* kernel 3.14.2 oops: seems related to EFI
@ 2014-05-17 15:25 Francis Moreau
2014-05-18 13:42 ` Borislav Petkov
0 siblings, 1 reply; 12+ messages in thread
From: Francis Moreau @ 2014-05-17 15:25 UTC (permalink / raw)
To: LKML
[ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
[ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
mac_hid ac
[ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
i2c_algo_bit drm_kms_helper drm i2c_core
[ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
3.14.2-1-ARCH #1
[ +0.000064] Hardware name: CLEVO CO. W55xEU
/W55xEU , BIOS 4.6.5
03/05/2013
[ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
ffff880400f4a000
[ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
efi_call5+0x6f/0xf0
[ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
[ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
ffff8804040e3000
[ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
bff7fffff7afffff
[ +0.000056] RBP: ffff880400f4be80 R08: 0000000000000000 R09:
ffff880400f4bec0
[ +0.000055] R10: 0000000000000000 R11: 0000000000000246 R12:
ffff8804040e3400
[ +0.000056] R13: 0000000000000000 R14: ffff880400f4bec0 R15:
000000000009b000
[ +0.002960] FS: 00007fb6167c97c0(0000) GS:ffff88041e200000(0000)
knlGS:0000000000000000
[ +0.002958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ +0.003177] CR2: 00007fb61581f4c0 CR3: 000000000009b000 CR4:
00000000001427e0
[ +0.003258] Stack:
[ +0.003257] 0000000000000201 8000000000000065 ffff880400000000
ffff880100000000
[ +0.003328] 0000000000000000 0000000000000000 ffff880400f4be50
0000000080050033
[ +0.003354] 0000000000ff0000 0000000000000000 00ffffffffffffff
0000000000000000
[ +0.003368] Call Trace:
[ +0.003389] [<ffffffff81064901>] ? virt_efi_get_variable+0x51/0x80
[ +0.003353] [<ffffffff813dbb71>] efivar_entry_size+0x41/0x80
[ +0.003315] [<ffffffff81245659>] efivarfs_file_read+0x49/0x100
[ +0.003326] [<ffffffff811ba797>] vfs_read+0x97/0x160
[ +0.003305] [<ffffffff811bb2e9>] SyS_read+0x59/0xd0
[ +0.003263] [<ffffffff81517629>] system_call_fastpath+0x16/0x1b
[ +0.003239] Code: 89 c8 48 89 f1 80 3d e8 16 7d 00 00 74 1d 4c 89 3d
c7 16 7d 00 41 0f 20 df 4c 89 3d c4 16 7d 00 4c 8b 3d c5 16 7d 00 41 0f
22 df <ff> d7 80 3d c0 16 7d 00 00 74 41 4c 8b 3d a7 16 7d 00 41 0f 22
[ +0.003648] RIP [<ffffffff810655af>] efi_call5+0x6f/0xf0
[ +0.003511] RSP <ffff880400f4bdb0>
[ +0.024630] ---[ end trace 3670998c9a49abb7 ]---
[ +0.000005] note: systemd-udevd[30835] exited with preempt_count 2
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-18 13:42 ` Borislav Petkov
0 siblings, 0 replies; 12+ messages in thread
From: Borislav Petkov @ 2014-05-18 13:42 UTC (permalink / raw)
To: Francis Moreau; +Cc: LKML, Matt Fleming, linux-efi
On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
> mac_hid ac
> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
> i2c_algo_bit drm_kms_helper drm i2c_core
> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
> 3.14.2-1-ARCH #1
> [ +0.000064] Hardware name: CLEVO CO. W55xEU
> /W55xEU , BIOS 4.6.5
> 03/05/2013
> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
> ffff880400f4a000
> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
> efi_call5+0x6f/0xf0
> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
> ffff8804040e3000
> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
> bff7fffff7afffff
So you get a #GP while executing call *rdi and %rdi is supposed to
contain ->get_variable. But instead it contains some very funky shit:
0xbff7fffff7afffff
Who made it contain that nuisance of a pointer which thinks it is
->get_variable, huh? If only I could get my hands on that guy! :-P
Ok, seriously, how reproducible is this? Can you reproduce with the
latest upstream kernel too, i.e. 3.15-rc5+?
