| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20220515081020.GA10578@xsang-OptiPlex-9020>
Date: Sun, 15 May 2022 16:10:20 +0800
From: kernel test robot <oliver.sang@...el.com>
To: "D. Starke" <daniel.starke@...mens.com>
Cc: 0day robot <lkp@...el.com>, LKML <linux-kernel@...r.kernel.org>,
lkp@...ts.01.org, ltp@...ts.linux.it, linux-serial@...r.kernel.org,
gregkh@...uxfoundation.org, jirislaby@...nel.org,
Daniel Starke <daniel.starke@...mens.com>
Subject: [tty] 1e5b709515:
BUG:sleeping_function_called_from_invalid_context_at_kernel/locking/mutex.c
Greeting,
FYI, we noticed the following commit (built with gcc-11):
commit: 1e5b709515750b681ad1bb2c0c0929c701186101 ("[PATCH 2/2] tty: n_gsm: fix deadlock and link starvation in outgoing data path")
url: https://github.com/intel-lab-lkp/linux/commits/D-Starke/tty-n_gsm-fix-user-open-not-possible-at-responder-until-initiator-open/20220506-225117
base: https://git.kernel.org/cgit/linux/kernel/git/gregkh/tty.git tty-testing
patch link: https://lore.kernel.org/linux-serial/20220506144725.1946-2-daniel.starke@siemens.com
in testcase: ltp
version: ltp-x86_64-14c1f76-1_20220507
with following parameters:
test: cve
ucode: 0x28
test-description: The LTP testsuite contains a collection of tools for testing the Linux kernel and related features.
test-url: http://linux-test-project.github.io/
on test machine: 8 threads 1 sockets Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz with 16G memory
caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):
If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>
[ 1442.946913][ T4714] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:280
[ 1442.949553][ T395] pty03.c:91: TCONF: You don't appear to have the CAIF TTY line discipline: EINVAL (22)
[ 1442.956001][ T4714] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 4714, name: pty03
[ 1442.956005][ T4714] preempt_count: 1, expected: 0
[ 1442.956008][ T4714] CPU: 7 PID: 4714 Comm: pty03 Not tainted 5.18.0-rc5-00130-g1e5b70951575 #1
[ 1442.965530][ T395]
[ 1442.973912][ T4714] Hardware name: Dell Inc. OptiPlex 9020/0DNKMN, BIOS A05 12/05/2013
[ 1442.973914][ T4714] Call Trace:
[ 1442.973916][ T4714] <TASK>
[ 1442.973918][ T4714] dump_stack_lvl (lib/dump_stack.c:107 (discriminator 1))
[ 1442.973926][ T4714] __might_resched.cold (kernel/sched/core.c:9740)
[ 1442.979660][ T395] pty03.c:106: TINFO: Creating PTY with GSM line discipline
[ 1442.987172][ T4714] ? _raw_write_lock_irq (kernel/locking/spinlock.c:153)
[ 1442.989356][ T395]
[ 1442.997218][ T4714] mutex_lock (kernel/locking/mutex.c:280)
[ 1442.997223][ T4714] ? __mutex_lock_slowpath (kernel/locking/mutex.c:279)
[ 1442.997228][ T4714] ? klist_put (arch/x86/include/asm/atomic.h:190 include/linux/atomic/atomic-instrumented.h:177 include/linux/refcount.h:272 include/linux/refcount.h:315 include/linux/refcount.h:333 include/linux/kref.h:64 lib/klist.c:206 lib/klist.c:217)
[ 1443.040174][ T4714] device_del (drivers/base/core.c:3527 drivers/base/core.c:3555)
[ 1443.044250][ T4714] ? class_for_each_device (drivers/base/class.c:402)
[ 1443.049533][ T4714] ? __device_link_del (drivers/base/core.c:3548)
[ 1443.054472][ T4714] ? gsm_cleanup_mux (drivers/tty/n_gsm.c:2405) n_gsm
[ 1443.059931][ T4714] device_unregister (drivers/base/core.c:3511 drivers/base/core.c:3625)
