Re: upstream kernel crashes

From: Dmitry Vyukov
Date: Wed Aug 17 2022 - 02:14:22 EST

Next message: Greg KH: "Re: [PATCH] CDC-ACM : Add Icom PMR F3400 support (0c26:0020)"
Previous message: Alistair Popple: "Re: [PATCH v2 1/2] mm/migrate_device.c: Copy pte dirty bit to page"
In reply to: Xuan Zhuo: "Re: upstream kernel crashes"
Next in thread: Xuan Zhuo: "Re: upstream kernel crashes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 15 Aug 2022 17:32:06 -0400, Michael wrote:
> So if you pass the size parameter for a legacy device it will
> try to make the ring smaller and that is not legal with
> legacy at all. But the driver treats legacy and modern
> the same, it allocates a smaller queue anyway.
>
> Lo and behold, I pass disable-modern=on to qemu and it happily
> corrupts memory exactly the same as GCP does.

Ouch!

I understand that the host does the actual corruption,
but could you think of any additional debug checking in the guest
that would caught this in future? Potentially only when KASAN
is enabled which can verify validity of memory ranges.
Some kind of additional layer of sanity checking.

This caused a bit of a havoc for syzbot with almost 100 unique
crash signatures, so would be useful to catch such issues more
reliably in future.

Thanks

Next message: Greg KH: "Re: [PATCH] CDC-ACM : Add Icom PMR F3400 support (0c26:0020)"
Previous message: Alistair Popple: "Re: [PATCH v2 1/2] mm/migrate_device.c: Copy pte dirty bit to page"
In reply to: Xuan Zhuo: "Re: upstream kernel crashes"
Next in thread: Xuan Zhuo: "Re: upstream kernel crashes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]