Thanks.
(leaving in the rest for reference).
> [ +0.000056] RBP: ffff880400f4be80 R08: 0000000000000000 R09:
> ffff880400f4bec0
> [ +0.000055] R10: 0000000000000000 R11: 0000000000000246 R12:
> ffff8804040e3400
> [ +0.000056] R13: 0000000000000000 R14: ffff880400f4bec0 R15:
> 000000000009b000
> [ +0.002960] FS: 00007fb6167c97c0(0000) GS:ffff88041e200000(0000)
> knlGS:0000000000000000
> [ +0.002958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ +0.003177] CR2: 00007fb61581f4c0 CR3: 000000000009b000 CR4:
> 00000000001427e0
> [ +0.003258] Stack:
> [ +0.003257] 0000000000000201 8000000000000065 ffff880400000000
> ffff880100000000
> [ +0.003328] 0000000000000000 0000000000000000 ffff880400f4be50
> 0000000080050033
> [ +0.003354] 0000000000ff0000 0000000000000000 00ffffffffffffff
> 0000000000000000
> [ +0.003368] Call Trace:
> [ +0.003389] [<ffffffff81064901>] ? virt_efi_get_variable+0x51/0x80
> [ +0.003353] [<ffffffff813dbb71>] efivar_entry_size+0x41/0x80
> [ +0.003315] [<ffffffff81245659>] efivarfs_file_read+0x49/0x100
> [ +0.003326] [<ffffffff811ba797>] vfs_read+0x97/0x160
> [ +0.003305] [<ffffffff811bb2e9>] SyS_read+0x59/0xd0
> [ +0.003263] [<ffffffff81517629>] system_call_fastpath+0x16/0x1b
> [ +0.003239] Code: 89 c8 48 89 f1 80 3d e8 16 7d 00 00 74 1d 4c 89 3d
> c7 16 7d 00 41 0f 20 df 4c 89 3d c4 16 7d 00 4c 8b 3d c5 16 7d 00 41 0f
> 22 df <ff> d7 80 3d c0 16 7d 00 00 74 41 4c 8b 3d a7 16 7d 00 41 0f 22
> [ +0.003648] RIP [<ffffffff810655af>] efi_call5+0x6f/0xf0
> [ +0.003511] RSP <ffff880400f4bdb0>
> [ +0.024630] ---[ end trace 3670998c9a49abb7 ]---
> [ +0.000005] note: systemd-udevd[30835] exited with preempt_count 2
> --
> To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
> Please read the FAQ at http://www.tux.org/lkml/
>
--
Regards/Gruss,
Boris.
Sent from a fat crate under my desk. Formatting is fine.
--
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-18 13:42 ` Borislav Petkov
0 siblings, 0 replies; 12+ messages in thread
From: Borislav Petkov @ 2014-05-18 13:42 UTC (permalink / raw)
To: Francis Moreau; +Cc: LKML, Matt Fleming, linux-efi
On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
> mac_hid ac
> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
> i2c_algo_bit drm_kms_helper drm i2c_core
> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
> 3.14.2-1-ARCH #1
> [ +0.000064] Hardware name: CLEVO CO. W55xEU
> /W55xEU , BIOS 4.6.5
> 03/05/2013
> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
> ffff880400f4a000
> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
> efi_call5+0x6f/0xf0
> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
> ffff8804040e3000
> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
> bff7fffff7afffff
So you get a #GP while executing call *rdi and %rdi is supposed to
contain ->get_variable. But instead it contains some very funky shit:
0xbff7fffff7afffff
Who made it contain that nuisance of a pointer which thinks it is
->get_variable, huh? If only I could get my hands on that guy! :-P
Ok, seriously, how reproducible is this? Can you reproduce with the
latest upstream kernel too, i.e. 3.15-rc5+?
Thanks.
