| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAHC9VhQ0dyqsjsNt98yiPCGsiuUXep3T7T24LWWRHy8V8xjV4Q@mail.gmail.com>
Date: Sat, 21 Jun 2025 14:40:41 -0400
From: Paul Moore <paul@...l-moore.com>
To: Ming Lei <ming.lei@...hat.com>
Cc: linux-kernel <linux-kernel@...r.kernel.org>, linux-fsdevel@...r.kernel.org,
Christian Brauner <brauner@...nel.org>, selinux@...r.kernel.org
Subject: Re: [v6.16-rc2+ Bug] panic in inode_doinit_with_dentry during booting
On Sat, Jun 21, 2025 at 2:08 AM Ming Lei <ming.lei@...hat.com> wrote:
>
> Hello Guys,
>
> The latest v6.16-rc2+ kernel panics during booting, commit
> 3f75bfff44be ("Merge tag 'mtd/fixes-for-6.16-rc3' of
> git://git.kernel.org/pub/scm/linux/kernel/git/mtd/linux"):
>
>
> [ OK ] Finished systemd-modules-load.service - Load Kernel Modules.
> Starting systemd-sysctl.service - Apply Kernel Variables...
> Starting systemd-sysusers.service - Create System Users...
> [ OK ] Finished systemd-sysctl.service - Apply Kernel Variables.
> [ 1.851473] Oops: general protection fault, probably for
> non-canonical address 0x8cbad568292ed62c: 0000 [#1] SMP NOPTI
> [ 1.853362] CPU: 9 UID: 0 PID: 269 Comm: systemd-sysuser Not
> tainted 6.16.0-rc2+ #328 PREEMPT(full)
> [ 1.854923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009),
> BIOS 1.16.3-1.fc39 04/01/2014
> [ 1.856374] RIP: 0010:__list_add_valid_or_report+0x1e/0xa0
> [ 1.857366] Code: 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa
> 53 48 83 ec 08 48 85 f6 0f 84 76 2f 76 ff 48 89 d3 48 85 d2 0f 84 5c
> 2f9
> [ 1.860338] RSP: 0018:ffffd152c0de3a10 EFLAGS: 00010286
> [ 1.861244] RAX: ffff8aa5414d38d8 RBX: 8cbad568292ed624 RCX: 0000000000000000
> [ 1.862439] RDX: 8cbad568292ed624 RSI: ffff8aa5401f40f0 RDI: ffff8aa5414d38d8
> [ 1.863622] RBP: ffff8aa5414d38f4 R08: ffffd152c0de3a7c R09: ffffd152c0de3a20
> [ 1.864810] R10: ffff8aa5401f40c0 R11: 0000000000000007 R12: ffff8aa5414d38d8
> [ 1.864813] R13: ffff8aa5401f40c0 R14: ffff8aa5401f40f0 R15: ffff8aa5414d38d0
> [ 1.864814] FS: 00007feebef42bc0(0000) GS:ffff8aa9ed02f000(0000)
> knlGS:0000000000000000
> [ 1.864816] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1.864818] CR2: 00007feebfb58180 CR3: 0000000117f4d004 CR4: 0000000000770ef0
> [ 1.870018] PKRU: 55555554
> [ 1.870020] Call Trace:
> [ 1.870029] <TASK>
> [ 1.870031] inode_doinit_with_dentry+0x42d/0x520
Thanks for the report. I'm assuming you didn't see this with
v6.16-rc1, or earlier?
Do you have any line number information you could share? Also, based
on the RIP in __list_add_valid_or_report(), can you confirm that this
is either happening in an initrd/initramfs or on a system where a
SELinux policy is not being loaded?
