| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <58700f3a.Mx5BsG/9HeEOinlL%fengguang.wu@intel.com>
Date: Sat, 07 Jan 2017 05:42:18 +0800
From: kernel test robot <fengguang.wu@...el.com>
To: Paul Burton <paul.burton@...tec.com>
Cc: LKP <lkp@...org>, linux-kernel@...r.kernel.org,
Ralf Baechle <ralf@...ux-mips.org>, wfg@...ux.intel.com
Subject: [auxdisplay: img-ascii-lcd] 0cad855fbd: BUG: KASAN:
global-out-of-bounds in __of_match_node at addr ffffffff83452518
Greetings,
0day kernel testing robot got the below dmesg and the first bad commit is
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master
commit 0cad855fbd083ee5fd0584a47c2aaa7dca936fd4
Author: Paul Burton <paul.burton@...tec.com>
AuthorDate: Fri Aug 26 15:17:49 2016 +0100
Commit: Ralf Baechle <ralf@...ux-mips.org>
CommitDate: Thu Oct 6 17:03:41 2016 +0200
auxdisplay: img-ascii-lcd: driver for simple ASCII LCD displays
Add a driver for simple ASCII LCD displays found on the MIPS Boston,
Malta & SEAD3 development boards. The Boston display is an independent
memory mapped device with a simple memory mapped 8 byte register space
containing the 8 ASCII characters to display. The Malta display is
exposed as part of the Malta board registers, and provides 8 registers
each of which corresponds to one of the ASCII characters to display. The
SEAD3 display is slightly more complex, exposing an interface to an
S6A0069 LCD controller via registers provided by the boards CPLD.
However although the displays differ in their register interface, we
require similar functionality on each board so abstracting away the
differences within a single driver allows us to share a significant
amount of code & ensure consistent behaviour.
The driver displays the Linux kernel version as the default message, but
allows the message to be changed via a character device. Messages longer
then the number of characters that the display can show will scroll.
This provides different behaviour to the existing LCD display code for
the MIPS Malta or MIPS SEAD3 platforms in the following ways:
- The default string to display is not "LINUX ON MALTA" or "LINUX ON
SEAD3" but "Linux" followed by the version number of the kernel
(UTS_RELEASE).
- Since that string tends to be significantly longer it scrolls twice
as fast, moving every 500ms rather than every 1s.
- The LCD won't be updated until the driver is probed, so it doesn't
provide the early "LINUX" string.
Signed-off-by: Paul Burton <paul.burton@...tec.com>
Cc: Mauro Carvalho Chehab <mchehab@...nel.org>
Cc: Miguel Ojeda Sandonis <miguel.ojeda.sandonis@...il.com>
Cc: Guenter Roeck <linux@...ck-us.net>
Cc: David S. Miller <davem@...emloft.net>
Cc: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
Cc: Geert Uytterhoeven <geert@...ux-m68k.org>
Cc: Andrew Morton <akpm@...ux-foundation.org>
Cc: linux-mips@...ux-mips.org
Cc: linux-kernel@...r.kernel.org
Patchwork: https://patchwork.linux-mips.org/patch/14062/
Signed-off-by: Ralf Baechle <ralf@...ux-mips.org>
+----------------------------------------------------------+------------+------------+------------+
| | 8ef3ff2723 | 0cad855fbd | b825fc2020 |
+----------------------------------------------------------+------------+------------+------------+
| boot_successes | 159 | 0 | 0 |
| boot_failures | 0 | 55 | 19 |
| BUG:KASAN:global-out-of-bounds_in__of_match_node_at_addr | 0 | 55 | 19 |
| calltrace:of_unittest | 0 | 55 | |
+----------------------------------------------------------+------------+------------+------------+
[ 17.428297] OF: /testcase-data/phandle-tests/consumer-a: arguments longer than property
[ 17.431560] irq: no irq domain found for /testcase-data/interrupts/intc0 !