(leaving in the rest for reference).
> [ +0.000056] RBP: ffff880400f4be80 R08: 0000000000000000 R09:
> ffff880400f4bec0
> [ +0.000055] R10: 0000000000000000 R11: 0000000000000246 R12:
> ffff8804040e3400
> [ +0.000056] R13: 0000000000000000 R14: ffff880400f4bec0 R15:
> 000000000009b000
> [ +0.002960] FS: 00007fb6167c97c0(0000) GS:ffff88041e200000(0000)
> knlGS:0000000000000000
> [ +0.002958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> [ +0.003177] CR2: 00007fb61581f4c0 CR3: 000000000009b000 CR4:
> 00000000001427e0
> [ +0.003258] Stack:
> [ +0.003257] 0000000000000201 8000000000000065 ffff880400000000
> ffff880100000000
> [ +0.003328] 0000000000000000 0000000000000000 ffff880400f4be50
> 0000000080050033
> [ +0.003354] 0000000000ff0000 0000000000000000 00ffffffffffffff
> 0000000000000000
> [ +0.003368] Call Trace:
> [ +0.003389] [<ffffffff81064901>] ? virt_efi_get_variable+0x51/0x80
> [ +0.003353] [<ffffffff813dbb71>] efivar_entry_size+0x41/0x80
> [ +0.003315] [<ffffffff81245659>] efivarfs_file_read+0x49/0x100
> [ +0.003326] [<ffffffff811ba797>] vfs_read+0x97/0x160
> [ +0.003305] [<ffffffff811bb2e9>] SyS_read+0x59/0xd0
> [ +0.003263] [<ffffffff81517629>] system_call_fastpath+0x16/0x1b
> [ +0.003239] Code: 89 c8 48 89 f1 80 3d e8 16 7d 00 00 74 1d 4c 89 3d
> c7 16 7d 00 41 0f 20 df 4c 89 3d c4 16 7d 00 4c 8b 3d c5 16 7d 00 41 0f
> 22 df <ff> d7 80 3d c0 16 7d 00 00 74 41 4c 8b 3d a7 16 7d 00 41 0f 22
> [ +0.003648] RIP [<ffffffff810655af>] efi_call5+0x6f/0xf0
> [ +0.003511] RSP <ffff880400f4bdb0>
> [ +0.024630] ---[ end trace 3670998c9a49abb7 ]---
> [ +0.000005] note: systemd-udevd[30835] exited with preempt_count 2
> --
> To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
> the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
> Please read the FAQ at http://www.tux.org/lkml/
>
--
Regards/Gruss,
Boris.
Sent from a fat crate under my desk. Formatting is fine.
--
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-19 7:09 ` Francis Moreau
0 siblings, 0 replies; 12+ messages in thread
From: Francis Moreau @ 2014-05-19 7:09 UTC (permalink / raw)
To: Borislav Petkov; +Cc: LKML, Matt Fleming, linux-efi
On 05/18/2014 03:42 PM, Borislav Petkov wrote:
> On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
>> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
>> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
>> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
>> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
>> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
>> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
>> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
>> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
>> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
>> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
>> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
>> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
>> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
>> mac_hid ac
>> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
>> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
>> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
>> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
>> i2c_algo_bit drm_kms_helper drm i2c_core
>> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
>> 3.14.2-1-ARCH #1
>> [ +0.000064] Hardware name: CLEVO CO. W55xEU
>> /W55xEU , BIOS 4.6.5
>> 03/05/2013
>> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
>> ffff880400f4a000
>> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
>> efi_call5+0x6f/0xf0
>> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
>> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
>> ffff8804040e3000
>> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
>> bff7fffff7afffff
>
> So you get a #GP while executing call *rdi and %rdi is supposed to
> contain ->get_variable. But instead it contains some very funky shit:
>
> 0xbff7fffff7afffff
>
> Who made it contain that nuisance of a pointer which thinks it is
> ->get_variable, huh? If only I could get my hands on that guy! :-P
>
> Ok, seriously, how reproducible is this?
