February 2018 - LKP - Ml01.01.Org

[net] ba4f5b62a2: kernel_BUG_at_net/socket.c

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: ba4f5b62a2565718cf1b85e736df12da68bbb114 ("net: mark slab's used by ss as UAPI") url: https://github.com/0day-ci/linux/commits/Stephen-Hemminger/mark-some-slab... in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -m 512M caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +------------------------------------------+------------+------------+ | | 679d6c9b78 | ba4f5b62a2 | +------------------------------------------+------------+------------+ | boot_successes | 37 | 0 | | boot_failures | 0 | 6 | | kernel_BUG_at_net/socket.c | 0 | 6 | | invalid_opcode:#[##] | 0 | 6 | | RIP:sock_init | 0 | 6 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 6 | +------------------------------------------+------------+------------+ [ 0.054820] kernel BUG at net/socket.c:293! [ 0.055261] invalid opcode: 0000 [#1] PREEMPT [ 0.055574] CPU: 0 PID: 1 Comm: swapper Not tainted 4.16.0-rc2-00147-gba4f5b6 #1 [ 0.056094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.056681] RIP: 0010:sock_init+0xc7/0x1a9 [ 0.056979] RSP: 0000:ffffc9000000be58 EFLAGS: 00010293 [ 0.057351] RAX: 0000000000000000 RBX: cbc1095dc7d516bb RCX: ffff88001f66e040 [ 0.057903] RDX: 0000000000000000 RSI: ffffffff833e9787 RDI: ffffffff82df9208 [ 0.058401] RBP: ffffc9000000be70 R08: ffffc9000000bf48 R09: 0000000000000000 [ 0.058902] R10: 0000000000000002 R11: 0000000000000100 R12: 0000000000000003 [ 0.059401] R13: 0000000000000000 R14: ffffffff833e96c0 R15: 9feaf2bde0204734 [ 0.059909] FS: 0000000000000000(0000) GS:ffffffff82a42000(0000) knlGS:0000000000000000 [ 0.060000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.060000] CR2: 0000000000000000 CR3: 0000000002a1c000 CR4: 00000000000006f0 [ 0.060000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.060000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.060000] Call Trace: [ 0.060000] do_one_initcall+0x110/0x30e [ 0.060000] ? do_early_param+0x1d9/0x1d9 [ 0.060000] kernel_init_freeable+0x191/0x2ff [ 0.060000] ? rest_init+0x10d/0x10d [ 0.060000] kernel_init+0x14/0x1ca [ 0.060000] ? rest_init+0x10d/0x10d [ 0.060000] ret_from_fork+0x24/0x30 [ 0.060000] Code: df 82 31 c9 31 d2 44 89 e6 49 83 c4 02 48 89 05 c0 8a f2 ff e8 16 e2 dc fd 4a ff 04 e5 c8 09 24 83 4d 85 ed 75 07 e8 14 71 d9 fd <0f> 0b 48 b8 66 15 13 7e 02 01 3f 70 48 01 c3 e8 00 71 d9 fd 48 [ 0.060000] RIP: sock_init+0xc7/0x1a9 RSP: ffffc9000000be58 [ 0.060043] ---[ end trace 7952a3ce7af68811 ]--- To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

[rcu] df95cc69cc: BUG:KASAN:null-ptr-deref_in__lock_acquire

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: df95cc69cca894430640237d39453f5d96c40a7d ("rcu: Parallelize expedited grace-period initialization") https://git.kernel.org/cgit/linux/kernel/git/paulmck/linux-rcu.git rcu/dev in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -m 512M caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +------------------------------------------------------------------+------------+------------+ | | 3fea14045a | df95cc69cc | +------------------------------------------------------------------+------------+------------+ | boot_successes | 4 | 0 | | boot_failures | 4 | 17 | | invoked_oom-killer:gfp_mask=0x | 4 | | | Mem-Info | 4 | | | Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 4 | | | BUG:KASAN:null-ptr-deref_in__lock_acquire | 0 | 17 | | BUG:unable_to_handle_kernel | 0 | 17 | | Oops:#[##] | 0 | 17 | | RIP:__lock_acquire | 0 | 17 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 17 | +------------------------------------------------------------------+------------+------------+ [ 0.030859] BUG: KASAN: null-ptr-deref in __lock_acquire+0x171/0x13d0 [ 0.031636] Read of size 8 at addr 0000000000000018 by task swapper/0/0 [ 0.032000] [ 0.032000] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.16.0-rc1-00044-gdf95cc6 #1 [ 0.032000] Call Trace: [ 0.032000] dump_stack+0x81/0xb3 [ 0.032000] kasan_report+0x22a/0x25a [ 0.032000] __lock_acquire+0x171/0x13d0 [ 0.032000] ? lookup_chain_cache+0x42/0x6b [ 0.032000] ? mark_lock+0x25b/0x26d [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.032000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.032000] ? acpi_hw_read+0x1a0/0x202 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? lock_acquire+0x1c0/0x209 [ 0.032000] lock_acquire+0x1c0/0x209 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] sync_rcu_exp_select_cpus+0x31b/0x44d [ 0.032000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.032000] ? signal_pending+0x15/0x15 [ 0.032000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.032000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.032000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.032000] ? printk+0x94/0xb0 [ 0.032000] ? show_regs_print_info+0xa/0xa [ 0.032000] ? lock_downgrade+0x26a/0x26a [ 0.032000] ? acpi_read_bit_register+0xb1/0xde [ 0.032000] ? acpi_read+0xa/0xa [ 0.032000] ? acpi_read+0xa/0xa [ 0.032000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.032000] ? _find_next_bit+0x3f/0xe4 [ 0.032000] ? __lock_is_held+0x2a/0x87 [ 0.032000] ? lock_is_held_type+0x78/0x86 [ 0.032000] rcu_test_sync_prims+0xa/0x23 [ 0.032000] rest_init+0xb/0xcf [ 0.032000] start_kernel+0x59a/0x5be [ 0.032000] ? mem_encrypt_init+0x6/0x6 [ 0.032000] ? memcpy_orig+0x54/0x110 [ 0.032000] ? x86_family+0x5/0x1d [ 0.032000] ? load_ucode_bsp+0x3a/0xab [ 0.032000] secondary_startup_64+0xa5/0xb0 [ 0.032000] ================================================================== [ 0.032000] Disabling lock debugging due to kernel taint [ 0.032000] BUG: unable to handle kernel NULL pointer dereference at 0000000000000018 [ 0.032000] IP: __lock_acquire+0x171/0x13d0 [ 0.032000] PGD 0 P4D 0 [ 0.032000] Oops: 0000 [#1] PREEMPT SMP KASAN PTI [ 0.032000] Modules linked in: [ 0.032000] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 4.16.0-rc1-00044-gdf95cc6 #1 [ 0.032000] RIP: 0010:__lock_acquire+0x171/0x13d0 [ 0.032000] RSP: 0000:ffffffff89e079a0 EFLAGS: 00010056 [ 0.032000] RAX: 0000000000000096 RBX: 0000000000000000 RCX: ffffffff884c9e31 [ 0.032000] RDX: 0000000000000003 RSI: 0000000000000003 RDI: 0000000000000001 [ 0.032000] RBP: ffffffff89e07b50 R08: dffffc0000000000 R09: 0000000000000000 [ 0.032000] R10: 0000000000000000 R11: ffffffff8b5f673a R12: 0000000000000018 [ 0.032000] R13: 0000000000000000 R14: ffffffff89e1cc40 R15: 0000000000000001 [ 0.032000] FS: 0000000000000000(0000) GS:ffff880014000000(0000) knlGS:0000000000000000 [ 0.032000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.032000] CR2: 0000000000000018 CR3: 000000001a214000 CR4: 00000000000006b0 [ 0.032000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.032000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.032000] Call Trace: [ 0.032000] ? lookup_chain_cache+0x42/0x6b [ 0.032000] ? mark_lock+0x25b/0x26d [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.032000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.032000] ? acpi_hw_read+0x1a0/0x202 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? lock_acquire+0x1c0/0x209 [ 0.032000] lock_acquire+0x1c0/0x209 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.032000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] sync_rcu_exp_select_cpus+0x31b/0x44d [ 0.032000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.032000] ? sync_sched_exp_handler+0x111/0x111 [ 0.032000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.032000] ? signal_pending+0x15/0x15 [ 0.032000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.032000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.032000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.032000] ? printk+0x94/0xb0 [ 0.032000] ? show_regs_print_info+0xa/0xa [ 0.032000] ? lock_downgrade+0x26a/0x26a [ 0.032000] ? acpi_read_bit_register+0xb1/0xde [ 0.032000] ? acpi_read+0xa/0xa [ 0.032000] ? acpi_read+0xa/0xa [ 0.032000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.032000] ? _find_next_bit+0x3f/0xe4 [ 0.032000] ? __lock_is_held+0x2a/0x87 [ 0.032000] ? lock_is_held_type+0x78/0x86 [ 0.032000] rcu_test_sync_prims+0xa/0x23 [ 0.032000] rest_init+0xb/0xcf [ 0.032000] start_kernel+0x59a/0x5be [ 0.032000] ? mem_encrypt_init+0x6/0x6 [ 0.032000] ? memcpy_orig+0x54/0x110 [ 0.032000] ? x86_family+0x5/0x1d [ 0.032000] ? load_ucode_bsp+0x3a/0xab [ 0.032000] secondary_startup_64+0xa5/0xb0 [ 0.032000] Code: 89 48 c7 c7 40 8c 65 89 e8 c4 d5 f9 ff 0f ff e9 3e 12 00 00 8b 1d fb df 9b 01 85 db 74 19 4c 89 e7 bb 00 00 00 00 e8 a6 e2 14 00 <49> 81 3c 24 80 3d a6 8a 41 0f 45 df 41 83 fd 01 77 17 45 89 ef [ 0.032000] RIP: __lock_acquire+0x171/0x13d0 RSP: ffffffff89e079a0 [ 0.032000] CR2: 0000000000000018 [ 0.032000] ---[ end trace bc09c4bd82a58373 ]--- To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

