lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:   Wed, 24 Aug 2022 16:05:31 +0800
From:   kernel test robot <yujie.liu@...el.com>
To:     Alexander Lobakin <alobakin@...nk.ru>
CC:     <lkp@...ts.01.org>, <lkp@...el.com>,
        Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
        Edward Cree <ecree@...arflare.com>,
        "David S. Miller" <davem@...emloft.net>,
        Hyunsoon Kim <h10.kim@...sung.com>, <netdev@...r.kernel.org>
Subject: [net] de53545e8d: UBSAN:Undefined_behaviour_in_drivers/pci/probe.c

Greeting,

FYI, we noticed the following commit (built with gcc-11):

commit: de53545e8d4c145773da033b331581b7cbcc15da ("net: core: use listified Rx for GRO_NORMAL in napi_gro_receive()")
https://git.kernel.org/cgit/linux/kernel/git/sj/linux.git damon/for-v5.4.158

in testcase: boot

on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 16G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


[   31.091773][    C1] ================================================================================
[   31.092855][    C1] UBSAN: Undefined behaviour in include/linux/netfilter.h:318:2
[   31.094036][    C1] member access within misaligned address (ptrval) for type 'struct sk_buff'
[   31.095117][    C1] which requires 8 byte alignment
[   31.095776][    C1] CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 5.4.63-00085-gde53545e8d4c1 #1
[   31.096815][    C1] Call Trace:
[   31.097196][    C1]  dump_stack+0x7c/0xbe
[   31.097669][    C1]  ubsan_epilogue+0x8/0x21
[   31.098176][    C1]  ubsan_type_mismatch_common.cold+0x37/0xb4
[   31.098846][    C1]  __ubsan_handle_type_mismatch_v1+0x2b/0x31
[   31.099524][    C1]  ip_sublist_rcv+0x5f5/0x7e0
[   31.100064][    C1]  ? ubsan_epilogue+0x12/0x21
[   31.100573][    C1]  ? ip_sublist_rcv+0x7e0/0x7e0
[   31.101110][    C1]  ip_list_rcv+0x1cd/0x33b
[   31.101614][    C1]  ? ip_rcv+0x90/0x90
[   31.102097][    C1]  __netif_receive_skb_list_core+0x540/0x860
[   31.102766][    C1]  ? ubsan_type_mismatch_common.cold+0x37/0xb4
[   31.103444][    C1]  netif_receive_skb_list_internal+0x43f/0xae0
[   31.104170][    C1]  napi_complete_done+0x149/0x4b0
[   31.104719][    C1]  e1000_clean+0x8b/0x620
[   31.105208][    C1]  ? net_rx_action+0xe9/0xae0
[   31.105746][    C1]  net_rx_action+0x19b/0xae0
[   31.106291][    C1]  __do_softirq+0x159/0x83d
[   31.106808][    C1]  ? perf_trace_irq_handler_entry+0x2f0/0x2f0
[   31.107484][    C1]  run_ksoftirqd+0x35/0x60
[   31.107999][    C1]  smpboot_thread_fn+0x21a/0x6c0
[   31.108579][    C1]  ? __kthread_parkme+0xb6/0x1c0
[   31.109149][    C1]  kthread+0x162/0x250
[   31.109648][    C1]  ? __switch_to_asm+0x28/0x50
[   31.110240][    C1]  ? smpboot_unregister_percpu_thread+0x140/0x140
[   31.110977][    C1]  ? kthread_park+0x160/0x160
[   31.111504][    C1]  ret_from_fork+0x2e/0x40


this issue also exists on the latest head of linux-5.4.y stable branch


=========================================================================================
compiler/kconfig/rootfs/sleep/tbox_group/testcase:
    gcc-11/i386-randconfig-a004-20220822/yocto-i386-minimal-20190520.cgz/1/vm-snb/boot

commit:
    de53545e8d4c1 ("net: core: use listified Rx for GRO_NORMAL in napi_gro_receive()")
    df0c47585cead ("btrfs: tree-checker: fix the error message for transid error")
    de0cd3ea700d1 ("Linux 5.4.210")

de53545e8d4c1457 df0c47585cead12664815214eb1                    v5.4.210
---------------- --------------------------- ---------------------------
         fail:runs  %reproduction    fail:runs  %reproduction    fail:runs
             |             |             |             |             |
           62:66         -94%            :24         -86%           2:2     dmesg.UBSAN:Undefined_behaviour_in_include/linux/netfilter.h


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <yujie.liu@...el.com>


To reproduce:

          # build kernel
	cd linux
	cp config-5.4.63-00085-gde53545e8d4c1 .config
	make HOSTCC=gcc-11 CC=gcc-11 ARCH=i386 olddefconfig prepare modules_prepare bzImage modules
	make HOSTCC=gcc-11 CC=gcc-11 ARCH=i386 INSTALL_MOD_PATH=<mod-install-dir> modules_install
	cd <mod-install-dir>
	find lib/ | cpio -o -H newc --quiet | gzip > modules.cgz


          git clone https://github.com/intel/lkp-tests.git
          cd lkp-tests
          bin/lkp qemu -k <bzImage> -m modules.cgz job-script # job-script is attached in this email

          # if come across any failure that blocks the test,
          # please remove ~/.lkp and /lkp dir to run from a clean state.


-- 
0-DAY CI Kernel Test Service
https://01.org/lkp
View attachment "config-5.4.63-00085-gde53545e8d4c1" of type "text/plain" (127416 bytes)

View attachment "job-script" of type "text/plain" (4788 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (156684 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