lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Mon, 6 Oct 2014 08:51:18 +0800
From:	Fengguang Wu <fengguang.wu@...el.com>
To:	Kees Cook <keescook@...omium.org>
Cc:	"H. Peter Anvin" <hpa@...ux.intel.com>,
	Jet Chen <jet.chen@...el.com>, Su Tao <tao.su@...el.com>,
	Yuanhan Liu <yuanhan.liu@...el.com>, LKP <lkp@...org>,
	linux-kernel@...r.kernel.org
Subject: Re: [x86, kaslr] Initramfs unpacking failed: junk in compressed
 archive

Hi Kees,

Here is some less reproducible bugs that are bisected to

commit 6145cfe394a7f138f6b64491c5663f97dba12450
Author:     Kees Cook <keescook@...omium.org>
AuthorDate: Thu Oct 10 17:18:18 2013 -0700
Commit:     H. Peter Anvin <hpa@...ux.intel.com>
CommitDate: Sun Oct 13 03:13:13 2013 -0700

    x86, kaslr: Raise the maximum virtual address to -1 GiB on x86_64
    
    On 64-bit, this raises the maximum location to -1 GiB (from -1.5 GiB),
    the upper limit currently, since the kernel fixmap page mappings need
    to be moved to use the other 1 GiB (which would be the theoretical
    limit when building with -mcmodel=kernel).
    
    Signed-off-by: Kees Cook <keescook@...omium.org>
    Link: http://lkml.kernel.org/r/1381450698-28710-7-git-send-email-keescook@chromium.org
    Signed-off-by: H. Peter Anvin <hpa@...ux.intel.com>

+--------------------------------+------------+------------+------------+
|                                | f32360ef66 | 6145cfe394 | a4c0475ac1 |
+--------------------------------+------------+------------+------------+
| boot_successes                 | 900        | 291        | 29         |
| boot_failures                  | 0          | 9          | 2          |
| Initramfs_unpacking_failed     | 0          | 7          | 2          |
| BUG:unable_to_handle_kernel    | 0          | 6          | 2          |
| Oops                           | 0          | 1          | 1          |
| EIP_is_at_debug_locks_off      | 0          | 1          | 1          |
| general_protection_fault       | 0          | 1          |            |
| backtrace:set_memory_np        | 0          | 1          |            |
| backtrace:free_init_pages      | 0          | 1          |            |
| backtrace:populate_rootfs      | 0          | 1          |            |
| backtrace:kernel_init_freeable | 0          | 1          |            |
| BUG:kernel_boot_hang           | 0          | 2          |            |
| BUG:unab                       | 0          | 0          | 1          |
+--------------------------------+------------+------------+------------+

[    0.378592] PCI: CLS 0 bytes, default 64
[    0.379897] Unpacking initramfs...
[    0.379897] Unpacking initramfs...
[    0.385074] Initramfs unpacking failed: junk in compressed archive
[    0.385074] Initramfs unpacking failed: junk in compressed archive
[    0.386848] debug: unmapping init [mem 0xd3ca5000-0xd3fd7fff]
[    0.386848] debug: unmapping init [mem 0xd3ca5000-0xd3fd7fff]

