lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Mon, 15 Aug 2022 22:34:08 +0800
From:   kernel test robot <oliver.sang@...el.com>
To:     Sean Christopherson <seanjc@...gle.com>
CC:     Paolo Bonzini <pbonzini@...hat.com>,
        Michael Roth <michael.roth@....com>,
        Tom Lendacky <thomas.lendacky@....com>,
        Kai Huang <kai.huang@...el.com>,
        LKML <linux-kernel@...r.kernel.org>, <kvm@...r.kernel.org>,
        <lkp@...ts.01.org>, <lkp@...el.com>, <regressions@...ts.linux.dev>
Subject: [KVM]  c3e0c8c2e8: leaking-addresses.proc..data..ro_after_init.


Greeting,

FYI, we noticed the following commit (built with gcc-11):

commit: c3e0c8c2e8b17bae30d5978bc2decdd4098f0f99 ("KVM: x86/mmu: Fully re-evaluate MMIO caching when SPTE masks change")
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git master

in testcase: leaking-addresses
version: leaking-addresses-x86_64-4f19048-1_20220518
with following parameters:

	ucode: 0x28



on test machine: 8 threads 1 sockets Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz with 16G memory

caused below changes (please refer to attached dmesg/kmsg for entire log/backtrace):


If you fix the issue, kindly add following tag
Reported-by: kernel test robot <oliver.sang@...el.com>


below (1) is not observed on parent:


2022-08-13 10:24:37 ./leaking_addresses.pl --output-raw result/scan.out
2022-08-13 10:25:04 ./leaking_addresses.pl --input-raw result/scan.out --squash-by-filename

Total number of results from scan (incl dmesg): 169358

dmesg output:
[    2.194330] mapped IOAPIC to ffffffffff5fb000 (fec00000)

Results squashed by filename (excl dmesg). Displaying [<number of results> <filename>], <example result>
[18 __ksymtab_gpl] 0xffffffffa07ae054
[49 .text] 0xffffffffa03e7000
[20 .altinstr_replacement] 0xffffffffa07adacf
[2 6] inotify wd:18 ino:1ff sdev:19 mask:2 ignored_mask:0 fhandle-bytes:8 fhandle-type:fe f_handle:ff01000000000000
[18 __dyndbg] 0xffffffffa03f04e0
[34 .retpoline_sites] 0xffffffffa04044b7
[14 .parainstructions] 0xffffffffa07b0ed0
[48 .text.startup] 0xffffffffa03ea200
[7 .static_call_sites] 0xffffffffa11c75f8
[6 .ref.data] 0xffffffffa04d8dc0
[48 .fini_array] 0xffffffffa03f0520
[49 .symtab] 0xffffffffa0277000
[20 __param] 0xffffffffa03eba88
[35 .text.unlikely] 0xffffffffa03ea0ae
[49 .strtab] 0xffffffffa0277de0
[6 __bpf_raw_tp_map] 0xffffffffa04d8d40
[1 ___srcu_struct_ptrs] 0xffffffffa0381580
[49 .return_sites] 0xffffffffa03ebf50
[4 .altinstr_aux] 0xffffffffa0ab2b58
[6 __tracepoints_ptrs] 0xffffffffa04cb0dc
[25 .smp_locks] 0xffffffffa03eba80
[167298 kallsyms] ffffffff81000000 T startup_64
[329 blacklist] 0xffffffff838008f0-0xffffffff83800910	asm_exc_divide_error
[2 .rodata.cst16.bswap_mask] 0xffffffffa03d2100
[2 .noinstr.text] 0xffffffffa0ab3c00
[49 .note.gnu.build-id] 0xffffffffa03eb000
[34 .bss] 0xffffffffa03f08c0
[10 __ex_table] 0xffffffffa0458720
[20 .altinstructions] 0xffffffffa07b0eec
[2 _ftrace_eval_map] 0xffffffffa11c4e48
[6 .static_call.text] 0xffffffffa04b878c
[1 _error_injection_whitelist] 0xffffffffa11cdc90
[41 .rodata.str1.8] 0xffffffffa03eb058
[26 __bug_table] 0xffffffffa06d9720
[48 .init_array] 0xffffffffa0276000
[49 .gnu.linkonce.this_module] 0xffffffffa03f0540
[9 .init.rodata] 0xffffffffa0275000
[25 __jump_table] 0xffffffffa03ed000
[6 __tracepoints] 0xffffffffa04d8ee0
[33 .exit.text] 0xffffffffa03ea181
[48 .rodata.str1.1] 0xffffffffa03ebab0
[48 .text.exit] 0xffffffffa03ea1c0
[49 .orc_unwind] 0xffffffffa03ebf84
[6 _ftrace_events] 0xffffffffa04d8da0
[49 .note.Linux] 0xffffffffa03eb024
[1 .rodata.cst16.mask1] 0xffffffffa040c120
[296 printk_formats] 0xffffffff83c6bd20 : "CPU_ON"
[46 __mcount_loc] 0xffffffffa03eba20
[1 .data..ro_after_init] 0xffffffffa0b32250     <---------- (1)
[6 __tracepoints_strings] 0xffffffffa04cb0f0
[37 .init.text] 0xffffffffa0274000
[22 __ksymtab] 0xffffffffa0404054
[11 .data..read_mostly] 0xffffffffa03f0518
[49 .orc_unwind_ip] 0xffffffffa03ec3c8
[5 .init.data] 0xffffffffa0429000
[48 .data] 0xffffffffa03ee000
[49 modules] btrfs 4456448 1 - Live 0xffffffffa0dce000
[1 .rodata.cst32.byteshift_table] 0xffffffffa040c150
[9 .data.once] 0xffffffffa077a964
[30 __ksymtab_strings] 0xffffffffa0404060
[1 .rodata.cst16.mask2] 0xffffffffa040c130
[47 .rodata] 0xffffffffa03eb100



To reproduce:

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        sudo bin/lkp install job.yaml           # job file is attached in this email
        bin/lkp split-job --compatible job.yaml # generate the yaml file for lkp run
        sudo bin/lkp run generated-yaml-file

        # if come across any failure that blocks the test,
        # please remove ~/.lkp and /lkp dir to run from a clean state.


#regzbot introduced: c3e0c8c2e8


-- 
0-DAY CI Kernel Test Service
https://01.org/lkp



View attachment "config-5.19.0-10903-gc3e0c8c2e8b1" of type "text/plain" (168278 bytes)

View attachment "job-script" of type "text/plain" (5293 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (20580 bytes)

View attachment "leaking-addresses" of type "text/plain" (2937 bytes)

View attachment "job.yaml" of type "text/plain" (4399 bytes)

View attachment "reproduce" of type "text/plain" (125 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