syzbot


WARNING in handle_ept_misconfig

Status: fixed on 2018/03/06 13:29
Subsystems: kvm
[Documentation on labels]
Reported-by: syzbot+c1d9517cab094dae65e446c0c5b4de6c40f4dc58@syzkaller.appspotmail.com
Fix commit: 95e057e25892 KVM: X86: Fix SMRAM accessing even if VM is shutdown
First crash: 2602d, last: 2417d
Discussions (5)
Title Replies (including bot) Last reply
[PATCH 4.14 000/110] 4.14.25-stable review 129 (129) 2018/03/20 09:32
[PATCH 4.15 000/122] 4.15.8-stable review 135 (135) 2018/03/08 17:51
[PATCH] KVM: X86: Fix SMRAM accessing even if VM is shutdown 11 (11) 2018/02/11 10:57
[PATCH v2] KVM: X86: Fix SMRAM accessing even if VM is shutdown 2 (2) 2018/02/08 10:24
WARNING in handle_ept_misconfig 3 (4) 2018/02/06 08:58
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 WARNING in handle_ept_misconfig C error 100 853d 1997d 0/1 upstream: reported C repro on 2019/04/22 11:42

Sample crash report:
WARNING: CPU: 0 PID: 4187 at arch/x86/kvm/vmx.c:6771 handle_ept_misconfig+0x140/0x520 arch/x86/kvm/vmx.c:6771
Kernel panic - not syncing: panic_on_warn set ...