[ 17.433607] ==================================================================
[ 17.435287] BUG: KASAN: global-out-of-bounds in __of_match_node+0x4e/0xe3 at addr ffffffff83452518
[ 17.437125] Read of size 1 by task swapper/0/1
[ 17.438077] Address belongs to variable img_ascii_lcd_matches+0x258/0xd20
[ 17.439286] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.8.0-00085-g0cad855 #1
[ 17.440532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.9.3-20161025_171302-gandalf 04/01/2014
[ 17.453210] 0000000000000000 ffff880018ad74d0 ffffffff81a23ffb ffffffff83452518
[ 17.455178] 1ffffffff068a4a3 ffff880018ad7548 ffffffff812df087 ffffffff8293008e
[ 17.457134] 0000000000000096 ffffffff8292fc86 ffffffff83452450 ffff880011b03328
[ 17.459086] Call Trace:
[ 17.459818] [<ffffffff81a23ffb>] dump_stack+0x82/0xb8
[ 17.460851] [<ffffffff812df087>] kasan_report+0x32f/0x438
[ 17.461916] [<ffffffff8293008e>] ? __of_match_node+0x4e/0xe3
[ 17.463014] [<ffffffff8292fc86>] ? of_prop_next_string+0x4e/0xb6
[ 17.464148] [<ffffffff812df1a4>] __asan_report_load1_noabort+0x14/0x16
[ 17.465340] [<ffffffff8293008e>] __of_match_node+0x4e/0xe3
[ 17.466414] [<ffffffff8293014d>] of_match_node+0x2a/0x47
[ 17.467471] [<ffffffff82930912>] of_match_device+0x4b/0x53
[ 17.468548] [<ffffffff81e204df>] platform_match+0x8f/0x1d5
[ 17.469627] [<ffffffff81e1d3c2>] __device_attach_driver+0xc1/0x1e0
[ 17.470780] [<ffffffff81e1d301>] ? driver_allows_async_probing+0x40/0x40
[ 17.471988] [<ffffffff81e18c30>] bus_for_each_drv+0x151/0x181
[ 17.473094] [<ffffffff81e18adf>] ? subsys_find_device_by_id+0x201/0x201
[ 17.474286] [<ffffffff81e32041>] ? __pm_runtime_resume+0x9a/0xa7
[ 17.475417] [<ffffffff81e1c5e4>] __device_attach+0x169/0x226
[ 17.476512] [<ffffffff81e1c47b>] ? device_bind_driver+0x9b/0x9b
[ 17.477633] [<ffffffff812dc5b8>] ? kfree+0x7c/0xf7
[ 17.478640] [<ffffffff81a2aec0>] ? kobject_uevent_env+0x653/0x808
[ 17.479851] [<ffffffff8117bde8>] ? trace_hardirqs_on_caller+0x3d5/0x495
[ 17.481053] [<ffffffff81e1d7db>] device_initial_probe+0xe/0x10
[ 17.482165] [<ffffffff81e191f9>] bus_probe_device+0xad/0x1dd
[ 17.483259] [<ffffffff81e16675>] device_add+0x7a4/0xe46
[ 17.484310] [<ffffffff81e15ed1>] ? dev_warn+0xd0/0xd0
[ 17.485339] [<ffffffff82931a02>] ? of_device_make_bus_id+0x20c/0x20c
[ 17.486507] [<ffffffff8117bde8>] ? trace_hardirqs_on_caller+0x3d5/0x495
[ 17.487707] [<ffffffff82930a76>] of_device_add+0x124/0x12b
[ 17.488779] [<ffffffff82931df4>] of_platform_device_create_pdata+0x11a/0x142
[ 17.490025] [<ffffffff82932119>] of_platform_bus_create+0x2fd/0x4cb
[ 17.491183] [<ffffffff82931e1c>] ? of_platform_device_create_pdata+0x142/0x142
[ 17.492848] [<ffffffff8117bde8>] ? trace_hardirqs_on_caller+0x3d5/0x495
[ 17.494052] [<ffffffff82e0b654>] ? _raw_spin_unlock_irqrestore+0x49/0x5c
[ 17.495257] [<ffffffff82932708>] of_platform_populate+0x76/0x10d
[ 17.496392] [<ffffffff829327b5>] of_platform_default_populate+0x16/0x18
[ 17.497584] [<ffffffff846fc84c>] of_unittest_platform_populate+0xb0/0x54a
[ 17.498799] [<ffffffff846fc79c>] ? of_unittest_property_copy+0x413/0x413
[ 17.500004] [<ffffffff82e0b654>] ? _raw_spin_unlock_irqrestore+0x49/0x5c
[ 17.501213] [<ffffffff846ff606>] of_unittest+0x1eee/0x265b
[ 17.502290] [<ffffffff846fd718>] ? of_unittest_changeset+0x915/0x915
[ 17.503462] [<ffffffff81a29723>] ? kobject_add+0x167/0x19a
[ 17.504538] [<ffffffff81a295bc>] ? kobject_add_internal+0x6fd/0x6fd
[ 17.505698] [<ffffffff82dff25d>] ? kernel_init+0xc/0x105
[ 17.506760] [<ffffffff829f3d7f>] ? add_sysfs_fw_map_entry+0x9d/0x102
[ 17.507932] [<ffffffff846fd718>] ? of_unittest_changeset+0x915/0x915
[ 17.509104] [<ffffffff8466d843>] do_one_initcall+0x121/0x1e5
[ 17.510202] [<ffffffff8466d722>] ? start_kernel+0x5ac/0x5ac
[ 17.511282] [<ffffffff8466cd76>] ? repair_env_string+0x21/0xbb
[ 17.512394] [<ffffffff81133fb5>] ? parse_args+0x483/0x610
[ 17.513464] [<ffffffff8466dbc2>] kernel_init_freeable+0x2bb/0x351