[lkp-robot] [rcu] 056becf54e: BUG:KASAN:null-ptr-deref_in__lock_acquire

by kernel test robot

TO: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> CC: LKML <linux-kernel(a)vger.kernel.org>, Paul E. McKenney <paulmck(a)linux.vnet.ibm.com>, linux-kernel(a)vger.kernel.org, lkp(a)01.org FYI, we noticed the following commit (built with gcc-7): commit: 056becf54ef1ab39db14a66625353899dba6762f ("rcu: Parallelize expedited grace-period initialization") https://git.kernel.org/cgit/linux/kernel/git/paulmck/linux-rcu.git rcu/dev in testcase: boot on test machine: qemu-system-x86_64 -enable-kvm -smp 2 -m 512M caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +------------------------------------------------------------------+------------+------------+ | | 28ea7ed1b3 | 056becf54e | +------------------------------------------------------------------+------------+------------+ | boot_successes | 2 | 0 | | boot_failures | 6 | 41 | | invoked_oom-killer:gfp_mask=0x | 6 | | | Mem-Info | 6 | | | Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 6 | | | BUG:KASAN:null-ptr-deref_in__lock_acquire | 0 | 41 | | BUG:unable_to_handle_kernel | 0 | 41 | | Oops:#[##] | 0 | 41 | | RIP:__lock_acquire | 0 | 41 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 41 | +------------------------------------------------------------------+------------+------------+ [ 0.037875] BUG: KASAN: null-ptr-deref in __lock_acquire+0x171/0x13d0 [ 0.040000] Read of size 8 at addr 0000000000000018 by task swapper/0/0 [ 0.040000] [ 0.040000] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.16.0-rc1-00044-g056becf #1 [ 0.040000] Call Trace: [ 0.040000] dump_stack+0x81/0xb3 [ 0.040000] kasan_report+0x22a/0x25a [ 0.040000] __lock_acquire+0x171/0x13d0 [ 0.040000] ? lookup_chain_cache+0x42/0x6b [ 0.040000] ? mark_lock+0x25b/0x26d [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.040000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.040000] ? acpi_hw_read+0x1a0/0x202 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? lock_acquire+0x1c0/0x209 [ 0.040000] lock_acquire+0x1c0/0x209 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? sync_sched_exp_handler+0x111/0x111 [ 0.040000] sync_rcu_exp_select_cpus+0x2ff/0x412 [ 0.040000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.040000] ? sync_sched_exp_handler+0x111/0x111 [ 0.040000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.040000] ? signal_pending+0x15/0x15 [ 0.040000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.040000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.040000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.040000] ? printk+0x94/0xb0 [ 0.040000] ? show_regs_print_info+0xa/0xa [ 0.040000] ? lock_downgrade+0x26a/0x26a [ 0.040000] ? acpi_read_bit_register+0xb1/0xde [ 0.040000] ? acpi_read+0xa/0xa [ 0.040000] ? acpi_read+0xa/0xa [ 0.040000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.040000] ? _find_next_bit+0x3f/0xe4 [ 0.040000] ? __lock_is_held+0x2a/0x87 [ 0.040000] ? lock_is_held_type+0x78/0x86 [ 0.040000] rcu_test_sync_prims+0xa/0x23 [ 0.040000] rest_init+0xb/0xcf [ 0.040000] start_kernel+0x59a/0x5be [ 0.040000] ? mem_encrypt_init+0x6/0x6 [ 0.040000] ? memcpy_orig+0x54/0x110 [ 0.040000] ? x86_family+0x5/0x1d [ 0.040000] ? load_ucode_bsp+0x3a/0xab [ 0.040000] secondary_startup_64+0xa5/0xb0 [ 0.040000] ================================================================== [ 0.040000] Disabling lock debugging due to kernel taint [ 0.040000] BUG: unable to handle kernel NULL pointer dereference at 0000000000000018 [ 0.040000] IP: __lock_acquire+0x171/0x13d0 [ 0.040000] PGD 0 P4D 0 [ 0.040000] Oops: 0000 [#1] PREEMPT SMP KASAN PTI [ 0.040000] Modules linked in: [ 0.040000] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 4.16.0-rc1-00044-g056becf #1 [ 0.040000] RIP: 0010:__lock_acquire+0x171/0x13d0 [ 0.040000] RSP: 0000:ffffffffb6a079a0 EFLAGS: 00010056 [ 0.040000] RAX: 0000000000000096 RBX: 0000000000000000 RCX: ffffffffb50c9e31 [ 0.040000] RDX: 0000000000000003 RSI: 0000000000000003 RDI: 0000000000000001 [ 0.040000] RBP: ffffffffb6a07b50 R08: dffffc0000000000 R09: 0000000000000000 [ 0.040000] R10: 0000000000000000 R11: ffffffffb81f673a R12: 0000000000000018 [ 0.040000] R13: 0000000000000000 R14: ffffffffb6a1cc40 R15: 0000000000000001 [ 0.040000] FS: 0000000000000000(0000) GS:ffff880012e00000(0000) knlGS:0000000000000000 [ 0.040000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.040000] CR2: 0000000000000018 CR3: 0000000017a14000 CR4: 00000000000006b0 [ 0.040000] Call Trace: [ 0.040000] ? lookup_chain_cache+0x42/0x6b [ 0.040000] ? mark_lock+0x25b/0x26d [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.040000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.040000] ? acpi_hw_read+0x1a0/0x202 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? lock_acquire+0x1c0/0x209 [ 0.040000] lock_acquire+0x1c0/0x209 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.040000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.040000] ? sync_sched_exp_handler+0x111/0x111 [ 0.040000] sync_rcu_exp_select_cpus+0x2ff/0x412 [ 0.040000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.040000] ? sync_sched_exp_handler+0x111/0x111 [ 0.040000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.040000] ? signal_pending+0x15/0x15 [ 0.040000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.040000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.040000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.040000] ? printk+0x94/0xb0 [ 0.040000] ? show_regs_print_info+0xa/0xa [ 0.040000] ? lock_downgrade+0x26a/0x26a [ 0.040000] ? acpi_read_bit_register+0xb1/0xde [ 0.040000] ? acpi_read+0xa/0xa [ 0.040000] ? acpi_read+0xa/0xa [ 0.040000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.040000] ? _find_next_bit+0x3f/0xe4 [ 0.040000] ? __lock_is_held+0x2a/0x87 [ 0.040000] ? lock_is_held_type+0x78/0x86 [ 0.040000] rcu_test_sync_prims+0xa/0x23 [ 0.040000] rest_init+0xb/0xcf [ 0.040000] start_kernel+0x59a/0x5be [ 0.040000] ? mem_encrypt_init+0x6/0x6 [ 0.040000] ? memcpy_orig+0x54/0x110 [ 0.040000] ? x86_family+0x5/0x1d [ 0.040000] ? load_ucode_bsp+0x3a/0xab [ 0.040000] secondary_startup_64+0xa5/0xb0 [ 0.040000] Code: b6 48 c7 c7 40 8c 25 b6 e8 c4 d5 f9 ff 0f ff e9 3e 12 00 00 8b 1d fb df 9b 01 85 db 74 19 4c 89 e7 bb 00 00 00 00 e8 6b e2 14 00 <49> 81 3c 24 80 3d 66 b7 41 0f 45 df 41 83 fd 01 77 17 45 89 ef [ 0.040000] RIP: __lock_acquire+0x171/0x13d0 RSP: ffffffffb6a079a0 [ 0.040000] CR2: 0000000000000018 [ 0.040000] ---[ end trace 3538acf156ca7a42 ]--- To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, Shun