I don't really know how to reproduce this, I only can say that it
usually happens while partitioning the loop device or perhaps when the
kernel reads the partition table afterwards.
> Can you reproduce with the
> latest upstream kernel too, i.e. 3.15-rc5+?
I don't know, I can't really afford to configure/compile/test this new
kernel, sorry.
Thanks
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-19 7:09 ` Francis Moreau
0 siblings, 0 replies; 12+ messages in thread
From: Francis Moreau @ 2014-05-19 7:09 UTC (permalink / raw)
To: Borislav Petkov; +Cc: LKML, Matt Fleming, linux-efi
On 05/18/2014 03:42 PM, Borislav Petkov wrote:
> On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
>> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
>> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
>> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
>> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
>> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
>> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
>> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
>> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
>> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
>> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
>> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
>> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
>> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
>> mac_hid ac
>> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
>> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
>> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
>> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
>> i2c_algo_bit drm_kms_helper drm i2c_core
>> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
>> 3.14.2-1-ARCH #1
>> [ +0.000064] Hardware name: CLEVO CO. W55xEU
>> /W55xEU , BIOS 4.6.5
>> 03/05/2013
>> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
>> ffff880400f4a000
>> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
>> efi_call5+0x6f/0xf0
>> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
>> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
>> ffff8804040e3000
>> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
>> bff7fffff7afffff
>
> So you get a #GP while executing call *rdi and %rdi is supposed to
> contain ->get_variable. But instead it contains some very funky shit:
>
> 0xbff7fffff7afffff
>
> Who made it contain that nuisance of a pointer which thinks it is
> ->get_variable, huh? If only I could get my hands on that guy! :-P
>
> Ok, seriously, how reproducible is this?
I don't really know how to reproduce this, I only can say that it
usually happens while partitioning the loop device or perhaps when the
kernel reads the partition table afterwards.
> Can you reproduce with the
> latest upstream kernel too, i.e. 3.15-rc5+?
I don't know, I can't really afford to configure/compile/test this new
kernel, sorry.
Thanks
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-19 11:27 ` Matt Fleming
0 siblings, 0 replies; 12+ messages in thread
From: Matt Fleming @ 2014-05-19 11:27 UTC (permalink / raw)
To: Francis Moreau; +Cc: Borislav Petkov, LKML, linux-efi
On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
> On 05/18/2014 03:42 PM, Borislav Petkov wrote:
> > On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
> >> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
> >> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
> >> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
> >> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
> >> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
> >> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
> >> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
> >> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
> >> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
> >> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
> >> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
> >> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
> >> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
> >> mac_hid ac
> >> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
> >> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
> >> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
> >> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
> >> i2c_algo_bit drm_kms_helper drm i2c_core
> >> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
> >> 3.14.2-1-ARCH #1
> >> [ +0.000064] Hardware name: CLEVO CO. W55xEU
> >> /W55xEU , BIOS 4.6.5
> >> 03/05/2013
> >> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
> >> ffff880400f4a000
> >> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
> >> efi_call5+0x6f/0xf0
> >> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
> >> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
> >> ffff8804040e3000
> >> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
> >> bff7fffff7afffff
> >
> > So you get a #GP while executing call *rdi and %rdi is supposed to
> > contain ->get_variable. But instead it contains some very funky shit:
> >
> > 0xbff7fffff7afffff
> >
> > Who made it contain that nuisance of a pointer which thinks it is
> > ->get_variable, huh? If only I could get my hands on that guy! :-P
> >
> > Ok, seriously, how reproducible is this?
>
> I don't really know how to reproduce this, I only can say that it
> usually happens while partitioning the loop device or perhaps when the
> kernel reads the partition table afterwards.