[ 17.514616] [<ffffffff82dff25d>] kernel_init+0xc/0x105
[ 17.515665] [<ffffffff82e0bf6f>] ret_from_fork+0x1f/0x40
[ 17.516728] [<ffffffff82dff251>] ? rest_init+0x158/0x158
[ 17.517782] Memory state around the buggy address:
[ 17.518770] ffffffff83452400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
git bisect start v4.9 v4.8 --
git bisect bad 9fe68cad6e74967b88d0c6aeca7d9cd6b6e91942 # 14:51 2- 3 Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
git bisect good 5fa0eb0b4d4780fbd6d8a09850cc4fd539e9fe65 # 15:37 40+ 40 Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect good 87dbe42a16b654e33665756c63e96c0fa73eb003 # 16:15 44+ 44 Merge branch 'for-next' of git://git.samba.org/sfrench/cifs-2.6
git bisect bad 0ea67fae9e80bfd69713b51ba3fa53879be5383b # 16:33 2- 4 Merge tag 'mmc-v4.9-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/ulfh/mmc
git bisect bad e0ed1c22d480a3b5ec5fce4e5399cf4481da95a6 # 16:54 1- 2 Merge branch 'locking-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
git bisect bad 71757904efadefdf5505712f675218ce59483c5d # 17:34 0- 3 generic syscalls: kill cruft from removed pkey syscalls
git bisect bad 133d970e0dadf7b413db19893acc5b26664bf4a1 # 18:24 7- 8 Merge branch 'upstream' of git://git.linux-mips.org/pub/scm/ralf/upstream-linus
git bisect good b26b5ef5ec7eab0e1d84c5b281e87b2f2a5e0586 # 19:27 51+ 51 Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
git bisect good 050aaeab99067b6a08b34274ff15ca5dbb94a160 # 20:06 53+ 53 Merge tag 'sound-fix-4.9-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound
git bisect good d9d5417755eda87db8e370e4dd2175fbd8814acc # 20:33 53+ 0 MIPS: kernel: Audit and remove any unnecessary uses of module.h
git bisect bad 0a46ffa3604ec64b6a6784f134267c49ec224b75 # 21:55 0- 3 MIPS: Malta: Probe RTC via DT
git bisect good a1ec6003f21547199f57ab529d0eff742917d637 # 23:52 52+ 0 MIPS: SEAD3: Use generic restart-poweroff driver
git bisect bad 690803acca14e8aa101ca5204f0a23c24d7ad8c3 # 00:31 0- 6 irqchip: i8259: Add domain before mapping parent irq
git bisect good 8ef3ff2723f8cbaec4fee3c7fa807bf8d6ccd2e5 # 01:00 51+ 0 dt-bindings: img-ascii-lcd: Document a binding for simple ASCII LCDs
git bisect bad 5e189564d574541c6f149ab3a1081d25eec06fd0 # 01:29 0- 3 MIPS: SEAD3: Use img-ascii-lcd driver
git bisect bad 0cad855fbd083ee5fd0584a47c2aaa7dca936fd4 # 02:15 0- 3 auxdisplay: img-ascii-lcd: driver for simple ASCII LCD displays
# first bad commit: [0cad855fbd083ee5fd0584a47c2aaa7dca936fd4] auxdisplay: img-ascii-lcd: driver for simple ASCII LCD displays
git bisect good 8ef3ff2723f8cbaec4fee3c7fa807bf8d6ccd2e5 # 03:36 151+ 0 dt-bindings: img-ascii-lcd: Document a binding for simple ASCII LCDs
# extra tests with CONFIG_DEBUG_INFO_REDUCED
git bisect bad 0cad855fbd083ee5fd0584a47c2aaa7dca936fd4 # 04:01 0- 3 auxdisplay: img-ascii-lcd: driver for simple ASCII LCD displays
# extra tests on HEAD of linux-devel/devel-spot-201701061123
git bisect bad b825fc2020fac381e5c0e0e3116015f8b2d792ed # 04:01 0- 19 0day head guard for 'devel-spot-201701061123'
# extra tests on tree/branch linus/master
git bisect bad 5824f92463e978f27985b748c69d94ee7caa8230 # 04:40 0- 1 Merge tag 'vfio-v4.10-rc3' of git://github.com/awilliam/linux-vfio
# extra tests on tree/branch linus/master
git bisect bad 5824f92463e978f27985b748c69d94ee7caa8230 # 04:41 0- 8 Merge tag 'vfio-v4.10-rc3' of git://github.com/awilliam/linux-vfio
# extra tests on tree/branch linux-next/master
git bisect bad 010a0f949976ead7cc68a5830a09011cc4bf1802 # 05:37 0- 2 Add linux-next specific files for 20170106
---
0-DAY kernel test infrastructure Open Source Technology Center
https://lists.01.org/pipermail/lkp Intel Corporation
Download attachment "dmesg-quantal-ivb41-73:20170107014529:x86_64-randconfig-s2-01061217:4.8.0-00085-g0cad855:1.gz" of type "application/gzip" (58888 bytes)
View attachment "config-4.8.0-00085-g0cad855" of type "text/plain" (111107 bytes)
Powered by blists - more mailing lists