4 years, 5 months

1
0
0 / 0

[rcu] 858c7b0986: BUG:KASAN:null-ptr-deref_in__lock_acquire

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: 858c7b0986b397d4960612f03a0ef00be69a8d3f ("rcu: Parallelize expedited grace-period initialization") https://git.kernel.org/cgit/linux/kernel/git/paulmck/linux-rcu.git rcu/dev in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -m 512M caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +------------------------------------------------------------------+------------+------------+ | | 28ea7ed1b3 | 858c7b0986 | +------------------------------------------------------------------+------------+------------+ | boot_successes | 2 | 0 | | boot_failures | 6 | 21 | | invoked_oom-killer:gfp_mask=0x | 6 | | | Mem-Info | 6 | | | Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 6 | | | BUG:KASAN:null-ptr-deref_in__lock_acquire | 0 | 21 | | BUG:unable_to_handle_kernel | 0 | 21 | | Oops:#[##] | 0 | 21 | | RIP:__lock_acquire | 0 | 21 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 21 | +------------------------------------------------------------------+------------+------------+ [ 0.033438] BUG: KASAN: null-ptr-deref in __lock_acquire+0x171/0x13d0 [ 0.034118] Read of size 8 at addr 0000000000000018 by task swapper/0/0 [ 0.034926] [ 0.035118] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.16.0-rc1-00044-g858c7b0 #1 [ 0.036000] Call Trace: [ 0.036000] dump_stack+0x81/0xb3 [ 0.036000] kasan_report+0x22a/0x25a [ 0.036000] __lock_acquire+0x171/0x13d0 [ 0.036000] ? lookup_chain_cache+0x42/0x6b [ 0.036000] ? mark_lock+0x25b/0x26d [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.036000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.036000] ? acpi_hw_read+0x1a0/0x202 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? lock_acquire+0x1c0/0x209 [ 0.036000] lock_acquire+0x1c0/0x209 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] sync_rcu_exp_select_cpus+0x31b/0x44d [ 0.036000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.036000] ? signal_pending+0x15/0x15 [ 0.036000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.036000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.036000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.036000] ? printk+0x94/0xb0 [ 0.036000] ? show_regs_print_info+0xa/0xa [ 0.036000] ? lock_downgrade+0x26a/0x26a [ 0.036000] ? acpi_read_bit_register+0xb1/0xde [ 0.036000] ? acpi_read+0xa/0xa [ 0.036000] ? acpi_read+0xa/0xa [ 0.036000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.036000] ? _find_next_bit+0x3f/0xe4 [ 0.036000] ? __lock_is_held+0x2a/0x87 [ 0.036000] ? lock_is_held_type+0x78/0x86 [ 0.036000] rcu_test_sync_prims+0xa/0x23 [ 0.036000] rest_init+0xb/0xcf [ 0.036000] start_kernel+0x59a/0x5be [ 0.036000] ? mem_encrypt_init+0x6/0x6 [ 0.036000] ? memcpy_orig+0x54/0x110 [ 0.036000] ? x86_family+0x5/0x1d [ 0.036000] ? load_ucode_bsp+0x3a/0xab [ 0.036000] secondary_startup_64+0xa5/0xb0 [ 0.036000] ================================================================== [ 0.036000] Disabling lock debugging due to kernel taint [ 0.036000] BUG: unable to handle kernel NULL pointer dereference at 0000000000000018 [ 0.036000] IP: __lock_acquire+0x171/0x13d0 [ 0.036000] PGD 0 P4D 0 [ 0.036000] Oops: 0000 [#1] PREEMPT SMP KASAN PTI [ 0.036000] Modules linked in: [ 0.036000] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 4.16.0-rc1-00044-g858c7b0 #1 [ 0.036000] RIP: 0010:__lock_acquire+0x171/0x13d0 [ 0.036000] RSP: 0000:ffffffff908079a0 EFLAGS: 00010056 [ 0.036000] RAX: 0000000000000096 RBX: 0000000000000000 RCX: ffffffff8eec9e31 [ 0.036000] RDX: 0000000000000003 RSI: 0000000000000003 RDI: 0000000000000001 [ 0.036000] RBP: ffffffff90807b50 R08: dffffc0000000000 R09: 0000000000000000 [ 0.036000] R10: 0000000000000000 R11: ffffffff91ff673a R12: 0000000000000018 [ 0.036000] R13: 0000000000000000 R14: ffffffff9081cc40 R15: 0000000000000001 [ 0.036000] FS: 0000000000000000(0000) GS:ffff880017c00000(0000) knlGS:0000000000000000 [ 0.036000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.036000] CR2: 0000000000000018 CR3: 0000000015614000 CR4: 00000000000006b0 [ 0.036000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.036000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.036000] Call Trace: [ 0.036000] ? lookup_chain_cache+0x42/0x6b [ 0.036000] ? mark_lock+0x25b/0x26d [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.036000] ? debug_check_no_locks_freed+0x19f/0x19f [ 0.036000] ? acpi_hw_read+0x1a0/0x202 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? lock_acquire+0x1c0/0x209 [ 0.036000] lock_acquire+0x1c0/0x209 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] _raw_spin_lock_irqsave+0x43/0x56 [ 0.036000] ? rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] rcu_report_exp_cpu_mult+0x21/0x6d [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] sync_rcu_exp_select_cpus+0x31b/0x44d [ 0.036000] ? rcu_read_lock_sched_held+0x60/0x66 [ 0.036000] ? sync_sched_exp_handler+0x111/0x111 [ 0.036000] _synchronize_rcu_expedited+0x427/0x5ba [ 0.036000] ? signal_pending+0x15/0x15 [ 0.036000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.036000] ? acpi_hw_write_pm1_control+0x52/0x52 [ 0.036000] ? __change_page_attr_set_clr+0x420/0x420 [ 0.036000] ? printk+0x94/0xb0 [ 0.036000] ? show_regs_print_info+0xa/0xa [ 0.036000] ? lock_downgrade+0x26a/0x26a [ 0.036000] ? acpi_read_bit_register+0xb1/0xde [ 0.036000] ? acpi_read+0xa/0xa [ 0.036000] ? acpi_read+0xa/0xa [ 0.036000] ? acpi_hw_get_mode+0x91/0xc2 [ 0.036000] ? _find_next_bit+0x3f/0xe4 [ 0.036000] ? __lock_is_held+0x2a/0x87 [ 0.036000] ? lock_is_held_type+0x78/0x86 [ 0.036000] rcu_test_sync_prims+0xa/0x23 [ 0.036000] rest_init+0xb/0xcf [ 0.036000] start_kernel+0x59a/0x5be [ 0.036000] ? mem_encrypt_init+0x6/0x6 [ 0.036000] ? memcpy_orig+0x54/0x110 [ 0.036000] ? x86_family+0x5/0x1d [ 0.036000] ? load_ucode_bsp+0x3a/0xab [ 0.036000] secondary_startup_64+0xa5/0xb0 [ 0.036000] Code: 90 48 c7 c7 40 8c 05 90 e8 c4 d5 f9 ff 0f ff e9 3e 12 00 00 8b 1d fb df 9b 01 85 db 74 19 4c 89 e7 bb 00 00 00 00 e8 a6 e2 14 00 <49> 81 3c 24 80 3d 46 91 41 0f 45 df 41 83 fd 01 77 17 45 89 ef [ 0.036000] RIP: __lock_acquire+0x171/0x13d0 RSP: ffffffff908079a0 [ 0.036000] CR2: 0000000000000018 [ 0.036000] ---[ end trace faa1e435d14a1a8c ]--- To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