It looks like it's oopsing as a result of systemd-udevd trying to
read a variable via the efivarfs mount,
Call Trace:
[<ffffffff81064901>] ? virt_efi_get_variable+0x51/0x80
[<ffffffff813dbb71>] efivar_entry_size+0x41/0x80
[<ffffffff81245659>] efivarfs_file_read+0x49/0x100
[<ffffffff811ba797>] vfs_read+0x97/0x160
[<ffffffff811bb2e9>] SyS_read+0x59/0xd0
[<ffffffff81517629>] system_call_fastpath+0x16/0x1b
--
Matt Fleming, Intel Open Source Technology Center
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-19 11:27 ` Matt Fleming
0 siblings, 0 replies; 12+ messages in thread
From: Matt Fleming @ 2014-05-19 11:27 UTC (permalink / raw)
To: Francis Moreau; +Cc: Borislav Petkov, LKML, linux-efi
On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
> On 05/18/2014 03:42 PM, Borislav Petkov wrote:
> > On Sat, May 17, 2014 at 05:25:47PM +0200, Francis Moreau wrote:
> >> [ +0.018677] general protection fault: 0000 [#1] PREEMPT SMP
> >> [ +0.000068] Modules linked in: usb_storage tun raid1 md_mod loop fuse
> >> joydev coretemp hwmon arc4 intel_rapl x86_pkg_temp_thermal
> >> intel_powerclamp kvm_intel nls_iso8859_1 nls_cp437 iTCO_wdt kvm vfat fat
> >> iTCO_vendor_support iwldvm uvcvideo led_class crct10dif_pclmul
> >> crc32_pclmul crc32c_intel ghash_clmulni_intel mac80211 videobuf2_vmalloc
> >> videobuf2_memops videobuf2_core aesni_intel videodev aes_x86_64
> >> snd_hda_codec_hdmi lrw gf128mul mousedev glue_helper btusb
> >> snd_hda_codec_via ablk_helper media cryptd iwlwifi snd_hda_codec_generic
> >> bluetooth psmouse microcode i2c_i801 serio_raw cfg80211 6lowpan_iphc
> >> rtsx_pci_ms r8169 memstick rfkill lpc_ich mii snd_hda_intel
> >> snd_hda_codec thermal snd_hwdep wmi snd_pcm tpm_infineon snd_timer
> >> tpm_tis mei_me snd tpm mei shpchp evdev soundcore processor battery
> >> mac_hid ac
> >> [ +0.000803] ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
> >> sd_mod sr_mod crc_t10dif cdrom crct10dif_common rtsx_pci_sdmmc mmc_core
> >> atkbd libps2 ahci libahci ehci_pci libata xhci_hcd ehci_hcd scsi_mod
> >> rtsx_pci usbcore usb_common i8042 serio i915 video button intel_gtt
> >> i2c_algo_bit drm_kms_helper drm i2c_core
> >> [ +0.000328] CPU: 0 PID: 30835 Comm: systemd-udevd Not tainted
> >> 3.14.2-1-ARCH #1
> >> [ +0.000064] Hardware name: CLEVO CO. W55xEU
> >> /W55xEU , BIOS 4.6.5
> >> 03/05/2013
> >> [ +0.000102] task: ffff880405ee6bf0 ti: ffff880400f4a000 task.ti:
> >> ffff880400f4a000
> >> [ +0.000060] RIP: 0010:[<ffffffff810655af>] [<ffffffff810655af>]
> >> efi_call5+0x6f/0xf0
> >> [ +0.000071] RSP: 0018:ffff880400f4bdb0 EFLAGS: 00010002
> >> [ +0.000045] RAX: 0000000080050033 RBX: ffff8804040e3000 RCX:
> >> ffff8804040e3000
> >> [ +0.000055] RDX: ffff8804040e3400 RSI: ffff8804040e3000 RDI:
> >> bff7fffff7afffff
> >
> > So you get a #GP while executing call *rdi and %rdi is supposed to
> > contain ->get_variable. But instead it contains some very funky shit:
> >
> > 0xbff7fffff7afffff
> >
> > Who made it contain that nuisance of a pointer which thinks it is
> > ->get_variable, huh? If only I could get my hands on that guy! :-P
> >
> > Ok, seriously, how reproducible is this?