[ 1443.064523][ T4714] device_destroy (drivers/base/core.c:4164)
[ 1443.068857][ T4714] ? root_device_unregister (drivers/base/core.c:4164)
[ 1443.074053][ T4714] ? _raw_read_unlock_irqrestore (kernel/locking/spinlock.c:161)
[ 1443.079679][ T4714] ? down_write (arch/x86/include/asm/atomic64_64.h:34 include/linux/atomic/atomic-long.h:41 include/linux/atomic/atomic-instrumented.h:1280 kernel/locking/rwsem.c:138 kernel/locking/rwsem.c:255 kernel/locking/rwsem.c:1258 kernel/locking/rwsem.c:1268 kernel/locking/rwsem.c:1515)
[ 1443.083926][ T4714] tty_unregister_device (drivers/tty/tty_io.c:3301)
[ 1443.088953][ T4714] gsmld_close (drivers/tty/n_gsm.c:2788 drivers/tty/n_gsm.c:2865) n_gsm
[ 1443.093804][ T4714] tty_ldisc_hangup (drivers/tty/tty_ldisc.c:609 drivers/tty/tty_ldisc.c:724)
[ 1443.098485][ T4714] ? fasync_remove_entry (fs/fcntl.c:869)
[ 1443.103508][ T4714] __tty_hangup+0x410/0x8c0
[ 1443.108447][ T4714] tty_ioctl (drivers/tty/tty_io.c:2719)
[ 1443.112606][ T4714] ? do_sys_openat2 (fs/open.c:1223)
[ 1443.117285][ T4714] ? tty_release (drivers/tty/tty_io.c:2655)
[ 1443.121705][ T4714] ? do_sys_openat2 (fs/open.c:1223)
[ 1443.126384][ T4714] ? build_open_flags (fs/open.c:1199)
[ 1443.131237][ T4714] ? __ia32_sys_stat (fs/stat.c:396)
[ 1443.135832][ T4714] ? userns_owner (kernel/user_namespace.c:371)
[ 1443.140169][ T4714] ? __fget_files (arch/x86/include/asm/atomic64_64.h:22 include/linux/atomic/atomic-arch-fallback.h:2293 include/linux/atomic/atomic-arch-fallback.h:2318 include/linux/atomic/atomic-long.h:491 include/linux/atomic/atomic-instrumented.h:1846 fs/file.c:903 fs/file.c:934)
[ 1443.144675][ T4714] __x64_sys_ioctl (fs/ioctl.c:52 fs/ioctl.c:870 fs/ioctl.c:856 fs/ioctl.c:856)
[ 1443.149268][ T4714] do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)
[ 1443.153517][ T4714] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:115)
[ 1443.159232][ T4714] RIP: 0033:0x7fb8f2f1de57
[ 1443.163478][ T4714] Code: 00 00 90 48 8b 05 39 a0 0c 00 64 c7 00 26 00 00 00 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 09 a0 0c 00 f7 d8 64 89 01 48
All code
========
0: 00 00 add %al,(%rax)
2: 90 nop
3: 48 8b 05 39 a0 0c 00 mov 0xca039(%rip),%rax # 0xca043
a: 64 c7 00 26 00 00 00 movl $0x26,%fs:(%rax)
11: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax
18: c3 retq
19: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
20: 00 00 00
23: b8 10 00 00 00 mov $0x10,%eax
28: 0f 05 syscall
2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction
30: 73 01 jae 0x33
32: c3 retq
33: 48 8b 0d 09 a0 0c 00 mov 0xca009(%rip),%rcx # 0xca043
3a: f7 d8 neg %eax
3c: 64 89 01 mov %eax,%fs:(%rcx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax
6: 73 01 jae 0x9
8: c3 retq
9: 48 8b 0d 09 a0 0c 00 mov 0xca009(%rip),%rcx # 0xca019
10: f7 d8 neg %eax
12: 64 89 01 mov %eax,%fs:(%rcx)
15: 48 rex.W
[ 1443.182840][ T4714] RSP: 002b:00007ffcbe754398 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1443.191059][ T4714] RAX: ffffffffffffffda RBX: 0000559c76f23730 RCX: 00007fb8f2f1de57
[ 1443.198845][ T4714] RDX: 00000000002a8688 RSI: 0000000000005437 RDI: 000000000000000f
[ 1443.206634][ T4714] RBP: 0000559c76f23b00 R08: 00000000002a8688 R09: 0000000000000004
[ 1443.214420][ T4714] R10: 00007ffcbe7ef170 R11: 0000000000000246 R12: 0000000000000009
