lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20150602092936.GA27183@wfg-t540p.sh.intel.com>
Date:	Tue, 2 Jun 2015 17:29:36 +0800
From:	Fengguang Wu <fengguang.wu@...el.com>
To:	Andy Lutomirski <luto@...nel.org>
Cc:	fengguang.wu@...el.com, LKP <lkp@...org>,
	LKML <linux-kernel@...r.kernel.org>
Subject: [x86, entry] WARNING: CPU: 0 PID: 1 at arch/x86/kernel/traps.c:708
 do_debug()

Hi Andy,

0day kernel testing robot got the below dmesg and the first bad commit is

git://git.kernel.org/pub/scm/linux/kernel/git/luto/linux.git x86/entry

commit ed5b90f697fb8bd7630d44df5933b2cbf61e22be
Author:     Andy Lutomirski <luto@...nel.org>
AuthorDate: Sat May 30 10:43:24 2015 -0700
Commit:     Andy Lutomirski <luto@...nel.org>
CommitDate: Mon Jun 1 10:47:29 2015 -0700

    x86, entry: Add and check a stack canary for the SYSENTER stack
    
    Signed-off-by: Andy Lutomirski <luto@...nel.org>

+------------------------------------------------+------------+------------+------------+
|                                                | 592fe34cc3 | ed5b90f697 | 2361c14dcc |
+------------------------------------------------+------------+------------+------------+
| boot_successes                                 | 60         | 0          | 0          |
| boot_failures                                  | 0          | 20         | 11         |
| WARNING:at_arch/x86/kernel/traps.c:#do_debug() | 0          | 20         | 11         |
| backtrace:init_kprobes                         | 0          | 20         | 11         |
| backtrace:kernel_init_freeable                 | 0          | 20         | 11         |
+------------------------------------------------+------------+------------+------------+

[    1.759634] Kprobe smoke test: started
[    1.763201] ------------[ cut here ]------------
[    1.763201] ------------[ cut here ]------------
[    1.765647] WARNING: CPU: 0 PID: 1 at arch/x86/kernel/traps.c:708 do_debug+0x1b4/0x1d0()
[    1.765647] WARNING: CPU: 0 PID: 1 at arch/x86/kernel/traps.c:708 do_debug+0x1b4/0x1d0()
[    1.766509] Overran or corrupted SYSENTER stack
[    1.766509] Overran or corrupted SYSENTER stack
[    1.766509] Modules linked in:
[    1.766509] Modules linked in:

[    1.766509] CPU: 0 PID: 1 Comm: swapper Not tainted 4.1.0-rc3-00387-ged5b90f #4
[    1.766509] CPU: 0 PID: 1 Comm: swapper Not tainted 4.1.0-rc3-00387-ged5b90f #4
[    1.766509]  ffffffff8614bd50
[    1.766509]  ffffffff8614bd50 ffffffff861e8e68 ffffffff861e8e68 ffffffff85fd786f ffffffff85fd786f ffffffff861e8ea8 ffffffff861e8ea8

[    1.766509]  ffffffff85c7473f
[    1.766509]  ffffffff85c7473f 0000000000000000 0000000000000000 ffff880000059010 ffff880000059010 ffffffff861e8f58 ffffffff861e8f58

[    1.766509]  0000000000000000
[    1.766509]  0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff861e8f08 ffffffff861e8f08