>
> I don't really know how to reproduce this, I only can say that it
> usually happens while partitioning the loop device or perhaps when the
> kernel reads the partition table afterwards.
It looks like it's oopsing as a result of systemd-udevd trying to
read a variable via the efivarfs mount,
Call Trace:
[<ffffffff81064901>] ? virt_efi_get_variable+0x51/0x80
[<ffffffff813dbb71>] efivar_entry_size+0x41/0x80
[<ffffffff81245659>] efivarfs_file_read+0x49/0x100
[<ffffffff811ba797>] vfs_read+0x97/0x160
[<ffffffff811bb2e9>] SyS_read+0x59/0xd0
[<ffffffff81517629>] system_call_fastpath+0x16/0x1b
--
Matt Fleming, Intel Open Source Technology Center
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-20 11:54 ` Matt Fleming
0 siblings, 0 replies; 12+ messages in thread
From: Matt Fleming @ 2014-05-20 11:54 UTC (permalink / raw)
To: Francis Moreau; +Cc: Borislav Petkov, LKML, linux-efi
On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
>
> I don't know, I can't really afford to configure/compile/test this new
> kernel, sorry.
It would be useful to know whether this issue still occurs when booting
with the efi=old_map kernel parameter.
--
Matt Fleming, Intel Open Source Technology Center
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-20 11:54 ` Matt Fleming
0 siblings, 0 replies; 12+ messages in thread
From: Matt Fleming @ 2014-05-20 11:54 UTC (permalink / raw)
To: Francis Moreau; +Cc: Borislav Petkov, LKML, linux-efi
On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
>
> I don't know, I can't really afford to configure/compile/test this new
> kernel, sorry.
It would be useful to know whether this issue still occurs when booting
with the efi=old_map kernel parameter.
--
Matt Fleming, Intel Open Source Technology Center
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
2014-05-20 11:54 ` Matt Fleming
(?)
@ 2014-05-20 12:12 ` Francis Moreau
-1 siblings, 0 replies; 12+ messages in thread
From: Francis Moreau @ 2014-05-20 12:12 UTC (permalink / raw)
To: Matt Fleming; +Cc: Borislav Petkov, LKML, linux-efi
On 05/20/2014 01:54 PM, Matt Fleming wrote:
> On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
>>
>> I don't know, I can't really afford to configure/compile/test this new
>> kernel, sorry.
>
> It would be useful to know whether this issue still occurs when booting
> with the efi=old_map kernel parameter.
>
ok I can try to boot with that parameter and see if the issue happens
again. Unfortunately if it doesn't, we couldn't tell.
Thanks
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-27 14:02 ` Francis Moreau
0 siblings, 0 replies; 12+ messages in thread
From: Francis Moreau @ 2014-05-27 14:02 UTC (permalink / raw)
To: Matt Fleming; +Cc: Borislav Petkov, LKML, linux-efi
On 05/20/2014 01:54 PM, Matt Fleming wrote:
> On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
>>
>> I don't know, I can't really afford to configure/compile/test this new
>> kernel, sorry.
>
> It would be useful to know whether this issue still occurs when booting
> with the efi=old_map kernel parameter.
