 0.773333] pci 0000:00:04.0: reg 0x14: [mem 0xfebf1000-0xfebf1fff]
[ 0.786685] pci 0000:00:04.0: reg 0x20: [mem 0xfd000000-0xfd7fffff 64bit pref]
To reproduce:
git clone https://github.com/01org/lkp-tests.git
cd lkp-tests
bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email
Thanks,
Xiaolong
View attachment "config-4.13.0-rc4-01017-g6853dd4" of type "text/plain" (97191 bytes)
View attachment "job-script" of type "text/plain" (3791 bytes)
Download attachment "dmesg.xz" of type "application/octet-stream" (9240 bytes)
Powered by blists - more mailing lists