| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 25 Jul 2015 17:47:42 +0800
From: Fengguang Wu <fengguang.wu@...el.com>
To: Sudip Mukherjee <sudipm.mukherjee@...il.com>
Cc: wfg@...ux.intel.com,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
LKP <lkp@...org>, LKML <linux-kernel@...r.kernel.org>
Subject: [parport] BUG: unable to handle kernel paging request at 5f6f6969
Greetings,
0day kernel testing robot got the below dmesg and the first bad commit is
git://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git master
commit 23c405912b881e3ca516554efde852c2ad550b31
Author: Sudip Mukherjee <sudipm.mukherjee@...il.com>
AuthorDate: Mon Jun 15 20:05:50 2015 +0530
Commit: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
CommitDate: Wed Jul 22 21:15:49 2015 -0700
parport: fix memory leak
After the reference count becomes 0 when put_device() is called, it will
execute the release callback where we are freeing all the allocated
memory associated with the device. We missed freeing par_dev->state.
Signed-off-by: Sudip Mukherjee <sudip@...torindia.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
+------------------------------------------------+------------+------------+------------+
| | cabea69587 | 23c405912b | 204364c4be |
+------------------------------------------------+------------+------------+------------+
| boot_successes | 88 | 0 | 0 |
| boot_failures | 10 | 34 | 39 |
| IP-Config:Auto-configuration_of_network_failed | 10 | | |
| BUG:unable_to_handle_kernel | 0 | 34 | 38 |
| Oops | 0 | 34 | 38 |
| EIP_is_at_kstrdup | 0 | 34 | 38 |
| Kernel_panic-not_syncing:Fatal_exception | 0 | 34 | 38 |
| backtrace:device_add | 0 | 34 | 38 |
| backtrace:iio_dummy_evgen_init | 0 | 34 | 38 |
| backtrace:kernel_init_freeable | 0 | 34 | 38 |
| BUG:kernel_boot_crashed | 0 | 0 | 1 |
+------------------------------------------------+------------+------------+------------+
[ 4.851192] panel: could not claim access to parport0. Aborting.
[ 4.852351] panel: driver version 0.9.5 not yet registered
[ 4.852351] panel: driver version 0.9.5 not yet registered
[ 4.853465] BUG: unable to handle kernel
[ 4.853465] BUG: unable to handle kernel paging requestpaging request at 5f6f6969
at 5f6f6969
[ 4.854608] IP:
[ 4.854608] IP: [<810d6996>] kstrdup+0x2e/0x3c
[<810d6996>] kstrdup+0x2e/0x3c
[ 4.855413] *pdpt = 0000000000000000
[ 4.855413] *pdpt = 0000000000000000 *pde = 0000000000000000 *pde = 0000000000000000
[ 4.856457] Oops: 0002 [#1]
[ 4.856457] Oops: 0002 [#1] SMP SMP DEBUG_PAGEALLOC DEBUG_PAGEALLOC
[ 4.857314] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.2.0-rc3-00002-g23c4059 #3
[ 4.857314] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.2.0-rc3-00002-g23c4059 #3
[ 4.858643] task: 80038000 ti: 80034000 task.ti: 80034000
[ 4.858643] task: 80038000 ti: 80034000 task.ti: 80034000
[ 4.859596] EIP: 0060:[<810d6996>] EFLAGS: 00010206 CPU: 0
[ 4.859596] EIP: 0060:[<810d6996>] EFLAGS: 00010206 CPU: 0
[ 4.860566] EIP is at kstrdup+0x2e/0x3c
[ 4.860566] EIP is at kstrdup+0x2e/0x3c
[ 4.861241] EAX: 00000000 EBX: 0000000a ECX: 0000000a EDX: 5f6f6969
[ 4.861241] EAX: 00000000 EBX: 0000000a ECX: 0000000a EDX: 5f6f6969
[ 4.862338] ESI: 8e68fd70 EDI: 5f6f6969 EBP: 80035e50 ESP: 80035e44
[ 4.862338] ESI: 8e68fd70 EDI: 5f6f6969 EBP: 80035e50 ESP: 80035e44
[ 4.863443] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068
[ 4.863443] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068
[ 4.864387] CR0: 80050033 CR2: 5f6f6969 CR3: 0254f000 CR4: 000406b0
[ 4.864387] CR0: 80050033 CR2: 5f6f6969 CR3: 0254f000 CR4: 000406b0
