Re: bprm_count and stack_mprotect error when testing BPF LSM on v5.7-rc3

public inbox for bpf@vger.kernel.org
 help / color / mirror / Atom feed

From: Ma Xinjian <max.xinjian@intel.com>
To: KP Singh <kpsingh@google.com>
Cc: Andrii Nakryiko <andrii.nakryiko@gmail.com>,
	"bpf@vger.kernel.org" <bpf@vger.kernel.org>
Subject: Re: bprm_count and stack_mprotect error when testing BPF LSM on v5.7-rc3
Date: Wed, 13 May 2020 13:55:19 +0800	[thread overview]
Message-ID: <1cd50917-17a5-1806-07ce-ee7b91ec61ef@intel.com> (raw)
In-Reply-To: <CAFLU3Ku=+VQ5KYXfwSqRknuYsz9nMV7-oj1Z1BNL4jiwVXPOOQ@mail.gmail.com>


On 5/9/20 9:28 PM, KP Singh wrote:
> On Sat, May 9, 2020 at 11:59 AM Ma Xinjian <max.xinjian@intel.com> wrote:
>>
>> On 5/9/20 5:26 PM, KP Singh wrote:
>>> Do you have bpf in your CONFIG_LSM string?
>> That's the point!
>>
>> I remove bpf from  since I can't boot if bpf in it.
> That does indicate a problem which needs to be fixed.
>
>> seems bpf in CONFIG_LSM conflict with CONFIG_BPF_LSM
>>
>> Here is boot error:
>>
>> "Cannot determine cgroup we are running in: No data available
>> Failed to allocate manager object: No data available
>> [!!!!!!] Failed to allocate manager object, freezing.
> I found some references to these error messages and they seem
> to be coming from systemd but I am not sure.
>
>     https://github.com/lxc/lxc/issues/1669
>     https://github.com/containers/libpod/issues/1226
>
>> Freezing execution.
>> [   35.773797] random: fast init done
>> [  130.560629] random: crng init done"
>>
>>> Also, can you share your Kconfig please?
>> refer to attackment.
>>
>> I doubt sth was wrong with my kconfig, maybe me some suggestion
> I am not saying something is wrong with your Kconfig :)
> I just want to make sure we eliminate as many
> variables as possible.
>
> I was able to boot this successfully using QEMU
> (after I enabled SCSI and VIRTIO). So it's likely
> dependent on some user-space configuration
> (again, I am not saying your config is wrong). But
> I will need more information to reproduce and debug this.
>
> Can you try providing a reliable reproduction with a list
> of steps? e.g.
>
> 1. Download the vanilla image here.
> 2. Compile the kernel with defonconfig and kvmconfig
>     (or your own config)
> 3. Boot the kernel in QEMU with the cmdline (...) and the
>    QEMU args (...)
>
> Thanks!
> - KP

Thank you very much for your kind and quick reply.

I tested on LKP cluster of Intel. Everything works automatically.

https://github.com/intel/lkp-tests

---------------------

And I have found the cause.

It can't boot due to comfliction between cgroup configuration for 
CONFIG_BPF_LSM

and systemd.

similar to https://github.com/elogind/elogind/issues/18

we have decided to skip this test.

Thanks again.

- Ma

>
>> Besides, I tested on both physical machine and vm
> [...]
>
-- 
Best Regards.
Ma Xinjian

     prev parent reply	other threads:[~2020-05-13  6:06 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2020-05-07  5:19 bprm_count and stack_mprotect error when testing BPF LSM on v5.7-rc3 Ma Xinjian
2020-05-07 16:16 ` Andrii Nakryiko
     [not found]   ` <CAFLU3KuU6zFs7+xQ-=vy9WEx-4U=cTSW9VXNMyxRdwY3LHc9HA@mail.gmail.com>
2020-05-07 16:24     ` KP Singh
2020-05-09  7:41       ` Ma Xinjian
2020-05-09  9:26         ` KP Singh
2020-05-09  9:42           ` KP Singh
     [not found]           ` <b3991caf-9e04-b6f4-aee5-86191a0fc3df@intel.com>
2020-05-09 13:28             ` KP Singh
2020-05-13  5:55               ` Ma Xinjian [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1cd50917-17a5-1806-07ce-ee7b91ec61ef@intel.com \
    --to=max.xinjian@intel.com \
    --cc=andrii.nakryiko@gmail.com \
    --cc=bpf@vger.kernel.org \
    --cc=kpsingh@google.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox