lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:   Mon, 22 Mar 2021 22:42:47 +0800
From:   kernel test robot <oliver.sang@...el.com>
To:     "Aneesh Kumar K.V" <aneesh.kumar@...ux.ibm.com>
Cc:     0day robot <lkp@...el.com>, LKML <linux-kernel@...r.kernel.org>,
        lkp@...ts.01.org, ltp@...ts.linux.it, linux-mm@...ck.org,
        akpm@...ux-foundation.org, peterz@...radead.org,
        kaleshsingh@...gle.com,
        "Aneesh Kumar K.V" <aneesh.kumar@...ux.ibm.com>,
        joel@...lfernandes.org, linuxppc-dev@...ts.ozlabs.org
Subject: [mm/mremap]  c10e9d3441: Bad_pagetable:#[##]



Greeting,

FYI, we noticed the following commit (built with gcc-9):

commit: c10e9d3441ddee43a36482980f1e39efbd5169e2 ("[PATCH v2 3/6] mm/mremap: Use pmd/pud_poplulate to update page table entries")
url: https://github.com/0day-ci/linux/commits/Aneesh-Kumar-K-V/Speedup-mremap-on-ppc64/20210315-194324
base: https://git.kernel.org/cgit/linux/kernel/git/powerpc/linux.git next

in testcase: ltp
version: ltp-x86_64-14c1f76-1_20210318
with following parameters:

	test: cve
	ucode: 0xe2

test-description: The LTP testsuite contains a collection of tools for testing the Linux kernel and related features.
test-url: http://linux-test-project.github.io/


on test machine: 8 threads Intel(R) Core(TM) i7-6770HQ CPU @ 2.60GHz with 32G memory

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):



If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>


[   98.252964] INFO: creating /lkp/benchmarks/ltp/output directory
[   98.252970]
[   98.267491] INFO: creating /lkp/benchmarks/ltp/results directory
[   98.267497]
[   98.281384] Checking for required user/group ids
[   98.281391]
[   98.291431]
[   98.291435]
[   98.300185] 'nobody' user id and group found.
[   98.300191]
[   98.311932] 'bin' user id and group found.
[   98.311939]
[   98.323511] 'daemon' user id and group found.
[   98.323518]
[   98.335042] Users group found.
[   98.335048]
[   98.344952] Sys group found.
[   98.344959]
[   98.355096] Required users/groups exist.
[   98.355102]
[   98.368977] If some fields are empty or look unusual you may have an old version.
[   98.368985]
[   98.386687] Compare to the current minimal requirements in Documentation/Changes.
[   98.386695]
[   98.400203]
[   98.400208]
[   98.408018] /etc/os-release
[   98.408024]
[   98.417964] PRETTY_NAME="Debian GNU/Linux 10 (buster)"
[   98.417970]
[   98.429645] NAME="Debian GNU/Linux"
[   98.429651]
[   98.439140] VERSION_ID="10"
[   98.439146]
[   98.448259] VERSION="10 (buster)"
[   98.448264]
[   98.457722] VERSION_CODENAME=buster
[   98.457727]
[   98.466720] ID=debian
[   98.466724]
[   98.475508] HOME_URL="https://www.debian.org/"
[   98.475513]
[   98.486989] SUPPORT_URL="https://www.debian.org/support"
[   98.486994]
[   98.499083] BUG_REPORT_URL="https://bugs.debian.org/"
[   98.499088]
[   98.508857]
[   98.508861]
[   98.515024] uname:
[   98.515029]
[   98.526128] Linux lkp-skl-nuc2 5.12.0-rc2-00014-gc10e9d3441dd #1 SMP Thu Mar 18 13:26:11 CST 2021 x86_64 GNU/Linux
[   98.526134]
[   98.541084]
[   98.541088]
[   98.547140] /proc/cmdline
[   98.547145]
[  110.939655] ip=::::lkp-skl-nuc2::dhcp root=/dev/ram0 user=lkp job=/lkp/jobs/scheduled/lkp-skl-nuc2/ltp-cve-ucode=0xe2-debian-10.4-x86_64-20200603.cgz-c10e9d3441ddee43a36482980f1e39efbd5169e2-20210319-46118-1o3779n-5.yaml ARCH=x86_64 kconfig=x86_64-rhel-8.3 branch=linux-review/Aneesh-Kumar-K-V/Speedup-mremap-on-ppc64/20210315-194324 commit=c10e9d3441ddee43a36482980f1e39efbd5169e2 BOOT_IMAGE=/pkg/linux/x86_64-rhel-8.3/gcc-9/c10e9d3441ddee43a36482980f1e39efbd5169e2/vmlinuz-5.12.0-rc2-00014-gc10e9d3441dd max_uptime=2100 RESULT_ROOT=/result/ltp/cve-ucode=0xe2/lkp-skl-nuc2/debian-10.4-x86_64-20200603.cgz/x86_64-rhel-8.3/gcc-9/c10e9d3441ddee43a36482980f1e39efbd5169e2/1 LKP_SERVER=internal-lkp-server nokaslr selinux=0 debug apic=debug sysrq_always_enabled rcupdate.rcu_cpu_stall_timeout=100 net.ifnames=0 printk.devkmsg=on panic=-1 softlockup_panic=1 nmi_watchdog=panic oops=panic load_ramdisk=2 prompt_ramdisk
[  110.939673]
[  111.035045]
[  111.035051]
[  111.428862] true: Corrupted page table at address 7ffce3c00000
[  111.436435] PGD 80000008bb481067 P4D 80000008bb481067 PUD 8b23e0067 PMD ffe7a22cdb3c0067
[  111.436442] BAD
[  111.449812] Bad pagetable: 0009 [#1] SMP PTI
[  111.455735] CPU: 2 PID: 3350 Comm: true Tainted: G          I       5.12.0-rc2-00014-gc10e9d3441dd #1
[  111.466839] Hardware name:  /NUC6i7KYB, BIOS KYSKLi70.86A.0041.2016.0817.1130 08/17/2016
[  111.476757] RIP: 0010:strnlen_user (kbuild/src/consumer/lib/strnlen_user.c:52 kbuild/src/consumer/lib/strnlen_user.c:113) 
[ 111.483021] Code: 80 80 4c 09 da 45 31 db 48 8d 0c 1a 48 f7 d2 48 21 ca 4c 21 c2 75 2e 48 89 c1 49 8d 6a 08 4c 29 d1 48 83 f9 08 76 62 44 89 d9 <4a> 8b 54 17 08 85 c9 75 4b 48 8d 0c 1a 48 f7 d2 49 89 ea 48 21 ca
All code
========
   0:	80 80 4c 09 da 45 31 	addb   $0x31,0x45da094c(%rax)
   7:	db 48 8d             	fisttpl -0x73(%rax)
   a:	0c 1a                	or     $0x1a,%al
   c:	48 f7 d2             	not    %rdx
   f:	48 21 ca             	and    %rcx,%rdx
  12:	4c 21 c2             	and    %r8,%rdx
  15:	75 2e                	jne    0x45
  17:	48 89 c1             	mov    %rax,%rcx
  1a:	49 8d 6a 08          	lea    0x8(%r10),%rbp
  1e:	4c 29 d1             	sub    %r10,%rcx
  21:	48 83 f9 08          	cmp    $0x8,%rcx
  25:	76 62                	jbe    0x89
  27:	44 89 d9             	mov    %r11d,%ecx
  2a:*	4a 8b 54 17 08       	mov    0x8(%rdi,%r10,1),%rdx		<-- trapping instruction
  2f:	85 c9                	test   %ecx,%ecx
  31:	75 4b                	jne    0x7e
  33:	48 8d 0c 1a          	lea    (%rdx,%rbx,1),%rcx
  37:	48 f7 d2             	not    %rdx
  3a:	49 89 ea             	mov    %rbp,%r10
  3d:	48 21 ca             	and    %rcx,%rdx