51bf41bc7a ("rcu: Parallelize expedited grace-period .."): BUG: unable to handle kernel NULL pointer dereference at 0000000000000028

by kernel test robot

Greetings, 0day kernel testing robot got the below dmesg and the first bad commit is https://git.kernel.org/pub/scm/linux/kernel/git/paulmck/linux-rcu.git dev.2018.02.20a commit 51bf41bc7a5338b8698ff7c797f1b44d5fd4eaec Author: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> AuthorDate: Thu Feb 1 22:05:38 2018 -0800 Commit: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> CommitDate: Thu Feb 22 16:29:18 2018 -0800 rcu: Parallelize expedited grace-period initialization The latency of RCU expedited grace periods grows with increasing numbers of CPUs, eventually failing to be all that expedited. Much of the growth in latency is in the initialization phase, so this commit uses workqueues to carry out this initialization concurrently on a rcu_node-by-rcu_node basis. Signed-off-by: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> 4cad5591fc rcu: Create RCU-specific workqueues with rescuers 51bf41bc7a rcu: Parallelize expedited grace-period initialization +------------------------------------------+------------+------------+ | | 4cad5591fc | 51bf41bc7a | +------------------------------------------+------------+------------+ | boot_successes | 32 | 0 | | boot_failures | 0 | 15 | | BUG:unable_to_handle_kernel | 0 | 15 | | Oops:#[##] | 0 | 15 | | RIP:sync_rcu_exp_handler | 0 | 15 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 15 | +------------------------------------------+------------+------------+ [ 0.014887] mce: CPU supports 10 MCE banks [ 0.015399] Last level iTLB entries: 4KB 0, 2MB 0, 4MB 0 [ 0.015925] Last level dTLB entries: 4KB 0, 2MB 0, 4MB 0, 1GB 0 [ 0.016675] CPU: Intel Core Processor (Haswell) (family: 0x6, model: 0x3c, stepping: 0x4) [ 0.017441] Spectre V2 : Mitigation: Full generic retpoline [ 0.018652] BUG: unable to handle kernel NULL pointer dereference at 0000000000000028 [ 0.019547] IP: sync_rcu_exp_handler+0x2f/0x40 [ 0.019999] PGD 0 P4D 0 [ 0.019999] Oops: 0000 [#1] PREEMPT PTI [ 0.019999] CPU: 0 PID: 0 Comm: swapper Not tainted 4.16.0-rc1-00044-g51bf41b #1 [ 0.019999] RIP: 0010:sync_rcu_exp_handler+0x2f/0x40 [ 0.019999] RSP: 0000:ffffffff82c03d70 EFLAGS: 00010246 [ 0.019999] RAX: 0000000000000000 RBX: ffffffff82e174e0 RCX: 0000000000000001 [ 0.019999] RDX: 0000000000000000 RSI: ffffffff82c22b90 RDI: ffffffff82e17950 [ 0.019999] RBP: ffffffff82e174e0 R08: 000000008cf12941 R09: 0000000000000000 [ 0.019999] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8110fed0 [ 0.019999] R13: 0000000000000001 R14: ffffffff811110e0 R15: 0000001fffffffc0 [ 0.019999] FS: 0000000000000000(0000) GS:ffffffff82c35000(0000) knlGS:0000000000000000 [ 0.019999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.019999] CR2: 0000000000000028 CR3: 0000000002c1c001 CR4: 00000000001606f0 [ 0.019999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.019999] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.019999] Call Trace: [ 0.019999] sync_rcu_exp_select_cpus+0x1d8/0x2d0 [ 0.019999] ? mutex_trylock+0xbf/0xe0 [ 0.019999] ? rcu_report_exp_cpu_mult+0x60/0x60 [ 0.019999] _synchronize_rcu_expedited+0x1fe/0x330 [ 0.019999] ? acpi_hw_read+0x15e/0x170 [ 0.019999] ? update_intr_gate+0x14/0x14 [ 0.019999] synchronize_rcu+0x8e/0xc0 [ 0.019999] ? acpi_read_bit_register+0x5e/0x69 [ 0.019999] ? ___might_sleep+0x5c/0x1e0 [ 0.019999] ? update_intr_gate+0x14/0x14 [ 0.019999] ? synchronize_sched_expedited+0x85/0xa0 [ 0.019999] rcu_test_sync_prims+0x5/0x20 [ 0.019999] rest_init+0xb/0xa0 [ 0.019999] ? update_intr_gate+0x14/0x14 [ 0.019999] start_kernel+0x5f6/0x67c [ 0.019999] secondary_startup_64+0xa5/0xb0 [ 0.019999] Code: 40 90 c3 82 8b 90 10 02 00 00 85 d2 7e 11 80 b8 14 02 00 00 00 75 08 c6 80 16 02 00 00 01 c3 48 8b 87 d0 04 00 00 b9 01 00 00 00 <48> 8b 50 28 48 8b 70 20 e9 64 ff ff ff 0f 1f 40 00 55 53 48 89 [ 0.019999] RIP: sync_rcu_exp_handler+0x2f/0x40 RSP: ffffffff82c03d70 [ 0.019999] CR2: 0000000000000028 [ 0.019999] ---[ end trace 033a3ccd5a44322a ]--- [ 0.019999] Kernel panic - not syncing: Fatal exception # HH:MM RESULT GOOD BAD GOOD_BUT_DIRTY DIRTY_NOT_BAD git bisect start af71bfca19219bf1573a02c2f9f7be70524a0df6 91ab883eb21325ad80f3473633f794c78ac87f51 -- git bisect bad 69517db547281d66b15749fe6ceccf5c61b31150 # 23:30 B 0 11 24 0 Merge 'linux-review/Ashok-Raj/Patches-to-address-some-limitations-in-OS-microcode-loading/20180223-045000' into devel-hourly-2018022313 git bisect bad 0c3f42541677792a6eb6b1d983b142e0f0c81ad9 # 23:42 B 0 3 16 0 Merge 'linux-review/Madalin-Bucur/DPAA-Ethernet-fixes/20180220-074859' into devel-hourly-2018022313 git bisect bad 5f273f4a4cd6a05e14cd2e9ababcc1e93a32e93b # 23:54 B 0 11 24 0 Merge 'sailus-media/videobuf2-kconfig' into devel-hourly-2018022313 git bisect good 147a17df988d254619ac7fafb7a36c14a8f0fd7d # 00:07 G 11 0 2 2 Merge 'linux-review/Asutosh-Das/ufshcd-optimizations-and-fixes/20180221-162114' into devel-hourly-2018022313 git bisect bad 6b62ddf3a7b43ce43bd45ea559c3c325e73de1ee # 00:17 B 0 11 24 0 Merge 'linux-review/Philippe-Bergheaud/powerpc-powernv-Enable-tunneled-operations/20180221-125708' into devel-hourly-2018022313 git bisect bad 8f87dda28ed4c606b056112f048eb516eb311ab6 # 00:30 B 0 11 24 0 Merge 'stericsson/tcm' into devel-hourly-2018022313 git bisect bad 7c6de15cea2a045ced25283159e0e3dfde09d177 # 00:43 B 0 11 24 0 Merge 'linux-review/Richard-Guy-Briggs/audit-return-on-memory-error-to-avoid-null-pointer-dereference/20180221-195601' into devel-hourly-2018022313 git bisect good a7dd28a91879aa42f52b7b3e1f1f4c806da3a73d # 00:57 G 11 0 1 1 Merge 'djwong-xfs/djwong-wtf' into devel-hourly-2018022313 git bisect bad 12f0253d771184343951f5a722b42c8f0a0fcf35 # 01:06 B 0 11 24 0 Merge 'rcu/dev.2018.02.20a' into devel-hourly-2018022313 git bisect good 65963d246147c46aafda2b04523d6dbe6c457e7c # 01:18 G 11 0 1 1 rcu: Make expedited RCU CPU selection avoid unnecessary stores git bisect good 85ba6bfe8bb2a4d907f7380a8f37b31616ad694e # 01:33 G 11 0 2 2 torture: Provide more sensible nreader/nwriter defaults for rcuperf git bisect good 1a37bf4a02c58f4fd2a71139e3f5f592214dd859 # 01:44 G 11 0 1 1 EXP: rcu: Add debugging info to assertion git bisect good 8839060010391af090e5f9a48052cad6cc1b1fc3 # 01:57 G 11 0 1 1 EXP: rcu: Add debugging info to other assertion git bisect good 4cad5591fc03b61a017fb58f74497e613f3af359 # 02:11 G 11 0 1 1 rcu: Create RCU-specific workqueues with rescuers git bisect bad 51bf41bc7a5338b8698ff7c797f1b44d5fd4eaec # 02:23 B 0 11 25 1 rcu: Parallelize expedited grace-period initialization # first bad commit: [51bf41bc7a5338b8698ff7c797f1b44d5fd4eaec] rcu: Parallelize expedited grace-period initialization git bisect good 4cad5591fc03b61a017fb58f74497e613f3af359 # 02:27 G 32 0 4 5 rcu: Create RCU-specific workqueues with rescuers # extra tests with debug options git bisect bad 51bf41bc7a5338b8698ff7c797f1b44d5fd4eaec # 02:40 B 0 10 23 0 rcu: Parallelize expedited grace-period initialization # extra tests on HEAD of linux-devel/devel-hourly-2018022313 git bisect bad af71bfca19219bf1573a02c2f9f7be70524a0df6 # 02:41 B 0 31 47 0 0day head guard for 'devel-hourly-2018022313' # extra tests on tree/branch rcu/dev.2018.02.20a git bisect bad 51bf41bc7a5338b8698ff7c797f1b44d5fd4eaec # 02:42 B 0 15 28 0 rcu: Parallelize expedited grace-period initialization # extra tests with first bad commit reverted git bisect good 1525a87f19d360c7789d63abf0f38616b42bee70 # 02:57 G 11 0 1 1 Revert "rcu: Parallelize expedited grace-period initialization" --- 0-DAY kernel test infrastructure Open Source Technology Center https://lists.01.org/pipermail/lkp Intel Corporation

