Re: rx2660 + debian

To: Frank Scheiner <frank.scheiner@web.de>
Cc: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>, Anton Borisov <anton.borisov@gmail.com>, debian-ia64 <debian-ia64@lists.debian.org>, Sergei Trofimovich <slyich@gmail.com>
Subject: Re: rx2660 + debian
From: Pedro Miguel Justo <pmsjt@texair.net>
Date: Mon, 25 Apr 2022 08:22:09 +0000
Message-id: <[🔎] 1E227A5F-0C03-4615-B921-D2EBED3DB058@texair.net>
In-reply-to: <[🔎] b1d000e5-1698-7f24-4d78-eced6c98e57b@web.de>
References: <CANHzssBhm=A2Q+npDqdwYsd9DKhqYyT_VVnYwQr=7WpPBNccqg@mail.gmail.com> <[🔎] c290443f-5cdc-e5fd-687f-8e19f77ca0f2@web.de> <[🔎] 874da24a-a50d-0404-5727-eb8d989b5744@physik.fu-berlin.de> <[🔎] 40199df5-2ce0-73e1-0cec-da55405dc073@web.de> <[🔎] CANHzssDtr6XoB1--sgyCxyjc3M0ZVK=ceYoLn7kSq6Wqyv3f9Q@mail.gmail.com> <[🔎] db15a1d2-69be-8a02-476f-d7c183c2f46e@web.de> <[🔎] CANHzssC5sa4JpiW_ZrbW0yDWnxa1u9j56eVCETE-M5qMD6YTVA@mail.gmail.com> <[🔎] 0927961a-1c49-e57f-37db-fd62e5b19a6e@web.de> <[🔎] 6c888a13-4737-8a1b-023f-c683f12e083d@web.de> <[🔎] E8BAF1B0-6C33-4E65-BCEC-B2D258D97898@texair.net> <[🔎] c7c5702b-8123-b3fc-c0f5-c5e132393d60@physik.fu-berlin.de> <[🔎] E0CC7F7A-01A2-4F36-A080-266B56830C74@texair.net> <[🔎] 549c036f-fbb3-f990-deb3-4b47a57d38b2@physik.fu-berlin.de> <[🔎] 3FBD5838-E30A-4825-AD47-657F065062AE@texair.net> <[🔎] 8CDCF0F2-C2C2-4EED-ADD0-9E3889938908@texair.net> <[🔎] 6fc4b6d1-5c84-1eef-d7fa-952d9a09ee3f@physik.fu-berlin.de> <[🔎] 529EF8D2-F76E-4EC4-8642-ED7B0175E888@texair.net> <[🔎] fa5bc5de-09f3-c047-5eb3-0253ed6959f5@physik.fu-berlin.de> <[🔎] b1d000e5-1698-7f24-4d78-eced6c98e57b@web.de>


> On 2022/Apr/25, at 01:14, Frank Scheiner <frank.scheiner@web.de> wrote:
> 
> Hi guys,
> 
> On 25.04.22 10:09, John Paul Adrian Glaubitz wrote:
>>> From what I can understand by the information in the bugcheck, this is somewhat related to a violation
>>> in parameter copy from user to kernel during some boot-time, crypto, self-test. Does that sound right?
>>> If that is the case, how would this be related to FW?
>> 
>> I'm not claiming that it must be related to the firmware, I'm just saying that I don't see this problem
>> on my RX2660 at all and I have even reinstalled it recently with one of the latest firmware images
>> without having to pass any parameter to the command line.
> 
> A difference between Adrian's rx2660 and Pedro's rx2660 is Montecito
> left and Montvale right.
> 
> But could still be multiple other reasons we haven't looked at yet in
> detail:
> 
> * amount of memory installed
> * SMT enabled or not
> * number of processor modules installed
> 
> It might be possible for me to check on my rx2660s (one with Montvale
> and one with Montecito(s)) tomorrow. I will then also look at my other
> Itanium gear and gather relevant information.
> 

Yes, this sounds mode likely to me too.

The crypto self-tests seem to be an innocent bystander here. I tried booting the most recent kernel with the option “cryptomgr.notests” and it went much farther. Alas it still failed with another buffer copy validation for a different caller altogether:

[    3.836466]  [<a000000101353690>] usercopy_abort+0x120/0x130
[    3.836466]                                 sp=e0000001000cfdf0 bsp=e0000001000c9388
[    3.836466]  [<a0000001004c5660>] __check_object_size+0x3c0/0x420
[    3.836466]                                 sp=e0000001000cfe00 bsp=e0000001000c9350
[    3.836466]  [<a000000100570030>] sys_getcwd+0x250/0x420
[    3.836466]                                 sp=e0000001000cfe00 bsp=e0000001000c92c8
[    3.836466]  [<a00000010000c860>] ia64_ret_from_syscall+0x0/0x20
[    3.836466]                                 sp=e0000001000cfe30 bsp=e0000001000c92c8
[    3.836466]  [<a000000000040720>] ia64_ivt+0xffffffff00040720/0x400
[    3.836466]                                 sp=e0000001000d0000 bsp=e0000001000c92c8

This suggests the bug might be in the logic validating these buffers against the allocations (heap, span, etc).

I don’t know why hardened_usercopy=off is not being observed by the kernel. As a work-around I am copying myself a new kernel with CONFIG_HARDENED_USERCOPY disabled at the source. 

> Cheers,
> Frank

Reply to:

Follow-Ups:
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>

References:
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>
- Re: rx2660 + debian
  - From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>
- Re: rx2660 + debian
  - From: Anton Borisov <anton.borisov@gmail.com>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>
- Re: rx2660 + debian
  - From: Anton Borisov <anton.borisov@gmail.com>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
- Re: rx2660 + debian
  - From: Pedro Miguel Justo <pmsjt@texair.net>
- Re: rx2660 + debian
  - From: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
- Re: rx2660 + debian
  - From: Frank Scheiner <frank.scheiner@web.de>

Prev by Date: Re: rx2660 + debian
Next by Date: Re: rx2660 + debian
Previous by thread: Re: rx2660 + debian
Next by thread: Re: rx2660 + debian
Index(es):
- Date
- Thread