Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 565692

Summary: sys-kernel/hardened-sources-4.2.5 WARNING: CPU: 0 PID: 0 at net/sched/sch_hfsc.c:1429 hfsc_dequeue+0x30b/0x320 [sch_hfsc]()
Product: Gentoo Linux Reporter: Marcin Mirosław <bug>
Component: [OLD] ServerAssignee: Anthony Basile <blueness>
Status: RESOLVED OBSOLETE    
Severity: normal CC: hardened, kernel, pageexec, spender
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
See Also: https://bugzilla.kernel.org/show_bug.cgi?id=109581
Whiteboard:
Package list:
Runtime testing required: ---
Attachments: kernel config

Description Marcin Mirosław 2015-11-13 16:18:59 UTC 
I've found in dmesg and kern.log:

2015-11-13T14:01:29.364183+01:00 bramkarz kernel: [951379.328122] ------------[ cut here ]------------
2015-11-13T14:01:29.772782+01:00 bramkarz kernel: [951379.328136] WARNING: CPU: 0 PID: 0 at net/sched/sch_hfsc.c:1429 hfsc_dequeue+0x30b/0x320 [sch_hfsc]()
2015-11-13T14:01:29.772851+01:00 bramkarz kernel: [951379.328138] Modules linked in: xt_hashlimit xt_geoip(O) xt_TARPIT(O) sch_fq_codel xt_dscp sch_hfsc act_mirred xt
_limit cls_u32 sch_ingress xt_CLASSIFY xt_length xt_mark xt_connmark xt_nat ip6t_rt xt_NFLOG ip6table_raw iptable_raw ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf
_nat_ipv6 iptable_nat nf_nat_ipv4 nf_nat ip6table_mangle iptable_mangle ip6table_filter ip6_tables tun 8021q mrp garp stp llc nf_conntrack_ipv4 nf_defrag_ipv4 xt_comm
ent xt_tcpudp xt_multiport ipv6 xt_conntrack nf_conntrack nfnetlink_log nfnetlink iptable_filter ip_tables x_tables ifb crc32_pclmul aesni_intel aes_x86_64 ablk_helpe
r cryptd lrw gf128mul glue_helper e1000 microcode button sr_mod cdrom crc32c_intel ata_piix dm_mirror dm_region_hash dm_log dm_mod
2015-11-13T14:01:29.772852+01:00 bramkarz kernel: [951379.328192] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W  O    4.2.5-hardened #1
2015-11-13T14:01:29.772853+01:00 bramkarz kernel: [951379.328194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.8.2-0-g33fbe13 by qemu-project.org
 04/01/2014
2015-11-13T14:01:29.772854+01:00 bramkarz kernel: [951379.328195]  ffffffff8180a81b 704960fe2593e559 0000000000000000 ffffffffa022af25
2015-11-13T14:01:29.772855+01:00 bramkarz kernel: [951379.328198]  ffff880069003dc8 ffffffff81447562 0000000000000007 0000000000000000
2015-11-13T14:01:29.772855+01:00 bramkarz kernel: [951379.328200]  ffff880069003e08 ffffffff81051cf0 8000000000000000 ffffffffa022af25
2015-11-13T14:01:29.772855+01:00 bramkarz kernel: [951379.328203] Call Trace:
2015-11-13T14:01:29.772856+01:00 bramkarz kernel: [951379.328205]  <IRQ>  [<ffffffffa022af25>] ? hfsc_policy+0x35/0x791 [sch_hfsc]
2015-11-13T14:01:29.773607+01:00 bramkarz kernel: [951379.328214]  [<ffffffff81447562>] dump_stack+0x45/0x5d
2015-11-13T14:01:29.773663+01:00 bramkarz kernel: [951379.328219]  [<ffffffff81051cf0>] warn_slowpath_common+0x80/0xc0
2015-11-13T14:01:29.773664+01:00 bramkarz kernel: [951379.328222]  [<ffffffffa022af25>] ? hfsc_policy+0x35/0x791 [sch_hfsc]
2015-11-13T14:01:29.773665+01:00 bramkarz kernel: [951379.328225]  [<ffffffff81051e74>] warn_slowpath_null+0x24/0x30
2015-11-13T14:01:29.773665+01:00 bramkarz kernel: [951379.328228]  [<ffffffffa022978b>] hfsc_dequeue+0x30b/0x320 [sch_hfsc]
2015-11-13T14:01:29.773666+01:00 bramkarz kernel: [951379.328233]  [<ffffffff813b915d>] __qdisc_run+0x4d/0x1d0