Code starting with the faulting instruction
===========================================
   0:	4a 8b 54 17 08       	mov    0x8(%rdi,%r10,1),%rdx
   5:	85 c9                	test   %ecx,%ecx
   7:	75 4b                	jne    0x54
   9:	48 8d 0c 1a          	lea    (%rdx,%rbx,1),%rcx
   d:	48 f7 d2             	not    %rdx
  10:	49 89 ea             	mov    %rbp,%r10
  13:	48 21 ca             	and    %rcx,%rdx
[  111.505997] RSP: 0018:ffffc90002ecfcb8 EFLAGS: 00050202
[  111.513206] RAX: 0000000000020002 RBX: fefefefefefefeff RCX: 0000000000000000
[  111.522461] RDX: 0000000000000000 RSI: 0000000000020000 RDI: 00007ffce3bffaf0
[  111.531682] RBP: 0000000000000510 R08: 8080808080808080 R09: 0000000000000002
[  111.540826] R10: 0000000000000508 R11: 0000000000000000 R12: 00007ffce3a00d08
[  111.550065] R13: 00007ffce3bffaf2 R14: ffff8888bca2a200 R15: 00000000000005fc
[  111.559310] FS:  0000000000000000(0000) GS:ffff8888bec80000(0000) knlGS:0000000000000000
[  111.569563] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  111.577436] CR2: 00007ffce3c00000 CR3: 00000008b2770001 CR4: 00000000003706e0
[  111.586711] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  111.596002] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  111.605227] Call Trace:
[  111.609613] create_elf_tables (kbuild/src/consumer/fs/binfmt_elf.c:331) 
[  111.616334] load_elf_binary (kbuild/src/consumer/fs/binfmt_elf.c:1257) 
[  111.622317] exec_binprm (kbuild/src/consumer/fs/exec.c:1722 kbuild/src/consumer/fs/exec.c:1761) 
[  111.627934] bprm_execve (kbuild/src/consumer/fs/exec.c:1831 kbuild/src/consumer/fs/exec.c:1792) 
[  111.633548] do_execveat_common+0x18f/0x1c0 
[  111.640406] __x64_sys_execve (kbuild/src/consumer/fs/exec.c:2058) 
[  111.646280] do_syscall_64 (kbuild/src/consumer/arch/x86/entry/common.c:46) 
[  111.651934] entry_SYSCALL_64_after_hwframe (kbuild/src/consumer/arch/x86/entry/entry_64.S:112) 
[  111.659119] RIP: 0033:0x7f58cf452a07
[ 111.664728] Code: Unable to access opcode bytes at RIP 0x7f58cf4529dd.

Code starting with the faulting instruction
===========================================


To reproduce:

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        bin/lkp install                job.yaml  # job file is attached in this email
        bin/lkp split-job --compatible job.yaml
        bin/lkp run                    compatible-job.yaml



---
0DAY/LKP+ Test Infrastructure                   Open Source Technology Center
https://lists.01.org/hyperkitty/list/lkp@lists.01.org       Intel Corporation

Thanks,
Oliver Sang


View attachment "config-5.12.0-rc2-00014-gc10e9d3441dd" of type "text/plain" (172899 bytes)

View attachment "job-script" of type "text/plain" (5294 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (3572 bytes)

View attachment "job.yaml" of type "text/plain" (4192 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