git bisect start v3.14 v3.13 --
git bisect  bad 494479038d97f1b9f76fc633a360a681acdf035c  # 03:49    164-      4  Merge tag 'pinctrl-v3.14-2' of git://git.kernel.org/pub/scm/linux/kernel/git/linusw/linux-pinctrl
git bisect  bad 1b17366d695c8ab03f98d0155357e97a427e1dce  # 03:52      2-      3  Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/benh/powerpc
git bisect  bad 60eaa0190f6b39dce18eb1975d9773ed8bc9a534  # 03:55     11-      4  Merge tag 'trace-3.14' of git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/linux-trace
git bisect good 74e8ee8262c3f93bbc41804037b43f07b95897bb  # 04:00    300+     46  Merge branch 'x86-platform-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect  bad 02d0a752460ea5dab34ce36c9ddc9c682e846a0d  # 04:03    152-      1  Merge branch 'i2c/for-next' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
git bisect  bad 82b51734b4f228c76b6064b6e899d9d3d4c17c1a  # 04:05     10-      4  Merge tag 'arm64-upstream' of git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux
git bisect  bad f4bcd8ccddb02833340652e9f46f5127828eb79d  # 04:08     43-      2  Merge branch 'x86-kaslr-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect good fab5669d556200c4dd119af705bff14085845d1e  # 04:14    300+      7  Merge branch 'x86-ras-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect good 7fe67a1180db49d41a3f764c379a08f8e31580ec  # 04:20    300+     20  Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect  bad 6145cfe394a7f138f6b64491c5663f97dba12450  # 04:26      0-      2  x86, kaslr: Raise the maximum virtual address to -1 GiB on x86_64
git bisect good 8ab3820fd5b2896d66da7bb2a906bc382e63e7bc  # 04:33    300+      0  x86, kaslr: Return location from decompress_kernel
git bisect good 82fa9637a2ba285bcc7c5050c73010b2c1b3d803  # 04:41    300+      0  x86, kaslr: Select random position from e820 maps
git bisect good f32360ef6608434a032dc7ad262d45e9693c27f3  # 04:46    300+      0  x86, kaslr: Report kernel offset on panic
# first bad commit: [6145cfe394a7f138f6b64491c5663f97dba12450] x86, kaslr: Raise the maximum virtual address to -1 GiB on x86_64
git bisect good f32360ef6608434a032dc7ad262d45e9693c27f3  # 04:54    900+      0  x86, kaslr: Report kernel offset on panic
git bisect  bad a4c0475ac1eb67032e759327a40d8d4b2cf2b988  # 04:56      0-      2  ieee802154: 6lowpan: Drop PACKET_OTHERHOST skbs in 6lowpan
git bisect  bad bfe01a5ba2490f299e1d2d5508cbbbadd897bbe9  # 05:18     69-      2  Linux 3.17
git bisect  bad 2e1d004b9645628c64a2db55ef6b81fadf5e6e91  # 05:24     41-      1  Add linux-next specific files for 20141003


This script may reproduce the error.

----------------------------------------------------------------------------
#!/bin/bash

kernel=$1
initrd=yocto-minimal-i386.cgz

wget --no-clobber https://github.com/fengguang/reproduce-kernel-bug/raw/master/initrd/$initrd

kvm=(
	qemu-system-x86_64
	-cpu kvm64
	-enable-kvm
	-kernel $kernel
	-initrd $initrd
	-m 320
	-smp 1
	-net nic,vlan=1,model=e1000
	-net user,vlan=1
	-boot order=nc
	-no-reboot
	-watchdog i6300esb
	-rtc base=localtime
	-serial stdio
	-display none
	-monitor null 
)

append=(
	hung_task_panic=1
	earlyprintk=ttyS0,115200
	debug
	apic=debug
	sysrq_always_enabled
	rcupdate.rcu_cpu_stall_timeout=100
	panic=-1
	softlockup_panic=1
	nmi_watchdog=panic
	oops=panic
	load_ramdisk=2
	prompt_ramdisk=0
	console=ttyS0,115200
	console=tty0
	vga=normal
	root=/dev/ram0
	rw
	drbd.minor_count=8
)

"${kvm[@]}" --append "${append[*]}"
----------------------------------------------------------------------------

Thanks,
Fengguang

View attachment "dmesg-yocto-ivb41-10:20141006042747:i386-randconfig-hxb0-1006:3.12.0-rc4-00007-g6145cfe:138" of type "text/plain" (186295 bytes)

Download attachment "i386-randconfig-hxb0-1006-a4c0475ac1eb67032e759327a40d8d4b2cf2b988-Initramfs-unpacking-failed:-69473.log" of type "application/octet-stream" (53421 bytes)

View attachment "config-3.12.0-rc4-00007-g6145cfe" of type "text/plain" (62684 bytes)

_______________________________________________
LKP mailing list
LKP@...ux.intel.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