[ 1443.222207][ T4714] R13: 0000559c76f236a0 R14: 000000000000000f R15: 0000000000000000
[ 1443.229995][ T4714] </TASK>
[ 1443.232923][ T4714] BUG: scheduling while atomic: pty03/4714/0x00000002
[ 1443.239709][ T4714] Modules linked in: n_gsm pps_ldisc slcan xfs ext2 loop sctp ip6_udp_tunnel udp_tunnel authenc pcrypt crypto_user sha3_generic n_hdlc ipmi_devintf btrfs ipmi_msghandler blake2b_generic xor raid6_pq zstd_compress libcrc32c i915 sd_mod t10_pi crc64_rocksoft_generic crc64_rocksoft crc64 sg intel_rapl_msr intel_rapl_common x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel kvm irqbypass intel_gtt crct10dif_pclmul drm_buddy crc32_pclmul crc32c_intel drm_dp_helper ghash_clmulni_intel ttm rapl drm_kms_helper intel_cstate ahci syscopyarea mei_wdt sysfillrect libahci sysimgblt fb_sys_fops mei_me drm libata intel_uncore mei video ip_tables
[ 1443.297451][ T4714] CPU: 7 PID: 4714 Comm: pty03 Tainted: G W 5.18.0-rc5-00130-g1e5b70951575 #1
[ 1443.307411][ T4714] Hardware name: Dell Inc. OptiPlex 9020/0DNKMN, BIOS A05 12/05/2013
[ 1443.315284][ T4714] Call Trace:
[ 1443.318405][ T4714] <TASK>
[ 1443.321183][ T4714] dump_stack_lvl (lib/dump_stack.c:107 (discriminator 1))
[ 1443.325515][ T4714] __schedule_bug.cold (kernel/sched/core.c:5618)
[ 1443.330281][ T4714] schedule_debug (arch/x86/include/asm/preempt.h:35 kernel/sched/core.c:5645)
[ 1443.334787][ T4714] __schedule (arch/x86/include/asm/jump_label.h:27 include/linux/jump_label.h:207 kernel/sched/features.h:40 kernel/sched/core.c:6281)
[ 1443.338948][ T4714] ? _raw_read_unlock_irqrestore (kernel/locking/spinlock.c:161)
[ 1443.344576][ T4714] ? io_schedule_timeout (kernel/sched/core.c:6267)
[ 1443.349687][ T4714] ? update_load_avg (kernel/sched/fair.c:3647 kernel/sched/fair.c:3902)
[ 1443.354540][ T4714] schedule (include/linux/instrumented.h:71 (discriminator 1) include/asm-generic/bitops/instrumented-non-atomic.h:134 (discriminator 1) include/linux/thread_info.h:118 (discriminator 1) include/linux/sched.h:2154 (discriminator 1) kernel/sched/core.c:6462 (discriminator 1))
[ 1443.358442][ T4714] schedule_timeout (kernel/time/timer.c:1861)
[ 1443.363121][ T4714] ? usleep_range_state (kernel/time/timer.c:1846)
[ 1443.368147][ T4714] ? asm_sysvec_apic_timer_interrupt (arch/x86/include/asm/idtentry.h:645)
[ 1443.374121][ T4714] __wait_for_common (kernel/sched/completion.c:86 kernel/sched/completion.c:106)
[ 1443.378885][ T4714] ? usleep_range_state (kernel/time/timer.c:1846)
[ 1443.383910][ T4714] ? out_of_line_wait_on_bit_timeout (kernel/sched/completion.c:100)
[ 1443.390057][ T4714] ? _raw_spin_lock (arch/x86/include/asm/atomic.h:202 include/linux/atomic/atomic-instrumented.h:543 include/asm-generic/qspinlock.h:82 include/linux/spinlock.h:185 include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154)
[ 1443.394647][ T4714] ? _raw_write_lock_irq (kernel/locking/spinlock.c:153)
[ 1443.399765][ T4714] ? __radix_tree_delete (arch/x86/include/asm/bitops.h:214 include/asm-generic/bitops/instrumented-non-atomic.h:135 lib/radix-tree.c:113 lib/radix-tree.c:941 lib/radix-tree.c:1372)
[ 1443.404885][ T4714] devtmpfs_submit_req (drivers/base/devtmpfs.c:116)
[ 1443.409737][ T4714] devtmpfs_delete_node (drivers/base/devtmpfs.c:149)
[ 1443.414674][ T4714] ? devtmpfs_create_node (drivers/base/devtmpfs.c:149)
[ 1443.419870][ T4714] ? kasan_set_free_info (mm/kasan/generic.c:372)
