| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 5 May 2022 14:20:32 +0800
From: kernel test robot <oliver.sang@...el.com>
To: Jchao Sun <sunjunchao2870@...il.com>
Cc: 0day robot <lkp@...el.com>, Jan Kara <jack@...e.cz>,
LKML <linux-kernel@...r.kernel.org>, lkp@...ts.01.org
Subject: [writeback] 3b06eceb31:
WARNING:lock_held_when_returning_to_user_space
Greeting,
FYI, we noticed the following commit (built with clang-15):
commit: 3b06eceb315e6540fbea9600122a45ce6fa94106 ("writeback: Fix inode->i_io_list not be protected by inode->i_lock error")
url: https://github.com/intel-lab-lkp/linux/commits/UPDATE-20220504-155717/Jchao-Sun/Add-assert-for-inode-i_io_list-in-inode_io_list_move_locked/20220503-180501
in testcase: boot
on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 16G
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>
[ 26.223475][ T1] WARNING: lock held when returning to user space!
[ 26.224156][ T1] 5.18.0-rc5-00007-g3b06eceb315e #31 Not tainted
[ 26.224712][ T1] ------------------------------------------------
[ 26.225244][ T1] systemd/1 is leaving the kernel with locks still held!
[ 26.225780][ T1] 1 lock held by systemd/1:
[ 26.226089][ T1] #0: ffff8881350945a0 (&sb->s_type->i_lock_key#19){+.+.}-{2:2}, at: __mark_inode_dirty (??:?)
[ 26.226852][ T1] BUG: sleeping function called from invalid context at kernel/locking/rwsem.c:1524
[ 26.227484][ T1] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 1, name: systemd
[ 26.228057][ T1] preempt_count: 1, expected: 0
[ 26.228410][ T1] INFO: lockdep is turned off.
[ 26.228740][ T1] CPU: 0 PID: 1 Comm: systemd Not tainted 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 26.229601][ T1] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 26.230223][ T1] Call Trace:
[ 26.230450][ T1] <TASK>
[ 26.230653][ T1] dump_stack_lvl (??:?)
[ 26.230964][ T1] dump_stack (??:?)
[ 26.231249][ T1] __might_resched (??:?)
[ 26.231576][ T1] ? vprintk (??:?)
[ 26.231855][ T1] __might_sleep (??:?)
[ 26.232187][ T1] down_write_killable (??:?)
[ 26.232544][ T1] __do_sys_brk (mmap.c:?)
[ 26.232864][ T1] ? syscall_enter_from_user_mode (??:?)
[ 26.233315][ T1] __x64_sys_brk (??:?)
[ 26.233725][ T1] do_syscall_64 (??:?)
[ 26.234029][ T1] entry_SYSCALL_64_after_hwframe (??:?)
[ 26.234431][ T1] RIP: 0033:0x7f603922e307
[ 26.234735][ T1] Code: ff ff 90 b8 ff ff ff ff 5b 5d 41 5c c3 66 0f 1f 44 00 00 64 83 3b 0d 75 ea 64 c7 03 01 00 00 00 eb e6 90 b8 0c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 19 48 8b 0d b2 ab 0c 00 48 89 01 48 39 c7 77
All code
========
0: ff (bad)
1: ff 90 b8 ff ff ff callq *-0x48(%rax)
7: ff 5b 5d lcall *0x5d(%rbx)
a: 41 5c pop %r12
c: c3 retq
d: 66 0f 1f 44 00 00 nopw 0x0(%rax,%rax,1)
13: 64 83 3b 0d cmpl $0xd,%fs:(%rbx)
17: 75 ea jne 0x3
19: 64 c7 03 01 00 00 00 movl $0x1,%fs:(%rbx)
20: eb e6 jmp 0x8
22: 90 nop
23: b8 0c 00 00 00 mov $0xc,%eax
28: 0f 05 syscall
2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction
30: 77 19 ja 0x4b
32: 48 8b 0d b2 ab 0c 00 mov 0xcabb2(%rip),%rcx # 0xcabeb
39: 48 89 01 mov %rax,(%rcx)
3c: 48 39 c7 cmp %rax,%rdi
3f: 77 .byte 0x77
Code starting with the faulting instruction
===========================================
0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax
6: 77 19 ja 0x21
8: 48 8b 0d b2 ab 0c 00 mov 0xcabb2(%rip),%rcx # 0xcabc1
f: 48 89 01 mov %rax,(%rcx)
12: 48 39 c7 cmp %rax,%rdi
15: 77 .byte 0x77
[ 26.236062][ T1] RSP: 002b:00007ffea2e4c4d8 EFLAGS: 00000246 ORIG_RAX: 000000000000000c
[ 26.236636][ T1] RAX: ffffffffffffffda RBX: 00005613f4dea000 RCX: 00007f603922e307
[ 26.237181][ T1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005613f4de2000
[ 26.237806][ T1] RBP: ffffffffffff8000 R08: 000000000000802f R09: 00005613f4dbf150
[ 26.238369][ T1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f60392fc0a0
[ 26.238908][ T1] R13: 00007f60392fa4d8 R14: 0000000000000001 R15: 00000000000203f0
[ 26.239446][ T1] </TASK>
[ 26.239807][ T1] BUG: scheduling while atomic: systemd/1/0x00000002
[ 26.240262][ T1] INFO: lockdep is turned off.