CPU: 0 PID: 4187 Comm: syzkaller225100 Not tainted 4.15.0+ #298
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x194/0x257 lib/dump_stack.c:53
 panic+0x1e4/0x41c kernel/panic.c:183
 __warn+0x1dc/0x200 kernel/panic.c:547
 report_bug+0x211/0x2d0 lib/bug.c:184
 fixup_bug.part.11+0x37/0x80 arch/x86/kernel/traps.c:178
 fixup_bug arch/x86/kernel/traps.c:247 [inline]
 do_error_trap+0x2d7/0x3e0 arch/x86/kernel/traps.c:296
 do_invalid_op+0x1b/0x20 arch/x86/kernel/traps.c:315
 invalid_op+0x22/0x40 arch/x86/entry/entry_64.S:984
RIP: 0010:handle_ept_misconfig+0x140/0x520 arch/x86/kvm/vmx.c:6771
RSP: 0018:ffff8801b2807360 EFLAGS: 00010293
RAX: ffff8801b2a16740 RBX: 1ffff10036500e6e RCX: ffffffff81193de0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed0036500e58
RBP: ffff8801b2807438 R08: 0000000000000007 R09: ffff8801b28071d8
R10: ffff8801b2806f30 R11: 0000000000000002 R12: ffff8801c5618480
R13: 00000000fffffff2 R14: ffff8801b2807410 R15: dffffc0000000000
 vmx_handle_exit+0x25d/0x1ce0 arch/x86/kvm/vmx.c:8955
 vcpu_enter_guest arch/x86/kvm/x86.c:7083 [inline]
 vcpu_run arch/x86/kvm/x86.c:7145 [inline]
 kvm_arch_vcpu_ioctl_run+0x1c69/0x5bf0 arch/x86/kvm/x86.c:7312
 kvm_vcpu_ioctl+0x64c/0x1010 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2564
 vfs_ioctl fs/ioctl.c:46 [inline]
 do_vfs_ioctl+0x1b1/0x1520 fs/ioctl.c:686
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x8f/0xc0 fs/ioctl.c:692
 do_syscall_64+0x282/0x940 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x26/0x9b
RIP: 0033:0x448a79
RSP: 002b:00007ff13702fda8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00000000006ddc3c RCX: 0000000000448a79
RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000011b
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006ddc38
R13: 6d766b2f7665642f R14: 00007ff1370309c0 R15: 000000000000000d
Dumping ftrace buffer:
   (ftrace buffer empty)
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (238):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/02/06 08:29 upstream 2deb41b24532 a1bc9d40 .config console log report syz C ci-upstream-kasan-gce
2018/02/03 04:32 upstream 03f51d4efa22 632a8c2c .config console log report syz ci-upstream-kasan-gce
2017/09/19 12:05 mmots 720bbe532b7c c26ea367 .config console log report syz ci-upstream-mmots-kasan-gce
2017/09/08 08:56 linux-next 58bcd35f859b d18bfda0 .config console log report syz skylake-linux-next-kasan-qemu
2017/09/04 17:51 linux-next 9829d9f31f6c f400a0da .config console log report syz ci-upstream-next-kasan-gce
2018/02/26 12:06 upstream c89be5242607 9fe8aa42 .config console log report ci-upstream-kasan-gce
2018/02/25 11:07 upstream 3664ce2d9309 5c1e0207 .config console log report ci-upstream-kasan-gce
2018/02/16 22:36 upstream 1a2a7d3ee659 c8b3f7c1 .config console log report ci-upstream-kasan-gce
2018/02/16 15:08 upstream 1388c80438e6 c8b3f7c1 .config console log report ci-upstream-kasan-gce
2018/02/06 08:03 upstream 2deb41b24532 a1bc9d40 .config console log report ci-upstream-kasan-gce
2018/02/06 02:32 upstream 2deb41b24532 a1bc9d40 .config console log report ci-upstream-kasan-gce
2018/02/03 04:15 upstream 03f51d4efa22 632a8c2c .config console log report ci-upstream-kasan-gce
2018/02/01 16:02 upstream 255442c93843 02553e22 .config console log report ci-upstream-kasan-gce
2017/12/15 22:04 upstream 032b4cc8ff84 ac20b98c .config console log report ci-upstream-kasan-gce
2017/12/15 14:50 upstream 032b4cc8ff84 ac20b98c .config console log report ci-upstream-kasan-gce
2017/12/15 04:09 upstream d455df0bcc00 ac20b98c .config console log report ci-upstream-kasan-gce
2017/12/14 22:12 upstream d455df0bcc00 ac20b98c .config console log report ci-upstream-kasan-gce
2017/12/14 09:37 upstream 7c5cac1bc717 ac20b98c .config console log report ci-upstream-kasan-gce
2017/12/13 02:55 upstream d39a01eff9af ce7f2399 .config console log report ci-upstream-kasan-gce
2017/12/11 23:21 upstream 50c4c4e268a2 da131727 .config console log report ci-upstream-kasan-gce
2017/12/11 05:07 upstream 51090c5d6de0 5ad0ce95 .config console log report ci-upstream-kasan-gce
2017/12/11 04:53 upstream 51090c5d6de0 5ad0ce95 .config console log report ci-upstream-kasan-gce
2017/12/11 02:12 upstream 51090c5d6de0 5ad0ce95 .config console log report ci-upstream-kasan-gce
2017/12/10 20:13 upstream 51090c5d6de0 5ad0ce95 .config console log report ci-upstream-kasan-gce
2017/12/10 07:54 upstream 4ded3bec65a0 5ad0ce95 .config console log report ci-upstream-kasan-gce
2017/12/03 18:07 upstream ae64f9bd1d36 48359b97 .config console log report ci-upstream-kasan-gce
2017/12/02 11:17 upstream a0651c7fa2c0 48359b97 .config console log report ci-upstream-kasan-gce
2017/09/09 17:05 upstream 0e271fd59fe9 d18bfda0 .config console log report ci-upstream-kasan-gce
2017/12/10 17:23 upstream 51090c5d6de0 5ad0ce95 .config console log report ci-upstream-kasan-gce-386
2017/11/28 13:41 upstream 4fbd8d194f06 ac93d7e1 .config console log report ci-upstream-kasan-gce-386
2017/12/11 00:16 linux-next ad4dac17f9d5 5ad0ce95 .config console log report ci-upstream-next-kasan-gce
2017/12/08 20:56 linux-next ad4dac17f9d5 5ad0ce95 .config console log report ci-upstream-next-kasan-gce
2017/11/28 15:33 mmots dbf9f9124937 1808de66 .config console log report ci-upstream-mmots-kasan-gce
2017/11/28 07:52 mmots dbf9f9124937 1808de66 .config console log report ci-upstream-mmots-kasan-gce
2017/11/28 05:58 mmots dbf9f9124937 1808de66 .config console log report ci-upstream-mmots-kasan-gce
2017/11/28 02:51 linux-next b0a84f19a516 afba0b55 .config console log report ci-upstream-next-kasan-gce
2017/11/27 07:21 linux-next b0a84f19a516 deb5f6ae .config console log report ci-upstream-next-kasan-gce
2017/11/27 05:19 linux-next b0a84f19a516 deb5f6ae .config console log report ci-upstream-next-kasan-gce
2017/11/26 19:08 linux-next 6fc478f80f68 4bd70f88 .config console log report ci-upstream-next-kasan-gce
2017/11/26 17:47 mmots 1ea8d039f9ed deb5f6ae .config console log report ci-upstream-mmots-kasan-gce
2017/11/25 16:04 mmots 1ea8d039f9ed deb5f6ae .config console log report ci-upstream-mmots-kasan-gce
2017/11/25 06:52 linux-next 6fc478f80f68 4bd70f88 .config console log report ci-upstream-next-kasan-gce
2017/11/25 03:04 mmots 1ea8d039f9ed deb5f6ae .config console log report ci-upstream-mmots-kasan-gce
2017/11/24 20:07 mmots 1ea8d039f9ed deb5f6ae .config console log report ci-upstream-mmots-kasan-gce
2017/11/24 10:58 mmots 1ea8d039f9ed deb5f6ae .config console log report ci-upstream-mmots-kasan-gce
2017/11/23 21:31 linux-next 279a24799865 cb27b030 .config console log report ci-upstream-next-kasan-gce
* Struck through repros no longer work on HEAD.