[ 1443.424809][ T4714] ? kernfs_put (fs/kernfs/dir.c:1703)
[ 1443.429748][ T4714] ? kernfs_put (fs/kernfs/dir.c:1703)
[ 1443.434695][ T4714] device_del (drivers/base/core.c:3574)
[ 1443.438856][ T4714] ? class_for_each_device (drivers/base/class.c:402)
[ 1443.444139][ T4714] ? __device_link_del (drivers/base/core.c:3548)
[ 1443.449077][ T4714] ? gsm_cleanup_mux (drivers/tty/n_gsm.c:2405) n_gsm
[ 1443.454535][ T4714] device_unregister (drivers/base/core.c:3511 drivers/base/core.c:3625)
[ 1443.459129][ T4714] device_destroy (drivers/base/core.c:4164)
[ 1443.463464][ T4714] ? root_device_unregister (drivers/base/core.c:4164)
[ 1443.468661][ T4714] ? _raw_read_unlock_irqrestore (kernel/locking/spinlock.c:161)
[ 1443.474288][ T4714] ? down_write (arch/x86/include/asm/atomic64_64.h:34 include/linux/atomic/atomic-long.h:41 include/linux/atomic/atomic-instrumented.h:1280 kernel/locking/rwsem.c:138 kernel/locking/rwsem.c:255 kernel/locking/rwsem.c:1258 kernel/locking/rwsem.c:1268 kernel/locking/rwsem.c:1515)
[ 1443.478536][ T4714] tty_unregister_device (drivers/tty/tty_io.c:3301)
[ 1443.483558][ T4714] gsmld_close (drivers/tty/n_gsm.c:2788 drivers/tty/n_gsm.c:2865) n_gsm
[ 1443.488411][ T4714] tty_ldisc_hangup (drivers/tty/tty_ldisc.c:609 drivers/tty/tty_ldisc.c:724)
[ 1443.493087][ T4714] ? fasync_remove_entry (fs/fcntl.c:869)
[ 1443.498110][ T4714] __tty_hangup+0x410/0x8c0
[ 1443.503048][ T4714] tty_ioctl (drivers/tty/tty_io.c:2719)
[ 1443.507210][ T4714] ? do_sys_openat2 (fs/open.c:1223)
[ 1443.511887][ T4714] ? tty_release (drivers/tty/tty_io.c:2655)
[ 1443.516307][ T4714] ? do_sys_openat2 (fs/open.c:1223)
[ 1443.520986][ T4714] ? build_open_flags (fs/open.c:1199)
[ 1443.525838][ T4714] ? __ia32_sys_stat (fs/stat.c:396)
[ 1443.530429][ T4714] ? userns_owner (kernel/user_namespace.c:371)
[ 1443.534764][ T4714] ? __fget_files (arch/x86/include/asm/atomic64_64.h:22 include/linux/atomic/atomic-arch-fallback.h:2293 include/linux/atomic/atomic-arch-fallback.h:2318 include/linux/atomic/atomic-long.h:491 include/linux/atomic/atomic-instrumented.h:1846 fs/file.c:903 fs/file.c:934)
[ 1443.539279][ T4714] __x64_sys_ioctl (fs/ioctl.c:52 fs/ioctl.c:870 fs/ioctl.c:856 fs/ioctl.c:856)
[ 1443.543872][ T4714] do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)
[ 1443.548118][ T4714] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:115)
[ 1443.553832][ T4714] RIP: 0033:0x7fb8f2f1de57
[ 1443.558078][ T4714] Code: 00 00 90 48 8b 05 39 a0 0c 00 64 c7 00 26 00 00 00 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 09 a0 0c 00 f7 d8 64 89 01 48
All code
========
0: 00 00 add %al,(%rax)
2: 90 nop
3: 48 8b 05 39 a0 0c 00 mov 0xca039(%rip),%rax # 0xca043
a: 64 c7 00 26 00 00 00 movl $0x26,%fs:(%rax)
11: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax
18: c3 retq
19: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
20: 00 00 00
23: b8 10 00 00 00 mov $0x10,%eax
28: 0f 05 syscall
2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction
30: 73 01 jae 0x33
32: c3 retq
33: 48 8b 0d 09 a0 0c 00 mov 0xca009(%rip),%rcx # 0xca043
3a: f7 d8 neg %eax
3c: 64 89 01 mov %eax,%fs:(%rcx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax
6: 73 01 jae 0x9
8: c3 retq
9: 48 8b 0d 09 a0 0c 00 mov 0xca009(%rip),%rcx # 0xca019
10: f7 d8 neg %eax