[ 26.240583][ T1] Modules linked in: ip_tables x_tables
[ 26.240965][ T1] CPU: 0 PID: 1 Comm: systemd Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 26.241912][ T1] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 26.242534][ T1] Call Trace:
[ 26.242759][ T1] <TASK>
[ 26.242960][ T1] dump_stack_lvl (??:?)
[ 26.243270][ T1] dump_stack (??:?)
[ 26.243553][ T1] __schedule_bug (core.c:?)
[ 26.243870][ T1] schedule_debug (core.c:?)
[ 26.244190][ T1] __schedule (core.c:?)
[ 26.244610][ T1] ? __up_read (rwsem.c:?)
[ 26.245098][ T1] schedule (??:?)
[ 26.245563][ T1] exit_to_user_mode_loop (common.c:?)
[ 26.246046][ T1] exit_to_user_mode_prepare (common.c:?)
[ 26.246421][ T1] syscall_exit_to_user_mode (??:?)
[ 26.246799][ T1] do_syscall_64 (??:?)
[ 26.247208][ T1] entry_SYSCALL_64_after_hwframe (??:?)
[ 26.247877][ T1] RIP: 0033:0x7f603922e307
[ 26.248358][ T1] Code: ff ff 90 b8 ff ff ff ff 5b 5d 41 5c c3 66 0f 1f 44 00 00 64 83 3b 0d 75 ea 64 c7 03 01 00 00 00 eb e6 90 b8 0c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 19 48 8b 0d b2 ab 0c 00 48 89 01 48 39 c7 77
All code
========
0: ff (bad)
1: ff 90 b8 ff ff ff callq *-0x48(%rax)
7: ff 5b 5d lcall *0x5d(%rbx)
a: 41 5c pop %r12
c: c3 retq
d: 66 0f 1f 44 00 00 nopw 0x0(%rax,%rax,1)
13: 64 83 3b 0d cmpl $0xd,%fs:(%rbx)
17: 75 ea jne 0x3
19: 64 c7 03 01 00 00 00 movl $0x1,%fs:(%rbx)
20: eb e6 jmp 0x8
22: 90 nop
23: b8 0c 00 00 00 mov $0xc,%eax
28: 0f 05 syscall
2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction
30: 77 19 ja 0x4b
32: 48 8b 0d b2 ab 0c 00 mov 0xcabb2(%rip),%rcx # 0xcabeb
39: 48 89 01 mov %rax,(%rcx)
3c: 48 39 c7 cmp %rax,%rdi
3f: 77 .byte 0x77
Code starting with the faulting instruction
===========================================
0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax
6: 77 19 ja 0x21
8: 48 8b 0d b2 ab 0c 00 mov 0xcabb2(%rip),%rcx # 0xcabc1
f: 48 89 01 mov %rax,(%rcx)
12: 48 39 c7 cmp %rax,%rdi
15: 77 .byte 0x77
[ 26.249839][ T1] RSP: 002b:00007ffea2e4c4d8 EFLAGS: 00000246 ORIG_RAX: 000000000000000c
[ 26.250415][ T1] RAX: 00005613f4de2000 RBX: 00005613f4dea000 RCX: 00007f603922e307
[ 26.250960][ T1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005613f4de2000
[ 26.251515][ T1] RBP: ffffffffffff8000 R08: 000000000000802f R09: 00005613f4dbf150
[ 26.252245][ T1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f60392fc0a0
[ 26.252963][ T1] R13: 00007f60392fa4d8 R14: 0000000000000001 R15: 00000000000203f0
[ 26.253606][ T1] </TASK>
Welcome to Debian GNU/Linux 10 (buster)!
[ 31.578152][ C0] random: crng init done
[ OK ] Listening on Journal Socket (/dev/log).
[ OK ] Reached target Swap.
[ OK ] Listening on Syslog Socket.
[ OK ] Created slice system-getty.slice.
