| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 19 Apr 2021 22:59:12 +0800
From: kernel test robot <oliver.sang@...el.com>
To: Alexander Potapenko <glider@...gle.com>
Cc: Linus Torvalds <torvalds@...ux-foundation.org>,
Marco Elver <elver@...gle.com>,
Andrey Konovalov <andreyknvl@...gle.com>,
Dmitry Vyukov <dvyukov@...gle.com>,
Ingo Molnar <mingo@...hat.com>, Petr Mladek <pmladek@...e.com>,
Steven Rostedt <rostedt@...dmis.org>,
Sergey Senozhatsky <sergey.senozhatsky@...il.com>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
Vlastimil Babka <vbabka@...e.cz>,
Andrew Morton <akpm@...ux-foundation.org>,
LKML <linux-kernel@...r.kernel.org>, lkp@...ts.01.org,
lkp@...el.com
Subject: [tracing] 9c0dee54eb:
WARNING:at_kernel/tracepoint.c:#tracepoint_probe_register_prio
Greeting,
FYI, we noticed the following commit (built with gcc-9):
commit: 9c0dee54eb91d48cca048bd7bd2c1f4a166e0252 ("tracing: add error_report_end trace point")
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git master
in testcase: trinity
version: trinity-i386
with following parameters:
number: 99999
group: group-02
test-description: Trinity is a linux system call fuzz tester.
test-url: http://codemonkey.org.uk/projects/trinity/
on test machine: qemu-system-i386 -enable-kvm -cpu SandyBridge -smp 2 -m 4G
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
+----------------------------------------------------------------+------------+------------+
| | 35beccf092 | 9c0dee54eb |
+----------------------------------------------------------------+------------+------------+
| boot_failures | 0 | 11 |
| WARNING:at_kernel/tracepoint.c:#tracepoint_probe_register_prio | 0 | 11 |
| EIP:tracepoint_probe_register_prio | 0 | 11 |
+----------------------------------------------------------------+------------+------------+
If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>
[ 59.696788] WARNING: CPU: 0 PID: 1199 at kernel/tracepoint.c:143 tracepoint_probe_register_prio (kbuild/src/consumer/kernel/tracepoint.c:143 kbuild/src/consumer/kernel/tracepoint.c:289 kbuild/src/consumer/kernel/tracepoint.c:369)
[ 59.698385] Modules linked in: rapl input_leds qemu_fw_cfg processor tiny_power_button button
[ 59.699838] CPU: 0 PID: 1199 Comm: trinity-main Not tainted 5.11.0-11078-g9c0dee54eb91 #1
[ 59.701200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 59.702602] EIP: tracepoint_probe_register_prio (kbuild/src/consumer/kernel/tracepoint.c:143 kbuild/src/consumer/kernel/tracepoint.c:289 kbuild/src/consumer/kernel/tracepoint.c:369)
[ 59.703513] Code: ff e9 84 fe ff ff 8d 74 26 00 b8 20 00 00 00 e9 d4 fd ff ff 8d b6 00 00 00 00 83 c0 0c 89 d1 8d 14 06 e9 00 ff ff ff 8d 76 00 <0f> 0b be ea ff ff ff e9 52 fe ff ff 8d 74 26 00 c7 04 24 74 70 ef
All code
========
0: ff (bad)
1: e9 84 fe ff ff jmpq 0xfffffffffffffe8a
6: 8d 74 26 00 lea 0x0(%rsi,%riz,1),%esi
a: b8 20 00 00 00 mov $0x20,%eax