2015-11-13T14:01:29.773666+01:00 bramkarz kernel: [951379.328236]  [<ffffffff813915b9>] net_tx_action+0x1a9/0x270
2015-11-13T14:01:29.773667+01:00 bramkarz kernel: [951379.328240]  [<ffffffff81055ac5>] __do_softirq+0xf5/0x1f0
2015-11-13T14:01:29.773667+01:00 bramkarz kernel: [951379.328243]  [<ffffffff81055d16>] irq_exit+0x86/0x90
2015-11-13T14:01:29.773667+01:00 bramkarz kernel: [951379.328247]  [<ffffffff8103400f>] smp_apic_timer_interrupt+0x4f/0x70
2015-11-13T14:01:29.773668+01:00 bramkarz kernel: [951379.328250]  [<ffffffff8144dd7a>] apic_timer_interrupt+0x9a/0xa0
2015-11-13T14:01:29.773668+01:00 bramkarz kernel: [951379.328251]  <EOI>  [<ffffffff8100dbc0>] ? arch_remove_reservations+0x110/0x110
2015-11-13T14:01:29.773669+01:00 bramkarz kernel: [951379.328257]  [<ffffffff8103cfe6>] ? native_safe_halt+0x6/0x10
2015-11-13T14:01:29.773879+01:00 bramkarz kernel: [951379.328260]  [<ffffffff8100dbc9>] default_idle+0x9/0x20
2015-11-13T14:01:29.773933+01:00 bramkarz kernel: [951379.328263]  [<ffffffff8100e2f7>] arch_cpu_idle+0x17/0x20
2015-11-13T14:01:29.773934+01:00 bramkarz kernel: [951379.328266]  [<ffffffff8108e9bd>] default_idle_call+0x2d/0x30
2015-11-13T14:01:29.773935+01:00 bramkarz kernel: [951379.328269]  [<ffffffff8108eb56>] cpu_startup_entry+0x196/0x280
2015-11-13T14:01:29.773935+01:00 bramkarz kernel: [951379.328284]  [<ffffffff8143d212>] rest_init+0x72/0x80
2015-11-13T14:01:29.773935+01:00 bramkarz kernel: [951379.328299]  [<ffffffff81a138c0>] start_kernel+0x57d/0x5a2
2015-11-13T14:01:29.773936+01:00 bramkarz kernel: [951379.328303]  [<ffffffff81a12120>] ? early_idt_handler_array+0x120/0x120
2015-11-13T14:01:29.773936+01:00 bramkarz kernel: [951379.328306]  [<ffffffff81a126d4>] x86_64_start_reservations+0x61/0x6b
2015-11-13T14:01:29.773937+01:00 bramkarz kernel: [951379.328309]  [<ffffffff81a127fc>] x86_64_start_kernel+0x11e/0x147
2015-11-13T14:01:29.773937+01:00 bramkarz kernel: [951379.328311] ---[ end trace 352b781efac3ac0e ]---
2015-11-13T14:01:29.773938+01:00 bramkarz kernel: [951379.338100] ------------[ cut here ]------------
2015-11-13T14:01:29.773938+01:00 bramkarz kernel: [951379.341055] WARNING: CPU: 0 PID: 0 at net/sched/sch_hfsc.c:1429 hfsc_dequeue+0x30b/0x320 [sch_hfsc]()
2015-11-13T14:01:29.773939+01:00 bramkarz kernel: [951379.341057] Modules linked in: xt_hashlimit xt_geoip(O) xt_TARPIT(O) sch_fq_codel xt_dscp sch_hfsc act_mirred xt
_limit cls_u32 sch_ingress xt_CLASSIFY xt_length xt_mark xt_connmark xt_nat ip6t_rt xt_NFLOG ip6table_raw iptable_raw ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf_nat_ipv6 iptable_nat nf_nat_ipv4 nf_nat ip6table_mangle iptable_mangle ip6table_filter ip6_tables tun 8021q mrp garp stp llc nf_conntrack_ipv4 nf_defrag_ipv4 xt_comment xt_tcpudp xt_multiport ipv6 xt_conntrack nf_conntrack nfnetlink_log nfnetlink iptable_filter ip_tables x_tables ifb crc32_pclmul aesni_intel aes_x86_64 ablk_helper cryptd lrw gf128mul glue_helper e1000 microcode button sr_mod cdrom crc32c_intel ata_piix dm_mirror dm_region_hash dm_log dm_mod
2015-11-13T14:01:29.773940+01:00 bramkarz kernel: [951379.341113] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W  O    4.2.5-hardened #1
2015-11-13T14:01:29.773940+01:00 bramkarz kernel: [951379.341115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.8.2-0-g33fbe13 by qemu-project.org 04/01/2014