4 years, 5 months

1
0
0 / 0

[x86/fsgsbase/64] 8daf7ac187: PANIC:double_fault

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: 8daf7ac1876e2beb513c11b628cc2afd3888ac47 ("x86/fsgsbase/64: Enable FSGSBASE by default and add a chicken bit") https://github.com/changbae/FSGSBASE fsgs_tip_4.16-rc1_v8.2 in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -cpu host -smp 2 -m 1G caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +-----------------------------------------+------------+------------+ | | b72ce564aa | 8daf7ac187 | +-----------------------------------------+------------+------------+ | boot_successes | 13 | 2 | | boot_failures | 0 | 4 | | PANIC:double_fault | 0 | 4 | | RIP:async_page_fault | 0 | 4 | | Kernel_panic-not_syncing:Machine_halted | 0 | 4 | | RIP:trace_hardirqs_off_caller | 0 | 4 | +-----------------------------------------+------------+------------+ [ 0.104817] smpboot: Max logical packages: 2 [ 0.105632] ---------------- [ 0.106204] | NMI testsuite: [ 0.106793] -------------------- [ 0.107418] remote IPI: [ 0.104000] PANIC: double fault, error_code: 0x0 [ 0.104000] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.16.0-rc1-00013-g8daf7ac1 #171 [ 0.104000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.104000] RIP: 0010:async_page_fault+0x11/0x60 [ 0.104000] RSP: 0000:fffffe0000032fc8 EFLAGS: 00010046 [ 0.104000] RAX: 000000009b200a27 RBX: 0000000000000001 RCX: ffffffff9b200a27 [ 0.104000] RDX: ffff916594e00000 RSI: ffffffff9b201afb RDI: ffffffff99002d28 [ 0.104000] RBP: ffffffff9b201afb R08: 00000000c5610c9a R09: 0000000000000002 [ 0.104000] R10: ffffb0ad40377dd8 R11: ffffffff9e6a2788 R12: 0000000000000001 [ 0.104000] R13: 00000000fffffff0 R14: 0000000018684001 R15: 0000000000000000 [ 0.104000] FS: 0000000000000000(0000) GS:ffff916594e00000(0000) knlGS:0000000000000000 [ 0.104000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.104000] CR2: fffffe0000032fb8 CR3: 0000000018684001 CR4: 00000000001706e0 [ 0.104000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.104000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.104000] Call Trace: [ 0.104000] Code: ff e8 b0 b2 ea fd e9 ff 02 00 00 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 83 c4 88 f6 84 24 88 00 00 00 03 75 20 <e8> ca 01 00 00 48 89 e7 48 8b 74 24 78 48 c7 44 24 78 ff ff ff [ 0.104000] Kernel panic - not syncing: Machine halted. [ 0.104000] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.16.0-rc1-00013-g8daf7ac1 #171 [ 0.104000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.104000] Call Trace: [ 0.104000] <#DF> [ 0.104000] dump_stack+0x81/0xb3 [ 0.104000] panic+0xec/0x251 [ 0.104000] ? console_unlock+0x58e/0x5fa [ 0.104000] df_debug+0x29/0x29 [ 0.104000] do_double_fault+0x106/0x116 [ 0.104000] ? error_entry+0x8b/0x110 [ 0.104000] double_fault+0x27/0x30 [ 0.104000] RIP: 0010:async_page_fault+0x11/0x60 [ 0.104000] RSP: 0000:fffffe0000032fc8 EFLAGS: 00010046 [ 0.104000] RAX: 000000009b200a27 RBX: 0000000000000001 RCX: ffffffff9b200a27 [ 0.104000] RDX: ffff916594e00000 RSI: ffffffff9b201afb RDI: ffffffff99002d28 [ 0.104000] RBP: ffffffff9b201afb R08: 00000000c5610c9a R09: 0000000000000002 [ 0.104000] R10: ffffb0ad40377dd8 R11: ffffffff9e6a2788 R12: 0000000000000001 [ 0.104000] R13: 00000000fffffff0 R14: 0000000018684001 R15: 0000000000000000 [ 0.104000] ? error_entry+0x8b/0x110 [ 0.104000] ? native_iret+0x7/0x7 [ 0.104000] ? error_entry+0x8b/0x110 [ 0.104000] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 0.104000] RIP: 0010:trace_hardirqs_off_caller+0xd/0x9b [ 0.104000] RSP: 0000:fffffe0000033070 EFLAGS: 00010083 [ 0.104000] </#DF> Elapsed time: 10 #!/bin/bash To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

