| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20171221200647.1d138fea@cakuba.netronome.com>
Date: Thu, 21 Dec 2017 20:06:47 -0800
From: Jakub Kicinski <jakub.kicinski@...ronome.com>
To: John Fastabend <john.fastabend@...il.com>
Cc: Cong Wang <xiyou.wangcong@...il.com>, netdev@...r.kernel.org
Subject: Re: [Patch net-next] net_sched: call qdisc_reset() with qdisc lock
On Thu, 21 Dec 2017 19:36:51 -0800, John Fastabend wrote:
> diff --git a/net/sched/sch_generic.c b/net/sched/sch_generic.c
> index ab497ef..720829e 100644
> --- a/net/sched/sch_generic.c
> +++ b/net/sched/sch_generic.c
> @@ -1071,7 +1071,8 @@ static bool some_qdisc_is_busy(struct net_device *dev)
> q = dev_queue->qdisc_sleeping;
>
> if (q->flags & TCQ_F_NOLOCK) {
> - val = test_bit(__QDISC_STATE_SCHED, &q->state);
> + val = (qdisc_is_running(q) ||
> + test_bit(__QDISC_STATE_SCHED, &q->state));
> } else {
> root_lock = qdisc_lock(q);
> spin_lock_bh(root_lock);
Ah, I just found hpinging the machine with the right .config seems
to be a good trigger. Testing... I'm afraid KASAN splat still there.
Attaching my .config FWIW.
[ 67.870458] ==================================================================
[ 67.878616] BUG: KASAN: slab-out-of-bounds in pfifo_fast_dequeue+0x140/0x2d0
[ 67.886566] Read of size 8 at addr ffff88036f34c040 by task swapper/12/0
[ 67.894123]
[ 67.895854] CPU: 12 PID: 0 Comm: swapper/12 Not tainted 4.15.0-rc3-perf-01035-ge394cb5fbb97-dirty #24
[ 67.906232] Hardware name: Dell Inc. PowerEdge R730/072T6D, BIOS 2.3.4 11/08/2016
[ 67.914665] Call Trace:
[ 67.917462] <IRQ>
[ 67.919778] dump_stack+0xa6/0x118
[ 67.923645] ? _atomic_dec_and_lock+0xe8/0xe8
[ 67.928582] ? pfifo_fast_dequeue+0x140/0x2d0
[ 67.933524] print_address_description+0x6a/0x270
[ 67.938839] ? pfifo_fast_dequeue+0x140/0x2d0
[ 67.943775] kasan_report+0x23f/0x350
[ 67.947933] pfifo_fast_dequeue+0x140/0x2d0
[ 67.952676] ? stack_access_ok+0x3d/0xa0
[ 67.957126] __qdisc_run+0x167/0xa20
[ 67.961188] ? __orc_find+0x6b/0xc0
[ 67.965153] ? sch_direct_xmit+0x3d0/0x3d0
[ 67.969820] ? _raw_spin_unlock+0x73/0xc0
[ 67.974388] ? _raw_spin_trylock+0xe0/0xe0
[ 67.979053] ? deref_stack_reg+0x50/0xd0
[ 67.983528] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 67.988529] ? is_module_text_address+0x11/0x30
[ 67.993682] ? kernel_text_address+0x5a/0x100
[ 67.998631] ? pfifo_fast_enqueue+0x154/0x180
[ 68.003591] __dev_queue_xmit+0x5ae/0x1110
[ 68.008268] ? depot_save_stack+0x12d/0x470
[ 68.013023] ? netdev_pick_tx+0x150/0x150
[ 68.017592] ? __kmalloc_node_track_caller+0x16e/0x2a0
[ 68.023424] ? __kmalloc_reserve.isra.7+0x2e/0x80
[ 68.028769] ? __alloc_skb+0xed/0x390
[ 68.032949] ? sock_wmalloc+0xc2/0x110
[ 68.037227] ? __ip_append_data.isra.3+0xee8/0x1090
[ 68.042768] ? ip_append_data.part.4+0x8b/0xd0
[ 68.047821] ? ip_send_unicast_reply+0x564/0x6d0
[ 68.053071] ? tcp_v4_send_reset+0xa7b/0xd20
[ 68.057929] ? tcp_v4_rcv+0xcce/0x1650
