| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 8 Jan 2018 11:18:00 +0800
From: kernel test robot <xiaolong.ye@...el.com>
To: David Howells <dhowells@...hat.com>
Cc: LKML <linux-kernel@...r.kernel.org>,
David Howells <dhowells@...hat.com>, lkp@...org
Subject: [lkp-robot] [hugetlbfs] e9d16c7268:
BUG_hugetlbfs_inode_cache(Not_tainted):Objects_remaining_in_hugetlbfs_inode_cache_on__kmem_cache_shutdown()
FYI, we noticed the following commit (built with gcc-7):
commit: e9d16c7268c4f524780212f228cdad5106068f0e ("hugetlbfs: Convert to fs_context")
https://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git mount-context
in testcase: trinity
with following parameters:
runtime: 300s
test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/
on test machine: qemu-system-x86_64 -enable-kvm -cpu IvyBridge -m 420M
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
+-------------------------------------------------------------------------------------------------------------+------------+------------+
| | 71ac702369 | e9d16c7268 |
+-------------------------------------------------------------------------------------------------------------+------------+------------+
| boot_successes | 0 | 0 |
| boot_failures | 19 | 49 |
| BUG:stack_guard_page_was_hit_at#(stack_is#..#) | 19 | |
| RIP:legacy_parse_monolithic | 19 | |
| Kernel_panic-not_syncing:Fatal_exception | 19 | |
| BUG_hugetlbfs_inode_cache(Not_tainted):Objects_remaining_in_hugetlbfs_inode_cache_on__kmem_cache_shutdown() | 0 | 49 |
| INFO:Slab#objects=#used=#fp=#flags= | 0 | 49 |
| INFO:Object#@...set= | 0 | 49 |
| invoked_oom-killer:gfp_mask=0x | 0 | 49 |
| Mem-Info | 0 | 49 |
| Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 0 | 49 |
+-------------------------------------------------------------------------------------------------------------+------------+------------+
[ 0.232008] hpet0: 3 comparators, 64-bit 100.000000 MHz counter
[ 0.236082] clocksource: Switched to clocksource kvm-clock
[ 0.276699] VFS: Disk quotas dquot_6.6.0
[ 0.278310] VFS: Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
[ 0.280598] =============================================================================
[ 0.281480] BUG hugetlbfs_inode_cache (Not tainted): Objects remaining in hugetlbfs_inode_cache on __kmem_cache_shutdown()
[ 0.281480] -----------------------------------------------------------------------------
[ 0.281480]
[ 0.281480] Disabling lock debugging due to kernel taint
[ 0.281480] INFO: Slab 0xffffea00000d2400 objects=13 used=1 fp=0xffff880003491d40 flags=0xfffffc0008100
[ 0.281480] CPU: 0 PID: 1 Comm: swapper/0 Tainted: G B 4.15.0-rc1-00103-ge9d16c72 #1
[ 0.281480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[ 0.281480] Call Trace:
[ 0.281480] dump_stack+0x5c/0x7b
[ 0.281480] slab_err+0x9e/0xb0
[ 0.281480] ? on_each_cpu_cond+0xb0/0x150
[ 0.281480] ? __kmalloc+0x1d5/0x210
[ 0.281480] __kmem_cache_shutdown+0x188/0x3d0
[ 0.281480] ? cpumask_next+0x17/0x20
[ 0.281480] shutdown_cache+0x15/0x1b0
[ 0.281480] kmem_cache_destroy+0x1e0/0x1f0
[ 0.281480] init_hugetlbfs_fs+0x85/0x15c
[ 0.281480] ? init_ramfs_fs+0x1f/0x1f
[ 0.281480] ? set_debug_rodata+0x11/0x11
[ 0.281480] do_one_initcall+0x3b/0x160
[ 0.281480] kernel_init_freeable+0x192/0x21d
[ 0.281480] ? rest_init+0xd0/0xd0
[ 0.281480] kernel_init+0xa/0xfc
[ 0.281480] ret_from_fork+0x1f/0x30
[ 0.281480] INFO: Object 0xffff880003490000 @offset=0
[ 0.329528] kmem_cache_destroy hugetlbfs_inode_cache: Slab cache still has objects
[ 0.332367] CPU: 0 PID: 1 Comm: swapper/0 Tainted: G B 4.15.0-rc1-00103-ge9d16c72 #1
[ 0.333356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[ 0.333356] Call Trace:
[ 0.333356] dump_stack+0x5c/0x7b
[ 0.333356] kmem_cache_destroy+0x1d3/0x1f0
[ 0.333356] init_hugetlbfs_fs+0x85/0x15c
[ 0.333356] ? init_ramfs_fs+0x1f/0x1f
[ 0.333356] ? set_debug_rodata+0x11/0x11
[ 0.333356] do_one_initcall+0x3b/0x160
[ 0.333356] kernel_init_freeable+0x192/0x21d
[ 0.333356] ? rest_init+0xd0/0xd0
[ 0.333356] kernel_init+0xa/0xfc
[ 0.333356] ret_from_fork+0x1f/0x30
[ 0.354745] pnp: PnP ACPI init
[ 0.356488] pnp 00:00: Plug and Play ACPI device, IDs PNP0b00 (active)
[ 0.358671] pnp 00:01: Plug and Play ACPI device, IDs PNP0303 (active)
[ 0.360863] pnp 00:02: Plug and Play ACPI device, IDs PNP0f13 (active)
[ 0.363037] pnp 00:03: [dma 2]
To reproduce:
git clone https://github.com/intel/lkp-tests.git
cd lkp-tests
bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email
Thanks,
Xiaolong
View attachment "config-4.15.0-rc1-00103-ge9d16c72" of type "text/plain" (164682 bytes)
View attachment "job-script" of type "text/plain" (3823 bytes)
Download attachment "dmesg.xz" of type "application/x-xz" (9304 bytes)
Powered by blists - more mailing lists