| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20141217173845.GA4564@wfg-t540p.sh.intel.com>
Date: Wed, 17 Dec 2014 09:38:45 -0800
From: Fengguang Wu <fengguang.wu@...el.com>
To: Rob Clark <robdclark@...il.com>
Cc: LKP <lkp@...org>, linux-kernel@...r.kernel.org,
dri-devel@...ts.freedesktop.org
Subject: [drm/atomic] BUG: unable to handle kernel NULL pointer dereference
at 00000008
Greetings,
0day kernel testing robot got the below dmesg and the first bad commit is
git://people.freedesktop.org/~robclark/linux atomic-properties
commit 77df8db029cf879929c155512ac7030dd2bed842
Author: Rob Clark <robdclark@...il.com>
AuthorDate: Mon Nov 24 11:55:58 2014 -0500
Commit: Rob Clark <robdclark@...il.com>
CommitDate: Tue Dec 16 17:50:10 2014 -0500
drm/atomic: atomic plane properties
Expose the core plane state as properties, so they can be updated via
atomic ioctl.
Signed-off-by: Rob Clark <robdclark@...il.com>
+-------------------------------------------+------------+------------+------------+
| | 67021527bb | 77df8db029 | 161cea05a4 |
+-------------------------------------------+------------+------------+------------+
| boot_successes | 60 | 0 | 0 |
| boot_failures | 0 | 20 | 16 |
| BUG:unable_to_handle_kernel | 0 | 20 | 16 |
| Oops | 0 | 20 | 16 |
| EIP_is_at_drm_universal_plane_init | 0 | 20 | 16 |
| Kernel_panic-not_syncing:Fatal_exception | 0 | 20 | 16 |
| backtrace:drm_universal_plane_init | 0 | 20 | 16 |
| backtrace:drm_primary_helper_create_plane | 0 | 20 | 16 |
| backtrace:drm_crtc_init | 0 | 20 | 16 |
| backtrace:cirrus_modeset_init | 0 | 20 | 16 |
| backtrace:__pci_register_driver | 0 | 20 | 16 |
| backtrace:drm_pci_init | 0 | 20 | 16 |
| backtrace:cirrus_init | 0 | 20 | 16 |
| backtrace:kernel_init_freeable | 0 | 20 | 16 |
+-------------------------------------------+------------+------------+------------+
[ 1.182990] [drm] Initialized drm 1.1.0 20060810
[ 1.185690] [TTM] Zone kernel: Available graphics memory: 149938 kiB
[ 1.186177] [TTM] Initializing pool allocator
[ 1.186912] BUG: unable to handle kernel NULL pointer dereference at 00000008
[ 1.187477] IP: [<81379138>] drm_universal_plane_init+0x143/0x214
[ 1.187956] *pdpt = 0000000000000000 *pde = f000ff53f000ff53
[ 1.188414] Oops: 0000 [#1] DEBUG_PAGEALLOC
[ 1.188765] CPU: 0 PID: 1 Comm: swapper Not tainted 3.18.0-g77df8db #25
[ 1.189266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.7.5-20140531_083030-gandalf 04/01/2014
[ 1.190017] task: 80100000 ti: 8006a000 task.ti: 8006a000
[ 1.190017] EIP: 0060:[<81379138>] EFLAGS: 00010246 CPU: 0
[ 1.190017] EIP is at drm_universal_plane_init+0x143/0x214
[ 1.190017] EAX: 00000000 EBX: 91168000 ECX: 00000000 EDX: 00000000
[ 1.190017] ESI: 00000001 EDI: 00000000 EBP: 8006bdac ESP: 8006bd90
[ 1.190017] DS: 007b ES: 007b FS: 0000 GS: 0000 SS: 0068
[ 1.190017] CR0: 8005003b CR2: 00000008 CR3: 01c4e000 CR4: 000006b0
[ 1.190017] Stack:
[ 1.190017] 00000008 00000000 91150de4 91150d70 91150d70 817524a8 91168000 8006bdd4
[ 1.190017] 81365e37 81752484 817524a8 00000002 00000001 00000000 91168000 911688b0
[ 1.190017] 8176d628 8006bde8 81365e66 9116f0f0 91168000 911688b0 8006be00 813ffb81
[ 1.190017] Call Trace:
[ 1.190017] [<81365e37>] drm_primary_helper_create_plane+0x5f/0x79
[ 1.190017] [<81365e66>] drm_crtc_init+0x15/0x2b
[ 1.190017] [<813ffb81>] cirrus_modeset_init+0x83/0x179
[ 1.190017] [<813fefde>] cirrus_driver_load+0x76/0xb5
[ 1.190017] [<81373730>] drm_dev_register+0x69/0xcb
[ 1.190017] [<813749f2>] drm_get_pci_dev+0xc8/0x15c
[ 1.190017] [<813ffd65>] cirrus_pci_probe+0xbf/0xc7
[ 1.190017] [<8127c8fd>] pci_device_probe+0x45/0x7f
[ 1.190017] [<8142b1fb>] driver_probe_device+0x83/0x175
[ 1.190017] [<8142b367>] __driver_attach+0x4e/0x6a
[ 1.190017] [<8142a043>] bus_for_each_dev+0x4e/0x6b
[ 1.190017] [<8142b403>] driver_attach+0x14/0x16
[ 1.190017] [<8142b319>] ? __device_attach+0x2c/0x2c
[ 1.190017] [<8142a67c>] bus_add_driver+0xc5/0x175
[ 1.190017] [<81bef778>] ? i915_init+0x69/0x69
[ 1.190017] [<8142b73f>] driver_register+0x6f/0xa4
[ 1.190017] [<81bef778>] ? i915_init+0x69/0x69
[ 1.190017] [<8127c7d0>] __pci_register_driver+0x45/0x48
[ 1.190017] [<81374acd>] drm_pci_init+0x47/0xb3
[ 1.190017] [<81bef778>] ? i915_init+0x69/0x69
[ 1.190017] [<81bef798>] cirrus_init+0x20/0x22
[ 1.190017] [<81bc8b46>] do_one_initcall+0xce/0x145
[ 1.190017] [<81bc8400>] ? do_early_param+0x3e/0x73
[ 1.190017] [<8103ad64>] ? parse_args+0x19d/0x280
[ 1.190017] [<81bc8d1d>] kernel_init_freeable+0x160/0x1e0
[ 1.190017] [<81682d82>] kernel_init+0x8/0xb8
[ 1.190017] [<8168dae0>] ret_from_kernel_thread+0x20/0x30
[ 1.190017] [<81682d7a>] ? rest_init+0xa2/0xa2
[ 1.190017] Code: ff 83 c8 04 00 00 8b 93 88 05 00 00 8b 45 f0 8b b0 c0 01 00 00 31 ff 57 56 8b 45 ec e8 1d fc ff ff 8b 93 fc 04 00 00 58 59 31 c0 <83> 7a 08 00 0f 84 bf 00 00 00 8b 93 b0 05 00 00 6a 00 6a 00 8b
[ 1.190017] EIP: [<81379138>] drm_universal_plane_init+0x143/0x214 SS:ESP 0068:8006bd90
[ 1.190017] CR2: 0000000000000008
[ 1.190017] ---[ end trace 3ffa9c8b438719d6 ]---
[ 1.190017] Kernel panic - not syncing: Fatal exception
git bisect start 161cea05a4f8f97dc75edda9c2546d7d1e1437de b2776bf7149bddd1f4161f14f79520f17fc1d71d --
git bisect bad a6b151feb8a2681a73c316a37a8753622f243ee8 # 10:07 0- 20 Merge 'pm/linux-next' into devel-jaketown-smoke-201412170928
git bisect good a80479ce39f779468c5a07d9b350bda4a91b4bd6 # 10:23 20+ 0 Merge 'fenghua/test' into devel-jaketown-smoke-201412170928
git bisect bad a32823272730eddc5198a77da0e6cc67e6586ff5 # 11:06 0- 9 Merge 'robclark/atomic-properties' into devel-jaketown-smoke-201412170928
git bisect good 49b70a31c166a6da12f60ec85da608c064555406 # 11:53 20+ 0 bochs: fix bochsdrmfb mmap
git bisect good 547ad072838c48e18cab7bccb5c02cbfefe10da5 # 12:10 20+ 0 drm/nouveau/kms: when pinning display-related buffers, force contig vram
git bisect good 064ca1d250b14b785e662b0a13d8d20cb84574e1 # 12:23 20+ 0 drm/i915: Don't pin LRC in GGTT when dumping in debugfs
git bisect good 7608867d0c4d9da30e9efe6a53ff4ee1e6c4990b # 12:34 20+ 0 Merge tag 'drm-intel-next-fixes-2014-12-04' of git://anongit.freedesktop.org/drm-intel into drm-next
git bisect good eb929dc4d36db7881bbf90d5532b024615f64c0f # 12:47 20+ 0 drm: sti: remove event lock while disabling vblank
git bisect good 731d754550b4076d39e06e656ba608612e3f63dd # 12:58 20+ 0 Merge branch 'drm-sti-next-2014-12-11' of http://git.linaro.org/people/benjamin.gaignard/kernel into drm-next
git bisect good 9f11ed76f492dcd7dcc7d159455c5d6b84ee8fe0 # 13:06 20+ 0 drm: add atomic hook to read property plus helper
git bisect bad 77df8db029cf879929c155512ac7030dd2bed842 # 13:36 0- 20 drm/atomic: atomic plane properties
git bisect good a2c2b5a59c0d149654df7060753f0c5c459124be # 13:43 20+ 0 drm: tweak getconnector locking
git bisect good 67021527bbd4649b8aee29c9b30ee7ed6fc0c23a # 14:16 20+ 0 drm/atomic: atomic_check functions
# first bad commit: [77df8db029cf879929c155512ac7030dd2bed842] drm/atomic: atomic plane properties
git bisect good 67021527bbd4649b8aee29c9b30ee7ed6fc0c23a # 14:18 60+ 0 drm/atomic: atomic_check functions
# extra tests on HEAD of linux-devel/devel-jaketown-smoke-201412170928
git bisect bad 161cea05a4f8f97dc75edda9c2546d7d1e1437de # 14:18 0- 16 0day head guard for 'devel-jaketown-smoke-201412170928'
# extra tests on tree/branch robclark/atomic-properties
git bisect bad 820e68c3d3fb9c0ea036515c2e8535bc017c79fd # 15:20 0- 22 RFC: drm: Atomic modeset ioctl
# extra tests on tree/branch linus/master
git bisect good 603ba7e41bf5d405aba22294af5d075d8898176d # 15:29 60+ 0 Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
# extra tests on tree/branch next/master
git bisect good 5fef85d456eedf616809f7bf722b6f6a782d8a93 # 15:40 60+ 0 Add linux-next specific files for 20141217
This script may reproduce the error.
----------------------------------------------------------------------------
#!/bin/bash
kernel=$1
initrd=yocto-minimal-i386.cgz
wget --no-clobber https://github.com/fengguang/reproduce-kernel-bug/raw/master/initrd/$initrd
kvm=(
qemu-system-x86_64
-cpu kvm64
-enable-kvm
-kernel $kernel
-initrd $initrd
-m 320
-smp 1
-net nic,vlan=1,model=e1000
-net user,vlan=1
-boot order=nc
-no-reboot
-watchdog i6300esb
-rtc base=localtime
-serial stdio
-display none
-monitor null
)
append=(
hung_task_panic=1
earlyprintk=ttyS0,115200
debug
apic=debug
sysrq_always_enabled
rcupdate.rcu_cpu_stall_timeout=100
panic=-1
softlockup_panic=1
nmi_watchdog=panic
oops=panic
load_ramdisk=2
prompt_ramdisk=0
console=ttyS0,115200
console=tty0
vga=normal
root=/dev/ram0
rw
drbd.minor_count=8
)
"${kvm[@]}" --append "${append[*]}"
----------------------------------------------------------------------------
Thanks,
Fengguang
View attachment "dmesg-yocto-client8-31:20141217133516:i386-randconfig-j0-12151340:3.18.0-g77df8db:25" of type "text/plain" (31720 bytes)
View attachment "config-3.18.0-g77df8db" of type "text/plain" (72072 bytes)
_______________________________________________
LKP mailing list
LKP@...ux.intel.com
Powered by blists - more mailing lists