lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <202308021500.b4b62e36-oliver.sang@intel.com>
Date:   Wed, 2 Aug 2023 15:34:03 +0800
From:   kernel test robot <oliver.sang@...el.com>
To:     Sean Christopherson <sean.j.christopherson@...el.com>
CC:     <oe-lkp@...ts.linux.dev>, <lkp@...el.com>,
        Kuppuswamy Sathyanarayanan 
        <sathyanarayanan.kuppuswamy@...ux.intel.com>,
        Andi Kleen <ak@...ux.intel.com>,
        Tony Luck <tony.luck@...el.com>,
        Sean Christopherson <seanjc@...gle.com>,
        <linux-kernel@...r.kernel.org>, <oliver.sang@...el.com>
Subject: [intel-tdx:guest-debug] [x86/tdx]  83002794ab:
 segfault_at_ip_sp_error



Hello,

kernel test robot noticed "segfault_at_ip_sp_error" on:

commit: 83002794ab17ec31bb7389aec8713ae8a41ed870 ("x86/tdx: Add #VE tracepoint")
https://github.com/intel/tdx.git guest-debug

in testcase: perf-fuzzer
version: perf-fuzzer-x86_64-7193889-1_20230524
with following parameters:

	runtime: 1h



compiler: gcc-12
test machine: 20 threads 1 sockets (Commet Lake) with 16G memory

(please refer to attached dmesg/kmsg for entire log/backtrace)



If you fix the issue in a separate patch/commit (i.e. not just a new version of
the same patch/commit), kindly add following tags
| Reported-by: kernel test robot <oliver.sang@...el.com>
| Closes: https://lore.kernel.org/oe-lkp/202308021500.b4b62e36-oliver.sang@intel.com


[  100.890425][  T491] 	Overflows: 30  Recursive: 0
[  100.890427][  T491]
[  100.897729][  T491] 	SIGIOs due to RT signal queue full: 0
[  100.897732][  T491]
[  103.188309][  T757] perf: Dynamic interrupt throttling disabled, can hang your system!
[  105.304602][  T757] perf_fuzzer[757]: segfault at 10400 ip 000055cb94e7baaa sp 00007ffd69e616e8 error 4 in perf_fuzzer[55cb94e73000+11000] likely on CPU 13 (core 3, socket 0)
[ 105.320172][ T757] Code: fb d4 30 02 01 45 31 c0 f6 40 18 01 74 3f 8b 30 48 8b 50 08 85 f6 74 40 48 83 fa ff 74 3a 8b 48 10 85 c9 74 28 48 85 d2 74 3b <4c> 8b 82 00 04 00 00 0f ae e8 f6 40 18 02 74 0b 4c 89 82 08 04 00
All code
========
   0:	fb                   	sti    
   1:	d4                   	(bad)  
   2:	30 02                	xor    %al,(%rdx)
   4:	01 45 31             	add    %eax,0x31(%rbp)
   7:	c0 f6 40             	shl    $0x40,%dh
   a:	18 01                	sbb    %al,(%rcx)
   c:	74 3f                	je     0x4d
   e:	8b 30                	mov    (%rax),%esi
  10:	48 8b 50 08          	mov    0x8(%rax),%rdx
  14:	85 f6                	test   %esi,%esi
  16:	74 40                	je     0x58
  18:	48 83 fa ff          	cmp    $0xffffffffffffffff,%rdx
  1c:	74 3a                	je     0x58
  1e:	8b 48 10             	mov    0x10(%rax),%ecx
  21:	85 c9                	test   %ecx,%ecx
  23:	74 28                	je     0x4d
  25:	48 85 d2             	test   %rdx,%rdx
  28:	74 3b                	je     0x65
  2a:*	4c 8b 82 00 04 00 00 	mov    0x400(%rdx),%r8		<-- trapping instruction
  31:	0f ae e8             	lfence 
  34:	f6 40 18 02          	testb  $0x2,0x18(%rax)
  38:	74 0b                	je     0x45
  3a:	4c                   	rex.WR
  3b:	89                   	.byte 0x89
  3c:	82                   	(bad)  
  3d:	08 04 00             	or     %al,(%rax,%rax,1)

Code starting with the faulting instruction
===========================================
   0:	4c 8b 82 00 04 00 00 	mov    0x400(%rdx),%r8
   7:	0f ae e8             	lfence 
   a:	f6 40 18 02          	testb  $0x2,0x18(%rax)
   e:	74 0b                	je     0x1b
  10:	4c                   	rex.WR
  11:	89                   	.byte 0x89
  12:	82                   	(bad)  
  13:	08 04 00             	or     %al,(%rax,%rax,1)
[  105.445029][  T491] Segmentation fault
[  105.445035][  T491]


To reproduce:

        git clone https://github.com/intel/lkp-tests.git
        cd lkp-tests
        sudo bin/lkp install job.yaml           # job file is attached in this email
        bin/lkp split-job --compatible job.yaml # generate the yaml file for lkp run
        sudo bin/lkp run generated-yaml-file

        # if come across any failure that blocks the test,
        # please remove ~/.lkp and /lkp dir to run from a clean state.



-- 
0-DAY CI Kernel Test Service
https://github.com/intel/lkp-tests/wiki



View attachment "config-6.5.0-rc1-00001-g83002794ab17" of type "text/plain" (164930 bytes)

View attachment "job-script" of type "text/plain" (5106 bytes)

Download attachment "dmesg.xz" of type "application/x-xz" (13144 bytes)

View attachment "perf-fuzzer" of type "text/plain" (275 bytes)

View attachment "job.yaml" of type "text/plain" (4614 bytes)

View attachment "reproduce" of type "text/plain" (29 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