[ OK ] Listening on RPCbind Server Activation Socket.
[ OK ] Listening on initctl Compatibility Named Pipe.
[ OK ] Listening on udev Kernel Socket.
[ OK ] Listening on udev Control Socket.
[ OK ] Listening on Journal Socket.
Starting Remount Root and Kernel File Systems...
[ OK ] Created slice User and Session Slice.
[ OK ] Reached target Slices.
[ OK ] Listening on Journal Audit Socket.
Starting Journal Service...
Mounting POSIX Message Queue File System...
[ OK ] Reached target Local Encrypted Volumes.
[ OK ] Reached target Paths.
Starting udev Coldplug all Devices...
[ 31.754702][ T207] BUG: sleeping function called from invalid context at fs/readdir.c:377
[ 31.755701][ T207] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 207, name: udevadm
[ 31.756686][ T207] preempt_count: 1, expected: 0
[ 31.757236][ T207] INFO: lockdep is turned off.
[ 31.757815][ T207] CPU: 0 PID: 207 Comm: udevadm Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 31.759363][ T207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 31.760361][ T207] Call Trace:
[ 31.760726][ T207] <TASK>
[ 31.761049][ T207] dump_stack_lvl (??:?)
[ 31.761602][ T207] dump_stack (??:?)
[ 31.762087][ T207] __might_resched (??:?)
[ 31.762627][ T207] __might_sleep (??:?)
[ 31.763116][ T207] __might_fault (??:?)
[ 31.763620][ T207] __x64_sys_getdents64 (??:?)
[ 31.764191][ T207] ? filldir (readdir.c:?)
[ 31.764675][ T207] do_syscall_64 (??:?)
[ 31.765179][ T207] entry_SYSCALL_64_after_hwframe (??:?)
[ 31.765793][ T207] RIP: 0033:0x7fc90f77add7
[ 31.766261][ T207] Code: 00 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 48 8b 47 20 c3 66 2e 0f 1f 84 00 00 00 00 00 90 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 89 90 0f 00 f7 d8 64 89 02 48
All code
========
0: 00 00 add %al,(%rax)
2: 48 83 c4 08 add $0x8,%rsp
6: 5b pop %rbx
7: 5d pop %rbp
8: c3 retq
9: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
10: 00 00 00
13: 48 8b 47 20 mov 0x20(%rdi),%rax
17: c3 retq
18: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
1f: 00 00 00
22: 90 nop
23: b8 d9 00 00 00 mov $0xd9,%eax
28: 0f 05 syscall
2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction
30: 77 01 ja 0x33
32: c3 retq
33: 48 8b 15 89 90 0f 00 mov 0xf9089(%rip),%rdx # 0xf90c3
3a: f7 d8 neg %eax
3c: 64 89 02 mov %eax,%fs:(%rdx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax
6: 77 01 ja 0x9
8: c3 retq
9: 48 8b 15 89 90 0f 00 mov 0xf9089(%rip),%rdx # 0xf9099
10: f7 d8 neg %eax
12: 64 89 02 mov %eax,%fs:(%rdx)
15: 48 rex.W
[ 31.768290][ T207] RSP: 002b:00007ffd824df748 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 31.769202][ T207] RAX: ffffffffffffffda RBX: 000055d5c1176c90 RCX: 00007fc90f77add7
[ 31.770092][ T207] RDX: 0000000000008000 RSI: 000055d5c1176cc0 RDI: 0000000000000003
[ 31.770965][ T207] RBP: 000055d5c1176cc0 R08: 0000000000000003 R09: 00007fc90f8751a0
[ 31.771863][ T207] R10: 000055d5c1175010 R11: 0000000000000246 R12: ffffffffffffff20
[ 31.772765][ T207] R13: 0000000000000000 R14: 00007ffd824df780 R15: 000055d5c113409c
[ 31.773720][ T207] </TASK>
[ 31.774061][ T207] BUG: scheduling while atomic: udevadm/207/0x00000002
[ 31.774790][ T207] INFO: lockdep is turned off.
[ 31.775303][ T207] Modules linked in: ip_tables x_tables
[ 31.775926][ T207] CPU: 0 PID: 207 Comm: udevadm Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 31.777393][ T207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 31.778481][ T207] Call Trace:
[ 31.778843][ T207] <TASK>
[ 31.779168][ T207] dump_stack_lvl (??:?)
[ 31.779660][ T207] dump_stack (??:?)
[ 31.780112][ T207] __schedule_bug (core.c:?)
[ 31.780651][ T207] schedule_debug (core.c:?)
[ 31.781181][ T207] __schedule (core.c:?)
[ 31.781711][ T207] ? __might_sleep (??:?)