f66871fb4c: WARNING:inconsistent_lock_state

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: f66871fb4ce1e3784559ed297cfe868615c93102 ("Synchronize task mm counters on demand") url: https://github.com/0day-ci/linux/commits/Daniel-Colascione/Synchronize-ta... in testcase: boot on test machine: qemu-system-x86_64 -enable-kvm -cpu host -smp 2 -m 2G caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +-------------------------------------------------+------------+------------+ | | af3e79d295 | f66871fb4c | +-------------------------------------------------+------------+------------+ | boot_successes | 1093 | 0 | | boot_failures | 59 | 14 | | RIP:arch_local_irq_restore | 3 | 4 | | BUG:kernel_hang_in_boot_stage | 4 | 9 | | RIP:arch_local_irq_enable | 2 | | | INFO:rcu_sched_detected_stalls_on_CPUs/tasks | 2 | 1 | | BUG:kernel_hang_in_test_stage | 53 | 4 | | INFO:rcu_sched_self-detected_stall_on_CPU | 1 | | | WARNING:inconsistent_lock_state | 0 | 14 | | inconsistent{HARDIRQ-ON-W}->{IN-HARDIRQ-W}usage | 0 | 14 | | RIP:__clear_user | 0 | 1 | | RIP:queued_spin_lock_slowpath | 0 | 1 | | RIP:__down_read_trylock | 0 | 1 | | RIP:smp_call_function_single | 0 | 1 | | Kernel_panic-not_syncing:softlockup:hung_tasks | 0 | 1 | | RIP:lock_acquire | 0 | 2 | | RIP:__d_lookup_rcu | 0 | 1 | | RIP:check_poison_obj | 0 | 1 | | RIP:_copy_from_iter_full | 0 | 1 | +-------------------------------------------------+------------+------------+ [ 80.120252] WARNING: inconsistent lock state [ 80.120252] 4.16.0-rc2-00065-gf66871f #151 Not tainted [ 80.120252] -------------------------------- [ 80.120252] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 80.120252] modprobe/141 [HC1[1]:SC0[0]:HE0:SE1] takes: [ 80.120252] (&(&p->alloc_lock)->rlock){?.+.}, at: [<0000000034f1cfd0>] sync_mm_rss_all_users+0xea/0x16d [ 80.120252] {HARDIRQ-ON-W} state was registered at: [ 80.120252] _raw_spin_lock+0x30/0x61 [ 80.120252] __set_task_comm+0x25/0x156 [ 80.120252] kthreadd+0x28/0x21d [ 80.120252] ret_from_fork+0x3a/0x50 [ 80.120252] irq event stamp: 312 [ 80.120252] hardirqs last enabled at (311): [<00000000f42cde47>] _raw_read_unlock_irqrestore+0x42/0x54 [ 80.120252] hardirqs last disabled at (312): [<000000003fa8ce06>] apic_timer_interrupt+0x82/0x90 [ 80.120252] softirqs last enabled at (104): [<0000000043d2b201>] __do_softirq+0x3ad/0x3e9 [ 80.120252] softirqs last disabled at (93): [<0000000014e94b82>] irq_exit+0x57/0xa6 [ 80.120252] [ 80.120252] other info that might help us debug this: [ 80.120252] Possible unsafe locking scenario: [ 80.120252] [ 80.120252] CPU0 [ 80.120252] ---- [ 80.120252] lock(&(&p->alloc_lock)->rlock); [ 80.120252] <Interrupt> [ 80.120252] lock(&(&p->alloc_lock)->rlock); [ 80.120252] [ 80.120252] *** DEADLOCK *** [ 80.120252] [ 80.120252] 1 lock held by modprobe/141: [ 80.120252] #0: (rcu_read_lock){....}, at: [<000000002ed86a2c>] sync_mm_rss_all_users+0x5/0x16d [ 80.120252] [ 80.120252] stack backtrace: [ 80.120252] CPU: 0 PID: 141 Comm: modprobe Not tainted 4.16.0-rc2-00065-gf66871f #151 [ 80.120252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 80.120252] Call Trace: [ 80.120252] <IRQ> [ 80.120252] dump_stack+0x81/0xb3 [ 80.120252] print_usage_bug+0x1b6/0x1c5 [ 80.120252] ? print_shortest_lock_dependencies+0x177/0x177 [ 80.120252] mark_lock+0x10d/0x1fa [ 80.120252] __lock_acquire+0x3a5/0xe9a [ 80.120252] ? sync_mm_rss_all_users+0xea/0x16d [ 80.120252] ? __lock_acquire+0x32c/0xe9a [ 80.120252] ? rcu_read_unlock+0x59/0x59 [ 80.120252] ? sync_mm_rss_all_users+0xea/0x16d [ 80.120252] ? lock_acquire+0x183/0x1bd [ 80.120252] lock_acquire+0x183/0x1bd [ 80.120252] ? sync_mm_rss_all_users+0xea/0x16d [ 80.120252] _raw_spin_lock+0x30/0x61 [ 80.120252] ? sync_mm_rss_all_users+0xea/0x16d [ 80.120252] sync_mm_rss_all_users+0xea/0x16d [ 80.120252] get_mm_counter+0x19/0x33 [ 80.120252] get_mm_rss+0xc/0x32 [ 80.120252] __acct_update_integrals+0x38/0x64 [ 80.120252] update_process_times+0x1c/0x4a [ 80.120252] tick_sched_handle+0x45/0x51 [ 80.120252] tick_sched_timer+0x34/0x62 [ 80.120252] __hrtimer_run_queues+0x1e7/0x342 [ 80.120252] ? tick_sched_do_timer+0x29/0x29 [ 80.120252] hrtimer_interrupt+0x92/0x165 [ 80.120252] smp_apic_timer_interrupt+0x155/0x255 [ 80.120252] apic_timer_interrupt+0x87/0x90 [ 80.120252] </IRQ> [ 80.120252] RIP: 0010:lock_acquire+0x2/0x1bd [ 80.120252] RSP: 0000:ffffadc381527d18 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff12 [ 80.120252] RAX: ffff9aa430cd53c0 RBX: ffff9aa43258d0c0 RCX: 0000000000000001 [ 80.120252] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff9aa430cd54e8 [ 80.120252] RBP: ffffadc381527d38 R08: 0000000000000001 R09: 0000000000000000 [ 80.120252] R10: ffffadc381527c78 R11: ffffffffb5805e98 R12: ffff9aa431ade900 [ 80.120252] R13: 00007ffcc8d48c40 R14: ffff9aa431165b00 R15: 00007ffcc8d48c39 [ 80.120252] __might_fault+0x61/0x89 [ 80.120252] ? __might_fault+0x37/0x89 [ 80.120252] create_elf_tables+0x7e/0x515 [ 80.120252] ? map_vdso+0x102/0x110 [ 80.120252] load_elf_binary+0xc56/0xe9c [ 80.120252] search_binary_handler+0x86/0x209 [ 80.120252] do_execveat_common+0x495/0x748 [ 80.120252] ? rcu_read_lock_sched_held+0x38/0x5a [ 80.120252] do_execve+0x1f/0x21 [ 80.120252] call_usermodehelper_exec_async+0xfa/0x122 [ 80.120252] ? call_usermodehelper+0x3e/0x3e [ 80.120252] ret_from_fork+0x3a/0x50 [ 81.094814] modprobe (141) used greatest stack depth: 14024 bytes left [ 81.100631] lp: driver loaded but no devices found [ 81.127691] Applicom driver: $Id: ac.c,v 1.30 2000/03/22 16:03:57 dwmw2 Exp $ [ 81.138256] ac.o: No PCI boards found. [ 81.145095] ac.o: For an ISA board you must supply memory and irq parameters. [ 81.163664] Non-volatile memory driver v1.3 BUG: kernel hang in boot stage Elapsed time: 730 #!/bin/bash # To reproduce, # 1) save job-script and this script (both are attached in 0day report email) # 2) run this script with your compiled kernel and optional env $INSTALL_MOD_PATH kernel=$1 initrds=( To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

