| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 28 Oct 2019 16:56:46 +0800
From: kernel test robot <lkp@...el.com>
To: Michal Suchanek <msuchanek@...e.de>
Cc: 0day robot <lkp@...el.com>, LKML <linux-kernel@...r.kernel.org>,
lkp@...ts.01.org
Subject: [scsi] [confidence: ] 8ebc37a465:
WARNING:at_fs/kernfs/dir.c:#kernfs_remove_by_name_ns
FYI, we noticed the following commit (built with gcc-7):
commit: 8ebc37a465cccfa1f297f976e1bd8b36ede36db3 ("scsi: sr: wait for the medium to become ready")
https://github.com/0day-ci/linux UPDATE-20191027-161609/Michal-Suchanek/Fix-cdrom-autoclose/20191025-101637
in testcase: blktests
with following parameters:
disk: 1SSD
test: block-group1
on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 8G
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
+-------------------------------------------------------+------------+------------+
| | 6bb0f3478c | 8ebc37a465 |
+-------------------------------------------------------+------------+------------+
| boot_successes | 14 | 2 |
| boot_failures | 0 | 60 |
| BUG:kernel_NULL_pointer_dereference,address | 0 | 60 |
| Oops:#[##] | 0 | 60 |
| RIP:cdrom_release[cdrom] | 0 | 57 |
| Kernel_panic-not_syncing:Fatal_exception | 0 | 59 |
| RIP:kobject_uevent_env | 0 | 2 |
| BUG:unable_to_handle_page_fault_for_address | 0 | 3 |
| RIP:__pm_runtime_resume | 0 | 3 |
| WARNING:at_kernel/module.c:#module_put | 0 | 10 |
| RIP:module_put | 0 | 10 |
| WARNING:at_fs/kernfs/dir.c:#kernfs_remove_by_name_ns | 0 | 9 |
| RIP:kernfs_remove_by_name_ns | 0 | 9 |
| WARNING:at_lib/list_debug.c:#__list_del_entry_valid | 0 | 3 |
| RIP:__list_del_entry_valid | 0 | 4 |
| Kernel_panic-not_syncing:Fatal_exception_in_interrupt | 0 | 1 |
| RIP:hrtimer_active | 0 | 1 |
| RIP:bus_remove_device | 0 | 1 |
| RIP:sysfs_remove_groups | 0 | 1 |
+-------------------------------------------------------+------------+------------+
If you fix the issue, kindly add following tag
Reported-by: kernel test robot <lkp@...el.com>
[ 33.445223] WARNING: CPU: 0 PID: 2600 at fs/kernfs/dir.c:1505 kernfs_remove_by_name_ns+0x84/0x90
[ 33.447014] ------------[ cut here ]------------
[ 33.447538] Modules linked in: scsi_debug loop intel_rapl_msr sr_mod intel_rapl_common crct10dif_pclmul cdrom crc32_pclmul crc32c_intel ghash_clmulni_intel ata_generic pata_acpi sd_mod bochs_drm drm_vram_helper sg ppdev ttm drm_kms_helper snd_pcm syscopyarea sysfillrect sysimgblt fb_sys_fops aesni_intel snd_timer snd ata_piix crypto_simd cryptd glue_helper soundcore drm libata joydev pcspkr serio_raw i2c_piix4 parport_pc virtio_scsi parport floppy ip_tables [last unloaded: scsi_debug]
[ 33.448856] WARNING: CPU: 1 PID: 2664 at kernel/module.c:1146 module_put+0x8f/0xa0
[ 33.458314] CPU: 0 PID: 2600 Comm: check Not tainted 5.4.0-rc4-00112-g8ebc37a465ccc #1
[ 33.460689] Modules linked in: scsi_debug loop intel_rapl_msr sr_mod intel_rapl_common crct10dif_pclmul cdrom crc32_pclmul crc32c_intel ghash_clmulni_intel ata_generic pata_acpi sd_mod bochs_drm drm_vram_helper sg ppdev ttm drm_kms_helper snd_pcm syscopyarea sysfillrect sysimgblt fb_sys_fops aesni_intel snd_timer snd ata_piix crypto_simd cryptd glue_helper soundcore drm libata joydev pcspkr serio_raw i2c_piix4 parport_pc virtio_scsi parport floppy ip_tables [last unloaded: scsi_debug]
[ 33.462656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[ 33.472792] CPU: 1 PID: 2664 Comm: scsi_id Not tainted 5.4.0-rc4-00112-g8ebc37a465ccc #1
[ 33.474909] RIP: 0010:kernfs_remove_by_name_ns+0x84/0x90
[ 33.477046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[ 33.478649] Code: 00 31 c0 5b 5d 41 5c c3 48 c7 c7 60 a5 92 8a e8 72 01 72 00 b8 fe ff ff ff 5b 5d 41 5c c3 48 c7 c7 30 79 52 8a e8 7c ab d3 ff <0f> 0b b8 fe ff ff ff eb d0 0f 1f 00 66 66 66 66 90 41 57 41 56 41
[ 33.481050] RIP: 0010:module_put+0x8f/0xa0
[ 33.485974] RSP: 0018:ffffa98180217cf0 EFLAGS: 00010282
[ 33.488196] Code: 45 00 48 89 fb 48 8b 7d 08 48 83 c5 18 4c 89 e2 48 89 de e8 53 98 cb 00 48 8b 45 00 48 85 c0 75 e4 65 ff 0d 5b f7 cc 76 eb a2 <0f> 0b eb 94 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 66 66 66 66 90
[ 33.489855] RAX: 0000000000000000 RBX: ffff9c2841f91070 RCX: 0000000000000000
[ 33.494738] RSP: 0018:ffffa98180437ba0 EFLAGS: 00010297
[ 33.497086] RDX: ffff9c28bfc27640 RSI: ffff9c28bfc17778 RDI: ffff9c28bfc17778
[ 33.498819] RAX: 0000000000000000 RBX: ffff9c2841a1d800 RCX: 000000000000a59b
[ 33.500920] RBP: ffffffff8a5d1995 R08: 00000000000013a6 R09: 0000000000aaaaaa
[ 33.502977] RDX: 00000000ffffffff RSI: ffff9c28bfd2f100 RDI: ffffffffc03109c0
[ 33.502978] RBP: ffff9c2841a1d800 R08: 0000000000000001 R09: ffff9c2787800038
[ 33.505079] R10: 0000000000000008 R11: ffff9c2787fb3ae0 R12: ffff9c27c0c55868
[ 33.507163] R10: 0000000000000000 R11: ffffffff8a860af8 R12: ffff9c2850e03418
[ 33.509235] R13: ffff9c2841f91408 R14: ffff9c2841f92000 R15: ffff9c27c0beb9e0
[ 33.509237] FS: 00007ff4e7101740(0000) GS:ffff9c28bfc00000(0000) knlGS:0000000000000000
[ 33.512418] R13: ffff9c2841a1a000 R14: ffff9c2850e03400 R15: ffff9c2850e034d8
[ 33.514493] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 33.516520] FS: 00007f24f198a740(0000) GS:ffff9c28bfd00000(0000) knlGS:0000000000000000
[ 33.518672] CR2: 000056037c9533b8 CR3: 00000001c1e88000 CR4: 00000000000006f0
[ 33.520759] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 33.520760] CR2: 00007f24f1a6d7d0 CR3: 00000001c1c2e000 CR4: 00000000000006e0
[ 33.522582] Call Trace:
[ 33.524864] Call Trace:
[ 33.527019] device_del+0x14d/0x380
[ 33.528929] scsi_device_put+0x1b/0x30
[ 33.530982] del_gendisk+0x242/0x310
[ 33.532357] scsi_cd_put+0x3d/0x50 [sr_mod]
[ 33.533607] sr_remove+0x23/0x70 [sr_mod]
[ 33.535028] sr_block_release+0x2f/0x40 [sr_mod]
[ 33.536719] device_release_driver_internal+0xe5/0x1c0
[ 33.538183] __blkdev_put+0x192/0x1e0
[ 33.539744] bus_remove_device+0xdb/0x140
