Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp1786986pxk; Sat, 26 Sep 2020 05:12:19 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxpSBBLYiBKRUVUOU1WIm5cxUebQ86CYCq/wrvtNHYcS1+0Ct2srsUXX3nkVSMyrtGaaAfl X-Received: by 2002:a17:906:4c89:: with SMTP id q9mr7481766eju.290.1601122338935; Sat, 26 Sep 2020 05:12:18 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1601122338; cv=none; d=google.com; s=arc-20160816; b=dAFKiVBPzfSruorhiDzddngfWc5Xer2tZ7ItNr5yxTQ9XREKIBn+rqAmSDZ9Ruui43 iKymtvJjAWuJ7LR5WorSS3YAEzzUpRjWs9XeF3LLKeJ4x7NWRg0GLniI8ZYYYQ9bweOX 42TG7+aV/V/bPeqyJuvPAUMzkbgh9HOd05eQ2WnMkOuIkyNLUPjO9pf+/697egdlzZFT bU4jy/nUqf0y/jvR2gfGSbdnGjLDE4mB/e2+IyLuHI41TBQTetzNfvPnzjnduKRbRLHR 3F/c2croera9AOw9RmlWIL+19hb5yJ5Pgdaa+8UIgGTLrN34e59VNCb+EKe+nI+JPaZG xqzg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=tQkrRdJ6c6oJ77YZati+E5lioU8KClKXmW+hw7Drfk4=; b=EZVA7yfLYuXrGl3mczwv83uEknjhECmYZ33wKPbe5sd2nSxdcDgUxBzaSVI/Runs0D 6Kf2FdWzFir9Xn3tweyuj4aQqtuZCeN82Uj/wzVwyuJvQ4Xcyg4h6DYMDEQIZdNvio6U J/ps64j4a9oOhn9p5ikyl8zXypjVhdnKF1/nrpA6nQIBe5buF5SvatwoYI9Sf5AnRbNT YM+zsrsoeMJa9L21UeVQuK+gk3eYbjHlBNNhjR4WGLwDhzatqlsX6KNNsynPTILYQA6r kPdnihxHwmDnJru9uQf0uUIp63/K7HHU2hzXsskO/oxQhqxXaDpDZrvxILijcLXAZQ6K lE+A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=K4ESyNpO; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id bx9si3894958edb.231.2020.09.26.05.11.25; Sat, 26 Sep 2020 05:12:18 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=K4ESyNpO; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726316AbgIZMIl (ORCPT + 99 others); Sat, 26 Sep 2020 08:08:41 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56682 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726210AbgIZMIk (ORCPT ); Sat, 26 Sep 2020 08:08:40 -0400 Received: from mail-qv1-xf44.google.com (mail-qv1-xf44.google.com [IPv6:2607:f8b0:4864:20::f44]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 86673C0613CE for ; Sat, 26 Sep 2020 05:08:40 -0700 (PDT) Received: by mail-qv1-xf44.google.com with SMTP id j3so2884480qvi.7 for ; Sat, 26 Sep 2020 05:08:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=tQkrRdJ6c6oJ77YZati+E5lioU8KClKXmW+hw7Drfk4=; b=K4ESyNpOCCwXUJhYmHekDwVj8zh0O55W+lCLu2pMyXRr2VecPYniCTYPtLye2pY+Za eRfi3XyXkH3N/pCAQopXir+OKOI8ysHk3awEru0e0cV+cFuKiij/C5c3Cw35UrvhTygm 8biB5atUVv7rPqdaf2z0QDKPP1MCBFPo5htOBgOivu9vpc9e84C89ofwffYF+Os/done 071cJjqYmbAwM6i9iFHmIywvWaG4bQDRx6HMtdkPT1HtLGqWt9muIL6iocpRWoqi+/kL SiISRd2mZ2/J07Zpawk2nFkkLryvLmXr8uHNtWrxaMPNAGsKK8dM4by9HtDx/hT9NCot AX2A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=tQkrRdJ6c6oJ77YZati+E5lioU8KClKXmW+hw7Drfk4=; b=dqvpComh8d3HXRgFmg7kl5ut0/Mg9Os8CQ/i2tazUAM6u4UzotfMuUWr8uwOj13Kkg 0gazA1sZl04SecBzcnft3NmVfvcSnqn7LWWRjg27S4TbKpVelJjOCl7s1RUnXYuCM2ae wfQ90Jeo1oMyZFDnv7XPQuXesmJ/Qcm5yLn7nv0cb+diA3c9F5bP827sPLk4R6BYWczY jC9duPsvDHR/FFcmdOx/M9zFaXNo0PibYytm39uufnNah9eUXJG1FB33Zny58jNLb2EA xDvLJ1lQDkK0SCZLwErN3wmT66RHasyoqwQaFCoPXvyJsu0GLuKwKkcezpKNu09qn3Kq 5EGw== X-Gm-Message-State: AOAM531sV79C85mgpyWjmCDjCzbriZtVWpgbl+oI7Klvyidcx9OAbkAs gUxk63L8bLdVq/P4fuVHy1CP9PBE9SiQGqvYctmQFA== X-Received: by 2002:a05:6214:292:: with SMTP id l18mr3314961qvv.11.1601122119258; Sat, 26 Sep 2020 05:08:39 -0700 (PDT) MIME-Version: 1.0 References: <20200919110831.GD7462@zn.tnic> <20200921221336.GN5901@zn.tnic> <20200923090336.GD28545@zn.tnic> <20200923103431.GF28545@zn.tnic> <20200926112119.GA22089@zn.tnic> In-Reply-To: <20200926112119.GA22089@zn.tnic> From: Dmitry Vyukov Date: Sat, 26 Sep 2020 14:08:27 +0200 Message-ID: Subject: Re: general protection fault in perf_misc_flags To: Borislav Petkov Cc: Nick Desaulniers , Josh Poimboeuf , syzbot , Arnaldo Carvalho de Melo , Alexander Shishkin , "H. Peter Anvin" , Jiri Olsa , LKML , Mark Rutland , Ingo Molnar , Namhyung Kim , Peter Zijlstra , syzkaller-bugs , Thomas Gleixner , "the arch/x86 maintainers" , clang-built-linux , syzkaller Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sat, Sep 26, 2020 at 1:21 PM Borislav Petkov wrote: > > On Wed, Sep 23, 2020 at 05:20:06PM +0200, Dmitry Vyukov wrote: > > It's a random fuzzing workload. You can get this workload by running > > syzkaller locally: > > https://github.com/google/syzkaller/blob/master/docs/linux/setup_ubuntu-host_qemu-vm_x86-64-kernel.md > > Yeah, the my.cfg example suggests that the syz-manager starts the guest > and supplies the kernel, etc. > > Is there a possibility to run the workload in an already existing guest > which I've booted prior? > > I'm asking because I have all the infra for testing kernels in guests > already setup here and it would be easier for me to simply run the > workload directly in the guest and then poke at it. +syzkaller mailing list There is also "isolated" VM type, which allows to connect to a set of external machines via ssh: https://github.com/google/syzkaller/blob/master/vm/isolated/isolated.go#L29-L37 However, it's better to have lots of them and with a console cables, and still sometimes they may brick for various reasons. There is also syz-stress utility that may run some workload directly on the underlying kernel: https://github.com/google/syzkaller/blob/master/tools/syz-stress/stress.go#L29 However, it does not use corpus/coverage, so I don't know if it will be able to reproduce these crashes or not. It will also be up to you then to restart the VM/fuzzing every minute.