From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from sog-mx-4.v43.ch3.sourceforge.com ([172.29.43.194] helo=mx.sourceforge.net) by sfs-ml-4.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1VfEI8-0000Ox-KO for user-mode-linux-devel@lists.sourceforge.net; Sat, 09 Nov 2013 19:33:56 +0000 Received: from b.ns.miles-group.at ([95.130.255.144] helo=radon.swed.at) by sog-mx-4.v43.ch3.sourceforge.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.76) id 1VfEI6-0001bb-Ur for user-mode-linux-devel@lists.sourceforge.net; Sat, 09 Nov 2013 19:33:56 +0000 Message-ID: <527E8E19.9030802@nod.at> Date: Sat, 09 Nov 2013 20:33:45 +0100 From: Richard Weinberger MIME-Version: 1.0 References: <526696BF.6050909@gmx.de> <5266A698.10400@gmx.de> <5266B60A.1000005@nod.at> <52715AD1.7000703@gmx.de> <527AB23D.2060305@gmx.de> <527AB51B.1020005@nod.at> <527E87EA.8080700@gmx.de> In-Reply-To: <527E87EA.8080700@gmx.de> List-Id: The user-mode Linux development list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: user-mode-linux-devel-bounces@lists.sourceforge.net Subject: Re: [uml-devel] fuzz tested 32 bit user mode linux image hangs in radix_tree_next_chunk() To: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= Cc: linux-fsdevel , "linux-mm@kvack.org" , UML devel , Linux Kernel , Konstantin Khlebnikov QW0gMDkuMTEuMjAxMyAyMDowNywgc2NocmllYiBUb3JhbGYgRsO2cnN0ZXI6Cj4gT24gMTEvMDYv MjAxMyAxMDozMSBQTSwgUmljaGFyZCBXZWluYmVyZ2VyIHdyb3RlOgo+PiBBbSAwNi4xMS4yMDEz IDIyOjE4LCBzY2hyaWViIFRvcmFsZiBGw7Zyc3RlcjoKPj4+IE9uIDExLzA2LzIwMTMgMDU6MDYg UE0sIEtvbnN0YW50aW4gS2hsZWJuaWtvdiB3cm90ZToKPj4+PiBJbiB0aGlzIGNhc2UgaXQgbXVz dCBzdG9wIGFmdGVyIHNjYW5uaW5nIHdob2xlIHRyZWUgaW4gbGluZToKPj4+PiAvKiBPdmVyZmxv dyBhZnRlciB+MFVMICovCj4+Pj4gaWYgKCFpbmRleCkKPj4+PiAgIHJldHVybiBOVUxMOwo+Pj4+ Cj4+Pgo+Pj4gQSBmcmVzaCBjdXJyZW50IGV4YW1wbGUgd2l0aCBsYXRlc3QgZ2l0IHRyZWUgc2hv d3MgdGhhdCBsaW5lcyA3NjkgYW5kIDc3MCBkbyBhbHRlcm5hdGUgOgo+Pgo+PiBDYW4geW91IHBs ZWFzZSBhc2sgZ2RiIGZvciB0aGUgdmFsdWUgb2Ygb2Zmc2V0Pwo+Pgo+PiBUaGFua3MsCj4+IC8v cmljaGFyZAo+Pgo+IAo+IFN0aWxsIHRyeWluZyB0byBnZXQgdGhvc2UgdmFsdWVzLiBPbmUgYXR0 ZW1wdCB0byBkbyB0aGF0IHdhcyB0byByZXBsYWNlIC1PMiB3aXRoIC1PMCBpbiB0aGUgTWFrZWZp bGUsCj4gYnV0IHRoYXQgcmVzdWx0ZWQgaW50byB0aGlzIGVycm9yIDoKPiAKPiAgIExEICAgICAg a2VybmVsL2J1aWx0LWluLm8KPiAgIENDICAgICAgbW0vbWVtb3J5Lm8KPiBJbiBmdW5jdGlvbiDi gJh6YXBfcG1kX3Jhbmdl4oCZLAo+ICAgICBpbmxpbmVkIGZyb20g4oCYemFwX3B1ZF9yYW5nZeKA mSBhdCBtbS9tZW1vcnkuYzoxMjY1OjgsCj4gICAgIGlubGluZWQgZnJvbSDigJh1bm1hcF9wYWdl X3Jhbmdl4oCZIGF0IG1tL21lbW9yeS5jOjEyOTA6ODoKPiBtbS9tZW1vcnkuYzoxMjIwOjIzOiBl cnJvcjogY2FsbCB0byDigJhfX2NvbXBpbGV0aW1lX2Fzc2VydF8xMjIw4oCZIGRlY2xhcmVkIHdp dGggYXR0cmlidXRlIGVycm9yOiBCVUlMRF9CVUcgZmFpbGVkCj4gbW0vbWVtb3J5LmM6IEluIGZ1 bmN0aW9uIOKAmGZvbGxvd19wYWdlX21hc2vigJk6Cj4gbW0vbWVtb3J5LmM6MTUzMDoxODogZXJy b3I6IGNhbGwgdG8g4oCYX19jb21waWxldGltZV9hc3NlcnRfMTUzMOKAmSBkZWNsYXJlZCB3aXRo