[ 4.865485] Stack:
[ 4.865485] Stack:
[ 4.865847] 0000a1ff
[ 4.865847] 0000a1ff 801d9840 801d9840 0000a1ff 0000a1ff 80035e58 80035e58 810d69ba 810d69ba 80035e70 80035e70 81143a22 81143a22 800950c0 800950c0
[ 4.867317] 0000a1ff
[ 4.867317] 0000a1ff 801d9840 801d9840 801d9840 801d9840 80035e88 80035e88 811446ca 811446ca 00000004 00000004 8e68fd70 8e68fd70 8e68fd70 8e68fd70
[ 4.868790] 8e6d6480
[ 4.868790] 8e6d6480 80035ea0 80035ea0 81145a5b 81145a5b 00000004 00000004 8e68fd70 8e68fd70 8e6d6480 8e6d6480 8234b568 8234b568 80035eb8 80035eb8
[ 4.870255] Call Trace:
[ 4.870255] Call Trace:
[ 4.870701] [<810d69ba>] kstrdup_const+0x16/0x18
[ 4.870701] [<810d69ba>] kstrdup_const+0x16/0x18
[ 4.871535] [<81143a22>] __kernfs_new_node+0x18/0x94
[ 4.871535] [<81143a22>] __kernfs_new_node+0x18/0x94
[ 4.872427] [<811446ca>] kernfs_new_node+0x20/0x3a
[ 4.872427] [<811446ca>] kernfs_new_node+0x20/0x3a
[ 4.873282] [<81145a5b>] kernfs_create_link+0x16/0x56
[ 4.873282] [<81145a5b>] kernfs_create_link+0x16/0x56
[ 4.874197] [<8114630e>] sysfs_do_create_link_sd+0x4e/0x7e
[ 4.874197] [<8114630e>] sysfs_do_create_link_sd+0x4e/0x7e
[ 4.875294] [<81146373>] sysfs_create_link+0x26/0x2c
[ 4.875294] [<81146373>] sysfs_create_link+0x26/0x2c
[ 4.876191] [<8172c908>] bus_add_device+0xa4/0x122
[ 4.876191] [<8172c908>] bus_add_device+0xa4/0x122
[ 4.877060] [<811467d9>] ? sysfs_create_groups+0x1e/0x49
[ 4.877060] [<811467d9>] ? sysfs_create_groups+0x1e/0x49
[ 4.878014] [<8172bc86>] device_add+0x230/0x4ab
[ 4.878014] [<8172bc86>] device_add+0x230/0x4ab
[ 4.878835] [<814a8861>] ? kobject_set_name_vargs+0x3e/0x49
[ 4.878835] [<814a8861>] ? kobject_set_name_vargs+0x3e/0x49
[ 4.879834] [<823b7d49>] iio_dummy_evgen_init+0xf4/0x101
[ 4.879834] [<823b7d49>] iio_dummy_evgen_init+0xf4/0x101
[ 4.880787] [<823b7c55>] ? iio_dummy_init+0x171/0x171
[ 4.880787] [<823b7c55>] ? iio_dummy_init+0x171/0x171
[ 4.881693] [<82372c91>] do_one_initcall+0x15d/0x16c
[ 4.881693] [<82372c91>] do_one_initcall+0x15d/0x16c
[ 4.882589] [<823724ef>] ? repair_env_string+0x12/0x54
[ 4.882589] [<823724ef>] ? repair_env_string+0x12/0x54
[ 4.883513] [<81065b64>] ? parse_args+0x18e/0x272
[ 4.883513] [<81065b64>] ? parse_args+0x18e/0x272
[ 4.884358] [<82372d90>] kernel_init_freeable+0xf0/0x172
[ 4.884358] [<82372d90>] kernel_init_freeable+0xf0/0x172
[ 4.885311] [<81c6eeea>] kernel_init+0x8/0xb0
[ 4.885311] [<81c6eeea>] kernel_init+0x8/0xb0
[ 4.886097] [<81c823c1>] ret_from_kernel_thread+0x21/0x30
[ 4.886097] [<81c823c1>] ret_from_kernel_thread+0x21/0x30
[ 4.887061] [<81c6eee2>] ? rest_init+0xaa/0xaa
[ 4.887061] [<81c6eee2>] ? rest_init+0xaa/0xaa
[ 4.887865] Code:
[ 4.887865] Code: 30 30 55 55 89 89 e5 e5 57 57 89 89 d7 d7 56 56 89 89 c6 c6 53 53 e8 e8 df df 90 90 3d 3d 00 00 89 89 fa fa 8b 8b 4d 4d 04 04 8d 8d 58 58 01 01 89 89 d8 d8 e8 e8 5f 5f a6 a6 01 01 00 00 89 89 c2 c2 31 31 c0 c0 85 85 d2 d2 74 74 0d 0d 89 89 d7 d7 89 89 d9 d9 <f3> <f3> a4 a4 89 89 d0 d0 eb eb 03 03 31 31 c0 c0 c3 c3 5b 5b 5e 5e 5f 5f 5d 5d c3 c3 55 55 3d 3d 00 00 50 50 c8 c8 81 81 89 89
[ 4.892030] EIP: [<810d6996>]
[ 4.892030] EIP: [<810d6996>] kstrdup+0x2e/0x3ckstrdup+0x2e/0x3c SS:ESP 0068:80035e44
SS:ESP 0068:80035e44
[ 4.893178] CR2: 000000005f6f6969
[ 4.893178] CR2: 000000005f6f6969
[ 4.893776] ---[ end trace 25b877e05368647a ]---
[ 4.893776] ---[ end trace 25b877e05368647a ]---
git bisect start 204364c4be7850933343332164bf6b502cf25847 52721d9d3334c1cb1f76219a161084094ec634dc --
git bisect good 3912000d521c9b22f0cdd85c31cd0074db51720a # 07:38 22+ 5 Merge 'meson/ts/dts-m6-fix' into devel-spot-201507250010
