| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 2 Mar 2021 09:34:15 +0100
From: Christian Hesse <list@...rm.de>
To: linux-kernel@...r.kernel.org
Subject: general protection fault in css_release_work_fn()
Hello everybody,
I see this on a git server with lots of ssh logins. It happens every few
hours to days. No idea how to reproduce, guess it's a race condition?
general protection fault, probably for non-canonical address 0xdead000000000122: 0000 [#1] SMP NOPTI
CPU: 3 PID: 2213757 Comm: kworker/3:2 Not tainted 5.10.18-1-lts #1
Hardware name: VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform, BIOS 6.00 05/28/2020
Workqueue: cgroup_destroy css_release_work_fn
RIP: 0010:css_release_work_fn+0x3c/0x200
Code: 54 55 53 48 89 fb 48 8b 6f a0 4c 8b 67 98 48 c7 c7 80 d3 ed b4 e8 d4 83 91 00 48 8b 43 c0 48 8b 53 b8 83 4b ec 04 48 89 42 08 <48> 89 10 4c 89 6b c0 48 85 ed 0f 84 ab 00 00 00 48 8b 53 d8 48 8d
RSP: 0018:ffffb75f4098fe78 EFLAGS: 00010206
RAX: dead000000000122 RBX: ffff9b112c157068 RCX: ffff9b117ddab5a0
RDX: ffff9b110e5c2020 RSI: 807fffffffffffff RDI: ffffffffb4edd380
RBP: ffffffffb4ff6120 R08: ffff9b11012e7eb0 R09: ffff9b11234f5c74
R10: 0000000000000018 R11: 0000000000000018 R12: ffff9b110c01a000
R13: dead000000000122 R14: ffff9b117ddb2600 R15: 0000000000000000
FS: 0000000000000000(0000) GS:ffff9b117dd80000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0ff5098620 CR3: 000000000e740000 CR4: 00000000003506e0
Call Trace:
process_one_work+0x1df/0x370
worker_thread+0x50/0x400
? process_one_work+0x370/0x370
kthread+0x11b/0x140
? __kthread_bind_mask+0x60/0x60
ret_from_fork+0x22/0x30
Modules linked in: vsock_loopback vmw_vsock_virtio_transport_common nf_tables vmw_vsock_vmci_transport vsock libcrc32c nfnetlink vmwgfx amd_energy joydev crct10dif_pclmul crc32_pclmul ghash_clmulni_intel mousedev aesni_intel crypto_simd vmw_balloon ttm cryptd glue_helper rapl drm_kms_helper psmouse pcspkr vmxnet3 cec syscopyarea sysfillrect sysimgblt intel_agp vmw_vmci fb_sys_fops i2c_piix4 intel_gtt mac_hid drm sg fuse agpgart ip_tables x_tables ext4 crc32c_generic crc16 mbcache jbd2 dm_mod sr_mod cdrom ata_generic pata_acpi crc32c_intel serio_raw vmw_pvscsi ata_piix
---[ end trace e3405678b69341c6 ]---
RIP: 0010:css_release_work_fn+0x3c/0x200
Code: 54 55 53 48 89 fb 48 8b 6f a0 4c 8b 67 98 48 c7 c7 80 d3 ed b4 e8 d4 83 91 00 48 8b 43 c0 48 8b 53 b8 83 4b ec 04 48 89 42 08 <48> 89 10 4c 89 6b c0 48 85 ed 0f 84 ab 00 00 00 48 8b 53 d8 48 8d
RSP: 0018:ffffb75f4098fe78 EFLAGS: 00010206
RAX: dead000000000122 RBX: ffff9b112c157068 RCX: ffff9b117ddab5a0
RDX: ffff9b110e5c2020 RSI: 807fffffffffffff RDI: ffffffffb4edd380
RBP: ffffffffb4ff6120 R08: ffff9b11012e7eb0 R09: ffff9b11234f5c74
R10: 0000000000000018 R11: 0000000000000018 R12: ffff9b110c01a000
R13: dead000000000122 R14: ffff9b117ddb2600 R15: 0000000000000000
FS: 0000000000000000(0000) GS:ffff9b117dd80000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0ff5098620 CR3: 000000000e740000 CR4: 00000000003506e0
--
main(a){char*c=/* Schoene Gruesse */"B?IJj;MEH"
"CX:;",b;for(a/* Best regards my address: */=0;b=c[a++];)
putchar(b-1/(/* Chris cc -ox -xc - && ./x */b/42*2-3)*42);}
Content of type "application/pgp-signature" skipped
Powered by blists - more mailing lists