> [ 1.870035] security_d_instantiate+0x93/0xb0
> [ 1.870038] d_instantiate+0x2e/0x60
> [ 1.870043] ramfs_mknod+0x58/0xb0
> [ 1.870047] path_openat+0xf53/0x1200
> [ 1.870050] do_filp_open+0xd7/0x190
> [ 1.870053] ? _raw_spin_unlock+0xe/0x30
> [ 1.870055] do_sys_openat2+0x8a/0xe0
> [ 1.870058] __x64_sys_openat+0x54/0xa0
> [ 1.870060] do_syscall_64+0x84/0x2c0
> [ 1.870063] ? __x64_sys_openat+0x54/0xa0
> [ 1.870064] ? do_syscall_64+0x84/0x2c0
> [ 1.870066] ? do_sys_openat2+0xa4/0xe0
> [ 1.870068] ? __x64_sys_openat+0x54/0xa0
> [ 1.870069] ? do_syscall_64+0x84/0x2c0
> [ 1.870070] ? handle_mm_fault+0x1d7/0x2e0
> [ 1.870074] ? do_user_addr_fault+0x211/0x680
> [ 1.870077] ? clear_bhb_loop+0x50/0xa0
> [ 1.870079] ? clear_bhb_loop+0x50/0xa0
> [ 1.870080] entry_SYSCALL_64_after_hwframe+0x76/0x7e
> [ 1.870082] RIP: 0033:0x7feebf965e63
> [ 1.870084] Code: 83 e2 40 75 52 89 f0 f7 d0 a9 00 00 41 00 74 47
> 80 3d 50 22 0e 00 00 74 62 89 da 4c 89 e6 bf 9c ff ff ff b8 01 01 00
> 008
> [ 1.870085] RSP: 002b:00007ffd85a4c5d0 EFLAGS: 00000202 ORIG_RAX:
> 0000000000000101
> [ 1.870087] RAX: ffffffffffffffda RBX: 00000000000a0141 RCX: 00007feebf965e63
> [ 1.870088] RDX: 00000000000a0141 RSI: 000055ed496c4f10 RDI: 00000000ffffff9c
> [ 1.870089] RBP: 00007ffd85a4c640 R08: 00000000ffffff9c R09: 00007ffd85a4c4f0
> [ 1.870090] R10: 0000000000000180 R11: 0000000000000202 R12: 000055ed496c4f10
> [ 1.870091] R13: 0000000000000000 R14: 00007ffd85a4c6c0 R15: 000055ed29c98940
> [ 1.870092] </TASK>
> [ 1.870093] Modules linked in: scsi_dh_rdac scsi_dh_emc
> scsi_dh_alua ip6_tables ip_tables fuse dm_multipath qemu_fw_cfg
> [ 1.870121] ---[ end trace 0000000000000000 ]---
> [ 1.870123] RIP: 0010:__list_add_valid_or_report+0x1e/0xa0
> [ 1.870127] Code: 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa
> 53 48 83 ec 08 48 85 f6 0f 84 76 2f 76 ff 48 89 d3 48 85 d2 0f 84 5c
> 2f9
> [ 1.870127] RSP: 0018:ffffd152c0de3a10 EFLAGS: 00010286
> [ 1.870129] RAX: ffff8aa5414d38d8 RBX: 8cbad568292ed624 RCX: 0000000000000000
> [ 1.870130] RDX: 8cbad568292ed624 RSI: ffff8aa5401f40f0 RDI: ffff8aa5414d38d8
> [ 1.870130] RBP: ffff8aa5414d38f4 R08: ffffd152c0de3a7c R09: ffffd152c0de3a20
> [ 1.870131] R10: ffff8aa5401f40c0 R11: 0000000000000007 R12: ffff8aa5414d38d8
> [ 1.870132] R13: ffff8aa5401f40c0 R14: ffff8aa5401f40f0 R15: ffff8aa5414d38d0
> [ 1.870133] FS: 00007feebef42bc0(0000) GS:ffff8aa9ed02f000(0000)
> knlGS:0000000000000000
> [ 1.870134] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ 1.870135] CR2: 00007feebfb58180 CR3: 0000000117f4d004 CR4: 0000000000770ef0
> [ 1.870137] PKRU: 55555554
> [ 1.870138] Kernel panic - not syncing: Fatal exception
> [ 1.870365] Kernel Offset: 0x3a000000 from 0xffffffff81000000
> (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
> [ 1.898219] ---[ end Kernel panic - not syncing: Fatal exception ]---
--
paul-moore.com
Powered by blists - more mailing lists