2015-11-13T14:01:29.773941+01:00 bramkarz kernel: [951379.341117]  ffffffff8180a81b 704960fe2593e559 0000000000000000 ffffffffa022af25
2015-11-13T14:01:29.773941+01:00 bramkarz kernel: [951379.341120]  ffff880069003dc8 ffffffff81447562 0000000000000001 0000000000000000
2015-11-13T14:01:29.773941+01:00 bramkarz kernel: [951379.341122]  ffff880069003e08 ffffffff81051cf0 8000000000000000 ffffffffa022af25
2015-11-13T14:01:29.773942+01:00 bramkarz kernel: [951379.341125] Call Trace:
2015-11-13T14:01:29.773942+01:00 bramkarz kernel: [951379.341127]  <IRQ>  [<ffffffffa022af25>] ? hfsc_policy+0x35/0x791 [sch_hfsc]
2015-11-13T14:01:29.773943+01:00 bramkarz kernel: [951379.341136]  [<ffffffff81447562>] dump_stack+0x45/0x5d
2015-11-13T14:01:29.774460+01:00 bramkarz kernel: [951379.341141]  [<ffffffff81051cf0>] warn_slowpath_common+0x80/0xc0
2015-11-13T14:01:29.774582+01:00 bramkarz kernel: [951379.341144]  [<ffffffffa022af25>] ? hfsc_policy+0x35/0x791 [sch_hfsc]
2015-11-13T14:01:29.774584+01:00 bramkarz kernel: [951379.341148]  [<ffffffff81051e74>] warn_slowpath_null+0x24/0x30
2015-11-13T14:01:29.774584+01:00 bramkarz kernel: [951379.341151]  [<ffffffffa022978b>] hfsc_dequeue+0x30b/0x320 [sch_hfsc]
2015-11-13T14:01:29.774585+01:00 bramkarz kernel: [951379.341156]  [<ffffffff813b915d>] __qdisc_run+0x4d/0x1d0
2015-11-13T14:01:29.774585+01:00 bramkarz kernel: [951379.341160]  [<ffffffff813915b9>] net_tx_action+0x1a9/0x270
2015-11-13T14:01:29.774586+01:00 bramkarz kernel: [951379.341163]  [<ffffffff81055ac5>] __do_softirq+0xf5/0x1f0
2015-11-13T14:01:29.774586+01:00 bramkarz kernel: [951379.341166]  [<ffffffff81055d16>] irq_exit+0x86/0x90
2015-11-13T14:01:29.774586+01:00 bramkarz kernel: [951379.341170]  [<ffffffff8103400f>] smp_apic_timer_interrupt+0x4f/0x70
2015-11-13T14:01:29.774587+01:00 bramkarz kernel: [951379.341173]  [<ffffffff8144dd7a>] apic_timer_interrupt+0x9a/0xa0
2015-11-13T14:01:29.774587+01:00 bramkarz kernel: [951379.341175]  <EOI>  [<ffffffff8100dbc0>] ? arch_remove_reservations+0x110/0x110
2015-11-13T14:01:29.774588+01:00 bramkarz kernel: [951379.341181]  [<ffffffff8103cfe6>] ? native_safe_halt+0x6/0x10
2015-11-13T14:01:29.774588+01:00 bramkarz kernel: [951379.341184]  [<ffffffff8100dbc9>] default_idle+0x9/0x20
2015-11-13T14:01:29.774589+01:00 bramkarz kernel: [951379.341187]  [<ffffffff8100e2f7>] arch_cpu_idle+0x17/0x20
2015-11-13T14:01:29.774589+01:00 bramkarz kernel: [951379.341191]  [<ffffffff8108e9bd>] default_idle_call+0x2d/0x30
2015-11-13T14:01:29.774590+01:00 bramkarz kernel: [951379.341193]  [<ffffffff8108eb56>] cpu_startup_entry+0x196/0x280
2015-11-13T14:01:29.774590+01:00 bramkarz kernel: [951379.341198]  [<ffffffff8143d212>] rest_init+0x72/0x80
2015-11-13T14:01:29.774590+01:00 bramkarz kernel: [951379.341202]  [<ffffffff81a138c0>] start_kernel+0x57d/0x5a2
2015-11-13T14:01:29.774591+01:00 bramkarz kernel: [951379.341206]  [<ffffffff81a12120>] ? early_idt_handler_array+0x120/0x120
2015-11-13T14:01:29.774591+01:00 bramkarz kernel: [951379.341209]  [<ffffffff81a126d4>] x86_64_start_reservations+0x61/0x6b
2015-11-13T14:01:29.774592+01:00 bramkarz kernel: [951379.341212]  [<ffffffff81a127fc>] x86_64_start_kernel+0x11e/0x147
2015-11-13T14:01:29.774592+01:00 bramkarz kernel: [951379.341214] ---[ end trace 352b781efac3ac0f ]---