[ 68.062207] ? ip_local_deliver_finish+0x13d/0x3f0
[ 68.067649] ? ip_local_deliver+0xe2/0x280
[ 68.072314] ? ip_rcv_finish+0x5f7/0xa10
[ 68.076785] ? ip_rcv+0x49d/0x780
[ 68.080576] ? __netif_receive_skb_core+0xfa9/0x1bd0
[ 68.086213] ? netif_receive_skb_internal+0x93/0x240
[ 68.091849] ? napi_gro_receive+0x1b3/0x1d0
[ 68.096616] ? tg3_poll_work+0x13e3/0x1d80 [tg3]
[ 68.101867] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 68.106825] ? net_rx_action+0x4a8/0xb00
[ 68.111295] ? __do_softirq+0x17f/0x4de
[ 68.115673] ? irq_exit+0xe1/0xf0
[ 68.119463] ? do_IRQ+0x94/0xe0
[ 68.123059] ? common_interrupt+0x8c/0x8c
[ 68.127631] ? cpuidle_enter_state+0x12a/0x510
[ 68.132687] ? do_idle+0x1af/0x200
[ 68.136574] ? cpu_startup_entry+0xd2/0xe0
[ 68.141240] ? start_secondary+0x271/0x2b0
[ 68.145906] ? secondary_startup_64+0xa5/0xb0
[ 68.150862] ? common_interrupt+0x8c/0x8c
[ 68.155430] ? cpuidle_enter_state+0x12a/0x510
[ 68.160508] ? do_idle+0x1af/0x200
[ 68.164396] ? cpu_startup_entry+0xd2/0xe0
[ 68.169061] ? start_secondary+0x271/0x2b0
[ 68.173726] ? secondary_startup_64+0xa5/0xb0
[ 68.178683] ? ___slab_alloc+0x45d/0x600
[ 68.183155] ? inet_lookup_ifaddr_rcu+0x126/0x170
[ 68.188534] ? memcg_kmem_put_cache+0x63/0x120
[ 68.193587] ? memcg_kmem_get_cache+0x4e0/0x4e0
[ 68.198739] ? __rcu_read_unlock+0x6e/0x120
[ 68.203502] ? memcg_kmem_put_cache+0x63/0x120
[ 68.208571] ? memcg_kmem_get_cache+0x4e0/0x4e0
[ 68.213723] ? __kmalloc_node_track_caller+0x1fe/0x2a0
[ 68.219546] ? __alloc_skb+0xed/0x390
[ 68.223726] ? __kmalloc_reserve.isra.7+0x43/0x80
[ 68.229071] ? memset+0x1f/0x40
[ 68.232667] ? __alloc_skb+0x27e/0x390
[ 68.236944] ? __kmalloc_reserve.isra.7+0x80/0x80
[ 68.242289] ? ktime_get+0x10d/0x1a0
[ 68.246370] ? __rcu_read_unlock+0x6e/0x120
[ 68.251134] ? ip_finish_output2+0x68d/0x7c0
[ 68.255994] ip_finish_output2+0x68d/0x7c0
[ 68.260661] ? ip_send_check+0x60/0x60
[ 68.264937] ? skb_set_owner_w+0x9c/0x120
[ 68.269504] ? sock_wmalloc+0xd5/0x110
[ 68.273782] ? sk_alloc+0x6b0/0x6b0
[ 68.277768] ? ipv4_mtu+0x163/0x200
[ 68.281754] ? ipv4_negative_advice+0x60/0x60
[ 68.286710] ? ip_reply_glue_bits+0x2c/0x50
[ 68.291474] ? __ip_append_data.isra.3+0xdb1/0x1090
[ 68.297014] ? ip_idents_reserve+0x11d/0x1a0
[ 68.301872] ? ipv4_sysctl_rtcache_flush+0x40/0x40
[ 68.307315] ? ip_setup_cork+0x230/0x230
[ 68.311786] ? ip_finish_output+0x39a/0x4c0
[ 68.316582] ip_finish_output+0x39a/0x4c0
[ 68.321150] ? ip_fragment.constprop.5+0xf0/0xf0
[ 68.326398] ? ipv4_mtu+0x163/0x200
[ 68.330384] ? __ip_select_ident+0xf8/0x180
[ 68.335147] ? find_exception+0x270/0x270
[ 68.339716] ? ipv4_mtu+0x163/0x200
[ 68.343699] ? ip_send_check+0x20/0x60
[ 68.347978] ip_output+0x106/0x280
[ 68.351865] ? ip_mc_output+0x750/0x750
[ 68.356258] ? ip_append_page+0x6d0/0x6d0
[ 68.360825] ? ip_append_data.part.4+0x8b/0xd0
[ 68.365879] ip_send_skb+0x29/0x70
[ 68.369766] ? ip_push_pending_frames+0x2e/0x50