[ 31.782256][ T207] schedule (??:?)
[ 31.782702][ T207] exit_to_user_mode_loop (common.c:?)
[ 31.783274][ T207] exit_to_user_mode_prepare (common.c:?)
[ 31.783866][ T207] syscall_exit_to_user_mode (??:?)
[ 31.784473][ T207] do_syscall_64 (??:?)
[ 31.784968][ T207] entry_SYSCALL_64_after_hwframe (??:?)
[ 31.785640][ T207] RIP: 0033:0x7fc90f77add7
[ 31.786144][ T207] Code: 00 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 48 8b 47 20 c3 66 2e 0f 1f 84 00 00 00 00 00 90 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 89 90 0f 00 f7 d8 64 89 02 48
All code
========
0: 00 00 add %al,(%rax)
2: 48 83 c4 08 add $0x8,%rsp
6: 5b pop %rbx
7: 5d pop %rbp
8: c3 retq
9: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
10: 00 00 00
13: 48 8b 47 20 mov 0x20(%rdi),%rax
17: c3 retq
18: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
1f: 00 00 00
22: 90 nop
23: b8 d9 00 00 00 mov $0xd9,%eax
28: 0f 05 syscall
2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction
30: 77 01 ja 0x33
32: c3 retq
33: 48 8b 15 89 90 0f 00 mov 0xf9089(%rip),%rdx # 0xf90c3
3a: f7 d8 neg %eax
3c: 64 89 02 mov %eax,%fs:(%rdx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax
6: 77 01 ja 0x9
8: c3 retq
9: 48 8b 15 89 90 0f 00 mov 0xf9089(%rip),%rdx # 0xf9099
10: f7 d8 neg %eax
12: 64 89 02 mov %eax,%fs:(%rdx)
15: 48 rex.W
[ 31.788330][ T207] RSP: 002b:00007ffd824df748 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 31.789236][ T207] RAX: 0000000000001ab0 RBX: 000055d5c1176c90 RCX: 00007fc90f77add7
[ 31.790116][ T207] RDX: 0000000000008000 RSI: 000055d5c1176cc0 RDI: 0000000000000003
[ 31.790968][ T207] RBP: 000055d5c1176cc0 R08: 0000000000000003 R09: 00007fc90f8751a0
[ 31.791858][ T207] R10: 000055d5c1175010 R11: 0000000000000246 R12: ffffffffffffff20
[ 31.792740][ T207] R13: 0000000000000000 R14: 00007ffd824df780 R15: 000055d5c113409c
[ 31.793667][ T207] </TASK>
Mounting RPC Pipe File System...
Starting Load Kernel Modules...
[ 31.824302][ T1] systemd[1]: segfault at 5613f4e25798 ip 00007f60391c24b2 sp 00007ffea2e4c470 error 7 in libc-2.28.so[7f6039160000+148000]
[ 31.825788][ T1] Code: 4a 8d 0c e0 48 8b 51 40 48 85 d2 0f 84 2a ff ff ff 48 81 fb ff 03 00 00 0f 87 ba 01 00 00 48 8b 32 48 89 71 40 42 80 2c 20 01 <48> c7 42 08 00 00 00 00 48 83 c4 08 48 89 d0 5b 5d 41 5c 41 5d c3
All code
========
0: 4a 8d 0c e0 lea (%rax,%r12,8),%rcx
4: 48 8b 51 40 mov 0x40(%rcx),%rdx
8: 48 85 d2 test %rdx,%rdx
b: 0f 84 2a ff ff ff je 0xffffffffffffff3b
11: 48 81 fb ff 03 00 00 cmp $0x3ff,%rbx
18: 0f 87 ba 01 00 00 ja 0x1d8
1e: 48 8b 32 mov (%rdx),%rsi
21: 48 89 71 40 mov %rsi,0x40(%rcx)
25: 42 80 2c 20 01 subb $0x1,(%rax,%r12,1)
2a:* 48 c7 42 08 00 00 00 movq $0x0,0x8(%rdx) <-- trapping instruction
31: 00
32: 48 83 c4 08 add $0x8,%rsp
36: 48 89 d0 mov %rdx,%rax
39: 5b pop %rbx
3a: 5d pop %rbp
3b: 41 5c pop %r12
3d: 41 5d pop %r13
3f: c3 retq
Code starting with the faulting instruction
===========================================
0: 48 c7 42 08 00 00 00 movq $0x0,0x8(%rdx)
7: 00
8: 48 83 c4 08 add $0x8,%rsp
c: 48 89 d0 mov %rdx,%rax
f: 5b pop %rbx
10: 5d pop %rbp
11: 41 5c pop %r12
13: 41 5d pop %r13
15: c3 retq
[ 31.830641][ T1] BUG: scheduling while atomic: systemd/1/0x00000002
[ 31.831460][ T1] INFO: lockdep is turned off.
