| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <5aa3d298.I8TDuf5eNCFe8oh5%fengguang.wu@intel.com>
Date: Sat, 10 Mar 2018 20:42:00 +0800
From: kernel test robot <fengguang.wu@...el.com>
To: Ingo Molnar <mingo@...nel.org>
Cc: LKP <lkp@...org>, linux-doc@...r.kernel.org,
linux-kernel@...r.kernel.org, wfg@...ux.intel.com
Subject: ea1b3dde97 ("Merge branch 'locking/core'"): BUG: KASAN:
use-after-scope in console_unlock
Greetings,
0day kernel testing robot got the below dmesg and the first bad commit is
https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git master
commit ea1b3dde972c3dd4f51060c297c66e4c08919e8c
Merge: 65cce31629b3d bd5c0ba2cd78a
Author: Ingo Molnar <mingo@...nel.org>
AuthorDate: Sat Mar 10 10:22:28 2018 +0100
Commit: Ingo Molnar <mingo@...nel.org>
CommitDate: Sat Mar 10 10:22:28 2018 +0100
Merge branch 'locking/core'
65cce31629 Merge branch 'timers/core'
bd5c0ba2cd tools/memory-model: Finish the removal of rb-dep, smp_read_barrier_depends(), and lockless_dereference()
ea1b3dde97 Merge branch 'locking/core'
+------------------------------------------------------------------+------------+------------+------------+
| | 65cce31629 | bd5c0ba2cd | ea1b3dde97 |
+------------------------------------------------------------------+------------+------------+------------+
| boot_successes | 41 | 4 | 0 |
| boot_failures | 0 | 14 | 21 |
| invoked_oom-killer:gfp_mask=0x | 0 | 9 | |
| Mem-Info | 0 | 13 | |
| Kernel_panic-not_syncing:Out_of_memory_and_no_killable_processes | 0 | 7 | |
| Out_of_memory:Kill_process | 0 | 5 | |
| BUG:KASAN:use-after-scope_in_c | 0 | 0 | 21 |
+------------------------------------------------------------------+------------+------------+------------+
[ 0.000000] Memory: 361580K/523712K available (16396K kernel code, 4349K rwdata, 5812K rodata, 1264K init, 23100K bss, 162132K reserved, 0K cma-reserved)
[ 0.000000] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=1, Nodes=1
[ 0.001000] Running RCU self tests
[ 0.001000] NR_IRQS: 4352, nr_irqs: 48, preallocated irqs: 16
[ 0.001000] ==================================================================
[ 0.001000] BUG: KASAN: use-after-scope in console_unlock+0x470/0x734
[ 0.001000] Write of size 1 at addr ffffffff82807970 by task swapper/0
[ 0.001000]
[ 0.001000] CPU: 0 PID: 0 Comm: swapper Not tainted 4.16.0-rc4-00677-gea1b3dde #65
[ 0.001000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1 04/01/2014
[ 0.001000] Call Trace:
[ 0.001000] ? print_address_description+0x50/0x21d
[ 0.001000] ? console_unlock+0x470/0x734
[ 0.001000] ? kasan_report+0x226/0x24c
[ 0.001000] ? console_unlock+0x470/0x734
[ 0.001000] ? wake_up_klogd+0xcf/0xcf
[ 0.001000] ? lock_acquire+0x9d/0xd8
[ 0.001000] ? vprintk_emit+0x565/0x819
[ 0.001000] ? lock_acquire+0xa9/0xd8
[ 0.001000] ? vprintk_emit+0x565/0x819
[ 0.001000] ? arch_local_irq_restore+0x7/0x8
[ 0.001000] ? __down_trylock_console_sem+0x8b/0x9f
[ 0.001000] ? vprintk_emit+0x7d7/0x819
[ 0.001000] ? console_unlock+0x734/0x734
[ 0.001000] ? memblock_add_range+0x32f/0x340
[ 0.001000] ? memblock_reserve+0xbb/0xe1
[ 0.001000] ? memblock_add+0xe1/0xe1
[ 0.001000] ? memblock_reserve+0xbb/0xe1
[ 0.001000] ? memset+0x1f/0x31
[ 0.001000] ? vprintk_func+0x8a/0x9b
[ 0.001000] ? printk+0xb0/0xcc
[ 0.001000] ? show_regs_print_info+0x14/0x14
[ 0.001000] ? native_flush_tlb_global+0x47/0x73
[ 0.001000] ? kasan_init+0x22b/0x276
