| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <574b49e2.Yc7lmCum3jDvCZOv%xiaolong.ye@intel.com>
Date: Mon, 30 May 2016 03:58:26 +0800
From: kernel test robot <xiaolong.ye@...el.com>
To: Andy Lutomirski <luto@...nel.org>
Cc: lkp@...org, Andy Lutomirski <luto@...capital.net>,
LKML <linux-kernel@...r.kernel.org>
Subject: [x86/uaccess] 3964262746: BUG: uaccess fault at kernel address
0x8011e000 with KERNEL_DS
FYI, we noticed the following commit:
https://git.kernel.org/pub/scm/linux/kernel/git/luto/linux.git x86/uaccess
commit 396426274682b471f3fb5ed2f4c3295c8e360d63 ("x86/uaccess: OOPS or warn on a fault with KERNEL_DS and !pagefault_disabled()")
on test machine: vm-intel12-openwrt-i386: 1 threads qemu-system-i386 -enable-kvm with 192M memory
caused below changes:
+----------------+------------+------------+
| | b50e80af2f | 3964262746 |
+----------------+------------+------------+
| boot_successes | 8 | 12 |
+----------------+------------+------------+
[ 0.763229] ..... CPU clock speed is 2926.3110 MHz.
[ 0.764520] ..... host bus clock speed is 999.9966 MHz.
[ 0.764520] ..... host bus clock speed is 999.9966 MHz.
[ 0.766600] BUG: uaccess fault at kernel address 0x8011e000 with KERNEL_DS
[ 0.766600] BUG: uaccess fault at kernel address 0x8011e000 with KERNEL_DS
[ 0.768496] BUG: unable to handle kernel
[ 0.768496] BUG: unable to handle kernel paging requestpaging request at 8011e000
at 8011e000
[ 0.770097] IP:
[ 0.770097] IP: [<8114ea21>] copy_mount_options+0x91/0x260
[<8114ea21>] copy_mount_options+0x91/0x260
[ 0.771632] *pde = 0210d063
[ 0.771632] *pde = 0210d063 *pte = 0011e060 *pte = 0011e060
[ 0.772808] Oops: 0000 [#1]
[ 0.772808] Oops: 0000 [#1] DEBUG_PAGEALLOC DEBUG_PAGEALLOC
[ 0.785071] Modules linked in:
[ 0.785071] Modules linked in:
[ 0.785890] CPU: 0 PID: 7 Comm: kdevtmpfs Not tainted 4.6.0-rc6-00083-g3964262 #1
[ 0.785890] CPU: 0 PID: 7 Comm: kdevtmpfs Not tainted 4.6.0-rc6-00083-g3964262 #1
[ 0.787809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Debian-1.8.2-1 04/01/2014
[ 0.787809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Debian-1.8.2-1 04/01/2014
[ 0.790111] task: 8010e640 ti: 8011c000 task.ti: 8011c000
[ 0.790111] task: 8010e640 ti: 8011c000 task.ti: 8011c000
[ 0.791632] task.addr_limit: 0xffffffff
[ 0.791632] task.addr_limit: 0xffffffff
[ 0.792582] EIP: 0060:[<8114ea21>] EFLAGS: 00210202 CPU: 0
[ 0.792582] EIP: 0060:[<8114ea21>] EFLAGS: 00210202 CPU: 0
[ 0.804091] EIP is at copy_mount_options+0x91/0x260
[ 0.804091] EIP is at copy_mount_options+0x91/0x260
[ 0.805404] EAX: 8011e000 EBX: 00000efe ECX: 000010c6 EDX: 00000000
[ 0.805404] EAX: 8011e000 EBX: 00000efe ECX: 000010c6 EDX: 00000000
[ 0.806989] ESI: 00000000 EDI: 8001655a EBP: 8011de60 ESP: 8011de4c
[ 0.806989] ESI: 00000000 EDI: 8001655a EBP: 8011de60 ESP: 8011de4c
[ 0.808686] DS: 007b ES: 007b FS: 0000 GS: 00e0 SS: 0068
[ 0.808686] DS: 007b ES: 007b FS: 0000 GS: 00e0 SS: 0068
[ 0.810043] CR0: 80050033 CR2: 8011e000 CR3: 01924000 CR4: 00000690
[ 0.810043] CR0: 80050033 CR2: 8011e000 CR3: 01924000 CR4: 00000690
[ 0.811788] Stack:
[ 0.811788] Stack:
[ 0.812262] 00001000
[ 0.812262] 00001000 80016458 80016458 80114a30 80114a30 81674e04 81674e04 80114648 80114648 8011de80 8011de80 8114fbdd 8114fbdd 81861c84 81861c84
[ 0.824612] 00000000
[ 0.824612] 00000000 80118008 80118008 8006bf68 8006bf68 8006bf68 8006bf68 812c7020 812c7020 8011df18 8011df18 812c708d 812c708d 81674e04 81674e04
[ 0.826707] 81661211
[ 0.826707] 81661211 81674e04 81674e04 00008000 00008000 8011defe 8011defe 80070040 80070040 8011dea8 8011dea8 8108403b 8108403b 8011deb4 8011deb4
[ 0.828998] Call Trace:
[ 0.828998] Call Trace:
[ 0.829682] [<8114fbdd>] SyS_mount+0x4d/0xd0
[ 0.829682] [<8114fbdd>] SyS_mount+0x4d/0xd0
[ 0.834912] [<812c7020>] ? handle_remove+0x270/0x270
[ 0.834912] [<812c7020>] ? handle_remove+0x270/0x270
[ 0.836115] [<812c708d>] devtmpfsd+0x6d/0x300