[ 31.831970][ T1] Modules linked in: ip_tables x_tables
[ 31.832578][ T1] CPU: 0 PID: 1 Comm: systemd Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 31.834048][ T1] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 31.835045][ T1] Call Trace:
[ 31.835437][ T1] <TASK>
[ 31.835756][ T1] dump_stack_lvl (??:?)
[ 31.836249][ T1] dump_stack (??:?)
[ 31.836697][ T1] __schedule_bug (core.c:?)
[ 31.837205][ T1] schedule_debug (core.c:?)
[ 31.837752][ T1] __schedule (core.c:?)
[ 31.838298][ T1] schedule (??:?)
[ 31.838744][ T1] exit_to_user_mode_loop (common.c:?)
[ 31.839303][ T1] exit_to_user_mode_prepare (common.c:?)
[ 31.839892][ T1] syscall_exit_to_user_mode (??:?)
[ 31.840482][ T1] do_syscall_64 (??:?)
[ 31.840989][ T1] entry_SYSCALL_64_after_hwframe (??:?)
[ 31.841692][ T1] RIP: 0033:0x7f6039231f59
[ 31.842164][ T1] Code: 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 07 6f 0c 00 f7 d8 64 89 01 48
All code
========
0: 00 c3 add %al,%bl
2: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
9: 00 00 00
c: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1)
11: 48 89 f8 mov %rdi,%rax
14: 48 89 f7 mov %rsi,%rdi
17: 48 89 d6 mov %rdx,%rsi
1a: 48 89 ca mov %rcx,%rdx
1d: 4d 89 c2 mov %r8,%r10
20: 4d 89 c8 mov %r9,%r8
23: 4c 8b 4c 24 08 mov 0x8(%rsp),%r9
28: 0f 05 syscall
2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction
30: 73 01 jae 0x33
32: c3 retq
33: 48 8b 0d 07 6f 0c 00 mov 0xc6f07(%rip),%rcx # 0xc6f41
3a: f7 d8 neg %eax
3c: 64 89 01 mov %eax,%fs:(%rcx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax
6: 73 01 jae 0x9
8: c3 retq
9: 48 8b 0d 07 6f 0c 00 mov 0xc6f07(%rip),%rcx # 0xc6f17
10: f7 d8 neg %eax
12: 64 89 01 mov %eax,%fs:(%rcx)
15: 48 rex.W
[ 31.844217][ T1] RSP: 002b:00007ffea2e4bd18 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 31.845119][ T1] RAX: 00000000000000d2 RBX: 00007ffea2e4bde8 RCX: 00007f6039231f59
[ 31.846045][ T1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[ 31.846935][ T1] RBP: 00007ffea2e4bde0 R08: 00007f60392f9fa0 R09: 0000000000000000
[ 31.847773][ T1] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b
[ 31.848671][ T1] R13: ffffffffffffffb0 R14: 00007f60380778c0 R15: 00005613f4dc5c60
[ 31.849582][ T1] </TASK>
[ 31.867754][ T205] systemd-journal[205]: segfault at 7f692b0d0020 ip 00007f692cb5535d sp 00007ffd370b98c8 error 6 in libc-2.28.so[7f692cad5000+148000]
[ 31.869475][ T205] Code: 5e 30 48 83 c6 40 48 83 ea 40 66 0f e7 07 66 0f e7 4f 10 66 0f e7 57 20 66 0f e7 5f 30 48 83 c7 40 48 83 fa 40 77 be 0f ae f8 <0f> 11 29 0f 11 71 f0 0f 11 79 e0 44 0f 11 41 d0 41 0f 11 23 c3 4c
All code
========
0: 5e pop %rsi
1: 30 48 83 xor %cl,-0x7d(%rax)
4: c6 40 48 83 movb $0x83,0x48(%rax)
8: ea (bad)
9: 40 rex
a: 66 0f e7 07 movntdq %xmm0,(%rdi)
e: 66 0f e7 4f 10 movntdq %xmm1,0x10(%rdi)
13: 66 0f e7 57 20 movntdq %xmm2,0x20(%rdi)
18: 66 0f e7 5f 30 movntdq %xmm3,0x30(%rdi)
1d: 48 83 c7 40 add $0x40,%rdi
21: 48 83 fa 40 cmp $0x40,%rdx
25: 77 be ja 0xffffffffffffffe5
27: 0f ae f8 sfence
2a:* 0f 11 29 movups %xmm5,(%rcx) <-- trapping instruction
2d: 0f 11 71 f0 movups %xmm6,-0x10(%rcx)
31: 0f 11 79 e0 movups %xmm7,-0x20(%rcx)
35: 44 0f 11 41 d0 movups %xmm8,-0x30(%rcx)
3a: 41 0f 11 23 movups %xmm4,(%r11)
3e: c3 retq
3f: 4c rex.WR
Code starting with the faulting instruction
===========================================
0: 0f 11 29 movups %xmm5,(%rcx)
3: 0f 11 71 f0 movups %xmm6,-0x10(%rcx)
7: 0f 11 79 e0 movups %xmm7,-0x20(%rcx)
b: 44 0f 11 41 d0 movups %xmm8,-0x30(%rcx)
10: 41 0f 11 23 movups %xmm4,(%r11)
14: c3 retq
15: 4c rex.WR
[ 31.871670][ T205] BUG: scheduling while atomic: systemd-journal/205/0x00000002
[ 31.872519][ T205] INFO: lockdep is turned off.