[ 0.001000] ? setup_arch+0x1025/0x1199
[ 0.001000] ? reserve_standard_io_resources+0x34/0x34
[ 0.001000] ? css_set_populated+0x77/0x77
[ 0.001000] ? INIT_LIST_HEAD+0xb0/0xb0
[ 0.001000] ? vprintk_func+0x93/0x9b
[ 0.001000] ? printk+0xb0/0xcc
[ 0.001000] ? show_regs_print_info+0x14/0x14
[ 0.001000] ? start_kernel+0xb4/0x59e
[ 0.001000] ? mem_encrypt_init+0x5/0x5
[ 0.001000] ? memcpy_orig+0x16/0x110
[ 0.001000] ? secondary_startup_64+0xa5/0xb0
[ 0.001000]
[ 0.001000] Memory state around the buggy address:
[ 0.001000] ffffffff82807800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 0.001000] ffffffff82807880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 0.001000] >ffffffff82807900: 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 f8 f2
# HH:MM RESULT GOOD BAD GOOD_BUT_DIRTY DIRTY_NOT_BAD
git bisect start ea1b3dde972c3dd4f51060c297c66e4c08919e8c 661e50bc853209e41a5c14a290ca4decc43cbfd1 --
git bisect good 253d8bb3a3c4a009cead7b53c749ba2c86f422cb # 18:38 G 12 0 1 1 Merge branch 'perf/core'
git bisect good 3d7c4fa6842d3b1ca777d2c9f52120adea3a4d64 # 18:52 G 16 0 1 1 Merge branch 'perf/core'
git bisect good 1f739db70244a91002a4f49274e5c96643fb0f10 # 19:05 G 13 0 8 13 Merge branch 'x86/pti'
git bisect good ef4a975beadee1207c1a3c5167ada5c4b6fb2553 # 19:19 G 12 0 3 3 Merge branch 'timers/urgent'
git bisect good 9dcf3577913e121599893d5d1295c83cd51de7e4 # 19:24 G 10 0 0 0 Merge branch 'linus'
git bisect good 65cce31629b3dffaee37658efc785972d7ac0589 # 20:09 G 19 0 5 7 Merge branch 'timers/core'
git bisect good d095c12c53c7b941ad4ea96dc229a08296b37d2e # 20:25 G 11 0 4 4 tools/memory-model: Remove mention of docker/gentoo image
git bisect good bd5c0ba2cd78a4c116726ead84f8f37dc92d043e # 20:28 G 11 0 11 18 tools/memory-model: Finish the removal of rb-dep, smp_read_barrier_depends(), and lockless_dereference()
# first bad commit: [ea1b3dde972c3dd4f51060c297c66e4c08919e8c] Merge branch 'locking/core'
git bisect good 65cce31629b3dffaee37658efc785972d7ac0589 # 20:31 G 31 0 2 9 Merge branch 'timers/core'
git bisect good bd5c0ba2cd78a4c116726ead84f8f37dc92d043e # 20:39 G 33 0 32 50 tools/memory-model: Finish the removal of rb-dep, smp_read_barrier_depends(), and lockless_dereference()
# extra tests on HEAD of tip/master
git bisect bad ea1b3dde972c3dd4f51060c297c66e4c08919e8c # 20:39 B 0 21 40 0 Merge branch 'locking/core'
# extra tests on tree/branch tip/master
git bisect bad ea1b3dde972c3dd4f51060c297c66e4c08919e8c # 20:40 B 0 21 40 0 Merge branch 'locking/core'
---
0-DAY kernel test infrastructure Open Source Technology Center
https://lists.01.org/pipermail/lkp Intel Corporation
Download attachment "dmesg-quantal-vp-46:20180310181339:x86_64-randconfig-i0-201809:4.16.0-rc4-00677-gea1b3dde:65.gz" of type "application/gzip" (8325 bytes)
Download attachment "dmesg-yocto-intel12-14:20180310200850:x86_64-randconfig-i0-201809:4.16.0-rc4-00671-g65cce31:74.gz" of type "application/gzip" (32716 bytes)
Download attachment "dmesg-quantal-ivb41-23:20180310180811:x86_64-randconfig-i0-201809:4.16.0-rc4-00302-gbd5c0ba:64.gz" of type "application/gzip" (11124 bytes)
View attachment "reproduce-quantal-vp-46:20180310181339:x86_64-randconfig-i0-201809:4.16.0-rc4-00677-gea1b3dde:65" of type "text/plain" (909 bytes)
View attachment "config-4.16.0-rc4-00677-gea1b3dde" of type "text/plain" (119795 bytes)
Powered by blists - more mailing lists