f: e9 d4 fd ff ff jmpq 0xfffffffffffffde8
14: 8d b6 00 00 00 00 lea 0x0(%rsi),%esi
1a: 83 c0 0c add $0xc,%eax
1d: 89 d1 mov %edx,%ecx
1f: 8d 14 06 lea (%rsi,%rax,1),%edx
22: e9 00 ff ff ff jmpq 0xffffffffffffff27
27: 8d 76 00 lea 0x0(%rsi),%esi
2a:* 0f 0b ud2 <-- trapping instruction
2c: be ea ff ff ff mov $0xffffffea,%esi
31: e9 52 fe ff ff jmpq 0xfffffffffffffe88
36: 8d 74 26 00 lea 0x0(%rsi,%riz,1),%esi
3a: c7 .byte 0xc7
3b: 04 24 add $0x24,%al
3d: 74 70 je 0xaf
3f: ef out %eax,(%dx)
Code starting with the faulting instruction
===========================================
0: 0f 0b ud2
2: be ea ff ff ff mov $0xffffffea,%esi
7: e9 52 fe ff ff jmpq 0xfffffffffffffe5e
c: 8d 74 26 00 lea 0x0(%rsi,%riz,1),%esi
10: c7 .byte 0xc7
11: 04 24 add $0x24,%al
13: 74 70 je 0x85
15: ef out %eax,(%dx)
[ 59.706455] EAX: 00000001 EBX: de493f00 ECX: ffffffff EDX: c253911c
[ 59.707517] ESI: 00000000 EDI: de4967c8 EBP: ddc49e14 ESP: ddc49dec
[ 59.708516] DS: 007b ES: 007b FS: 0000 GS: 00e0 SS: 0068 EFLAGS: 00010246
[ 59.709649] CR0: 80050033 CR2: 08b58040 CR3: 1dc4d000 CR4: 000006d0
[ 59.710654] Call Trace:
[ 59.711098] tracepoint_probe_register (kbuild/src/consumer/kernel/tracepoint.c:390)
[ 59.711818] trace_event_reg (kbuild/src/consumer/kernel/trace/trace_events.c:302)
[ 59.712461] perf_trace_event_init (kbuild/src/consumer/kernel/trace/trace_event_perf.c:130 kbuild/src/consumer/kernel/trace/trace_event_perf.c:204)
[ 59.713203] ? trace_event_buffer_reserve (kbuild/src/consumer/kernel/trace/trace_events.c:285)
[ 59.714028] perf_trace_init (kbuild/src/consumer/kernel/trace/trace_event_perf.c:228)
[ 59.714680] perf_tp_event_init (kbuild/src/consumer/kernel/events/core.c:9571)
[ 59.715381] perf_try_init_event (kbuild/src/consumer/kernel/events/core.c:11038)
[ 59.716111] perf_event_alloc (kbuild/src/consumer/kernel/events/core.c:11091 kbuild/src/consumer/kernel/events/core.c:11370)
[ 59.716836] ? perf_event_alloc (kbuild/src/consumer/arch/x86/include/asm/preempt.h:80 kbuild/src/consumer/include/linux/rcupdate.h:68 kbuild/src/consumer/include/linux/rcupdate.h:654 kbuild/src/consumer/kernel/events/core.c:11086 kbuild/src/consumer/kernel/events/core.c:11370)
[ 59.717506] __do_sys_perf_event_open (kbuild/src/consumer/kernel/events/core.c:11852)
[ 59.718323] ? sched_clock (kbuild/src/consumer/arch/x86/include/asm/paravirt.h:22 kbuild/src/consumer/arch/x86/kernel/tsc.c:252)
[ 59.718950] ? sched_clock_cpu (kbuild/src/consumer/kernel/sched/clock.c:371)
[ 59.719614] __ia32_sys_perf_event_open (kbuild/src/consumer/kernel/events/core.c:11742)
[ 59.720347] do_int80_syscall_32 (kbuild/src/consumer/arch/x86/entry/common.c:77 kbuild/src/consumer/arch/x86/entry/common.c:94)
[ 59.721087] entry_INT80_32 (kbuild/src/consumer/arch/x86/entry/entry_32.S:1064)
[ 59.721741] EIP: 0x809b132