12: 64 89 01 mov %eax,%fs:(%rcx)
15: 48 rex.W
[ 1443.577438][ T4714] RSP: 002b:00007ffcbe754398 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1443.585656][ T4714] RAX: ffffffffffffffda RBX: 0000559c76f23730 RCX: 00007fb8f2f1de57
[ 1443.593441][ T4714] RDX: 00000000002a8688 RSI: 0000000000005437 RDI: 000000000000000f
[ 1443.601227][ T4714] RBP: 0000559c76f23b00 R08: 00000000002a8688 R09: 0000000000000004
[ 1443.609011][ T4714] R10: 00007ffcbe7ef170 R11: 0000000000000246 R12: 0000000000000009
[ 1443.616797][ T4714] R13: 0000559c76f236a0 R14: 000000000000000f R15: 0000000000000000
[ 1443.624584][ T4714] </TASK>
[ 1443.639490][ C0] ------------[ cut here ]------------
[ 1443.639493][ C0] WARNING: CPU: 0 PID: 4714 at lib/usercopy.c:31 _copy_to_user (lib/usercopy.c:31)
[ 1443.639500][ C0] Modules linked in:
[ 1443.639502][ T4714] n_gsm pps_ldisc slcan xfs ext2 loop sctp ip6_udp_tunnel udp_tunnel authenc pcrypt crypto_user sha3_generic n_hdlc ipmi_devintf btrfs ipmi_msghandler blake2b_generic xor raid6_pq zstd_compress libcrc32c i915 sd_mod t10_pi crc64_rocksoft_generic crc64_rocksoft crc64 sg intel_rapl_msr intel_rapl_common x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel kvm irqbypass intel_gtt crct10dif_pclmul drm_buddy crc32_pclmul crc32c_intel drm_dp_helper ghash_clmulni_intel ttm rapl drm_kms_helper intel_cstate ahci syscopyarea mei_wdt sysfillrect libahci sysimgblt fb_sys_fops mei_me drm libata intel_uncore mei video ip_tables
[ 1443.656845][ C0]
[ 1443.656847][ C0] CPU: 0 PID: 4714 Comm: pty03 Tainted: G W 5.18.0-rc5-00130-g1e5b70951575 #1
[ 1443.656850][ C0] Hardware name: Dell Inc. OptiPlex 9020/0DNKMN, BIOS A05 12/05/2013
[ 1443.656851][ C0] RIP: 0010:_copy_to_user (lib/usercopy.c:31)
[ 1443.656855][ C0] Code: 39 c5 77 1c 44 89 e6 48 89 df e8 b8 cd 7f ff 48 89 ef 48 89 de 44 89 e2 e8 da e6 12 00 41 89 c4 5b 4c 89 e0 5d 41 5c 41 5d c3 <0f> 0b eb bf e8 54 c8 7f ff eb ad cc cc cc cc cc cc cc cc cc cc cc
All code
========
0: 39 c5 cmp %eax,%ebp
2: 77 1c ja 0x20
4: 44 89 e6 mov %r12d,%esi
7: 48 89 df mov %rbx,%rdi
a: e8 b8 cd 7f ff callq 0xffffffffff7fcdc7
f: 48 89 ef mov %rbp,%rdi
12: 48 89 de mov %rbx,%rsi
15: 44 89 e2 mov %r12d,%edx
18: e8 da e6 12 00 callq 0x12e6f7
1d: 41 89 c4 mov %eax,%r12d
20: 5b pop %rbx
21: 4c 89 e0 mov %r12,%rax
24: 5d pop %rbp
25: 41 5c pop %r12
27: 41 5d pop %r13
29: c3 retq
2a:* 0f 0b ud2 <-- trapping instruction
2c: eb bf jmp 0xffffffffffffffed
2e: e8 54 c8 7f ff callq 0xffffffffff7fc887
33: eb ad jmp 0xffffffffffffffe2
35: cc int3
36: cc int3
37: cc int3
38: cc int3
39: cc int3
3a: cc int3
3b: cc int3
3c: cc int3
3d: cc int3
3e: cc int3
3f: cc int3
Code starting with the faulting instruction
===========================================
0: 0f 0b ud2
2: eb bf jmp 0xffffffffffffffc3
4: e8 54 c8 7f ff callq 0xffffffffff7fc85d
9: eb ad jmp 0xffffffffffffffb8
b: cc int3
c: cc int3
d: cc int3
e: cc int3
f: cc int3
10: cc int3
11: cc int3
12: cc int3
13: cc int3
14: cc int3
15: cc int3
[ 1443.656857][ C0] RSP: 0018:ffffc9000043fe00 EFLAGS: 00010246
[ 1443.656859][ C0] RAX: 0000000000000000 RBX: ffffc9000043fe48 RCX: 1ffffffff0baeaf8
[ 1443.656861][ C0] RDX: 1ffff11080137988 RSI: 000000000000001c RDI: ffff8884009bcc40
[ 1443.656863][ C0] RBP: 0000559c76f2dc78 R08: 0000000003a71299 R09: 0000000000000000
