Received: by 2002:ac0:8c9a:0:0:0:0:0 with SMTP id r26csp1913257ima; Sat, 2 Feb 2019 09:59:14 -0800 (PST) X-Google-Smtp-Source: AHgI3IYyAbRb+deRiQVptX0ZdAICeyelM+bulPBMjMK7N1IK9Li20bTBIsjKcdFOdGrMxNokGIyL X-Received: by 2002:a63:2f07:: with SMTP id v7mr4095160pgv.368.1549130353968; Sat, 02 Feb 2019 09:59:13 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1549130353; cv=none; d=google.com; s=arc-20160816; b=YZrlizMcen3P5Of1wYDexLavMQrLZ5B6TrE5y4QGxQHjmgUf0VfAe6KwwZv9vx5BUR X9SKIki/ywyI22v8aXRHelEqyVSLUcw0ul3IuBseFBtj85IWyW8Ygydi+eRy4rJKeVp+ cLfkaoTwpo4U6FLW0c0QZ/lBhbPvD3/apKeqzvGkZPAYBdTYi26d+xZ2QzZhxHD610dP Qjx1fUqZLtPcLZUyMOi6+c6ysS6RSW3rOKfS+6dQSXX400ENrz8lbSIcYTmeM1mL4l6F vYOhBTYxpfoIP3/bo6bkMKJdtTrQxqhwWtmfV+4Qdjza10O4pbU/ysFGjMvZBhjF+Ahp nLXQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :message-id:in-reply-to:subject:cc:to:date:from:dkim-signature; bh=ZWmrYNGvbbe+wJXyf/nwvl9ZIbUGwDA3IPzZCpJys6o=; b=bxREVSd8m4unj9g9xDI7Z9Q98fzP6MODjycPG3MxrN3nIqYRIVSBsAgvS+BcTi0rSL TaGpfQ+aFgHDclzqCoOhmYBP5MqiAaj68EGl3KawNFEcBTVWJ05+rlHhor3f6WCvTgJi pbmwQlm0QxZcnQ7m39G0GXw6/fgs5+1Vgi4GwrU2inYBEoSQce5UZi1USZOeC/DYVuAu W8oQTVMYzP4VDcDxvi7/2ip7MA4/16UeY5SXyvmH372Q1/ERYEdL4J+b+5e35N6zU1Px PZtsKAXE5X/H220X5ixqS6xVA23SwpBHeOVm/4j3xwyhCPpnyPbkC3r1Lpam7c7KCRjH Zwkg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@maine.edu header.s=google header.b=VFur41+X; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id v141si12506431pfc.260.2019.02.02.09.58.57; Sat, 02 Feb 2019 09:59:13 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@maine.edu header.s=google header.b=VFur41+X; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726595AbfBBR6Q (ORCPT + 99 others); Sat, 2 Feb 2019 12:58:16 -0500 Received: from mail-qt1-f194.google.com ([209.85.160.194]:37322 "EHLO mail-qt1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726284AbfBBR6Q (ORCPT ); Sat, 2 Feb 2019 12:58:16 -0500 Received: by mail-qt1-f194.google.com with SMTP id t33so11414267qtt.4 for ; Sat, 02 Feb 2019 09:58:15 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=maine.edu; s=google; h=from:date:to:cc:subject:in-reply-to:message-id:references :user-agent:mime-version; bh=ZWmrYNGvbbe+wJXyf/nwvl9ZIbUGwDA3IPzZCpJys6o=; b=VFur41+XCyU0GMwecXdWhdyPG+Gu+SE5KwLmgDO9vuA/0NCHiyeT3T5xNmuSZTiAGh sgWTHTbV9mg8Rk9OaHsM2G0pF7ifA/YFXvkX4pcUc6Faxlj75hRsfVZHtCgDcK3WIm09 0bjAjSNJd6lWGyjHxgmmB6b44o9iLq+HybhiI= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:date:to:cc:subject:in-reply-to:message-id :references:user-agent:mime-version; bh=ZWmrYNGvbbe+wJXyf/nwvl9ZIbUGwDA3IPzZCpJys6o=; b=BYwIM5xhOCYbEC1oVMc26IVw77G/9k02qWo5JGnZMoWqyPi6KF4FmNr6EiPkU9ZV/5 XPmH7oRh2kqQGN/nZaudmSJN+C69hnlwhsd+WJ/K3f5/JUKuVIX5GWr52Z4VMdAnzeMR eH/lkLd3nWxONhxI4tuhYhLKfOeMm0daobUIm1VlOPe/+q27Wpx9p3WDDXBPNUbmHjrv FaDVneKvbTkf0fIFQLGj9ePsPn74qxKH7AsCZe27A49wG0HE35j5AM4gW6G7WzeSV7/5 4ArYPYQpIaoliGTVLMC5GmCgg91xdpq2G5ek/nxYkWQChQmWgzbOMWnBEqV8QlfU9sti rp0w== X-Gm-Message-State: AJcUukfWKzPKgyn7UXJReoqv8TdKpN0HJUK9CqSGtMUkGuMNPr4jHFBv hZMWB7AavDxBWutyyCXtKBDiqCzFqsg= X-Received: by 2002:ac8:7153:: with SMTP id h19mr41526273qtp.92.1549130295287; Sat, 02 Feb 2019 09:58:15 -0800 (PST) Received: from macbook-air (weaver.eece.maine.edu. [130.111.218.23]) by smtp.gmail.com with ESMTPSA id d21sm6782003qtr.34.2019.02.02.09.58.13 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Sat, 02 Feb 2019 09:58:14 -0800 (PST) From: Vince Weaver X-Google-Original-From: Vince Weaver Date: Sat, 2 Feb 2019 12:58:07 -0500 (EST) X-X-Sender: vince@macbook-air To: Jiri Olsa cc: Vince Weaver , Ravi Bangoria , lkml , Peter Zijlstra , linux-perf-users@vger.kernel.org, Arnaldo Carvalho de Melo , Andi Kleen , eranian@google.com, "Naveen N. Rao" Subject: Re: System crash with perf_fuzzer (kernel: 5.0.0-rc3) In-Reply-To: <20190201173816.GA19907@krava> Message-ID: References: <7c7ec3d9-9af6-8a1d-515d-64dcf8e89b78@linux.ibm.com> <20190130183648.GA24233@krava> <20190131082711.GC24233@krava> <20190201074353.GA8778@krava> <20190201173816.GA19907@krava> User-Agent: Alpine 2.21 (DEB 202 2017-01-01) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, 1 Feb 2019, Jiri Olsa wrote: > > > > I've just started fuzzing with the patch applied. Often it takes a few > > hours to trigger the bug. > > cool, thanks I let it run overnight and no crash. > > Added question about this bug. It appeared that the crash was triggered > > by the BTS driver over-writing kernel memory. The data being written, was > > this user controllable? Meaning, is this a security issue being fixed, or > > just a crashing issue? > > yea, I have an example that can trigger it immediately I mean: the crash is happening because data structures are getting over-written by the BTS driver. Depending who and what is doing this, this could be a security issue (i.e. if it was raw BTS data that was partially userspace controlled values). Though even if this were the case it would probably be hard to exploit. Vince