Wind River Support Network

HomeDefectsLIN8-6320
Fixed

LIN8-6320 : ipv6: BUG_ON triggered in raw.c

Created: Mar 29, 2017    Updated: Dec 3, 2018
Resolved Date: Apr 12, 2017
Found In Version: 8.0
Fix Version: 8.0.0.17
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

ipv6: BUG_ON triggered in raw.c when running the attached reproducer:

root@qemu3:~# ./reproducer
------------[ cut here ]------------
kernel BUG at /Builds/wrl8-broadwell-64-HEAD/bitbake_build/tmp/work-shared/intel-broadwell-64/kernel-source/net/ipv6/raw.c:591!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
Modules linked in: iosf_mbi crct10dif_pclmul crct10dif_common aesni_intel aes_x86_64 glue_helper lrw gf128mul ablk_helper cryptd acpi_cpufreq ata_generic tpm_tis sch_fq_codel softdog
CPU: 1 PID: 348 Comm: r2 Not tainted 4.1.21-WR8.0.0.0_standard #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.8.2-0-g33fbe13 by qemu-project.org 04/01/2014
task: ffff8801f4f9b080 ti: ffff8800bba78000 task.ti: ffff8800bba78000
RIP: 0010:[<ffffffff81e775fc>]  [<ffffffff81e775fc>] rawv6_sendmsg+0x142c/0x1460
RSP: 0018:ffff8800bba7f8b8  EFLAGS: 00010282
RAX: 00000000fffffff2 RBX: ffff8800bba7fc48 RCX: 0000000000000031
RDX: dffffc0000000000 RSI: 0000000000000030 RDI: ffff8801f4dbaf84
RBP: ffff8800bba7fc78 R08: ffff8800bba7f4b8 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000000 R12: ffff8800bb308000
R13: 0000000000000030 R14: ffff8801f4dbaf00 R15: ffff8800bba7fbe8
FS:  00007fe04c8cd700(0000) GS:ffff8801f7280000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fe04c346d40 CR3: 00000000bb0a8000 CR4: 00000000001406e0
Stack:
 0000000000000000 ffff8801f4eafc00 ffff8800bba7fbe8 ffff8800bba6c480
 ffff880100000000 ffff880100000000 1ffff1001774ff21 ffff8800bb308000
 ffff8800bb308288 ffff880000000009 ffff880000000000 ffff880000000000
Call Trace:
 [<ffffffff81e761d0>] ? rawv6_setsockopt+0xc0/0xc0
 [<ffffffff81e68478>] ? do_ipv6_setsockopt.isra.4+0x2f8/0x1c70
 [<ffffffff81e68180>] ? ip6_ra_control+0x240/0x240
 [<ffffffff811fd3d0>] ? __alloc_pages_nodemask+0x280/0xe40
 [<ffffffff8121c6e4>] ? mod_zone_page_state+0x24/0xa0
 [<ffffffff81274e83>] ? kasan_poison_slab+0x63/0x70
 [<ffffffff8126d922>] ? new_slab+0x1c2/0x4c0
 [<ffffffff810ea670>] ? abort_exclusive_wait+0xe0/0xe0
 [<ffffffff816ad817>] ? debug_smp_processor_id+0x17/0x20
 [<ffffffff81de852f>] inet_sendmsg+0xff/0x150
 [<ffffffff81ced1ed>] sock_sendmsg+0x4d/0x70
 [<ffffffff81cefacd>] SyS_sendto+0x20d/0x280
 [<ffffffff81cef8c0>] ? SyS_getpeername+0x190/0x190
 [<ffffffff81294d59>] ? get_empty_filp+0x169/0x240
 [<ffffffff81607eda>] ? security_d_instantiate+0x6a/0x80
 [<ffffffff81e69e4a>] ? ipv6_setsockopt+0x5a/0xd0
 [<ffffffff81e7613b>] ? rawv6_setsockopt+0x2b/0xc0
 [<ffffffff81ceff20>] ? SyS_setsockopt+0x100/0x1b0
 [<ffffffff81f86a1b>] system_call_fastpath+0x16/0x6e
Code: ff ff ff ff 66 89 8b 20 fd ff ff e9 bb fe ff ff 4c 89 fa be 5a 00 00 00 4c 89 e7 e8 2f 81 01 00 41 be a6 ff ff ff e9 b2 f3 ff ff <0f> 0b 8b 95 90 fc ff ff f7 d0 01 c2 83 d2 00 89 95 90 fc ff ff 
RIP  [<ffffffff81e775fc>] rawv6_sendmsg+0x142c/0x1460
 RSP <ffff8800bba7f8b8>
---[ end trace a352c54211b3a4d7 ]---

Steps to Reproduce

configure --enable-board=intel-broadwell-64 --enable-kernel=standard --enable-rootfs=glibc-std
(kernel compiled with CONFIG_KASAN=y)

<start qemu>

root@qemu3:~# ./reproducer

Other Downloads


Live chat
Online