940eac90de ("rcu: Parallelize expedited grace-period .."): BUG: unable to handle kernel paging request at 0cc8901b

by kernel test robot

Greetings, 0day kernel testing robot got the below dmesg and the first bad commit is https://git.kernel.org/pub/scm/linux/kernel/git/paulmck/linux-rcu.git rcu/dev commit 940eac90de6e13977c6b71846893852bb55566f4 Author: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> AuthorDate: Thu Feb 1 22:05:38 2018 -0800 Commit: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> CommitDate: Thu Feb 22 19:13:02 2018 -0800 rcu: Parallelize expedited grace-period initialization The latency of RCU expedited grace periods grows with increasing numbers of CPUs, eventually failing to be all that expedited. Much of the growth in latency is in the initialization phase, so this commit uses workqueues to carry out this initialization concurrently on a rcu_node-by-rcu_node basis. Signed-off-by: Paul E. McKenney <paulmck(a)linux.vnet.ibm.com> 28ea7ed1b3 EXP rcu: Add ->qsmask to assertion 940eac90de rcu: Parallelize expedited grace-period initialization +----------------------------------------------------------------------------------+------------+------------+ | | 28ea7ed1b3 | 940eac90de | +----------------------------------------------------------------------------------+------------+------------+ | boot_successes | 26 | 0 | | boot_failures | 6 | 26 | | Mem-Info | 6 | | | invoked_oom-killer:gfp_mask=0x | 2 | | | EIP:__put_user_4 | 2 | | | page_allocation_failure:order:#,mode:#(GFP_KERNEL|__GFP_NORETRY),nodemask=(null) | 2 | | | Out_of_memory:Kill_process | 1 | | | Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 1 | | | EIP:iov_iter_fault_in_readable | 1 | | | BUG:unable_to_handle_kernel | 0 | 26 | | Oops:#[##] | 0 | 26 | | EIP:sync_rcu_exp_handler | 0 | 26 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 26 | +----------------------------------------------------------------------------------+------------+------------+ [ 0.061965] RTC time: 15:07:07, date: 02/23/18 [ 0.062141] NET: Registered protocol family 16 [ 0.064110] audit: initializing netlink subsys (disabled) [ 0.065216] EISA bus registered [ 0.065879] audit: type=2000 audit(1519369627.532:1): state=initialized audit_enabled=0 res=1 [ 0.067019] BUG: unable to handle kernel paging request at 0cc8901b [ 0.068000] IP: sync_rcu_exp_handler+0x3a/0x60 [ 0.068000] *pde = 00000000 [ 0.068000] Oops: 0000 [#1] PREEMPT SMP [ 0.068000] CPU: 0 PID: 4 Comm: kworker/0:0 Not tainted 4.16.0-rc1-00044-g940eac9 #1 [ 0.068000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.068000] Workqueue: rcu_gp wait_rcu_exp_gp [ 0.068000] EIP: sync_rcu_exp_handler+0x3a/0x60 [ 0.068000] EFLAGS: 00210206 CPU: 0 [ 0.068000] EAX: c2b43ac4 EBX: 0cc89003 ECX: 00000001 EDX: 00000000 [ 0.068000] ESI: c2b43ac4 EDI: c2b439c0 EBP: cf6bdef0 ESP: cf6bdee8 [ 0.068000] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068 [ 0.068000] CR0: 80050033 CR2: 0cc8901b CR3: 02f49000 CR4: 001406d0 [ 0.068000] DR0: 00000000 DR1: 00000000 DR2: 00000000 DR3: 00000000 [ 0.068000] DR6: fffe0ff0 DR7: 00000400 [ 0.068000] Call Trace: [ 0.068000] ? rcu_is_cpu_rrupt_from_idle+0x50/0x50 [ 0.068000] sync_rcu_exp_select_cpus+0xfb/0x270 [ 0.068000] ? rcu_is_cpu_rrupt_from_idle+0x50/0x50 [ 0.068000] wait_rcu_exp_gp+0x1a/0x30 [ 0.068000] process_one_work+0x216/0x520 [ 0.068000] worker_thread+0x42/0x590 [ 0.068000] kthread+0xf4/0x110 [ 0.068000] ? process_one_work+0x520/0x520 [ 0.068000] ? __kthread_bind_mask+0x90/0x90 [ 0.068000] ret_from_fork+0x19/0x24 [ 0.068000] Code: 56 53 8b 8a 48 02 00 00 85 c9 7e 09 80 ba 4c 02 00 00 00 74 2c 89 c6 8b 98 cc 03 00 00 e8 af d4 63 00 03 1c 85 40 62 b0 c2 89 f0 <8b> 4b 18 8b 53 14 6a 01 e8 79 f1 ff ff 58 8d 65 f8 5b 5e 5d c3 [ 0.068000] EIP: sync_rcu_exp_handler+0x3a/0x60 SS:ESP: 0068:cf6bdee8 [ 0.068000] CR2: 000000000cc8901b [ 0.068000] ---[ end trace afd9e1df68da8c70 ]--- [ 0.068000] Kernel panic - not syncing: Fatal exception # HH:MM RESULT GOOD BAD GOOD_BUT_DIRTY DIRTY_NOT_BAD git bisect start 7d8c41166002edae178bf7319d2767d223dfdd8e 7928b2cbe55b2a410a0f5c1f154610059c57b1b2 -- git bisect bad c23ae404fb1981d2af4f6710cfd035784adf3cda # 13:35 B 0 11 37 13 Merge 'linux-review/Chiranjeevi-Rapolu/media-ov5670-Update-to-SPDX-identifier/20180223-104802' into devel-catchup-201802231127 git bisect good 6ac4137aa67cacdb0cac45ac5dde463ccd73a9b7 # 13:44 G 10 0 7 7 Merge 'mtd/nand/next' into devel-catchup-201802231127 git bisect bad 106a176daea31249d02d19a69ae1e77a82b826ef # 13:53 B 0 11 32 8 Merge 'rcu/rcu/dev' into devel-catchup-201802231127 git bisect good 6c1c662060b99475af012a6e0d9fd15844427261 # 14:07 G 11 0 9 9 rcu: Create RCU-specific workqueues with rescuers git bisect good 85ba6bfe8bb2a4d907f7380a8f37b31616ad694e # 14:30 G 10 0 9 10 torture: Provide more sensible nreader/nwriter defaults for rcuperf git bisect good aeff5331deb464760ed5b66c63274cd5bdd3b073 # 14:42 G 11 0 8 8 Merge branches 'fixes.2018.02.22a', 'srcu.2018.02.20a' and 'torture.2018.02.20a' into HEAD git bisect good 6d974845670ca186f52206b29d1bd2803065a153 # 14:49 G 11 0 7 7 EXP: rcu: Add ->boost_tasks to assertion git bisect good 28ea7ed1b3a4f5536eb73740d3a888063d0d36e5 # 15:01 G 11 0 9 11 EXP rcu: Add ->qsmask to assertion git bisect bad 940eac90de6e13977c6b71846893852bb55566f4 # 15:07 B 0 11 35 11 rcu: Parallelize expedited grace-period initialization # first bad commit: [940eac90de6e13977c6b71846893852bb55566f4] rcu: Parallelize expedited grace-period initialization git bisect good 28ea7ed1b3a4f5536eb73740d3a888063d0d36e5 # 15:10 G 32 0 17 28 EXP rcu: Add ->qsmask to assertion # extra tests with debug options git bisect bad 940eac90de6e13977c6b71846893852bb55566f4 # 15:19 B 0 11 25 1 rcu: Parallelize expedited grace-period initialization # extra tests on HEAD of linux-devel/devel-catchup-201802231127 git bisect bad 7d8c41166002edae178bf7319d2767d223dfdd8e # 15:19 B 0 15 31 0 0day head guard for 'devel-catchup-201802231127' # extra tests on tree/branch rcu/rcu/dev git bisect bad 940eac90de6e13977c6b71846893852bb55566f4 # 15:20 B 0 26 39 0 rcu: Parallelize expedited grace-period initialization # extra tests with first bad commit reverted git bisect good 2bbc69b0fe644e9c20684a2a9fae5312535895aa # 15:50 G 11 0 5 5 Revert "rcu: Parallelize expedited grace-period initialization" --- 0-DAY kernel test infrastructure Open Source Technology Center https://lists.01.org/pipermail/lkp Intel Corporation