[    1.766509] Call Trace:
[    1.766509] Call Trace:
[    1.766509]  <#DB> 
[    1.766509]  <#DB>  [<ffffffff85fd786f>] dump_stack+0x19/0x1b
 [<ffffffff85fd786f>] dump_stack+0x19/0x1b
[    1.766509]  [<ffffffff85c7473f>] warn_slowpath_common+0x7f/0xc0
[    1.766509]  [<ffffffff85c7473f>] warn_slowpath_common+0x7f/0xc0
[    1.766509]  [<ffffffff85c747c1>] warn_slowpath_fmt+0x41/0x50
[    1.766509]  [<ffffffff85c747c1>] warn_slowpath_fmt+0x41/0x50
[    1.766509]  [<ffffffff85c03114>] do_debug+0x1b4/0x1d0
[    1.766509]  [<ffffffff85c03114>] do_debug+0x1b4/0x1d0
[    1.766509]  [<ffffffff862f9160>] ? debugfs_kprobe_init+0xab/0xab
[    1.766509]  [<ffffffff862f9160>] ? debugfs_kprobe_init+0xab/0xab
[    1.766509]  [<ffffffff85fdfb36>] debug+0x36/0x70
[    1.766509]  [<ffffffff85fdfb36>] debug+0x36/0x70
[    1.766509]  [<ffffffff862f9160>] ? debugfs_kprobe_init+0xab/0xab
[    1.766509]  [<ffffffff862f9160>] ? debugfs_kprobe_init+0xab/0xab
[    1.766509]  [<ffffffff85cdcfd2>] ? kprobe_target+0x2/0x20
[    1.766509]  [<ffffffff85cdcfd2>] ? kprobe_target+0x2/0x20
[    1.766509]  <<EOE>> 
[    1.766509]  <<EOE>>  [<ffffffff85cdd293>] ? init_test_probes+0x63/0x550
 [<ffffffff85cdd293>] ? init_test_probes+0x63/0x550
[    1.766509]  [<ffffffff85ccc043>] ? register_module_notifier+0x13/0x20
[    1.766509]  [<ffffffff85ccc043>] ? register_module_notifier+0x13/0x20
[    1.766509]  [<ffffffff862f9330>] init_kprobes+0x1d0/0x1d9
[    1.766509]  [<ffffffff862f9330>] init_kprobes+0x1d0/0x1d9
[    1.766509]  [<ffffffff85c002b3>] do_one_initcall+0x93/0x1e0
[    1.766509]  [<ffffffff85c002b3>] do_one_initcall+0x93/0x1e0
[    1.766509]  [<ffffffff862e01ee>] kernel_init_freeable+0x1d8/0x25b
[    1.766509]  [<ffffffff862e01ee>] kernel_init_freeable+0x1d8/0x25b
[    1.766509]  [<ffffffff85fd4b60>] ? rest_init+0xc0/0xc0
[    1.766509]  [<ffffffff85fd4b60>] ? rest_init+0xc0/0xc0
[    1.766509]  [<ffffffff85fd4b69>] kernel_init+0x9/0xd0
[    1.766509]  [<ffffffff85fd4b69>] kernel_init+0x9/0xd0
[    1.766509]  [<ffffffff85fdeb4f>] ret_from_fork+0x3f/0x70
[    1.766509]  [<ffffffff85fdeb4f>] ret_from_fork+0x3f/0x70
[    1.766509]  [<ffffffff85fd4b60>] ? rest_init+0xc0/0xc0
[    1.766509]  [<ffffffff85fd4b60>] ? rest_init+0xc0/0xc0
[    1.766509] ---[ end trace b1f73f7dccccd75e ]---
[    1.766509] ---[ end trace b1f73f7dccccd75e ]---