[ 31.873052][ T205] Modules linked in: ip_tables x_tables
[ 31.873765][ T205] CPU: 0 PID: 205 Comm: systemd-journal Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 31.875395][ T205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 31.876402][ T205] Call Trace:
[ 31.876779][ T205] <TASK>
[ 31.877099][ T205] dump_stack_lvl (??:?)
[ 31.877643][ T205] dump_stack (??:?)
[ 31.878165][ T205] __schedule_bug (core.c:?)
[ 31.878696][ T205] schedule_debug (core.c:?)
[ 31.879213][ T205] __schedule (core.c:?)
[ 31.879699][ T205] ? __bad_area_nosemaphore (fault.c:?)
[ 31.880350][ T205] schedule (??:?)
[ 31.880821][ T205] exit_to_user_mode_loop (common.c:?)
[ 31.881412][ T205] exit_to_user_mode_prepare (common.c:?)
[ 31.882078][ T205] irqentry_exit_to_user_mode (??:?)
[ 31.882722][ T205] irqentry_exit (??:?)
[ 31.883230][ T205] exc_page_fault (??:?)
[ 31.883724][ T205] ? asm_exc_page_fault (??:?)
[ 31.884278][ T205] asm_exc_page_fault (??:?)
[ 31.884775][ T205] RIP: 0033:0x7f692cb5535d
[ 31.885253][ T205] Code: 5e 30 48 83 c6 40 48 83 ea 40 66 0f e7 07 66 0f e7 4f 10 66 0f e7 57 20 66 0f e7 5f 30 48 83 c7 40 48 83 fa 40 77 be 0f ae f8 <0f> 11 29 0f 11 71 f0 0f 11 79 e0 44 0f 11 41 d0 41 0f 11 23 c3 4c
All code
========
0: 5e pop %rsi
1: 30 48 83 xor %cl,-0x7d(%rax)
4: c6 40 48 83 movb $0x83,0x48(%rax)
8: ea (bad)
9: 40 rex
a: 66 0f e7 07 movntdq %xmm0,(%rdi)
e: 66 0f e7 4f 10 movntdq %xmm1,0x10(%rdi)
13: 66 0f e7 57 20 movntdq %xmm2,0x20(%rdi)
18: 66 0f e7 5f 30 movntdq %xmm3,0x30(%rdi)
1d: 48 83 c7 40 add $0x40,%rdi
21: 48 83 fa 40 cmp $0x40,%rdx
25: 77 be ja 0xffffffffffffffe5
27: 0f ae f8 sfence
2a:* 0f 11 29 movups %xmm5,(%rcx) <-- trapping instruction
2d: 0f 11 71 f0 movups %xmm6,-0x10(%rcx)
31: 0f 11 79 e0 movups %xmm7,-0x20(%rcx)
35: 44 0f 11 41 d0 movups %xmm8,-0x30(%rcx)
3a: 41 0f 11 23 movups %xmm4,(%r11)
3e: c3 retq
3f: 4c rex.WR
Code starting with the faulting instruction
===========================================
0: 0f 11 29 movups %xmm5,(%rcx)
3: 0f 11 71 f0 movups %xmm6,-0x10(%rcx)
7: 0f 11 79 e0 movups %xmm7,-0x20(%rcx)
b: 44 0f 11 41 d0 movups %xmm8,-0x30(%rcx)
10: 41 0f 11 23 movups %xmm4,(%r11)
14: c3 retq
15: 4c rex.WR
[ 31.887355][ T205] RSP: 002b:00007ffd370b98c8 EFLAGS: 00010287
[ 31.888016][ T205] RAX: 00007f692b0cff70 RBX: 00000000000000c0 RCX: 00007f692b0d0020
[ 31.888894][ T205] RDX: 0000000000000030 RSI: 00007ffd370b9a10 RDI: 00007f692b0d0000
[ 31.889771][ T205] RBP: 000055b290a17910 R08: fffffffffffffff0 R09: 000055b290a17b00
[ 31.890635][ T205] R10: 00007f692b0d0030 R11: 00007f692b0cff70 R12: 0000000000000000
[ 31.891467][ T205] R13: dac23452b6495280 R14: 00007ffd370bc680 R15: 00007ffd370b9b70
[ 31.892353][ T205] </TASK>
Caught <SEGV>, core dump failed (child 210, code=killed, status=11/SEGV).
