From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= Subject: fuzzying a user mode linux image often core dumps with Date: Sat, 20 Jul 2013 17:07:19 +0200 Message-ID: <51EAA7A7.4000104@gmx.de> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: QUOTED-PRINTABLE Cc: "user-mode-linux-devel@lists.sourceforge.net" To: linux-ext4@vger.kernel.org Return-path: Received: from mout.gmx.net ([212.227.17.21]:49195 "EHLO mout.gmx.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1754139Ab3GTPHW (ORCPT ); Sat, 20 Jul 2013 11:07:22 -0400 Received: from [80.171.222.82] ([80.171.222.82]) by mail.gmx.com (mrgmx001) with ESMTPSA (Nemesis) id 0MgszY-1UnRkm1P3w-00M2SI for ; Sat, 20 Jul 2013 17:07:20 +0200 Sender: linux-ext4-owner@vger.kernel.org List-ID: I do run the fuzzer trinity within a 32 bit user mode linux. With latest git tree I do often get a core dump like the one attached. Although it is the nature of trinity to corrupt the kernel /me wonders = why it happens nearly alway at the same place. That's why I decided to just report it here. [New LWP 26743] Core was generated by `/usr/local/bin/linux-v3.11-rc1-214-g6cc1862 earl= yprintk ubda=3D/home/tfoerste/vir'. Program terminated with signal 6, Aborted. #0 0xb77b6424 in __kernel_vsyscall () #0 0xb77b6424 in __kernel_vsyscall () #1 0x083a3245 in kill () #2 0x0807163d in uml_abort () at arch/um/os-Linux/util.c:93 #3 0x08071925 in os_dump_core () at arch/um/os-Linux/util.c:138 #4 0x080613a7 in panic_exit (self=3D0x85a1518 , u= nused1=3D0, unused2=3D0x85d6ce0 ) at arch/um/kernel/um_arch.= c:240 #5 0x0809d588 in notifier_call_chain (nl=3D0x0, val=3D0, v=3D0x85d6ce0= , nr_to_call=3D-2, nr_calls=3D0x0) at kernel/notifier.c:93 #6 0x0809d6d3 in __atomic_notifier_call_chain (nr_calls=3D, nr_to_call=3D, v=3D, val=3D, nh=3D) at kernel/notifier.c:182 #7 atomic_notifier_call_chain (nh=3D0x85d6cc4 , v= al=3D0, v=3D0x85d6ce0 ) at kernel/notifier.c:191 #8 0x08400a28 in panic (fmt=3D0x0) at kernel/panic.c:128 #9 0x0818a4b5 in ext4_orphan_add (handle=3D0x47870000, inode=3D0x47a06= c60) at fs/ext4/namei.c:2571 #10 0x0818a6e5 in ext4_tmpfile (dir=3D0x479f5380, dentry=3D0x47a4b4d0, = mode=3D0) at fs/ext4/namei.c:2319 #11 0x0810b7af in do_tmpfile (opened=3D, file=3D, op=3D, flags=3D, nd=3D, pathname=3D, dfd=3D) at fs/namei.c= :2938 #12 path_openat (dfd=3D1201623936, pathname=3D0x47ce9040, nd=3D0x46effd= e4, op=3D0x46effe70, flags=3D67) at fs/namei.c:2981 #13 0x0810bcb1 in do_filp_open (dfd=3D-100, pathname=3D0x47ce9040, op=3D= 0x46effe70) at fs/namei.c:3043 #14 0x080fe5f8 in do_sys_open (dfd=3D0, filename=3D0x0, flags=3D4841986= , mode=3D0) at fs/open.c:954 #15 0x080fe6c8 in SYSC_open (mode=3D, flags=3D, filename=3D) at fs/open.c:972 #16 SyS_open (filename=3D135073872, flags=3D4841986, mode=3D3127) at fs= /open.c:967 #17 0x080618e2 in handle_syscall (r=3D0x46e0c7d4) at arch/um/kernel/ska= s/syscall.c:35 #18 0x08073c0d in handle_trap (local_using_sysemu=3D, re= gs=3D, pid=3D) at arch/um/os-Linux/skas/p= rocess.c:198 #19 userspace (regs=3D0x46e0c7d4) at arch/um/os-Linux/skas/process.c:43= 1 #20 0x0805e65c in fork_handler () at arch/um/kernel/process.c:160 #21 0x00000000 in ?? () --=20 MfG/Sincerely Toralf F=C3=B6rster pgp finger print: 7B1A 07F4 EC82 0F90 D4C2 8936 872A E508 7DB6 9DA3 -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" i= n the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191] helo=mx.sourceforge.net) by sfs-ml-2.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1V0Ykq-0004mc-Bg for user-mode-linux-devel@lists.sourceforge.net; Sat, 20 Jul 2013 15:07:28 +0000 Received: from mout.gmx.net ([212.227.17.21]) by sog-mx-1.v43.ch3.sourceforge.com with esmtp (Exim 4.76) id 1V0Yko-0005NO-Ei for user-mode-linux-devel@lists.sourceforge.net; Sat, 20 Jul 2013 15:07:28 +0000 Received: from [80.171.222.82] ([80.171.222.82]) by mail.gmx.com (mrgmx001) with ESMTPSA (Nemesis) id 0LslCb-1TywV71icD-012F1H for ; Sat, 20 Jul 2013 17:07:20 +0200 Message-ID: <51EAA7A7.4000104@gmx.de> Date: Sat, 20 Jul 2013 17:07:19 +0200 From: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= MIME-Version: 1.0 List-Id: The user-mode Linux development list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: user-mode-linux-devel-bounces@lists.sourceforge.net Subject: [uml-devel] fuzzying a user mode linux image often core dumps with To: linux-ext4@vger.kernel.org Cc: "user-mode-linux-devel@lists.sourceforge.net" SSBkbyBydW4gdGhlIGZ1enplciB0cmluaXR5IHdpdGhpbiBhIDMyIGJpdCB1c2VyIG1vZGUgbGlu dXguCldpdGggbGF0ZXN0IGdpdCB0cmVlIEkgZG8gb2Z0ZW4gZ2V0IGEgY29yZSBkdW1wIGxpa2Ug dGhlIG9uZSBhdHRhY2hlZC4KCkFsdGhvdWdoIGl0IGlzIHRoZSBuYXR1cmUgb2YgdHJpbml0eSB0 byBjb3JydXB0IHRoZSBrZXJuZWwgL21lIHdvbmRlcnMgd2h5IGl0IGhhcHBlbnMgbmVhcmx5IGFs d2F5CmF0IHRoZSBzYW1lIHBsYWNlLiBUaGF0J3Mgd2h5IEkgZGVjaWRlZCB0byBqdXN0IHJlcG9y dCBpdCBoZXJlLgoKCltOZXcgTFdQIDI2NzQzXQpDb3JlIHdhcyBnZW5lcmF0ZWQgYnkgYC91c3Iv bG9jYWwvYmluL2xpbnV4LXYzLjExLXJjMS0yMTQtZzZjYzE4NjIgZWFybHlwcmludGsgdWJkYT0v aG9tZS90Zm9lcnN0ZS92aXInLgpQcm9ncmFtIHRlcm1pbmF0ZWQgd2l0aCBzaWduYWwgNiwgQWJv cnRlZC4KIzAgIDB4Yjc3YjY0MjQgaW4gX19rZXJuZWxfdnN5c2NhbGwgKCkKIzAgIDB4Yjc3YjY0 MjQgaW4gX19rZXJuZWxfdnN5c2NhbGwgKCkKIzEgIDB4MDgzYTMyNDUgaW4ga2lsbCAoKQojMiAg MHgwODA3MTYzZCBpbiB1bWxfYWJvcnQgKCkgYXQgYXJjaC91bS9vcy1MaW51eC91dGlsLmM6OTMK IzMgIDB4MDgwNzE5MjUgaW4gb3NfZHVtcF9jb3JlICgpIGF0IGFyY2gvdW0vb3MtTGludXgvdXRp bC5jOjEzOAojNCAgMHgwODA2MTNhNyBpbiBwYW5pY19leGl0IChzZWxmPTB4ODVhMTUxOCA8cGFu aWNfZXhpdF9ub3RpZmllcj4sIHVudXNlZDE9MCwgdW51c2VkMj0weDg1ZDZjZTAgPGJ1Zi4xNTkw ND4pIGF0IGFyY2gvdW0va2VybmVsL3VtX2FyY2guYzoyNDAKIzUgIDB4MDgwOWQ1ODggaW4gbm90 aWZpZXJfY2FsbF9jaGFpbiAobmw9MHgwLCB2YWw9MCwgdj0weDg1ZDZjZTAgPGJ1Zi4xNTkwND4s IG5yX3RvX2NhbGw9LTIsIG5yX2NhbGxzPTB4MCkgYXQga2VybmVsL25vdGlmaWVyLmM6OTMKIzYg IDB4MDgwOWQ2ZDMgaW4gX19hdG9taWNfbm90aWZpZXJfY2FsbF9jaGFpbiAobnJfY2FsbHM9PG9w dGltaXplZCBvdXQ+LCBucl90b19jYWxsPTxvcHRpbWl6ZWQgb3V0Piwgdj08b3B0aW1pemVkIG91 dD4sIHZhbD08b3B0aW1pemVkIG91dD4sIG5oPTxvcHRpbWl6ZWQgb3V0PikgYXQga2VybmVsL25v dGlmaWVyLmM6MTgyCiM3ICBhdG9taWNfbm90aWZpZXJfY2FsbF9jaGFpbiAobmg9MHg4NWQ2Y2M0 IDxwYW5pY19ub3RpZmllcl9saXN0PiwgdmFsPTAsIHY9MHg4NWQ2Y2UwIDxidWYuMTU5MDQ+KSBh dCBrZXJuZWwvbm90aWZpZXIuYzoxOTEKIzggIDB4MDg0MDBhMjggaW4gcGFuaWMgKGZtdD0weDAp IGF0IGtlcm5lbC9wYW5pYy5jOjEyOAojOSAgMHgwODE4YTRiNSBpbiBleHQ0X29ycGhhbl9hZGQg KGhhbmRsZT0weDQ3ODcwMDAwLCBpbm9kZT0weDQ3YTA2YzYwKSBhdCBmcy9leHQ0L25hbWVpLmM6 MjU3MQojMTAgMHgwODE4YTZlNSBpbiBleHQ0X3RtcGZpbGUgKGRpcj0weDQ3OWY1MzgwLCBkZW50 cnk9MHg0N2E0YjRkMCwgbW9kZT0wKSBhdCBmcy9leHQ0L25hbWVpLmM6MjMxOQojMTEgMHgwODEw YjdhZiBpbiBkb190bXBmaWxlIChvcGVuZWQ9PG9wdGltaXplZCBvdXQ+LCBmaWxlPTxvcHRpbWl6 ZWQgb3V0Piwgb3A9PG9wdGltaXplZCBvdXQ+LCBmbGFncz08b3B0aW1pemVkIG91dD4sIG5kPTxv