lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date:   Wed, 5 Jun 2019 19:18:51 +0800
From:   kernel test robot <lkp@...el.com>
To:     Uladzislau Rezki <urezki@...il.com>
Cc:     Stephen Rothwell <sfr@...b.auug.org.au>,
        Hillf Danton <hdanton@...a.com>, Ingo Molnar <mingo@...e.hu>,
        Joel Fernandes <joelaf@...gle.com>,
        Matthew Wilcox <willy@...radead.org>,
        Michal Hocko <mhocko@...e.com>,
        Oleksiy Avramchenko <oleksiy.avramchenko@...ymobile.com>,
        Roman Gushchin <guro@...com>,
        Steven Rostedt <rostedt@...dmis.org>,
        Tejun Heo <tj@...nel.org>,
        Thomas Garnier <thgarnie@...gle.com>,
        Thomas Gleixner <tglx@...utronix.de>,
        Andrew Morton <akpm@...ux-foundation.org>,
        LKML <linux-kernel@...r.kernel.org>, lkp@...org
Subject: [mm/vmalloc.c]  728e0fbf26: kernel_BUG_at_mm/vmalloc.c


FYI, we noticed the following commit (built with gcc-7):

commit: 728e0fbf263e3ed359c10cb13623390564102881 ("mm/vmalloc.c: get rid of one single unlink_va() when merge")
https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git master

in testcase: boot

on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 2G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+-------------------------------------------------+------------+------------+
|                                                 | 1ed20f4bc2 | 728e0fbf26 |
+-------------------------------------------------+------------+------------+
| boot_successes                                  | 6          | 0          |
| boot_failures                                   | 10         | 17         |
| BUG:kernel_reboot-without-warning_in_test_stage | 10         |            |
| kernel_BUG_at_mm/vmalloc.c                      | 0          | 17         |
| invalid_opcode:#[##]                            | 0          | 17         |
| RIP:__free_vmap_area                            | 0          | 17         |
| Kernel_panic-not_syncing:Fatal_exception        | 0          | 17         |
+-------------------------------------------------+------------+------------+


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <lkp@...el.com>


[    2.860248] kernel BUG at mm/vmalloc.c:470!
[    2.863532] invalid opcode: 0000 [#1] SMP PTI
[    2.865038] CPU: 1 PID: 1 Comm: swapper/0 Not tainted 5.2.0-rc2-00418-g728e0fbf263e3 #2
[    2.867517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[    2.869603] RIP: 0010:__free_vmap_area+0xab/0x314
[    2.869603] Code: 4d e0 48 39 f0 73 0f 48 39 d1 72 0a 4c 8d 75 10 48 8b 4d 10 eb 16 48 39 f0 72 0f 48 39 d1 73 0a 4c 8d 75 08 48 8b 4d 08 eb 02 <0f> 0b 48 85 c9 75 c6 48 85 ed 49 89 ef 0f 84 27 02 00 00 48 8d 4d
[    2.876280] RSP: 0000:ffffc90000327d00 EFLAGS: 00010287
[    2.876280] RAX: ffffc900019e8000 RBX: ffff88806dbc9790 RCX: ffff88806dbc98f0
[    2.876280] RDX: ffffc900019ed000 RSI: ffffc90001a00000 RDI: ffff88806d426d88
[    2.876280] RBP: ffff88806dbc9a18 R08: 0000000000000001 R09: ffffffff8129d4c2
[    2.884274] R10: ffffea0001b47880 R11: 00000000f0000080 R12: 0000000000008000
[    2.884274] R13: ffff88806dbc9630 R14: ffff88806dbc9760 R15: 0000000000000000
[    2.884274] FS:  0000000000000000(0000) GS:ffff88807cd00000(0000) knlGS:0000000000000000
[    2.884274] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    2.892282] CR2: ffffc900003bc000 CR3: 000000000260a000 CR4: 00000000000406e0
[    2.892282] Call Trace:
[    2.892282]  ? kmem_cache_free+0x140/0x1f5
[    2.892282]  __purge_vmap_area_lazy+0x8f/0xdf
[    2.892282]  _vm_unmap_aliases+0x110/0x13d
[    2.900279]  change_page_attr_set_clr+0xc7/0x253
[    2.900279]  ? set_debug_rodata+0x11/0x11
[    2.900279]  set_memory_nx+0x35/0x38
[    2.900279]  free_init_pages+0x54/0x7f
[    2.900279]  ? do_name+0x2b1/0x2b1
[    2.900279]  populate_rootfs+0xe2/0x101
[    2.908291]  do_one_initcall+0x97/0x1b4
[    2.908291]  kernel_init_freeable+0x23b/0x2d4
[    2.908291]  ? rest_init+0xc6/0xc6
[    2.908291]  kernel_init+0xa/0xff
[    2.908291]  ret_from_fork+0x3a/0x50
[    2.908291] Modules linked in:
[    2.917205] ---[ end trace 1a2925ea0cc5d2c3 ]---


To reproduce:

        # build kernel
	cd linux
	cp config-5.2.0-rc2-00418-g728e0fbf263e3 .config
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 olddefconfig
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 modules_prepare
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 SHELL=/bin/bash
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 bzImage


        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email



Thanks,
lkp


View attachment "config-5.2.0-rc2-00418-g728e0fbf263e3" of type "text/plain" (114459 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (8772 bytes)

Powered by blists - more mailing lists