>
the bug triggered:
[ +0.002872] BUG: unable to handle kernel paging request at
fffffffefd4a1e60
[ +0.000066] IP: [<ffffffff810648f8>] virt_efi_get_variable+0x48/0x80
[ +0.000054] PGD 280f067 PUD 0
[ +0.000031] Oops: 0000 [#1] PREEMPT SMP
[ +0.000039] Modules linked in: tun ses enclosure usb_storage loop fuse
joydev coretemp hwmon arc4 nls_iso8859_1 nls_c
[ +0.000691] ac ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
sd_mod sr_mod crc_t10dif cdrom crct10dif_common
[ +0.000289] CPU: 7 PID: 23293 Comm: systemd-udevd Tainted: G W
3.14.4-1-ARCH #1
[ +0.000057] Hardware name: CLEVO CO. W55xEU
/W55xEU
[ +0.000087] task: ffff88039557bae0 ti: ffff8802de764000 task.ti:
ffff8802de764000
[ +0.000050] RIP: 0010:[<ffffffff810648f8>] [<ffffffff810648f8>]
virt_efi_get_variable+0x48/0x80
[ +0.000064] RSP: 0018:ffff8802de765e58 EFLAGS: 00010082
[ +0.000037] RAX: fffffffefd4a1e18 RBX: ffff8800da88f000 RCX:
0000000000000000
[ +0.000048] RDX: ffff8800da88f400 RSI: ffff8800da88f000 RDI:
00000000ffffffff
[ +0.000048] RBP: ffff8802de765e80 R08: ffff8802de765ec0 R09:
0000000000000000
[ +0.000047] R10: 0000000000000000 R11: 0000000000000246 R12:
ffff8800da88f400
[ +0.000048] R13: 0000000000000000 R14: ffff8802de765ec0 R15:
0000000000000000
[ +0.000048] FS: 00007f10751057c0(0000) GS:ffff88041e3c0000(0000)
knlGS:0000000000000000
[ +0.000054] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ +0.000040] CR2: fffffffefd4a1e60 CR3: 00000003c4afa000 CR4:
00000000001407e0
[ +0.000048] Stack:
[ +0.000016] ffff8800da88f000 ffff8802de765ec0 ffffffff81b27c20
ffff8802de765f48
[ +0.000060] 3bc93ec9a0004bba ffff8802de765ea8 ffffffff813dbc91
ffff8800da88f000
[ +0.000060] 00007fffdc30c104 0000000000000004 ffff8802de765ef8
ffffffff81245779
[ +0.000060] Call Trace:
[ +0.000025] [<ffffffff813dbc91>] efivar_entry_size+0x41/0x80
[ +0.000044] [<ffffffff81245779>] efivarfs_file_read+0x49/0x100
[ +0.000044] [<ffffffff811ba7d7>] vfs_read+0x97/0x160
[ +0.000037] [<ffffffff811bb329>] SyS_read+0x59/0xd0
[ +0.000039] [<ffffffff81517769>] system_call_fastpath+0x16/0x1b
[ +0.000041] Code: ce 4d 89 c7 e8 9a 06 00 00 65 ff 04 25 a0 c7 00 00
48 8b 05 1b d4 86 00 4d 89 f9 4d 89 f0 4c 89 e9
[ +0.000335] RIP [<ffffffff810648f8>] virt_efi_get_variable+0x48/0x80
[ +0.000049] RSP <ffff8802de765e58>
[ +0.000026] CR2: fffffffefd4a1e60
[ +0.016781] ---[ end trace 5a7017feeac75345 ]---
the sad thing is tht my system can't shutdown properly when it happens.
^ permalink raw reply [flat|nested] 12+ messages in thread
* Re: kernel 3.14.2 oops: seems related to EFI
@ 2014-05-27 14:02 ` Francis Moreau
0 siblings, 0 replies; 12+ messages in thread
From: Francis Moreau @ 2014-05-27 14:02 UTC (permalink / raw)
To: Matt Fleming; +Cc: Borislav Petkov, LKML, linux-efi
On 05/20/2014 01:54 PM, Matt Fleming wrote:
> On Mon, 19 May, at 09:09:58AM, Francis Moreau wrote:
>>
>> I don't know, I can't really afford to configure/compile/test this new
>> kernel, sorry.
>
> It would be useful to know whether this issue still occurs when booting
> with the efi=old_map kernel parameter.
