lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20200827073234.GP4299@shao2-debian>
Date:   Thu, 27 Aug 2020 15:32:34 +0800
From:   kernel test robot <lkp@...el.com>
To:     Philipp Zabel <p.zabel@...gutronix.de>
Cc:     dri-devel@...ts.freedesktop.org, kernel@...gutronix.de,
        Thomas Zimmermann <tzimmermann@...e.de>,
        0day robot <lkp@...el.com>,
        LKML <linux-kernel@...r.kernel.org>, lkp@...ts.01.org
Subject: [drm/crtc] 236b7bc44a:
 BUG:stack_guard_page_was_hit_at(____ptrval____)(stack_is(____ptrval____)..(____ptrval____))

Greeting,

FYI, we noticed the following commit (built with gcc-9):

commit: 236b7bc44ae0fdecc8e80c5aba0655ca14fdfb23 ("[PATCH 4/4] drm/crtc: add drmm_crtc_alloc_with_planes()")
url: https://github.com/0day-ci/linux/commits/Philipp-Zabel/drm-add-drmm_encoder_alloc/20200826-203629
base: git://anongit.freedesktop.org/drm-intel for-linux-next

in testcase: trinity
with following parameters:

	runtime: 300s

test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/


on test machine: qemu-system-x86_64 -enable-kvm -cpu SandyBridge -smp 2 -m 8G

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


+---------------------------------------------------------------------------------------------+------------+------------+
|                                                                                             | d809a51da3 | 236b7bc44a |
+---------------------------------------------------------------------------------------------+------------+------------+
| boot_successes                                                                              | 16         | 0          |
| boot_failures                                                                               | 0          | 4          |
| BUG:stack_guard_page_was_hit_at(____ptrval____)(stack_is(____ptrval____)..(____ptrval____)) | 0          | 4          |
| RIP:drm_crtc_init_with_planes[drm]                                                          | 0          | 4          |
| Kernel_panic-not_syncing:Fatal_exception_in_interrupt                                       | 0          | 4          |
+---------------------------------------------------------------------------------------------+------------+------------+


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <lkp@...el.com>


[   12.795894] BUG: stack guard page was hit at (____ptrval____) (stack is (____ptrval____)..(____ptrval____))
[   12.795895] kernel stack overflow (double-fault): 0000 [#1] SMP PTI
[   12.795896] CPU: 0 PID: 193 Comm: systemd-udevd Not tainted 5.8.0-01890-g236b7bc44ae0fd #1
[   12.795897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   12.795898] RIP: 0010:drm_crtc_init_with_planes+0x5/0x80 [drm]
[   12.795899] Code: 0f eb 16 48 8b 50 10 48 8d 42 f0 48 39 d7 74 09 39 b0 90 00 00 00 75 eb c3 31 c0 c3 66 0f 1f 84 00 00 00 00 00 66 66 66 66 90 <55> 48 89 e5 41 52 4c 8d 55 10 48 83 ec 50 65 48 8b 04 25 28 00 00
[   12.795900] RSP: 0018:ffffac1040344000 EFLAGS: 00010246
[   12.795902] RAX: ffffac1040344010 RBX: ffff9b400fa8b078 RCX: 0000000000000000
[   12.795902] RDX: ffff9b400fa8b490 RSI: ffff9b400fa8b078 RDI: ffff9b4010c5c000
[   12.795903] RBP: ffffac1040344068 R08: ffffffffc04d3340 R09: 0000000000000000
[   12.795904] R10: ffffac1040344078 R11: 0000000000000000 R12: ffff9b4010c5c000
[   12.795905] R13: ffff9b400fa8b490 R14: 000000000000000a R15: ffffffffc0621300
[   12.795905] FS:  00007faf7e56dd40(0000) GS:ffff9b403fc00000(0000) knlGS:0000000000000000
[   12.795906] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   12.795907] CR2: ffffac1040343ff8 CR3: 0000000168096000 CR4: 00000000000406f0
[   12.795907] Call Trace:
[   12.795908]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795909]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795910]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795911]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795912]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795913]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795914]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795915]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795916]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795917]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795918]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795919]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795920]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795921]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795922]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795923]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795924]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795925]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795926]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795927]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795928]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795929]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795930]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795931]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795932]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795933]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795934]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795935]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795936]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795937]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795938]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795939]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795940]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795941]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795942]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795943]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795944]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795945]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795946]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795947]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795948]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795949]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795950]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795951]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795952]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795953]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795954]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795955]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795956]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795957]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795958]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795959]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795960]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795961]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795962]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795963]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795964]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795965]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795966]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795967]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795968]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795969]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795970]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795971]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795972]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795973]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795974]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795975]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795976]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795977]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795978]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795979]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795980]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795981]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795982]  ? update_group_capacity+0x25/0x1c0
[   12.795982]  ? cpumask_next_and+0x1a/0x20
[   12.795983]  ? update_sd_lb_stats+0x121/0x860
[   12.795984]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795985]  ? update_load_avg+0x78/0x660
[   12.795986]  ? account_entity_enqueue+0x9c/0xe0
[   12.795986]  ? enqueue_entity+0x218/0x3a0
[   12.795987]  drm_crtc_init_with_planes+0x63/0x80 [drm]
[   12.795987]  ? enqueue_task_fair+0x8e/0x6a0
[   12.795988]  ? check_preempt_wakeup+0x17f/0x240
[   12.795988]  drm_crtc_init_with_planes+0x63/0x80 [drm]


To reproduce:

        # build kernel
	cd linux
	cp config-5.8.0-01890-g236b7bc44ae0fd .config
	make HOSTCC=gcc-9 CC=gcc-9 ARCH=x86_64 olddefconfig prepare modules_prepare bzImage

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email



Thanks,
lkp


View attachment "config-5.8.0-01890-g236b7bc44ae0fd" of type "text/plain" (169474 bytes)

View attachment "job-script" of type "text/plain" (4585 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (15136 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