[ 1443.656864][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000010
[ 1443.656865][ C0] R13: ffff8884009ba940 R14: 0000000000000001 R15: 0000000000000000
[ 1443.656867][ C0] FS: 00007fb8f2e2b740(0000) GS:ffff888381400000(0000) knlGS:0000000000000000
[ 1443.656869][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1443.656871][ C0] CR2: 00005592e47a7d00 CR3: 000000015316a005 CR4: 00000000001706f0
[ 1443.656872][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1443.656873][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1443.656875][ C0] Call Trace:
[ 1443.656876][ C0] <TASK>
[ 1443.656877][ C0] put_timespec64 (kernel/time/time.c:806)
[ 1443.656881][ C0] ? __ia32_sys_stime32 (kernel/time/time.c:806)
[ 1443.656883][ C0] ? _raw_spin_lock (arch/x86/include/asm/atomic.h:202 include/linux/atomic/atomic-instrumented.h:543 include/asm-generic/qspinlock.h:82 include/linux/spinlock.h:185 include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154)
[ 1443.656886][ C0] __x64_sys_clock_gettime (kernel/time/posix-timers.c:1094 kernel/time/posix-timers.c:1082 kernel/time/posix-timers.c:1082)
[ 1443.656890][ C0] ? __x64_sys_clock_gettime32 (kernel/time/posix-timers.c:1082)
[ 1443.656892][ C0] ? fput_many (fs/file_table.c:387 fs/file_table.c:371)
[ 1443.656895][ C0] do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)
[ 1443.656898][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:115)
[ 1443.656901][ C0] RIP: 0033:0x7fb8f2f21989
[ 1443.656903][ C0] Code: 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d d7 64 0c 00 f7 d8 64 89 01 48
All code
========
0: 00 c3 add %al,%bl
2: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1)
9: 00 00 00
c: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1)
11: 48 89 f8 mov %rdi,%rax
14: 48 89 f7 mov %rsi,%rdi
17: 48 89 d6 mov %rdx,%rsi
1a: 48 89 ca mov %rcx,%rdx
1d: 4d 89 c2 mov %r8,%r10
20: 4d 89 c8 mov %r9,%r8
23: 4c 8b 4c 24 08 mov 0x8(%rsp),%r9
28: 0f 05 syscall
2a:* 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction
30: 73 01 jae 0x33
32: c3 retq
33: 48 8b 0d d7 64 0c 00 mov 0xc64d7(%rip),%rcx # 0xc6511
3a: f7 d8 neg %eax
3c: 64 89 01 mov %eax,%fs:(%rcx)
3f: 48 rex.W
Code starting with the faulting instruction
===========================================
0: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax
6: 73 01 jae 0x9
8: c3 retq
9: 48 8b 0d d7 64 0c 00 mov 0xc64d7(%rip),%rcx # 0xc64e7
10: f7 d8 neg %eax
12: 64 89 01 mov %eax,%fs:(%rcx)
15: 48 rex.W
To reproduce:
git clone https://github.com/intel/lkp-tests.git
cd lkp-tests
sudo bin/lkp install job.yaml # job file is attached in this email
bin/lkp split-job --compatible job.yaml # generate the yaml file for lkp run
sudo bin/lkp run generated-yaml-file
# if come across any failure that blocks the test,
# please remove ~/.lkp and /lkp dir to run from a clean state.
--
0-DAY CI Kernel Test Service
https://01.org/lkp
View attachment "config-5.18.0-rc5-00130-g1e5b70951575" of type "text/plain" (166090 bytes)
View attachment "job-script" of type "text/plain" (5603 bytes)
Download attachment "dmesg.xz" of type "application/x-xz" (155352 bytes)
View attachment "ltp" of type "text/plain" (756434 bytes)
View attachment "job.yaml" of type "text/plain" (4751 bytes)
View attachment "reproduce" of type "text/plain" (62 bytes)
Powered by blists - more mailing lists