>
the bug triggered:
[ +0.002872] BUG: unable to handle kernel paging request at
fffffffefd4a1e60
[ +0.000066] IP: [<ffffffff810648f8>] virt_efi_get_variable+0x48/0x80
[ +0.000054] PGD 280f067 PUD 0
[ +0.000031] Oops: 0000 [#1] PREEMPT SMP
[ +0.000039] Modules linked in: tun ses enclosure usb_storage loop fuse
joydev coretemp hwmon arc4 nls_iso8859_1 nls_c
[ +0.000691] ac ext4 crc16 mbcache jbd2 hid_generic usbhid hid bcache
sd_mod sr_mod crc_t10dif cdrom crct10dif_common
[ +0.000289] CPU: 7 PID: 23293 Comm: systemd-udevd Tainted: G W
3.14.4-1-ARCH #1
[ +0.000057] Hardware name: CLEVO CO. W55xEU
/W55xEU
[ +0.000087] task: ffff88039557bae0 ti: ffff8802de764000 task.ti:
ffff8802de764000
[ +0.000050] RIP: 0010:[<ffffffff810648f8>] [<ffffffff810648f8>]
virt_efi_get_variable+0x48/0x80
[ +0.000064] RSP: 0018:ffff8802de765e58 EFLAGS: 00010082
[ +0.000037] RAX: fffffffefd4a1e18 RBX: ffff8800da88f000 RCX:
0000000000000000
[ +0.000048] RDX: ffff8800da88f400 RSI: ffff8800da88f000 RDI:
00000000ffffffff
[ +0.000048] RBP: ffff8802de765e80 R08: ffff8802de765ec0 R09:
0000000000000000
[ +0.000047] R10: 0000000000000000 R11: 0000000000000246 R12:
ffff8800da88f400
[ +0.000048] R13: 0000000000000000 R14: ffff8802de765ec0 R15:
0000000000000000
[ +0.000048] FS: 00007f10751057c0(0000) GS:ffff88041e3c0000(0000)
knlGS:0000000000000000
[ +0.000054] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ +0.000040] CR2: fffffffefd4a1e60 CR3: 00000003c4afa000 CR4:
00000000001407e0
[ +0.000048] Stack:
[ +0.000016] ffff8800da88f000 ffff8802de765ec0 ffffffff81b27c20
ffff8802de765f48
[ +0.000060] 3bc93ec9a0004bba ffff8802de765ea8 ffffffff813dbc91
ffff8800da88f000
[ +0.000060] 00007fffdc30c104 0000000000000004 ffff8802de765ef8
ffffffff81245779
[ +0.000060] Call Trace:
[ +0.000025] [<ffffffff813dbc91>] efivar_entry_size+0x41/0x80
[ +0.000044] [<ffffffff81245779>] efivarfs_file_read+0x49/0x100
[ +0.000044] [<ffffffff811ba7d7>] vfs_read+0x97/0x160
[ +0.000037] [<ffffffff811bb329>] SyS_read+0x59/0xd0
[ +0.000039] [<ffffffff81517769>] system_call_fastpath+0x16/0x1b
[ +0.000041] Code: ce 4d 89 c7 e8 9a 06 00 00 65 ff 04 25 a0 c7 00 00
48 8b 05 1b d4 86 00 4d 89 f9 4d 89 f0 4c 89 e9
[ +0.000335] RIP [<ffffffff810648f8>] virt_efi_get_variable+0x48/0x80
[ +0.000049] RSP <ffff8802de765e58>
[ +0.000026] CR2: fffffffefd4a1e60
[ +0.016781] ---[ end trace 5a7017feeac75345 ]---
the sad thing is tht my system can't shutdown properly when it happens.
^ permalink raw reply [flat|nested] 12+ messages in thread
end of thread, other threads:[~2014-05-27 14:02 UTC | newest]
Thread overview: 12+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2014-05-17 15:25 kernel 3.14.2 oops: seems related to EFI Francis Moreau
2014-05-18 13:42 ` Borislav Petkov
2014-05-18 13:42 ` Borislav Petkov
2014-05-19 7:09 ` Francis Moreau
2014-05-19 7:09 ` Francis Moreau
2014-05-19 11:27 ` Matt Fleming
2014-05-19 11:27 ` Matt Fleming
2014-05-20 11:54 ` Matt Fleming
2014-05-20 11:54 ` Matt Fleming
2014-05-20 12:12 ` Francis Moreau
2014-05-27 14:02 ` Francis Moreau
2014-05-27 14:02 ` Francis Moreau
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.