cHRpbWl6ZWQgb3V0PiwgcGF0aG5hbWU9PG9wdGltaXplZCBvdXQ+LCBkZmQ9PG9wdGltaXplZCBv dXQ+KSBhdCBmcy9uYW1laS5jOjI5MzgKIzEyIHBhdGhfb3BlbmF0IChkZmQ9MTIwMTYyMzkzNiwg cGF0aG5hbWU9MHg0N2NlOTA0MCwgbmQ9MHg0NmVmZmRlNCwgb3A9MHg0NmVmZmU3MCwgZmxhZ3M9 NjcpIGF0IGZzL25hbWVpLmM6Mjk4MQojMTMgMHgwODEwYmNiMSBpbiBkb19maWxwX29wZW4gKGRm ZD0tMTAwLCBwYXRobmFtZT0weDQ3Y2U5MDQwLCBvcD0weDQ2ZWZmZTcwKSBhdCBmcy9uYW1laS5j OjMwNDMKIzE0IDB4MDgwZmU1ZjggaW4gZG9fc3lzX29wZW4gKGRmZD0wLCBmaWxlbmFtZT0weDAs IGZsYWdzPTQ4NDE5ODYsIG1vZGU9MCkgYXQgZnMvb3Blbi5jOjk1NAojMTUgMHgwODBmZTZjOCBp biBTWVNDX29wZW4gKG1vZGU9PG9wdGltaXplZCBvdXQ+LCBmbGFncz08b3B0aW1pemVkIG91dD4s IGZpbGVuYW1lPTxvcHRpbWl6ZWQgb3V0PikgYXQgZnMvb3Blbi5jOjk3MgojMTYgU3lTX29wZW4g KGZpbGVuYW1lPTEzNTA3Mzg3MiwgZmxhZ3M9NDg0MTk4NiwgbW9kZT0zMTI3KSBhdCBmcy9vcGVu LmM6OTY3CiMxNyAweDA4MDYxOGUyIGluIGhhbmRsZV9zeXNjYWxsIChyPTB4NDZlMGM3ZDQpIGF0 IGFyY2gvdW0va2VybmVsL3NrYXMvc3lzY2FsbC5jOjM1CiMxOCAweDA4MDczYzBkIGluIGhhbmRs ZV90cmFwIChsb2NhbF91c2luZ19zeXNlbXU9PG9wdGltaXplZCBvdXQ+LCByZWdzPTxvcHRpbWl6 ZWQgb3V0PiwgcGlkPTxvcHRpbWl6ZWQgb3V0PikgYXQgYXJjaC91bS9vcy1MaW51eC9za2FzL3By b2Nlc3MuYzoxOTgKIzE5IHVzZXJzcGFjZSAocmVncz0weDQ2ZTBjN2Q0KSBhdCBhcmNoL3VtL29z LUxpbnV4L3NrYXMvcHJvY2Vzcy5jOjQzMQojMjAgMHgwODA1ZTY1YyBpbiBmb3JrX2hhbmRsZXIg KCkgYXQgYXJjaC91bS9rZXJuZWwvcHJvY2Vzcy5jOjE2MAojMjEgMHgwMDAwMDAwMCBpbiA/PyAo KQoKCi0tIApNZkcvU2luY2VyZWx5ClRvcmFsZiBGw7Zyc3RlcgpwZ3AgZmluZ2VyIHByaW50OiA3 QjFBIDA3RjQgRUM4MiAwRjkwIEQ0QzIgODkzNiA4NzJBIEU1MDggN0RCNiA5REEzCgotLS0tLS0t LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tLS0KU2VlIGV2ZXJ5dGhpbmcgZnJvbSB0aGUgYnJvd3NlciB0byB0aGUgZGF0 YWJhc2Ugd2l0aCBBcHBEeW5hbWljcwpHZXQgZW5kLXRvLWVuZCB2aXNpYmlsaXR5IHdpdGggYXBw bGljYXRpb24gbW9uaXRvcmluZyBmcm9tIEFwcER5bmFtaWNzCklzb2xhdGUgYm90dGxlbmVja3Mg YW5kIGRpYWdub3NlIHJvb3QgY2F1c2UgaW4gc2Vjb25kcy4KU3RhcnQgeW91ciBmcmVlIHRyaWFs IG9mIEFwcER5bmFtaWNzIFBybyB0b2RheSEKaHR0cDovL3B1YmFkcy5nLmRvdWJsZWNsaWNrLm5l dC9nYW1wYWQvY2xrP2lkPTQ4ODA4ODMxJml1PS80MTQwL29zdGcuY2xrdHJrCl9fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fClVzZXItbW9kZS1saW51eC1kZXZl bCBtYWlsaW5nIGxpc3QKVXNlci1tb2RlLWxpbnV4LWRldmVsQGxpc3RzLnNvdXJjZWZvcmdlLm5l dApodHRwczovL2xpc3RzLnNvdXJjZWZvcmdlLm5ldC9saXN0cy9saXN0aW5mby91c2VyLW1vZGUt bGludXgtZGV2ZWwK