IGF0dHJpYnV0ZSBlcnJvcjogQlVJTERfQlVHIGZhaWxlZAo+IG1ha2VbMV06ICoqKiBbbW0vbWVt b3J5Lm9dIEVycm9yIDEKPiBtYWtlOiAqKiogW21tXSBFcnJvciAyCj4gCj4gCj4gV2l0aCAtTzEg aXQgY29tcGlsZWQgYXQgbGVhc3QuCgpZb3UgY2Fubm90IGJ1aWxkIExpbnV4IHdpdGggLU8xL08w LgpUcnkgcHJpbnRpbmcgdGhlIHZhbHVlIHVzaW5nIHByaW50ay4uLgoKVGhhbmtzLAovL3JpY2hh cmQKCi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQpOb3ZlbWJlciBXZWJpbmFycyBmb3IgQywgQysrLCBG b3J0cmFuIERldmVsb3BlcnMKQWNjZWxlcmF0ZSBhcHBsaWNhdGlvbiBwZXJmb3JtYW5jZSB3aXRo IHNjYWxhYmxlIHByb2dyYW1taW5nIG1vZGVscy4gRXhwbG9yZQp0ZWNobmlxdWVzIGZvciB0aHJl YWRpbmcsIGVycm9yIGNoZWNraW5nLCBwb3J0aW5nLCBhbmQgdHVuaW5nLiBHZXQgdGhlIG1vc3Qg CmZyb20gdGhlIGxhdGVzdCBJbnRlbCBwcm9jZXNzb3JzIGFuZCBjb3Byb2Nlc3NvcnMuIFNlZSBh YnN0cmFjdHMgYW5kIHJlZ2lzdGVyCmh0dHA6Ly9wdWJhZHMuZy5kb3VibGVjbGljay5uZXQvZ2Ft cGFkL2Nsaz9pZD02MDEzNjIzMSZpdT0vNDE0MC9vc3RnLmNsa3RyawpfX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpVc2VyLW1vZGUtbGludXgtZGV2ZWwgbWFp bGluZyBsaXN0ClVzZXItbW9kZS1saW51eC1kZXZlbEBsaXN0cy5zb3VyY2Vmb3JnZS5uZXQKaHR0 cHM6Ly9saXN0cy5zb3VyY2Vmb3JnZS5uZXQvbGlzdHMvbGlzdGluZm8vdXNlci1tb2RlLWxpbnV4 LWRldmVsCg== From mboxrd@z Thu Jan 1 00:00:00 1970 From: Richard Weinberger Subject: Re: [uml-devel] fuzz tested 32 bit user mode linux image hangs in radix_tree_next_chunk() Date: Sat, 09 Nov 2013 20:33:45 +0100 Message-ID: <527E8E19.9030802@nod.at> References: <526696BF.6050909@gmx.de> <5266A698.10400@gmx.de> <5266B60A.1000005@nod.at> <52715AD1.7000703@gmx.de> <527AB23D.2060305@gmx.de> <527AB51B.1020005@nod.at> <527E87EA.8080700@gmx.de> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Cc: Konstantin Khlebnikov , Linux Kernel , linux-fsdevel , "linux-mm@kvack.org" , UML devel To: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= Return-path: In-Reply-To: <527E87EA.8080700@gmx.de> Sender: owner-linux-mm@kvack.org List-Id: linux-fsdevel.vger.kernel.org Am 09.11.2013 20:07, schrieb Toralf F=C3=B6rster: > On 11/06/2013 10:31 PM, Richard Weinberger wrote: >> Am 06.11.2013 22:18, schrieb Toralf F=C3=B6rster: >>> On 11/06/2013 05:06 PM, Konstantin Khlebnikov wrote: >>>> In this case it must stop after scanning whole tree in line: >>>> /* Overflow after ~0UL */ >>>> if (!index) >>>> return NULL; >>>> >>> >>> A fresh current example with latest git tree shows that lines 769 and= 770 do alternate : >> >> Can you please ask gdb for the value of offset? >> >> Thanks, >> //richard >> >=20 > Still trying to get those values. One attempt to do that was to replace= -O2 with -O0 in the Makefile, > but that resulted into this error : >=20 > LD kernel/built-in.o > CC mm/memory.o > In function =E2=80=98zap_pmd_range=E2=80=99, > inlined from =E2=80=98zap_pud_range=E2=80=99 at mm/memory.c:1265:8, > inlined from =E2=80=98unmap_page_range=E2=80=99 at mm/memory.c:1290= :8: > mm/memory.c:1220:23: error: call to =E2=80=98__compiletime_assert_1220=E2= =80=99 declared with attribute error: BUILD_BUG failed > mm/memory.c: In function =E2=80=98follow_page_mask=E2=80=99: > mm/memory.c:1530:18: error: call to =E2=80=98__compiletime_assert_1530=E2= =80=99 declared with attribute error: BUILD_BUG failed > make[1]: *** [mm/memory.o] Error 1 > make: *** [mm] Error 2 >=20 >=20 > With -O1 it compiled at least. You cannot build Linux with -O1/O0. Try printing the value using printk... Thanks, //richard -- To unsubscribe, send a message with 'unsubscribe linux-mm' in the body to majordomo@kvack.org. For more info on Linux MM, see: http://www.linux-mm.org/ . Don't email: email@kvack.org From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pb0-f54.google.com (mail-pb0-f54.google.com [209.85.160.54]) by kanga.kvack.org (Postfix) with ESMTP id 2F96E6B026D for ; Sat, 9 Nov 2013 14:34:04 -0500 (EST) Received: by mail-pb0-f54.google.com with SMTP id ro12so443510pbb.27 for ; Sat, 09 Nov 2013 11:34:03 -0800 (PST) Received: from psmtp.com ([74.125.245.118]) by mx.google.com with SMTP id ei3si10670366pbc.350.2013.11.09.11.33.50 for ; Sat, 09 Nov 2013 11:33:51 -0800 (PST) Message-ID: <527E8E19.9030802@nod.at> Date: Sat, 09 Nov 2013 20:33:45 +0100 From: Richard Weinberger MIME-Version: 1.0 Subject: Re: [uml-devel] fuzz tested 32 bit user mode linux image hangs in radix_tree_next_chunk() References: <526696BF.6050909@gmx.de> <5266A698.10400@gmx.de> <5266B60A.1000005@nod.at> <52715AD1.7000703@gmx.de> <527AB23D.2060305@gmx.de> <527AB51B.1020005@nod.at> <527E87EA.8080700@gmx.de> In-Reply-To: <527E87EA.8080700@gmx.de> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: owner-linux-mm@kvack.org List-ID: To: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= Cc: Konstantin Khlebnikov , Linux Kernel , linux-fsdevel , "linux-mm@kvack.org" , UML devel Am 09.11.2013 20:07, schrieb Toralf FA?rster: > On 11/06/2013 10:31 PM, Richard Weinberger wrote: >> Am 06.11.2013 22:18, schrieb Toralf FA?rster: >>> On 11/06/2013 05:06 PM, Konstantin Khlebnikov wrote: >>>> In this case it must stop after scanning whole tree in line: >>>> /* Overflow after ~0UL */ >>>> if (!index) >>>> return NULL; >>>> >>> >>> A fresh current example with latest git tree shows that lines 769 and 770 do alternate : >> >> Can you please ask gdb for the value of offset? >> >> Thanks, >> //richard >> > > Still trying to get those values. One attempt to do that was to replace -O2 with -O0 in the Makefile, > but that resulted into this error : > > LD kernel/built-in.o > CC mm/memory.o > In function a??zap_pmd_rangea??, > inlined from a??zap_pud_rangea?? at mm/memory.c:1265:8, > inlined from a??unmap_page_rangea?? at mm/memory.c:1290:8: > mm/memory.c:1220:23: error: call to a??__compiletime_assert_1220a?? declared with attribute error: BUILD_BUG failed > mm/memory.c: In function a??follow_page_maska??: > mm/memory.c:1530:18: error: call to a??