I don't know yet what triggered this bug. (Maybe using ingress in iptables to classify traffic?)
Comment 1 Marcin Mirosław 2015-11-13 16:19:39 UTC 
Portage 2.2.20.1 (python 3.4.3-final-0, hardened/linux/amd64, gcc-4.9.3, glibc-2.21-r1, 4.2.5-hardened x86_64)
=================================================================
System uname: Linux-4.2.5-hardened-x86_64-Intel_Xeon_E312xx_-Sandy_Bridge-with-gentoo-2.2
KiB Mem:     1480132 total,    192732 free
KiB Swap:     511996 total,    507620 free
Timestamp of repository gentoo: Fri, 13 Nov 2015 12:30:01 +0000
sh bash 4.3_p39
ld GNU gold (Gentoo 2.25.1 p1.1 2.25.1) 1.11
ccache version 3.1.9 [enabled]
app-shells/bash:          4.3_p39::gentoo
dev-lang/perl:            5.20.2::gentoo
dev-lang/python:          2.7.10::gentoo, 3.4.3::gentoo
dev-util/ccache:          3.1.9-r4::gentoo
dev-util/pkgconfig:       0.28-r2::gentoo
sys-apps/baselayout:      2.2::gentoo
sys-apps/openrc:          0.17::gentoo
sys-apps/sandbox:         2.6-r1::gentoo
sys-devel/autoconf:       2.69::gentoo
sys-devel/automake:       1.14.1::gentoo, 1.15::gentoo
sys-devel/binutils:       2.25.1-r1::gentoo
sys-devel/gcc:            4.9.3::gentoo
sys-devel/gcc-config:     1.7.3::gentoo
sys-devel/libtool:        2.4.6::gentoo
sys-devel/make:           4.1-r1::gentoo
sys-kernel/linux-headers: 3.18::gentoo (virtual/os-headers)
sys-libs/glibc:           2.21-r1::gentoo
Repositories:

gentoo
    location: /usr/portage
    sync-type: rsync
    sync-uri: rsync://rsync.gentoo.org/gentoo-portage
    priority: -1000

ACCEPT_KEYWORDS="amd64"
ACCEPT_LICENSE="* -@EULA"
CBUILD="x86_64-pc-linux-gnu"
CFLAGS="-O2 -pipe -march=native        -fno-unwind-tables -fno-asynchronous-unwind-tables -fpeel-loops        -ftracer -fuse-linker-plugin -fuse-ld=gold"
CHOST="x86_64-pc-linux-gnu"
CONFIG_PROTECT="/etc /var/bind"
CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo"
CXXFLAGS="-O2 -pipe -march=native        -fno-unwind-tables -fno-asynchronous-unwind-tables -fpeel-loops        -ftracer -fuse-linker-plugin -fuse-ld=gold"
DISTDIR="/usr/portage/distfiles"
FCFLAGS="-O2 -pipe"
FEATURES="assume-digests binpkg-logs ccache collision-protect config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch usersandbox usersync xattr"
FFLAGS="-O2 -pipe"
GENTOO_MIRRORS="http://distfiles.gentoo.org"
LANG="pl_PL.utf8"
LDFLAGS="-Wl,-O1 -Wl,--as-needed -Wl,--sort-common"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_CONFIGROOT="/"
PORTAGE_RSYNC_EXTRA_OPTS="-O"
PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages"
PORTAGE_TMPDIR="/var/tmp"
USE="acl acpi amd64 bash-completion bzip2 caps cli cracklib cxx dri filecaps hardened iconv ipv6 justify kmod mmx mmxext modules multilib ncurses nls nptl openmp openrc pax_kernel pcre pie readline seccomp session sse sse2 sse3 ssp ssse3 threads udev unicode vim-syntax xattr xtpax zlib" ABI_X86="64" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" APACHE2_MODULES="authn_core authz_core socache_shmcb unixd actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="kexi words flow plan sheets stage tables krita karbon braindump author" CAMERAS="ptp2" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="mmx mmxext sse sse2" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf superstar2 timing tsip tripmate tnt ublox ubx" INPUT_DEVICES="keyboard mouse evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-5" PYTHON_SINGLE_TARGET="python2_7" PYTHON_TARGETS="python3_4" RUBY_TARGETS="ruby20 ruby21" USERLAND="GNU" VIDEO_CARDS="fbdev glint intel mach64 mga nouveau nv r128 radeon savage sis tdfx trident vesa via vmware dummy v4l" XTABLES_ADDONS="geoip iface ipmark ipp2p steal tarpit"
USE_PYTHON="2.7 3.4"
Unset:  CC, CPPFLAGS, CTARGET, CXX, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LC_ALL, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS
Comment 2 Marcin Mirosław 2015-11-13 16:24:03 UTC 
Created attachment 416860 [details]
kernel config

This is kvm paravirtualized kernel.
Comment 3 Anthony Basile gentoo-dev 2015-12-16 00:45:18 UTC 
Can you test hardened-sources 4.2.7 please and see if you get the same.
Comment 4 PaX Team 2015-12-16 03:03:27 UTC 
is this somehow grsec related?
Comment 5 Marcin Mirosław 2015-12-21 10:50:37 UTC 
It looks it isn't related to grsec. I've found page: http://www.spinics.net/lists/netfilter/msg56372.html with (probably) the same bug.
Also I can't reproduce problem on hardened-sources-4.2.7 but it doesn't mean it's solved because I didn't found always working steps to reproduce bug on older kernel.
Comment 6 Marcin Mirosław 2015-12-21 12:40:36 UTC 
bug still exists (tested on hardened-sources-4.2.7)
Comment 7 Anthony Basile gentoo-dev 2016-01-07 14:17:15 UTC 
(In reply to Marcin Mirosław from comment #6)
> bug still exists (tested on hardened-sources-4.2.7)

any progress on this?  can you test hardened-sources-4.3.3-r4
Comment 8 Marcin Mirosław 2016-01-15 18:29:37 UTC 
I didn't check because there is no information about fix in kernel bugzilla.
Comment 9 Anthony Basile gentoo-dev 2016-07-21 16:56:35 UTC 
(In reply to Marcin Mirosław from comment #8)
> I didn't check because there is no information about fix in kernel bugzilla.

Okay we're way past this version of the kernel now.  If you hit this again on the current versions in the tree, please reopen this bug.
Comment 10 Marcin Mirosław 2016-07-21 19:28:07 UTC 
> Okay we're way past this version of the kernel now.  If you hit this again
> on the current versions in the tree, please reopen this bug.

As it is shown in kernel bugzilla this bug occures also with kernel 4.4.x (and probably with newer kernel).