lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:   Tue, 3 Oct 2017 21:45:36 +0800
From:   Fengguang Wu <fengguang.wu@...el.com>
To:     Josh Poimboeuf <jpoimboe@...hat.com>
Cc:     Linus Torvalds <torvalds@...ux-foundation.org>, LKP <lkp@...org>,
        linux-soc@...r.kernel.org, linux-arm-msm@...r.kernel.org,
        dma <dmaengine@...r.kernel.org>,
        linux-samsung-soc@...r.kernel.org,
        "linux-arm-kernel@...ts.infradead.org" 
        <linux-arm-kernel@...ts.infradead.org>,
        "devicetree@...r.kernel.org" <devicetree@...r.kernel.org>,
        USB list <linux-usb@...r.kernel.org>,
        Vinod Koul <vinod.koul@...el.com>,
        LKML <linux-kernel@...r.kernel.org>
Subject: Re: 4879b7ae05 ("Merge tag 'dmaengine-4.12-rc1' of .."): WARNING:
 kernel stack regs at bd92bc2e in 01-cpu-hotplug:3811 has bad 'bp' value
 000001be

Hi Josh,

On Mon, Oct 02, 2017 at 04:31:09PM -0500, Josh Poimboeuf wrote:
>On Mon, Oct 02, 2017 at 04:26:54PM -0500, Josh Poimboeuf wrote:
>> Fengguang, assuming it's reliably recreatable, any chance you could
>> recreate with the following patch?
>
>Sorry, here's a version which actually compiles.
>
>diff --git a/arch/x86/kernel/unwind_frame.c b/arch/x86/kernel/unwind_frame.c
>index d145a0b1f529..00234fa5a33a 100644
>--- a/arch/x86/kernel/unwind_frame.c
>+++ b/arch/x86/kernel/unwind_frame.c
>@@ -44,7 +44,8 @@ static void unwind_dump(struct unwind_state *state)
> 			state->stack_info.type, state->stack_info.next_sp,
> 			state->stack_mask, state->graph_idx);
>
>-	for (sp = state->orig_sp; sp; sp = PTR_ALIGN(stack_info.next_sp, sizeof(long))) {
>+	for (sp = PTR_ALIGN(state->orig_sp, sizeof(long)); sp;
>+	     sp = PTR_ALIGN(stack_info.next_sp, sizeof(long))) {
> 		if (get_stack_info(sp, state->task, &stack_info, &visit_mask))
> 			break;

With the patch applied on v4.14-rc3, I get these WARNINGs in 300+
kernel boots:

[  185.430011] WARNING: kernel stack regs at bb68dcc2 in 01-cpu-hotplug:22473 has bad 'bp' value 000001bc
[   86.190009] WARNING: kernel stack regs at be3c9c9a in 01-cpu-hotplug:4941 has bad 'bp' value 000001be
[  144.450014] WARNING: kernel stack regs at be3d5c9a in 01-cpu-hotplug:14750 has bad 'bp' value 000001be
[  180.074990] WARNING: kernel stack regs at b0209c4e in 01-cpu-hotplug:22741 has bad 'bp' value 000001b0
[  138.140012] WARNING: kernel stack regs at be3c9c9a in 01-cpu-hotplug:12181 has bad 'bp' value 000001be
[  120.658716] WARNING: kernel stack regs at be3b9c4e in 01-cpu-hotplug:5548 has bad 'bp' value 000001be
[   88.390022] WARNING: kernel stack regs at be3adcc2 in 01-cpu-hotplug:3874 has bad 'bp' value 000001be
[  174.380015] WARNING: kernel stack regs at be3e1f68 in 01-cpu-hotplug:22049 has bad 'bp' value   (null)
[   98.150011] WARNING: kernel stack regs at be38dcc2 in 01-cpu-hotplug:2549 has bad 'bp' value 000001be
[  114.450013] WARNING: kernel stack regs at be36bc9a in 01-cpu-hotplug:7747 has bad 'bp' value 000001be
[  151.020011] WARNING: kernel stack regs at b0203cc2 in 01-cpu-hotplug:14901 has bad 'bp' value 000001b8
[  106.770011] WARNING: kernel stack regs at be3c3c9a in 01-cpu-hotplug:5970 has bad 'bp' value 000001be
[  114.290012] WARNING: kernel stack regs at be3d7c9a in 01-cpu-hotplug:6287 has bad 'bp' value 000001be
[  118.818622] WARNING: kernel stack regs at be3cfc4e in 01-cpu-hotplug:5183 has bad 'bp' value 000001be
[  142.540011] WARNING: kernel stack regs at be3b9cc2 in 01-cpu-hotplug:9450 has bad 'bp' value 000001be
[   96.020013] WARNING: kernel stack regs at be3d9f6c in 01-cpu-hotplug:8433 has bad 'bp' value   (null)
[  149.300010] WARNING: kernel stack regs at be3b1c9a in 01-cpu-hotplug:14589 has bad 'bp' value 000001be
[  140.580013] WARNING: kernel stack regs at be3bfc9a in 01-cpu-hotplug:15779 has bad 'bp' value 000001be
[   93.656698] WARNING: kernel stack regs at c0b9fc9a in 01-cpu-hotplug:6618 has bad 'bp' value 000001c0
[  112.863654] WARNING: kernel stack regs at c05d7c9a in procd:172 has bad 'bp' value 000001c0
[   77.683057] WARNING: kernel stack regs at c0bcbc9a in 01-cpu-hotplug:5798 has bad 'bp' value 000001c0
[   46.071067] WARNING: kernel stack regs at c51e5d0a in rhashtable_thra:126 has bad 'bp' value 000003c6
[  149.471498] WARNING: kernel stack regs at c5d6bf68 in udevd:285 has bad 'bp' value   (null)
[  178.575899] WARNING: kernel stack regs at c21e5d02 in lock_torture_wr:46 has bad 'bp' value 000003bc
[  129.175338] WARNING: kernel stack regs at cdde5d0a in swapper/0:0 has bad 'bp' value 000003c6
[   80.686106] WARNING: kernel stack regs at c7e29cca in ifup:339 has bad 'bp' value 000001c8
[    0.437556] WARNING: kernel stack regs at c6e15c4e in swapper/0:1 has bad 'bp' value 000001c6
[   12.354954] WARNING: kernel stack regs at c6ff7ca2 in rhashtable_thra:126 has bad 'bp' value 000003be
[  122.627926] WARNING: kernel stack regs at c6ff7d0a in swapper/1:0 has bad 'bp' value 000003c6