[ 33.541302] __blkdev_get+0x28b/0x630
[ 33.542917] device_del+0x164/0x380
[ 33.544648] ? bd_acquire+0xe0/0xe0
[ 33.546095] ? attribute_container_device_trigger+0x7d/0xe0
[ 33.547554] do_dentry_open+0x1ce/0x380
[ 33.549034] __scsi_remove_device+0x111/0x140
[ 33.550380] path_openat+0x2e5/0x1550
[ 33.551727] scsi_remove_device+0x21/0x30
[ 33.553465] ? alloc_set_pte+0x10d/0x570
[ 33.554802] sdev_store_delete+0x3d/0x80
[ 33.556280] do_filp_open+0x9b/0x110
[ 33.557587] kernfs_fop_write+0x10f/0x190
[ 33.558914] ? __check_object_size+0xd4/0x1a0
[ 33.560237] vfs_write+0xbe/0x1d0
[ 33.561544] ? do_sys_open+0x1bd/0x250
[ 33.562770] ksys_write+0xa1/0xe0
[ 33.564046] do_sys_open+0x1bd/0x250
[ 33.565397] do_syscall_64+0x5b/0x1d0
[ 33.566541] do_syscall_64+0x5b/0x1d0
[ 33.567735] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 33.568941] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 33.570084] RIP: 0033:0x7ff4e71ee504
[ 33.571247] RIP: 0033:0x7f24f1b5fc8b
[ 33.572430] Code: 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b3 0f 1f 80 00 00 00 00 48 8d 05 f9 61 0d 00 8b 00 85 c0 75 13 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 54 c3 0f 1f 00 41 54 49 89 d4 55 48 89 f5 53
[ 33.573791] Code: 4e 89 f0 25 00 00 41 00 3d 00 00 41 00 74 40 8b 05 ca e7 00 00 85 c0 75 61 89 f2 b8 01 01 00 00 48 89 fe bf 9c ff ff ff 0f 05 <48> 3d 00 f0 ff ff 0f 87 99 00 00 00 48 8b 4c 24 28 64 48 33 0c 25
[ 33.575119] RSP: 002b:00007fff9e7f1618 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 33.576210] RSP: 002b:00007fffd91a9eb0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 33.577274] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff4e71ee504
[ 33.581551] RAX: ffffffffffffffda RBX: 000055e4560330d0 RCX: 00007f24f1b5fc8b
[ 33.581553] RDX: 0000000000080800 RSI: 00007fffd91aa090 RDI: 00000000ffffff9c
[ 33.585878] RDX: 0000000000000002 RSI: 0000000000881a08 RDI: 0000000000000001
[ 33.587742] RBP: 00007fffd91aa090 R08: 0000000000000000 R09: 0000000000000000
[ 33.590346] RBP: 0000000000881a08 R08: 000000000000000a R09: 00007ff4e723f5f0
[ 33.592127] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffd91aa290
[ 33.592129] R13: 00000000ffffffff R14: 0000000000000012 R15: 0000000000000000
[ 33.593896] R10: 000000000000000a R11: 0000000000000246 R12: 00007ff4e72c0760
[ 33.595662] ---[ end trace 2338b0434f23175a ]---
To reproduce:
# build kernel
cd linux
cp config-5.4.0-rc4-00112-g8ebc37a465ccc .config
make HOSTCC=gcc-7 CC=gcc-7 ARCH=x86_64 olddefconfig prepare modules_prepare bzImage
git clone https://github.com/intel/lkp-tests.git
cd lkp-tests
bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email
Thanks,
lkp
View attachment "config-5.4.0-rc4-00112-g8ebc37a465ccc" of type "text/plain" (200562 bytes)
View attachment "job-script" of type "text/plain" (5234 bytes)
Download attachment "dmesg.xz" of type "application/x-xz" (43632 bytes)
Powered by blists - more mailing lists