git bisect bad 97e101e2035996a5e066c442fdabbde7cff991ae # 07:38 0- 13 Merge 'renesas/marzen-board-removal-for-v4.3' into devel-spot-201507250010
git bisect bad 8e80e64c1813c5ac8b43a944c085628c97eac590 # 07:38 0- 14 Merge 'chanwoo-extcon/extcon-next' into devel-spot-201507250010
git bisect good 21442d0cbbf146d612cf44689423468b5429853d # 07:41 22+ 7 Merge 'kvm-ppc/kvm-ppc-queue' into devel-spot-201507250010
git bisect good f30d87440a38d52261570ae67efd6f70d05717b7 # 07:43 22+ 6 Merge 'kvm/queue' into devel-spot-201507250010
git bisect bad 5e65d6855070bfb9e3fbd56f40be916c8d3ba2d5 # 07:47 1- 24 Merge 'xhci/for-usb-linus' into devel-spot-201507250010
git bisect good a2d52a24ad81e37d5731efdfebd7321dd36c1965 # 07:53 22+ 1 Merge 'richacl/richacl-2015-07-22' into devel-spot-201507250010
git bisect bad 61c2c945b364ddbd4f4057a3f2724daae09bca41 # 07:55 0- 24 Merge 'char-misc/char-misc-linus' into devel-spot-201507250010
git bisect bad 68d35c7b3b1aa686e3039eb2626bf5e3ea8dbe81 # 07:59 0- 22 parport: fix freeing freed memory
git bisect bad 23c405912b881e3ca516554efde852c2ad550b31 # 08:03 0- 7 parport: fix memory leak
git bisect good cabea695875e3a07313c205a9753c7416126dfa2 # 08:08 22+ 2 parport: fix error handling
# first bad commit: [23c405912b881e3ca516554efde852c2ad550b31] parport: fix memory leak
git bisect good cabea695875e3a07313c205a9753c7416126dfa2 # 08:10 66+ 3 parport: fix error handling
# extra tests with DEBUG_INFO
git bisect bad 23c405912b881e3ca516554efde852c2ad550b31 # 08:19 0- 1 parport: fix memory leak
# extra tests on HEAD of linux-devel/devel-spot-201507250010
git bisect bad 204364c4be7850933343332164bf6b502cf25847 # 08:19 0- 39 0day head guard for 'devel-spot-201507250010'
# extra tests on tree/branch linux-next/master
git bisect bad e8e9cc31b0769f2152a6825560e4005b84b2c768 # 08:25 0- 19 Add linux-next specific files for 20150724
# extra tests with first bad commit reverted
# extra tests on tree/branch linus/master
git bisect good 33b40178cb3bd75294d1a758b3f509a0d38682ab # 08:51 66+ 2 Merge branch 'for-linus' of git://git.kernel.dk/linux-block
# extra tests on tree/branch linux-next/master
git bisect bad e8e9cc31b0769f2152a6825560e4005b84b2c768 # 08:51 0- 76 Add linux-next specific files for 20150724
This script may reproduce the error.
----------------------------------------------------------------------------
#!/bin/bash
kernel=$1
initrd=yocto-minimal-i386.cgz
wget --no-clobber https://github.com/fengguang/reproduce-kernel-bug/raw/master/initrd/$initrd
kvm=(
qemu-system-x86_64
-enable-kvm
-cpu Haswell,+smep,+smap
-kernel $kernel
-initrd $initrd
-m 256
-smp 1
-device e1000,netdev=net0
-netdev user,id=net0
-boot order=nc
-no-reboot
-watchdog i6300esb
-rtc base=localtime
-serial stdio
-display none
-monitor null
)
append=(
hung_task_panic=1
earlyprintk=ttyS0,115200
systemd.log_level=err
debug
apic=debug
sysrq_always_enabled
rcupdate.rcu_cpu_stall_timeout=100
panic=-1
softlockup_panic=1
nmi_watchdog=panic
oops=panic
load_ramdisk=2
prompt_ramdisk=0
console=ttyS0,115200
console=tty0
vga=normal
root=/dev/ram0
rw
drbd.minor_count=8
)
"${kvm[@]}" --append "${append[*]}"
----------------------------------------------------------------------------
---
0-DAY kernel test infrastructure Open Source Technology Center
https://lists.01.org/pipermail/lkp Intel Corporation
View attachment "dmesg-quantal-ivb41-99:20150725073342:i386-randconfig-x0-07250601:4.2.0-rc3-wl-03315-g204364c:999" of type "text/plain" (119071 bytes)
View attachment "config-4.2.0-rc3-wl-03315-g204364c" of type "text/plain" (105848 bytes)
Powered by blists - more mailing lists