Here is one of them. The full dmesg is attached.

Please press Enter to activate this console.
[   89.505747] sock: process `trinity-main' is using obsolete setsockopt SO_BSDCOMPAT
procd: Instance odhcpd::instance1 s in a crash loop 6 crashes, 0 seconds since last crash
procd: Instance uhttpd::instance1 s in a crash loop 6 crashes, 0 seconds since last crash
procd: Instance dnsmasq::instance1 s in a crash loop 6 crashes, 0 seconds since last crash
[  114.450013] WARNING: kernel stack regs at be36bc9a in 01-cpu-hotplug:7747 has bad 'bp' value 000001be
[  114.450017] unwind stack type:0 next_sp:  (null) mask:0x2 graph_idx:0
[  114.450020] be36bc9c: 81be36bc (0x81be36bc)
[  114.450023] be36bca0: ebb56272 (0xebb56272)
[  114.450029] be36bca4: b5be36bc (drm_setup_crtcs+0x10ac/0x12e0)
[  114.450031] be36bca8: 4000bcb4 (0x4000bcb4)
[  114.450033] be36bcac: 00be02b2 (0xbe02b2)
[  114.450035] be36bcb0: 00000000 ...
[  114.450037] be36bcb4: 00be36a0 (0xbe36a0)
[  114.450039] be36bcb8: 00be36c0 (0xbe36c0)
[  114.450041] be36bcbc: 02000000 (0x2000000)
[  114.450043] be36bcc0: 40000000 (0x40000000)
[  114.450045] be36bcc4: 00be02b2 (0xbe02b2)
[  114.450046] be36bcc8: 01000000 (0x1000000)
[  114.450048] be36bccc: 00000001 (0x1)
[  114.450050] be36bcd0: 9a000000 (0x9a000000)
[  114.450052] be36bcd4: 00be36bc (0xbe36bc)
[  114.450054] be36bcd8: 9a000100 (0x9a000100)
[  114.450056] be36bcdc: dcbe36bc (0xdcbe36bc)
[  114.450057] be36bce0: 00be02b7 (0xbe02b7)
[  114.450059] be36bce4: 40000000 (0x40000000)
[  114.450061] be36bce8: f7be02b2 (0xf7be02b2)
[  114.450063] be36bcec: 80be36bc (0x80be36bc)
[  114.450065] be36bcf0: 00b56273 (0xb56273)
[  114.450067] be36bcf4: 57000000 (0x57000000)
[  114.450069] be36bcf8: 3fbe36bd (0x3fbe36bd)
[  114.450071] be36bcfc: 00b56ef2 (0xb56ef2)
[  114.450072] be36bd00: bb19e5a8 (0xbb19e5a8)
[  114.450074] be36bd04: edf1e285 (0xedf1e285)
[  114.450076] be36bd08: 00000002 (0x2)
[  114.450078] be36bd0c: be02b7bc (0xbe02b7bc)
[  114.450080] be36bd10: be02b7bc (0xbe02b7bc)
[  114.450084] be36bd14: b5627380 (save_stack_trace+0x20/0x30)
[  114.450086] be36bd18: be02b240 (0xbe02b240)
[  114.450088] be36bd1c: 0036bdbc (0x36bdbc)

Thanks,
Fengguang

View attachment "dmesg-openwrt-lkp-hsw01-43:20171003212532:i386-randconfig-i0-201739:4.14.0-rc3-00001-g02e6a26:1" of type "text/plain" (60688 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