git bisect start 2361c14dccac69cefe9699c0e9ded43abdaa2830 c65b99f046843d2455aa231747b5a07a999a9f3d --
git bisect good 19e6b3919d764289337d19cb7d2b674e54e30492  # 12:08     20+      0  Merge 'omap/for-next' into devel-catchup-201506021106
git bisect  bad f6558992ab0f0335453998b88c82cbb79aa06436  # 12:13      0-     14  Merge 'asoc/for-linus' into devel-catchup-201506021106
git bisect  bad 2773c7e1a6686033cb6a5826bccaca8527e282ab  # 12:18      0-     20  Merge 'target/for-next' into devel-catchup-201506021106
git bisect good b1dae74d1de9190b9bc4522308e7b8f8e3663e7c  # 12:22     20+      0  Merge 'omap/master' into devel-catchup-201506021106
git bisect  bad e94d357c6413f77d6ea165684e6115407ce4703a  # 12:27      0-      7  Merge 'luto/x86/entry' into devel-catchup-201506021106
git bisect good 51bb92843edcba5a58138cad25ced97923048add  # 12:33     20+      0  x86/asm/entry: Remove SYSCALL_VECTOR
git bisect good cdeb6048940fa4bfb429e2f1cba0d28a11e20cd5  # 12:39     20+      0  x86/asm/irq: Stop relying on magic JMP behavior for early_idt_handlers
git bisect  bad ed5b90f697fb8bd7630d44df5933b2cbf61e22be  # 12:43      0-     20  x86, entry: Add and check a stack canary for the SYSENTER stack
git bisect good 7e23a349bac56aceee44e94abc78e4bcda07157d  # 12:51     20+      0  x86_64, entry: Set up a valid sysenter stack and prepare for 32-bit merge
git bisect good 592fe34cc3e2e3ef7d796827e27d392d7f45cbce  # 12:55     20+      0  x86_64, ia32entry: Replace SWAPGS_UNSAFE_STACK with SWAPGS in sysenter
# first bad commit: [ed5b90f697fb8bd7630d44df5933b2cbf61e22be] x86, entry: Add and check a stack canary for the SYSENTER stack
git bisect good 592fe34cc3e2e3ef7d796827e27d392d7f45cbce  # 12:58     60+      0  x86_64, ia32entry: Replace SWAPGS_UNSAFE_STACK with SWAPGS in sysenter
# extra tests with DEBUG_INFO
git bisect  bad ed5b90f697fb8bd7630d44df5933b2cbf61e22be  # 13:02      0-     55  x86, entry: Add and check a stack canary for the SYSENTER stack
# extra tests on HEAD of linux-devel/devel-catchup-201506021106
git bisect  bad 2361c14dccac69cefe9699c0e9ded43abdaa2830  # 13:02      0-     11  0day head guard for 'devel-catchup-201506021106'
# extra tests on tree/branch luto/x86/entry
git bisect  bad d63d27a4946677ef2f706a0cd2cb2752d25ca261  # 13:12      0-     57  [WIP] x86: Rewrite syscall exit code
# extra tests with first bad commit reverted
# extra tests on tree/branch linus/master
git bisect good c46a024ea5eb0165114dbbc8c82c29b7bcf66e71  # 13:18     60+      0  Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
# extra tests on tree/branch next/master
git bisect good e430ccc59c12619af6196c34707d3afa0728ca27  # 13:35     60+      0  Add linux-next specific files for 20150601


This script may reproduce the error.

----------------------------------------------------------------------------
#!/bin/bash

kernel=$1
initrd=quantal-core-x86_64.cgz

wget --no-clobber https://github.com/fengguang/reproduce-kernel-bug/raw/master/initrd/$initrd

kvm=(
	qemu-system-x86_64
	-enable-kvm
	-cpu kvm64
	-kernel $kernel
	-initrd $initrd
	-m 300
	-smp 2
	-device e1000,netdev=net0
	-netdev user,id=net0
	-boot order=nc
	-no-reboot
	-watchdog i6300esb
	-rtc base=localtime
	-serial stdio
	-display none
	-monitor null 
)

append=(
	hung_task_panic=1
	earlyprintk=ttyS0,115200
	systemd.log_level=err
	debug
	apic=debug
	sysrq_always_enabled
	rcupdate.rcu_cpu_stall_timeout=100
	panic=-1
	softlockup_panic=1
	nmi_watchdog=panic
	oops=panic
	load_ramdisk=2
	prompt_ramdisk=0
	console=ttyS0,115200
	console=tty0
	vga=normal
	root=/dev/ram0
	rw
	drbd.minor_count=8
)

"${kvm[@]}" --append "${append[*]}"
----------------------------------------------------------------------------

Thanks,
Fengguang

View attachment "dmesg-quantal-ivb41-133:20150602124316:x86_64-randconfig-x0-0602:4.1.0-rc3-00387-ged5b90f:4" of type "text/plain" (130714 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