[ 68.374918] ip_send_unicast_reply+0x64e/0x6d0
[ 68.379973] ? ip_make_skb+0x1d0/0x1d0
[ 68.384257] ? ip_local_deliver+0xe2/0x280
[ 68.388920] ? ip_rcv+0x49d/0x780
[ 68.392711] ? __netif_receive_skb_core+0xfa9/0x1bd0
[ 68.398348] ? napi_gro_receive+0x1b3/0x1d0
[ 68.403113] ? tg3_poll_work+0x13e3/0x1d80 [tg3]
[ 68.408358] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 68.413316] ? net_rx_action+0x4a8/0xb00
[ 68.417788] ? __do_softirq+0x17f/0x4de
[ 68.422163] ? cpuidle_enter_state+0x12a/0x510
[ 68.427218] ? do_idle+0x1af/0x200
[ 68.431104] ? cpu_startup_entry+0xd2/0xe0
[ 68.435769] ? start_secondary+0x271/0x2b0
[ 68.440453] ? map_id_range_down+0x186/0x1b0
[ 68.445311] ? __put_user_ns+0x30/0x30
[ 68.449589] ? trace_event_raw_event_rcu_torture_read+0x190/0x190
[ 68.456529] tcp_v4_send_reset+0xa7b/0xd20
[ 68.461196] ? tcp_v4_reqsk_send_ack+0x1a0/0x1a0
[ 68.466444] ? __inet_lookup_listener+0x1e5/0x520
[ 68.471790] ? sock_edemux+0x20/0x20
[ 68.475873] ? reweight_entity+0x630/0x630
[ 68.480569] ? rb_insert_color_cached+0x6f3/0x7a0
[ 68.485914] ? rb_insert_color+0x770/0x770
[ 68.490581] ? tcp_v4_rcv+0xcce/0x1650
[ 68.494858] tcp_v4_rcv+0xcce/0x1650
[ 68.498941] ? tcp_v4_early_demux+0x350/0x350
[ 68.503900] ? raw_rcv+0x1b0/0x1b0
[ 68.507787] ? reweight_entity+0x393/0x630
[ 68.512482] ? update_curr+0xa9/0x3c0
[ 68.516662] ? rb_insert_color+0x770/0x770
[ 68.521328] ? __inet_lookup_established+0x12e/0x3d0
[ 68.526966] ? __udp4_lib_rcv+0x1150/0x1150
[ 68.531719] ? load_too_imbalanced+0xd0/0xd0
[ 68.536581] ip_local_deliver_finish+0x13d/0x3f0
[ 68.541921] ? inet_del_offload+0x40/0x40
[ 68.546489] ? update_curr+0xa9/0x3c0
[ 68.550667] ? __rcu_read_unlock+0x6e/0x120
[ 68.555431] ? trace_event_raw_event_rcu_torture_read+0x190/0x190
[ 68.562332] ip_local_deliver+0xe2/0x280
[ 68.566804] ? ip_call_ra_chain+0x2e0/0x2e0
[ 68.571567] ? ip_route_input_noref+0x95/0xd0
[ 68.576563] ? ip_route_input_rcu+0x1570/0x1570
[ 68.581716] ip_rcv_finish+0x5f7/0xa10
[ 68.585983] ? put_prev_task_fair+0x50/0x50
[ 68.590747] ? ip_local_deliver_finish+0x3f0/0x3f0
[ 68.596204] ? account_entity_enqueue+0x1d2/0x240
[ 68.601551] ? load_too_imbalanced+0xd0/0xd0
[ 68.606409] ? __update_load_avg_cfs_rq.isra.5+0x2b6/0x2c0
[ 68.612628] ? __enqueue_entity+0x93/0xc0
[ 68.617196] ? tcp_v4_send_synack+0x1a0/0x1a0
[ 68.622153] ? enqueue_entity+0xc16/0x1450
[ 68.626817] ? rb_insert_color_cached+0x6f3/0x7a0
[ 68.632180] ? rb_insert_color+0x770/0x770
[ 68.636847] ? __dev_queue_xmit+0x61d/0x1110
[ 68.641706] ? put_prev_task_fair+0x50/0x50
[ 68.646468] ip_rcv+0x49d/0x780
[ 68.650066] ? ip_local_deliver+0x280/0x280
[ 68.654830] ? idle_cpu+0x100/0x100
[ 68.658818] ? __alloc_pages_nodemask+0x316/0x1d30
[ 68.664277] ? enqueue_task_fair+0x2d9/0x10d0
[ 68.669235] ? smp_thermal_interrupt+0x230/0x230
[ 68.674484] ? update_cfs_group+0x232/0x290
[ 68.679246] ? rb_insert_color+0x770/0x770