Freezing execution.
[ 31.929586][ T1] advantechwdt: Unexpected close, not stopping watchdog!
[ 32.020218][ T207] udevadm[207]: segfault at 55d5c11ac0c8 ip 00007fc90f73c28a sp 00007ffd824df450 error 6 in libc-2.28.so[7fc90f6db000+148000]
[ 32.021804][ T207] Code: 89 13 00 4c 29 e0 4a 8d 34 21 49 39 d6 49 89 76 60 0f 95 c2 48 83 c8 01 0f b6 d2 48 c1 e2 02 4c 09 e2 48 83 ca 01 48 89 51 08 <48> 89 46 08 e9 38 ff ff ff 48 8d 3d 7e 32 10 00 e8 61 c9 ff ff 48
All code
========
0: 89 13 mov %edx,(%rbx)
2: 00 4c 29 e0 add %cl,-0x20(%rcx,%rbp,1)
6: 4a 8d 34 21 lea (%rcx,%r12,1),%rsi
a: 49 39 d6 cmp %rdx,%r14
d: 49 89 76 60 mov %rsi,0x60(%r14)
11: 0f 95 c2 setne %dl
14: 48 83 c8 01 or $0x1,%rax
18: 0f b6 d2 movzbl %dl,%edx
1b: 48 c1 e2 02 shl $0x2,%rdx
1f: 4c 09 e2 or %r12,%rdx
22: 48 83 ca 01 or $0x1,%rdx
26: 48 89 51 08 mov %rdx,0x8(%rcx)
2a:* 48 89 46 08 mov %rax,0x8(%rsi) <-- trapping instruction
2e: e9 38 ff ff ff jmpq 0xffffffffffffff6b
33: 48 8d 3d 7e 32 10 00 lea 0x10327e(%rip),%rdi # 0x1032b8
3a: e8 61 c9 ff ff callq 0xffffffffffffc9a0
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 89 46 08 mov %rax,0x8(%rsi)
4: e9 38 ff ff ff jmpq 0xffffffffffffff41
9: 48 8d 3d 7e 32 10 00 lea 0x10327e(%rip),%rdi # 0x10328e
10: e8 61 c9 ff ff callq 0xffffffffffffc976
15: 48 rex.W
[ 32.026870][ T207] BUG: scheduling while atomic: udevadm/207/0x00000002
[ 32.027712][ T207] INFO: lockdep is turned off.
[ 32.028274][ T207] Modules linked in: ip_tables x_tables
[ 32.028892][ T207] CPU: 0 PID: 207 Comm: udevadm Tainted: G W 5.18.0-rc5-00007-g3b06eceb315e #31 9973d23c490891ec3abf3b90457ecc1045421020
[ 32.030459][ T207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 32.031483][ T207] Call Trace:
[ 32.031856][ T207] <TASK>
[ 32.032189][ T207] dump_stack_lvl (??:?)
[ 32.032696][ T207] dump_stack (??:?)
[ 32.033162][ T207] __schedule_bug (core.c:?)
[ 32.033747][ T207] schedule_debug (core.c:?)
[ 32.034292][ T207] __schedule (core.c:?)
[ 32.034793][ T207] ? _raw_spin_unlock_irqrestore (??:?)
[ 32.035458][ T207] ? trace_hardirqs_on (??:?)
[ 32.036020][ T207] do_task_dead (??:?)
[ 32.036520][ T207] do_exit (??:?)
[ 32.036994][ T207] do_group_exit (??:?)
[ 32.037553][ T207] get_signal (??:?)
[ 32.038145][ T207] arch_do_signal_or_restart (??:?)
[ 32.038779][ T207] exit_to_user_mode_loop (common.c:?)
[ 32.039368][ T207] exit_to_user_mode_prepare (common.c:?)
[ 32.039955][ T207] irqentry_exit_to_user_mode (??:?)
