syzbot


WARNING in handle_exception_nmi

Status: upstream: reported C repro on 2023/05/29 20:49
Bug presence: origin:upstream
Labels: missing-backport
[Documentation on labels]
Reported-by: syzbot+7c737a13057526185ef5@syzkaller.appspotmail.com
First crash: 409d, last: 53d
Fix bisection: failed (error log, bisect log)
  
Bug presence (3)
Date Name Commit Repro Result
2024/01/12 linux-6.1.y (ToT) 7c58bfa711cb C [report] WARNING in handle_exception_nmi
2023/05/30 upstream (ToT) 8b817fded42d C [report] WARNING in handle_exception_nmi
2024/01/12 upstream (ToT) 70d201a40823 C Didn't crash
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in handle_exception_nmi (2) kvm C inconclusive inconclusive 147 15d 871d 0/27 upstream: reported C repro on 2022/02/22 05:18
linux-5.15 WARNING in handle_exception_nmi C error 21 73d 420d 0/3 upstream: reported C repro on 2023/05/19 01:30
upstream WARNING in handle_exception_nmi kvm C error done 2653 1375d 1379d 15/27 fixed on 2020/11/16 12:12
Fix bisection attempts (9)
Created Duration User Patch Repo Result
2024/06/28 11:32 1h18m (2) bisect fix linux-6.1.y error job log
2024/05/20 03:59 1h50m bisect fix linux-6.1.y OK (0) job log log
2024/04/16 11:10 3h02m bisect fix linux-6.1.y OK (0) job log log
2024/03/13 10:03 2h08m bisect fix linux-6.1.y OK (0) job log log
2024/02/08 07:17 2h05m fix candidate upstream OK (0) job log log
2023/12/21 17:06 1h54m bisect fix linux-6.1.y OK (0) job log log
2023/11/21 04:18 2h06m bisect fix linux-6.1.y OK (0) job log log
2023/10/18 12:31 58m bisect fix linux-6.1.y OK (0) job log log
2023/08/12 10:38 2h36m bisect fix linux-6.1.y OK (0) job log log

Sample crash report:
L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
------------[ cut here ]------------
WARNING: CPU: 1 PID: 3537 at arch/x86/kvm/vmx/vmx.c:5163 handle_exception_nmi+0x8f2/0xe10
Modules linked in:
CPU: 1 PID: 3537 Comm: syz-executor244 Not tainted 6.1.30-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
RIP: 0010:handle_exception_nmi+0x8f2/0xe10 arch/x86/kvm/vmx/vmx.c:5163
Code: 64 d1 65 00 0f 0b e9 44 f9 ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 7c f7 ff ff e8 78 18 bc 00 e9 72 f7 ff ff e8 3e d1 65 00 <0f> 0b e9 53 fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 9d f8 ff
RSP: 0018:ffffc90003a4f490 EFLAGS: 00010293
RAX: ffffffff8123f432 RBX: ffff88807cf68000 RCX: ffff888016bc1dc0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: ffffffff8123f07f R09: ffffed100f9ed04a
R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100f9ed01b
R13: 0000000000000000 R14: 0000000030000064 R15: dffffc0000000000
FS:  0000555557416300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000030000012 CR3: 00000000209ce000 CR4: 00000000003526e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 __vmx_handle_exit arch/x86/kvm/vmx/vmx.c:6480 [inline]
 vmx_handle_exit+0xca0/0x1a00 arch/x86/kvm/vmx/vmx.c:6497
 vcpu_enter_guest+0x2a93/0xa530 arch/x86/kvm/x86.c:10917
 vcpu_run arch/x86/kvm/x86.c:11020 [inline]
 kvm_arch_vcpu_ioctl_run+0xf5f/0x20c0 arch/x86/kvm/x86.c:11241
 kvm_vcpu_ioctl+0x7f0/0xcf0 arch/x86/kvm/../../../virt/kvm/kvm_main.c:4091
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl+0xf1/0x160 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7efefff1f3e9
Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffcf37e3458 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efefff1f3e9
RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
RBP: 00007efeffee2ee0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000009120 R11: 0000000000000246 R12: 00007efeffee2f70
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 </TASK>

Crashes (25):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/05/29 21:21 linux-6.1.y a343b0dd87b4 cf184559 .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/08/15 16:38 linux-6.1.y 1321ab403b38 39990d51 .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 11:56 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 11:33 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 11:10 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 10:47 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 10:21 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 09:45 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/19 09:10 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/14 07:56 linux-6.1.y 09045dae0d90 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/11 09:23 linux-6.1.y 59b13c2b647e 6654cf89 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/11 07:30 linux-6.1.y 59b13c2b647e 6654cf89 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/06 01:43 linux-6.1.y c2cbfe5f5122 0b6286dc .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/03 23:54 linux-6.1.y c2cbfe5f5122 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/03 23:49 linux-6.1.y c2cbfe5f5122 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/03 23:44 linux-6.1.y c2cbfe5f5122 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/03 23:37 linux-6.1.y c2cbfe5f5122 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/09/03 23:25 linux-6.1.y c2cbfe5f5122 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/21 11:19 linux-6.1.y ca87e77a2ef8 79782afc .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/21 06:56 linux-6.1.y ca87e77a2ef8 79782afc .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/16 09:53 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/16 09:30 linux-6.1.y ca87e77a2ef8 f3921d4d .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/09 03:52 linux-6.1.y 76ba310227d2 058b3a5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/06/09 03:43 linux-6.1.y 76ba310227d2 058b3a5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
2023/05/29 20:49 linux-6.1.y a343b0dd87b4 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in handle_exception_nmi
* Struck through repros no longer work on HEAD.