[ 68.683910] ? reweight_entity+0x630/0x630
[ 68.688583] ? ip_local_deliver+0x280/0x280
[ 68.693346] __netif_receive_skb_core+0xfa9/0x1bd0
[ 68.698791] ? flush_backlog+0x250/0x250
[ 68.703262] ? 0xffffffffa0000000
[ 68.707052] ? update_curr+0xa9/0x3c0
[ 68.711230] ? stack_access_ok+0x3d/0xa0
[ 68.715702] ? __module_address+0x232/0x330
[ 68.720498] ? modules_open+0x60/0x60
[ 68.724678] ? __accumulate_pelt_segments+0x47/0xd0
[ 68.730217] ? __module_address+0x232/0x330
[ 68.734980] ? stack_access_ok+0x3d/0xa0
[ 68.739450] ? deref_stack_reg+0x98/0xd0
[ 68.743922] ? __read_once_size_nocheck.constprop.3+0x10/0x10
[ 68.750435] ? get_stack_info+0x37/0x150
[ 68.754906] ? __orc_find+0x6b/0xc0
[ 68.758891] ? secondary_startup_64+0xa4/0xb0
[ 68.763848] ? unwind_next_frame+0xcd/0xbf0
[ 68.768610] ? cpuidle_enter_state+0x12a/0x510
[ 68.773667] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 68.778623] ? deref_stack_reg+0xd0/0xd0
[ 68.783093] ? __build_skb+0x85/0x210
[ 68.787276] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 68.792242] ? is_module_text_address+0x11/0x30
[ 68.797393] ? kernel_text_address+0x5a/0x100
[ 68.802350] ? _mix_pool_bytes+0x1fc/0x260
[ 68.807019] ? tg3_poll_msix+0x64/0x290 [tg3]
[ 68.811975] ? __build_skb+0x85/0x210
[ 68.816155] ? __save_stack_trace+0x73/0xd0
[ 68.831167] ? depot_save_stack+0x12d/0x470
[ 68.835929] ? __build_skb+0x85/0x210
[ 68.840108] ? kasan_kmalloc+0x142/0x170
[ 68.844591] ? kmem_cache_alloc+0xb3/0x1c0
[ 68.849247] ? __build_skb+0x85/0x210
[ 68.853425] ? __netdev_alloc_skb+0xeb/0x150
[ 68.858287] ? tg3_poll_work+0x1113/0x1d80 [tg3]
[ 68.863535] ? __rcu_read_unlock+0x6e/0x120
[ 68.868299] ? trace_event_raw_event_rcu_torture_read+0x190/0x190
[ 68.875199] ? tcp_gro_receive+0x3cd/0x550
[ 68.879865] ? tcp4_gro_receive+0x25/0x350
[ 68.884566] ? start_secondary+0x271/0x2b0
[ 68.889230] ? secondary_startup_64+0xa5/0xb0
[ 68.894187] ? inet_gro_receive+0x19a/0x5e0
[ 68.898950] ? ktime_get_with_offset+0x144/0x1e0
[ 68.904217] ? ktime_get_resolution_ns+0xf0/0xf0
[ 68.909457] ? trace_event_raw_event_rcu_torture_read+0x190/0x190
[ 68.916360] ? trace_event_raw_event_rcu_torture_read+0x190/0x190
[ 68.923261] ? netif_receive_skb_internal+0x93/0x240
[ 68.928897] netif_receive_skb_internal+0x93/0x240
[ 68.934340] ? dev_cpu_dead+0x470/0x470
[ 68.938715] ? __build_skb+0x85/0x210
[ 68.942895] ? net_rx_action+0xb00/0xb00
[ 68.947366] ? memset+0x1f/0x40
[ 68.950962] ? __build_skb+0x1b7/0x210
[ 68.955238] ? skb_push+0x80/0x80
[ 68.959029] napi_gro_receive+0x1b3/0x1d0
[ 68.963597] ? dev_gro_receive+0xc50/0xc50
[ 68.968284] tg3_poll_work+0x13e3/0x1d80 [tg3]
[ 68.973346] ? tg3_poll_controller+0x90/0x90 [tg3]
[ 68.978787] ? enqueue_entity+0x1450/0x1450
[ 68.983551] ? napi_complete_done+0x159/0x2e0
[ 68.988547] ? napi_gro_flush+0xd0/0xd0
[ 68.992922] ? rb_insert_color+0x12e/0x770
[ 68.997588] ? rb_first_postorder+0x50/0x50