[ 59.722195] Code: 89 c8 c3 90 8d 74 26 00 85 c0 c7 01 01 00 00 00 75 d8 a1 6c 94 a8 08 eb d1 66 90 66 90 66 90 66 90 66 90 66 90 66 90 90 cd 80 <c3> 8d b6 00 00 00 00 8d bc 27 00 00 00 00 8b 10 a3 94 94 a8 08 85
All code
========
0: 89 c8 mov %ecx,%eax
2: c3 retq
3: 90 nop
4: 8d 74 26 00 lea 0x0(%rsi,%riz,1),%esi
8: 85 c0 test %eax,%eax
a: c7 01 01 00 00 00 movl $0x1,(%rcx)
10: 75 d8 jne 0xffffffffffffffea
12: a1 6c 94 a8 08 eb d1 movabs 0x9066d1eb08a8946c,%eax
19: 66 90
1b: 66 90 xchg %ax,%ax
1d: 66 90 xchg %ax,%ax
1f: 66 90 xchg %ax,%ax
21: 66 90 xchg %ax,%ax
23: 66 90 xchg %ax,%ax
25: 66 90 xchg %ax,%ax
27: 90 nop
28: cd 80 int $0x80
2a:* c3 retq <-- trapping instruction
2b: 8d b6 00 00 00 00 lea 0x0(%rsi),%esi
31: 8d bc 27 00 00 00 00 lea 0x0(%rdi,%riz,1),%edi
38: 8b 10 mov (%rax),%edx
3a: a3 .byte 0xa3
3b: 94 xchg %eax,%esp
3c: 94 xchg %eax,%esp
3d: a8 08 test $0x8,%al
3f: 85 .byte 0x85
Code starting with the faulting instruction
===========================================
0: c3 retq
1: 8d b6 00 00 00 00 lea 0x0(%rsi),%esi
7: 8d bc 27 00 00 00 00 lea 0x0(%rdi,%riz,1),%edi
e: 8b 10 mov (%rax),%edx
10: a3 .byte 0xa3
11: 94 xchg %eax,%esp
12: 94 xchg %eax,%esp
13: a8 08 test $0x8,%al
15: 85 .byte 0x85
[ 59.725256] EAX: ffffffda EBX: 08b58a18 ECX: 00000000 EDX: ffffffff
[ 59.726331] ESI: ffffffff EDI: 00000008 EBP: 6d656d35 ESP: bf90b438
[ 59.727427] DS: 007b ES: 007b FS: 0000 GS: 0033 SS: 007b EFLAGS: 00000282
[ 59.728590] irq event stamp: 1120537
[ 59.729228] hardirqs last enabled at (1120547): console_unlock (kbuild/src/consumer/kernel/printk/printk.c:2605 (discriminator 1))
[ 59.730545] hardirqs last disabled at (1120554): console_unlock (kbuild/src/consumer/kernel/printk/printk.c:2520 (discriminator 1))
[ 59.731839] softirqs last enabled at (1117094): __do_softirq (kbuild/src/consumer/arch/x86/include/asm/preempt.h:27 kbuild/src/consumer/kernel/softirq.c:373)
[ 59.733227] softirqs last disabled at (1116961): do_softirq_own_stack (kbuild/src/consumer/arch/x86/kernel/irq_32.c:60 kbuild/src/consumer/arch/x86/kernel/irq_32.c:149)
[ 59.734602] ---[ end trace f47a1114b4ceb835 ]---
[ 59.735399] ------------[ cut here ]------------
To reproduce:
# build kernel
cd linux
cp config-5.11.0-11078-g9c0dee54eb91 .config
make HOSTCC=gcc-9 CC=gcc-9 ARCH=i386 olddefconfig prepare modules_prepare bzImage
git clone https://github.com/intel/lkp-tests.git
cd lkp-tests
bin/lkp qemu -k <bzImage> job-script # job-script is attached in this email
---
0DAY/LKP+ Test Infrastructure Open Source Technology Center
https://lists.01.org/hyperkitty/list/lkp@lists.01.org Intel Corporation
Thanks,
Oliver Sang
View attachment "config-5.11.0-11078-g9c0dee54eb91" of type "text/plain" (157160 bytes)
View attachment "job-script" of type "text/plain" (4195 bytes)
Download attachment "dmesg.xz" of type "application/x-xz" (13904 bytes)
View attachment "trinity" of type "text/plain" (5057 bytes)
Powered by blists - more mailing lists