__compiletime_assert_1530a?? declared with attribute error: BUILD_BUG failed > make[1]: *** [mm/memory.o] Error 1 > make: *** [mm] Error 2 > > > With -O1 it compiled at least. You cannot build Linux with -O1/O0. Try printing the value using printk... Thanks, //richard -- To unsubscribe, send a message with 'unsubscribe linux-mm' in the body to majordomo@kvack.org. For more info on Linux MM, see: http://www.linux-mm.org/ . Don't email: email@kvack.org From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1757071Ab3KITdy (ORCPT ); Sat, 9 Nov 2013 14:33:54 -0500 Received: from b.ns.miles-group.at ([95.130.255.144]:1660 "EHLO radon.swed.at" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1756302Ab3KITdu (ORCPT ); Sat, 9 Nov 2013 14:33:50 -0500 Message-ID: <527E8E19.9030802@nod.at> Date: Sat, 09 Nov 2013 20:33:45 +0100 From: Richard Weinberger User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.0 MIME-Version: 1.0 To: =?UTF-8?B?VG9yYWxmIEbDtnJzdGVy?= CC: Konstantin Khlebnikov , Linux Kernel , linux-fsdevel , "linux-mm@kvack.org" , UML devel Subject: Re: [uml-devel] fuzz tested 32 bit user mode linux image hangs in radix_tree_next_chunk() References: <526696BF.6050909@gmx.de> <5266A698.10400@gmx.de> <5266B60A.1000005@nod.at> <52715AD1.7000703@gmx.de> <527AB23D.2060305@gmx.de> <527AB51B.1020005@nod.at> <527E87EA.8080700@gmx.de> In-Reply-To: <527E87EA.8080700@gmx.de> X-Enigmail-Version: 1.6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Am 09.11.2013 20:07, schrieb Toralf Förster: > On 11/06/2013 10:31 PM, Richard Weinberger wrote: >> Am 06.11.2013 22:18, schrieb Toralf Förster: >>> On 11/06/2013 05:06 PM, Konstantin Khlebnikov wrote: >>>> In this case it must stop after scanning whole tree in line: >>>> /* Overflow after ~0UL */ >>>> if (!index) >>>> return NULL; >>>> >>> >>> A fresh current example with latest git tree shows that lines 769 and 770 do alternate : >> >> Can you please ask gdb for the value of offset? >> >> Thanks, >> //richard >> > > Still trying to get those values. One attempt to do that was to replace -O2 with -O0 in the Makefile, > but that resulted into this error : > > LD kernel/built-in.o > CC mm/memory.o > In function ‘zap_pmd_range’, > inlined from ‘zap_pud_range’ at mm/memory.c:1265:8, > inlined from ‘unmap_page_range’ at mm/memory.c:1290:8: > mm/memory.c:1220:23: error: call to ‘__compiletime_assert_1220’ declared with attribute error: BUILD_BUG failed > mm/memory.c: In function ‘follow_page_mask’: > mm/memory.c:1530:18: error: call to ‘__compiletime_assert_1530’ declared with attribute error: BUILD_BUG failed > make[1]: *** [mm/memory.o] Error 1 > make: *** [mm] Error 2 > > > With -O1 it compiled at least. You cannot build Linux with -O1/O0. Try printing the value using printk... Thanks, //richard