[ 69.002353] ? rcu_segcblist_extract_pend_cbs+0xa0/0xa0
[ 69.008282] ? dequeue_rt_stack+0x103/0x5a0
[ 69.013050] tg3_poll_msix+0x64/0x290 [tg3]
[ 69.017814] net_rx_action+0x4a8/0xb00
[ 69.022093] ? napi_complete_done+0x2e0/0x2e0
[ 69.027108] ? read_exit_mmio+0x140/0x140 [kvm]
[ 69.032277] ? update_max_interval+0x40/0x40
[ 69.037136] ? wait_rcu_exp_gp+0x60/0x60
[ 69.041607] ? _raw_spin_unlock+0xc0/0xc0
[ 69.046175] ? rcu_segcblist_future_gp_needed+0x48/0x80
[ 69.052105] ? cpu_needs_another_gp+0x29e/0x2b0
[ 69.057255] ? print_other_cpu_stall+0x870/0x870
[ 69.062503] ? __wake_up_common+0xa9/0x2d0
[ 69.067169] ? __note_gp_changes+0x670/0x670
[ 69.072028] ? remove_wait_queue+0x160/0x160
[ 69.076889] ? _raw_spin_unlock+0xc0/0xc0
[ 69.081457] ? resched_curr+0x84/0x1b0
[ 69.085732] ? wake_q_add+0x50/0x50
[ 69.089720] ? cyc2ns_read_end+0x20/0x20
[ 69.094192] ? _raw_spin_unlock+0xc0/0xc0
[ 69.098759] ? _raw_spin_trylock+0xe0/0xe0
[ 69.103425] ? native_sched_clock_from_tsc+0x130/0x160
[ 69.109258] ? sched_clock_cpu+0x14/0xf0
[ 69.113730] ? try_to_wake_up+0x4a9/0x7f0
[ 69.118300] ? raise_softirq_irqoff+0x40/0x40
[ 69.123257] ? migrate_swap_stop+0x3b0/0x3b0
[ 69.128117] ? crng_reseed+0x3d0/0x3d0
[ 69.132398] ? _raw_spin_unlock+0xc0/0xc0
[ 69.136966] ? cyc2ns_read_begin+0x20/0x90
[ 69.141633] ? add_interrupt_randomness+0x1cd/0x3d0
[ 69.147177] ? tg3_interrupt_tagged+0x1b0/0x1b0 [tg3]
[ 69.152911] ? xfer_secondary_pool+0x70/0x70
[ 69.157771] ? irq_wait_for_poll+0xf0/0xf0
[ 69.162437] __do_softirq+0x17f/0x4de
[ 69.166618] ? __softirqentry_text_start+0x8/0x8
[ 69.171866] ? handle_irq_event_percpu+0xb9/0xf0
[ 69.177116] ? __handle_irq_event_percpu+0x390/0x390
[ 69.182745] ? nr_iowait+0x110/0x110
[ 69.186828] ? _raw_spin_unlock+0x73/0xc0
[ 69.191397] ? _raw_spin_trylock+0xe0/0xe0
[ 69.196062] ? handle_irq_event+0x79/0x90
[ 69.200629] ? handle_edge_irq+0x166/0x2f0
[ 69.205295] irq_exit+0xe1/0xf0
[ 69.208892] do_IRQ+0x94/0xe0
[ 69.212295] common_interrupt+0x8c/0x8c
[ 69.216669] </IRQ>
[ 69.219100] RIP: 0010:cpuidle_enter_state+0x12a/0x510
[ 69.224835] RSP: 0018:ffff88036c7cfd08 EFLAGS: 00000246 ORIG_RAX: ffffffffffffffdd
[ 69.233409] RAX: 0000000000000000 RBX: ffffe8fb00b060e0 RCX: ffffffffa01329f5
[ 69.241476] RDX: dffffc0000000000 RSI: dffffc0000000000 RDI: ffff8803703246e8
[ 69.249542] RBP: 1ffff1006d8f9fa6 R08: fffffbfff43429f8 R09: fffffbfff43429f8
[ 69.257608] R10: ffff88036c7cfcc8 R11: fffffbfff43429f7 R12: 0000000fcd62a077
[ 69.265673] R13: 0000000000000002 R14: 0000000000000002 R15: ffffffffa183eac0
[ 69.273741] ? sched_idle_set_state+0x25/0x30
[ 69.278699] ? cpuidle_enter_state+0x106/0x510
[ 69.283754] ? cpuidle_enter_s2idle+0x130/0x130
[ 69.288906] ? rcu_eqs_enter_common.constprop.62+0xd1/0x1e0
[ 69.295223] ? rcu_gp_init+0xf70/0xf70
[ 69.299499] ? sched_set_stop_task+0x160/0x160
[ 69.304586] do_idle+0x1af/0x200
[ 69.308287] cpu_startup_entry+0xd2/0xe0