[ 32.040553][ T207] irqentry_exit (??:?)
[ 32.041043][ T207] exc_page_fault (??:?)
[ 32.041588][ T207] ? asm_exc_page_fault (??:?)
[ 32.042144][ T207] asm_exc_page_fault (??:?)
[ 32.042685][ T207] RIP: 0033:0x7fc90f73c28a
[ 32.043177][ T207] Code: Unable to access opcode bytes at RIP 0x7fc90f73c260.
Code starting with the faulting instruction
===========================================
[ 32.043992][ T207] RSP: 002b:00007ffd824df450 EFLAGS: 00010206
[ 32.044667][ T207] RAX: 0000000000009f41 RBX: 00007fc90f874ca0 RCX: 000055d5c11ab0b0
[ 32.045608][ T207] RDX: 0000000000001011 RSI: 000055d5c11ac0c0 RDI: 0000000000000004
[ 32.046540][ T207] RBP: 00000000000000ff R08: 0000000000000003 R09: 0000000000000077
[ 32.047475][ T207] R10: 000055d5c1175010 R11: 0000000000000000 R12: 0000000000001010
[ 32.048425][ T207] R13: 0000000000000000 R14: 00007fc90f874c40 R15: 0000000000000101
[ 32.049284][ T207] </TASK>
Kboot worker: lkp-worker01
Elapsed time: 60
kvm=(
qemu-system-x86_64
-enable-kvm
-cpu SandyBridge
-kernel $kernel
-initrd initrd-vm-snb-168.cgz
-m 16384
-smp 2
-device e1000,netdev=net0
-netdev user,id=net0,hostfwd=tcp::32032-:22
-boot order=nc
-no-reboot
-watchdog i6300esb
-watchdog-action debug
-rtc base=localtime
-serial stdio
-display none
-monitor null
)
append=(
ip=::::vm-snb-168::dhcp
root=/dev/ram0
RESULT_ROOT=/result/boot/1/vm-snb/debian-10.4-x86_64-20200603.cgz/x86_64-randconfig-a011-20220502/clang-15/3b06eceb315e6540fbea9600122a45ce6fa94106/3
BOOT_IMAGE=/pkg/linux/x86_64-randconfig-a011-20220502/clang-15/3b06eceb315e6540fbea9600122a45ce6fa94106/vmlinuz-5.18.0-rc5-00007-g3b06eceb315e
branch=linux-review/UPDATE-20220504-155717/Jchao-Sun/Add-assert-for-inode-i_io_list-in-inode_io_list_move_locked/20220503-180501
job=/job-script
user=lkp
ARCH=x86_64
kconfig=x86_64-randconfig-a011-20220502
commit=3b06eceb315e6540fbea9600122a45ce6fa94106
vmalloc=128M
initramfs_async=0
page_owner=on
max_uptime=600
result_service=tmpfs
selinux=0
debug
apic=debug
sysrq_always_enabled
rcupdate.rcu_cpu_stall_timeout=100
net.ifnames=0
printk.devkmsg=on
panic=-1
softlockup_panic=1
nmi_watchdog=panic
oops=panic
load_ramdisk=2
prompt_ramdisk=0
drbd.minor_count=8
systemd.log_level=err
ignore_loglevel
console=tty0
earlyprintk=ttyS0,115200
console=ttyS0,115200
vga=normal
rw
rcuperf.shutdown=0
watchdog_thresh=240
)
"${kvm[@]}" -append "${append[*]}"
To reproduce:
# build kernel
cd linux
cp config-5.18.0-rc5-00007-g3b06eceb315e .config
make HOSTCC=clang-15 CC=clang-15 ARCH=x86_64 olddefconfig prepare modules_prepare bzImage modules
make HOSTCC=clang-15 CC=clang-15 ARCH=x86_64 INSTALL_MOD_PATH=<mod-install-dir> modules_install
cd <mod-install-dir>
find lib/ | cpio -o -H newc --quiet | gzip > modules.cgz
git clone https://github.com/intel/lkp-tests.git
cd lkp-tests
bin/lkp qemu -k <bzImage> -m modules.cgz job-script # job-script is attached in this email
# if come across any failure that blocks the test,
# please remove ~/.lkp and /lkp dir to run from a clean state.
--
0-DAY CI Kernel Test Service
https://01.org/lkp
View attachment "config-5.18.0-rc5-00007-g3b06eceb315e" of type "text/plain" (140659 bytes)
View attachment "job-script" of type "text/plain" (5197 bytes)
Download attachment "dmesg.xz" of type "application/x-xz" (17192 bytes)
Powered by blists - more mailing lists