lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Tue, 4 Jun 2019 10:13:56 +0800
From:   kernel test robot <lkp@...el.com>
To:     Uladzislau Rezki <urezki@...il.com>
Cc:     Stephen Rothwell <sfr@...b.auug.org.au>,
        Hillf Danton <hdanton@...a.com>, Ingo Molnar <mingo@...e.hu>,
        Joel Fernandes <joelaf@...gle.com>,
        Matthew Wilcox <willy@...radead.org>,
        Michal Hocko <mhocko@...e.com>,
        Oleksiy Avramchenko <oleksiy.avramchenko@...ymobile.com>,
        Roman Gushchin <guro@...com>,
        Steven Rostedt <rostedt@...dmis.org>,
        Tejun Heo <tj@...nel.org>,
        Thomas Garnier <thgarnie@...gle.com>,
        Thomas Gleixner <tglx@...utronix.de>,
        Andrew Morton <akpm@...ux-foundation.org>,
        LKML <linux-kernel@...r.kernel.org>, lkp@...org
Subject: [mm/vmalloc.c]  728e0fbf26: kernel_BUG_at_mm/vmalloc.c


FYI, we noticed the following commit (built with gcc-7):

commit: 728e0fbf263e3ed359c10cb13623390564102881 ("mm/vmalloc.c: get rid of one single unlink_va() when merge")
https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git master

in testcase: boot

on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 8G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+-------------------------------------------------+------------+------------+
|                                                 | 1ed20f4bc2 | 728e0fbf26 |
+-------------------------------------------------+------------+------------+
| boot_successes                                  | 0          | 0          |
| boot_failures                                   | 8          | 4          |
| BUG:kernel_reboot-without-warning_in_test_stage | 8          |            |
| kernel_BUG_at_mm/vmalloc.c                      | 0          | 4          |
| invalid_opcode:#[##]                            | 0          | 4          |
| RIP:__free_vmap_area                            | 0          | 4          |
| Kernel_panic-not_syncing:Fatal_exception        | 0          | 4          |
+-------------------------------------------------+------------+------------+


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <rong.a.chen@...el.com>


[    6.585196] kernel BUG at mm/vmalloc.c:470!
[    6.591517] invalid opcode: 0000 [#1] SMP PTI
[    6.592505] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.2.0-rc2-00418-g728e0fb #1
[    6.592505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[    6.592505] RIP: 0010:__free_vmap_area+0x96/0x330
[    6.592505] Code: 24 40 48 8b 05 c3 c6 e2 01 48 85 c0 0f 84 81 02 00 00 49 8b 3c 24 49 8b 74 24 08 48 3b 78 e8 48 8b 50 e0 73 07 48 39 f2 73 19 <0f> 0b 48 39 f2 73 f9 48 8b 48 08 48 8d 50 08 48 85 c9 74 12 48 8b
[    6.592505] RSP: 0000:ffffb22580c5fca0 EFLAGS: 00010287
[    6.592505] RAX: ffff9bb386eda8b8 RBX: ffff9bb386eda700 RCX: ffff9bb386eda8b8
[    6.592505] RDX: ffff9bb386eda790 RSI: ffffb2258100d000 RDI: ffffb22581008000
[    6.592505] RBP: ffff9bb386eda718 R08: 0000000000000000 R09: ffffffff8de53c00
[    6.592505] R10: ffff9bb386eda898 R11: 0000000000000001 R12: ffff9bb386eda6e0
[    6.592505] R13: 0000000000008000 R14: ffffffff8fc7f8e0 R15: ffffffff8eeeb590
[    6.592505] FS:  0000000000000000(0000) GS:ffff9bb4bfc00000(0000) knlGS:0000000000000000
[    6.592505] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    6.592505] CR2: 0000000000000000 CR3: 000000019080a000 CR4: 00000000000406f0
[    6.592505] Call Trace:
[    6.592505]  __purge_vmap_area_lazy+0xbc/0x150
[    6.592505]  _vm_unmap_aliases+0x111/0x140
[    6.592505]  change_page_attr_set_clr+0xc0/0x1f0
[    6.592505]  ? set_debug_rodata+0x11/0x11
[    6.592505]  set_memory_nx+0x3c/0x50
[    6.592505]  free_init_pages+0x53/0x90
[    6.592505]  ? do_name+0x2ca/0x2ca
[    6.592505]  populate_rootfs+0xe7/0x106
[    6.592505]  do_one_initcall+0x46/0x214
[    6.592505]  kernel_init_freeable+0x1c7/0x272
[    6.592505]  ? rest_init+0xd0/0xd0
[    6.592505]  kernel_init+0xa/0x110
[    6.592505]  ret_from_fork+0x35/0x40
[    6.592505] Modules linked in:
[    6.642315] ---[ end trace 0ba0b231153bd8c8 ]---


To reproduce:

        # build kernel
	cd linux
	cp config-5.2.0-rc2-00418-g728e0fb .config
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 olddefconfig
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 modules_prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 SHELL=/bin/bash
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 bzImage


        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email



Thanks,
Rong Chen


View attachment "config-5.2.0-rc2-00418-g728e0fb" of type "text/plain" (196357 bytes)

View attachment "job-script" of type "text/plain" (4915 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (9060 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