[ 69.312759] ? cpu_in_idle+0x20/0x20
[ 69.316842] ? _raw_spin_trylock+0xe0/0xe0
[ 69.321508] ? memcpy+0x34/0x50
[ 69.325107] start_secondary+0x271/0x2b0
[ 69.329577] ? set_cpu_sibling_map+0x840/0x840
[ 69.334633] secondary_startup_64+0xa5/0xb0
[ 69.339387]
[ 69.341136] Allocated by task 844:
[ 69.345024] __kmalloc+0xfa/0x230
[ 69.348815] pfifo_fast_init+0x69/0x160
[ 69.353190] qdisc_create_dflt+0x97/0xc0
[ 69.357661] mq_init+0x19f/0x1f0
[ 69.361356] qdisc_create_dflt+0x97/0xc0
[ 69.365825] dev_activate+0x48e/0x4e0
[ 69.370005] __dev_open+0x19e/0x210
[ 69.373989] __dev_change_flags+0x3b5/0x3f0
[ 69.378751] dev_change_flags+0x50/0xa0
[ 69.383126] do_setlink+0x5eb/0x1cf0
[ 69.387209] rtnl_newlink+0x9d5/0xe40
[ 69.391390] rtnetlink_rcv_msg+0x37c/0x7e0
[ 69.396122] netlink_rcv_skb+0x122/0x230
[ 69.400594] netlink_unicast+0x2ae/0x360
[ 69.405066] netlink_sendmsg+0x5d5/0x620
[ 69.409536] sock_sendmsg+0x64/0x80
[ 69.413520] ___sys_sendmsg+0x4a8/0x500
[ 69.417894] __sys_sendmsg+0xa9/0x140
[ 69.422073] entry_SYSCALL_64_fastpath+0x1e/0x81
[ 69.427319]
[ 69.429067] Freed by task 1:
[ 69.432371] kfree+0x8d/0x1c0
[ 69.435775] erst_reader+0x7ef/0x980
[ 69.439857] pstore_get_backend_records+0xdf/0x370
[ 69.445303] pstore_get_records+0x69/0x90
[ 69.449872] pstore_fill_super+0xfe/0x110
[ 69.454441] mount_single+0x60/0xe0
[ 69.458426] mount_fs+0x48/0x190
[ 69.462122] vfs_kern_mount.part.7+0x9f/0x210
[ 69.467079] do_mount+0x945/0x1690
[ 69.470965] SyS_mount+0x55/0xd0
[ 69.474658] entry_SYSCALL_64_fastpath+0x1e/0x81
[ 69.479904]
[ 69.481652] The buggy address belongs to the object at ffff88036f34a100
[ 69.481652] which belongs to the cache kmalloc-8192 of size 8192
[ 69.495958] The buggy address is located 8000 bytes inside of
[ 69.495958] 8192-byte region [ffff88036f34a100, ffff88036f34c100)
[ 69.509388] The buggy address belongs to the page:
[ 69.514832] page:0000000086a349ff count:1 mapcount:0 mapping: (null) index:0x0 compound_mapcount: 0
[ 69.525933] flags: 0x2ffff0000008100(slab|head)
[ 69.531084] raw: 02ffff0000008100 0000000000000000 0000000000000000 0000000100030003
[ 69.539852] raw: dead000000000100 dead000000000200 ffff88036fc0e680 0000000000000000
[ 69.548640] page dumped because: kasan: bad access detected
[ 69.554955]
[ 69.556704] Memory state around the buggy address:
[ 69.562147] ffff88036f34bf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 69.570331] ffff88036f34bf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 69.578515] >ffff88036f34c000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 69.586699] ^
[ 69.592725] ffff88036f34c080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 69.600901] ffff88036f34c100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 69.609084] ==================================================================
Download attachment ".config.gz" of type "application/gzip" (27625 bytes)
Powered by blists - more mailing lists