4 years, 5 months

1
0
0 / 0

[x86/fsgsbase/64] 400e528a82: PANIC:double_fault

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: 400e528a826a6df668c40efa894f32cf8d732254 ("x86/fsgsbase/64: Enable FSGSBASE by default and add a chicken bit") https://github.com/changbae/FSGSBASE fsgs_tip_4.16-rc2_v9 in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -cpu host -smp 2 -m 1G caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +-----------------------------------------+------------+------------+ | | a765d2ce8c | 400e528a82 | +-----------------------------------------+------------+------------+ | boot_successes | 8 | 4 | | boot_failures | 0 | 4 | | PANIC:double_fault | 0 | 4 | | RIP:async_page_fault | 0 | 4 | | Kernel_panic-not_syncing:Machine_halted | 0 | 4 | +-----------------------------------------+------------+------------+ [ 0.053462] smpboot: Max logical packages: 2 [ 0.053462] ---------------- [ 0.053462] | NMI testsuite: [ 0.053837] -------------------- [ 0.054219] remote IPI: [ 0.055594] PANIC: double fault, error_code: 0x0 [ 0.056000] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.16.0-rc2-00014-g400e528 #179 [ 0.056000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.056000] RIP: 0010:async_page_fault+0x17/0x80 [ 0.056000] RSP: 0000:fffffe0000033000 EFLAGS: 00010046 [ 0.056000] RAX: 00000000ac200a07 RBX: 0000000000000001 RCX: ffffffffac200a07 [ 0.056000] RDX: ffff988754e00000 RSI: ffffffffac201d5e RDI: ffffffffaa002d28 [ 0.056000] RBP: ffffffffac201d5e R08: 0000000000000000 R09: 0000000000000000 [ 0.056000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 0.056000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 0.056000] FS: 0000000000000000(0000) GS:ffff988754e00000(0000) knlGS:0000000000000000 [ 0.056000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.056000] CR2: fffffe0000032ff8 CR3: 0000000037684001 CR4: 00000000001706e0 [ 0.056000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 0.056000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 0.056000] Call Trace: [ 0.056000] Code: 78 48 c7 44 24 78 ff ff ff ff e8 14 b0 ea fd e9 d0 02 00 00 0f 1f 00 57 56 52 51 50 41 50 4d 31 c0 41 51 4d 31 c9 41 52 4d 31 d2 <41> 53 4d 31 db 53 31 db 55 31 ed 41 54 4d 31 e4 41 55 4d 31 ed [ 0.056000] Kernel panic - not syncing: Machine halted. [ 0.056000] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.16.0-rc2-00014-g400e528 #179 [ 0.056000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.056000] Call Trace: [ 0.056000] <#DF> [ 0.056000] dump_stack+0x81/0xb3 [ 0.056000] panic+0xec/0x251 [ 0.056000] ? console_unlock+0x58e/0x5fa [ 0.056000] df_debug+0x29/0x29 [ 0.056000] do_double_fault+0x106/0x116 [ 0.056000] double_fault+0x56/0x60 [ 0.056000] WARNING: stack going in the wrong direction? ip=double_fault+0x56/0x60 [ 0.056000] ? error_entry+0x3e/0xc0 [ 0.056000] ? native_iret+0x7/0x7 [ 0.056000] ? error_entry+0x3e/0xc0 [ 0.056000] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 0.056000] ? async_page_fault+0x17/0x80 [ 0.056000] </#DF> Elapsed time: 10 #!/bin/bash To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

[rcu] 355a64fb97: general_protection_fault:#[##]

by kernel test robot

FYI, we noticed the following commit (built with gcc-7): commit: 355a64fb9780ef5737e77c36ba24b5b72ca7c185 ("rcu: Parallelize expedited grace-period initialization") https://git.kernel.org/cgit/linux/kernel/git/paulmck/linux-rcu.git rcu/dev in testcase: trinity with following parameters: runtime: 300s test-description: Trinity is a linux system call fuzz tester. test-url: http://codemonkey.org.uk/projects/trinity/ on test machine: qemu-system-x86_64 -enable-kvm -cpu host -smp 2 -m 1G caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace): +------------------------------------------+------------+------------+ | | 28ea7ed1b3 | 355a64fb97 | +------------------------------------------+------------+------------+ | boot_successes | 8 | 8 | | boot_failures | 0 | 5 | | general_protection_fault:#[##] | 0 | 5 | | RIP:sync_sched_exp_handler | 0 | 5 | | Kernel_panic-not_syncing:Fatal_exception | 0 | 5 | +------------------------------------------+------------+------------+ [ 0.145388] smpboot: Max logical packages: 2 [ 0.146768] ---------------- [ 0.147766] | NMI testsuite: [ 0.148037] -------------------- [ 0.149173] remote IPI: [ 0.149298] general protection fault: 0000 [#1] SMP PTI [ 0.151852] Modules linked in: [ 0.152000] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.16.0-rc1-00044-g355a64f #137 [ 0.152000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014 [ 0.152000] RIP: 0010:sync_sched_exp_handler+0x14/0x96 [ 0.152000] RSP: 0000:ffffbc71c031fda8 EFLAGS: 00010287 [ 0.152000] RAX: deace9a5d4c00000 RBX: ffffffff8e6f4500 RCX: 0000000000000003 [ 0.152000] RDX: 0000000000000003 RSI: ffffffff8e6e9580 RDI: ffffffff8e6f4908 [ 0.152000] RBP: ffffffff8e6f4500 R08: 00000000e272d5c3 R09: 0000000000000004 [ 0.152000] R10: ffffbc71c031fd18 R11: ffffffff8e6f4518 R12: 0000000000000001 [ 0.152000] R13: ffffffff8b157074 R14: 0000000fffffffe0 R15: ffffffff8e6f4908 [ 0.152000] FS: 0000000000000000(0000) GS:ffff9af8d4c00000(0000) knlGS:0000000000000000 [ 0.152000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 0.152000] CR2: 00000000ffffffff CR3: 000000004a684000 CR4: 00000000000006f0 [ 0.152000] Call Trace: [ 0.152000] sync_rcu_exp_select_cpus+0x1d0/0x285 [ 0.152000] ? set_debug_rodata+0x11/0x11 [ 0.152000] _synchronize_rcu_expedited+0x277/0x3c1 [ 0.152000] ? finish_task_switch+0x1c1/0x20d [ 0.152000] ? set_debug_rodata+0x11/0x11 [ 0.152000] ? lock_is_held_type+0x47/0x4f [ 0.152000] ? ___might_sleep+0xc7/0x1d6 [ 0.152000] ? set_debug_rodata+0x11/0x11 [ 0.152000] test_nmi_ipi+0x81/0x93 [ 0.152000] dotest+0x7/0x65 [ 0.152000] nmi_selftest+0x59/0x152 [ 0.152000] native_smp_cpus_done+0x73/0x105 [ 0.152000] kernel_init_freeable+0x147/0x25c [ 0.152000] ? rest_init+0xc4/0xc4 [ 0.152000] kernel_init+0xa/0xf5 [ 0.152000] ret_from_fork+0x3a/0x50 [ 0.152000] Code: 74 05 e9 67 fe ff ff e9 cb db ff ff c3 66 66 66 66 90 e9 57 fe ff ff 66 66 66 66 90 48 8b 87 98 94 00 00 65 48 03 05 70 81 eb 74 <48> 8b 50 20 48 8b 52 70 48 85 50 28 74 73 65 8a 05 fc d6 08 75 [ 0.152000] RIP: sync_sched_exp_handler+0x14/0x96 RSP: ffffbc71c031fda8 [ 0.152104] ---[ end trace 5e427d612885ad99 ]--- [ 0.156051] Kernel panic - not syncing: Fatal exception Elapsed time: 10 #!/bin/bash To reproduce: git clone https://github.com/intel/lkp-tests.git cd lkp-tests bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email Thanks, lkp

4 years, 5 months

1
0
0 / 0

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

LKP February 2018