[ 0.836115] [<812c708d>] devtmpfsd+0x6d/0x300
[ 0.837225] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.837225] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.838684] [<8149f1c2>] ? _raw_spin_unlock_irq+0x22/0x50
[ 0.838684] [<8149f1c2>] ? _raw_spin_unlock_irq+0x22/0x50
[ 0.850179] [<8106967d>] ? finish_task_switch+0x9d/0x200
[ 0.850179] [<8106967d>] ? finish_task_switch+0x9d/0x200
[ 0.851504] [<8106963c>] ? finish_task_switch+0x5c/0x200
[ 0.851504] [<8106963c>] ? finish_task_switch+0x5c/0x200
[ 0.852983] [<81499856>] ? __schedule+0x356/0x890
[ 0.852983] [<81499856>] ? __schedule+0x356/0x890
[ 0.854127] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.854127] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.855571] [<812c7020>] ? handle_remove+0x270/0x270
[ 0.855571] [<812c7020>] ? handle_remove+0x270/0x270
[ 0.856924] [<81064982>] kthread+0xb2/0xd0
[ 0.856924] [<81064982>] kthread+0xb2/0xd0
[ 0.858129] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.858129] [<8108403b>] ? trace_hardirqs_on+0xb/0x10
[ 0.859455] [<8149f782>] ret_from_kernel_thread+0xe/0x24
[ 0.859455] [<8149f782>] ret_from_kernel_thread+0xe/0x24
[ 0.871022] [<810648d0>] ? kthread_create_on_node+0x150/0x150
[ 0.871022] [<810648d0>] ? kthread_create_on_node+0x150/0x150
[ 0.872587] Code:
[ 0.872587] Code: 84 84 35 35 01 01 00 00 00 00 89 89 f0 f0 8b 8b 5d 5d ec ec 31 31 f6 f6 8b 8b 7d 7d f0 f0 eb eb 15 15 89 89 f6 f6 8d 8d bc bc 27 27 00 00 00 00 00 00 00 00 47 47 40 40 4b 4b 88 88 4f 4f ff ff 0f 0f 84 84 14 14 01 01 00 00 00 00 8d 8d 76 76 00 00 89 89 f2 f2 <8a> <8a> 08 08 8d 8d 76 76 00 00 85 85 d2 d2 74 74 e6 e6 83 83 fb fb 08 08 89 89 da da 0f 0f 83 83 c3 c3 00 00 00 00 00 00 f6 f6
[ 0.878619] EIP: [<8114ea21>]
[ 0.878619] EIP: [<8114ea21>] copy_mount_options+0x91/0x260copy_mount_options+0x91/0x260 SS:ESP 0068:8011de4c
SS:ESP 0068:8011de4c
[ 0.890678] CR2: 000000008011e000
[ 0.890678] CR2: 000000008011e000
[ 0.891488] ---[ end trace d0ffd25e930c69d8 ]---
[ 0.891488] ---[ end trace d0ffd25e930c69d8 ]---
FYI, raw QEMU command line is:
qemu-system-i386 -enable-kvm -kernel /pkg/linux/i386-randconfig-n0-201622/gcc-6/396426274682b471f3fb5ed2f4c3295c8e360d63/vmlinuz-4.6.0-rc6-00083-g3964262 -append 'root=/dev/ram0 user=lkp job=/lkp/scheduled/vm-intel12-openwrt-i386-7/bisect_boot-1-openwrt-i386.cgz-i386-randconfig-n0-201622-396426274682b471f3fb5ed2f4c3295c8e360d63-20160530-6476-1adtvs3-0.yaml ARCH=i386 kconfig=i386-randconfig-n0-201622 branch=luto/x86/uaccess commit=396426274682b471f3fb5ed2f4c3295c8e360d63 BOOT_IMAGE=/pkg/linux/i386-randconfig-n0-201622/gcc-6/396426274682b471f3fb5ed2f4c3295c8e360d63/vmlinuz-4.6.0-rc6-00083-g3964262 max_uptime=600 RESULT_ROOT=/result/boot/1/vm-intel12-openwrt-i386/openwrt-i386.cgz/i386-randconfig-n0-201622/gcc-6/396426274682b471f3fb5ed2f4c3295c8e360d63/0 LKP_SERVER=inn earlyprintk=ttyS0,115200 systemd.log_level=err debug apic=debug sysrq_always_enabled rcupdate.rcu_cpu_stall_timeout=100 panic=-1 softlockup_panic=1 nmi_watchdog=panic oops=panic load_ramdisk=2 prompt_ramdisk=0 console=ttyS0,115200 console=tty0 vga=normal rw ip=::::vm-intel12-openwrt-i386-7::dhcp drbd.minor_count=8' -initrd /fs/sda2/initrd-vm-intel12-openwrt-i386-7 -m 192 -smp 1 -device e1000,netdev=net0 -netdev user,id=net0 -boot order=nc -no-reboot -watchdog i6300esb -rtc base=localtime -drive file=/fs/sda2/disk0-vm-intel12-openwrt-i386-7,media=disk,if=virtio -drive file=/fs/sda2/disk1-vm-intel12-openwrt-i386-7,media=disk,if=virtio -pidfile /dev/shm/kboot/pid-vm-intel12-openwrt-i386-7 -serial file:/dev/shm/kboot/serial-vm-intel12-openwrt-i386-7 -daemonize -display none -monitor null
Thanks,
Kernel Test Robot
View attachment "config-4.6.0-rc6-00083-g3964262" of type "text/plain" (87081 bytes)
Download attachment "dmesg.xz" of type "application/octet-stream" (5668 bytes)
Powered by blists - more mailing lists