lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Date:   Sun, 23 Feb 2020 21:56:14 +0800
From:   kernel test robot <rong.a.chen@...el.com>
To:     Sultan Alsawaf <sultan@...neltoast.com>
Cc:     0day robot <lkp@...el.com>, LKML <linux-kernel@...r.kernel.org>,
        lkp@...ts.01.org
Subject: [mm] c8e0bd1499: WARNING:at_lib/refcount.c:#refcount_warn_saturate

FYI, we noticed the following commit (built with gcc-7):

commit: c8e0bd1499ea2c2eef043f084fff431b2e25edf1 ("mm: Stop kswapd early when nothing's waiting for it to free pages")
https://github.com/0day-ci/linux/commits/Sultan-Alsawaf/mm-Stop-kswapd-early-when-nothing-s-waiting-for-it-to-free-pages/20200221-212820

in testcase: trinity
with following parameters:

	runtime: 300s

test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/


on test machine: qemu-system-i386 -enable-kvm -cpu SandyBridge -smp 2 -m 8G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+---------------------------------------------------+------------+------------+
|                                                   | ca7e1fd102 | c8e0bd1499 |
+---------------------------------------------------+------------+------------+
| boot_successes                                    | 17         | 35         |
| boot_failures                                     | 0          | 13         |
| WARNING:at_lib/refcount.c:#refcount_warn_saturate | 0          | 13         |
| EIP:refcount_warn_saturate                        | 0          | 13         |
+---------------------------------------------------+------------+------------+


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <rong.a.chen@...el.com>


[  140.072380] WARNING: CPU: 0 PID: 2037 at lib/refcount.c:25 refcount_warn_saturate+0x8a/0xf0
[  140.073100] Modules linked in:
[  140.073325] CPU: 0 PID: 2037 Comm: trinity-c6 Not tainted 5.6.0-rc2-00056-gc8e0bd1499ea2 #1
[  140.073917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  140.074525] EIP: refcount_warn_saturate+0x8a/0xf0
[  140.074863] Code: 00 03 dd c2 01 e8 86 6d a4 ff 0f 0b 58 c9 c3 90 80 3d ff 02 dd c2 00 75 b4 68 84 5e a8 c2 c6 05 ff 02 dd c2 01 e8 66 6d a4 ff <0f> 0b 58 c9 c3 90 80 3d 01 03 dd c2 00 75 94 68 38 5e a8 c2 c6 05
[  140.076166] EAX: 0000002a EBX: c2dc3034 ECX: f42c6500 EDX: c10bbe0c
[  140.076611] ESI: c2dc2880 EDI: 00100cca EBP: f6b43c30 ESP: f6b43c2c
[  140.077054] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068 EFLAGS: 00010296
[  140.077708] CR0: 80050033 CR2: b78fbc5c CR3: 2516a000 CR4: 00040690
[  140.078447] Call Trace:
[  140.078758]  __alloc_pages_nodemask+0xe74/0xf70
[  140.079294]  ? percpu_counter_add_batch+0x9b/0xd0
[  140.079766]  ? percpu_counter_add_batch+0x9b/0xd0
[  140.080105]  ? trace_preempt_off+0x23/0xf0
[  140.080400]  ? percpu_counter_add_batch+0x9b/0xd0
[  140.080735]  ? __vm_enough_memory+0x21/0xe0
[  140.081036]  shmem_alloc_and_acct_page+0x44/0x180
[  140.081449]  ? find_get_entry+0x118/0x2e0
[  140.081736]  ? find_get_entry+0x12c/0x2e0
[  140.082023]  ? mark_held_locks+0x3f/0x70
[  140.082305]  shmem_getpage_gfp+0xfd/0x680
[  140.082611]  ? mark_held_locks+0x3f/0x70
[  140.082894]  shmem_file_read_iter+0xda/0x3c0
[  140.083202]  generic_file_splice_read+0xd4/0x170
[  140.083533]  ? pipe_to_user+0x30/0x30
[  140.083796]  do_splice_to+0x55/0x70
[  140.084049]  splice_direct_to_actor+0xcb/0x270
[  140.084387]  ? generic_pipe_buf_nosteal+0x10/0x10
[  140.084931]  do_splice_direct+0x79/0xc0
[  140.085385]  do_sendfile+0x1fd/0x3d0
[  140.085806]  sys_sendfile+0x56/0xc0
[  140.086221]  do_fast_syscall_32+0x84/0x310
[  140.091074]  entry_SYSENTER_32+0xc2/0x128
[  140.091563] EIP: 0xb7f5eb19
[  140.091903] Code: 5e 5d c3 8d b6 00 00 00 00 b8 80 96 98 00 eb c2 8b 04 24 c3 8b 14 24 c3 8b 1c 24 c3 8b 3c 24 c3 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d 76 00 58 b8 77 00 00 00 cd 80 90 8d 76
[  140.093977] EAX: ffffffda EBX: 0000011d ECX: 0000011d EDX: b74b8000
[  140.094746] ESI: 151c0d0c EDI: 00000041 EBP: 6b6e8dda ESP: bf89081c
[  140.095465] DS: 007b ES: 007b FS: 0000 GS: 0033 SS: 007b EFLAGS: 00000296
[  140.096232] irq event stamp: 1565584
[  140.096654] hardirqs last  enabled at (1565583): [<c10ba78d>] console_unlock+0x47d/0x640
[  140.097581] hardirqs last disabled at (1565584): [<c1001950>] trace_hardirqs_off_thunk+0xc/0x10
[  140.098601] softirqs last  enabled at (1553540): [<c20cb8a5>] __do_softirq+0x315/0x44b
[  140.099544] softirqs last disabled at (1553355): [<c100cb4d>] do_softirq_own_stack+0x1d/0x30
[  140.100535] ---[ end trace 864daf0120782c5d ]---


To reproduce:

        # build kernel
	cd linux
	cp config-5.6.0-rc2-00056-gc8e0bd1499ea2 .config
	make HOSTCC=gcc-7 CC=gcc-7 ARCH=i386 olddefconfig prepare modules_prepare bzImage

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email



Thanks,
Rong Chen


View attachment "config-5.6.0-rc2-00056-gc8e0bd1499ea2" of type "text/plain" (151043 bytes)

View attachment "job-script" of type "text/plain" (4435 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (33780 bytes)

View attachment "trinity" of type "text/plain" (2229 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