[Enter `^Ec?' for help] coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 bootblock starting... Family_Model: 00670f00 PMxC0 STATUS: 0x80800 DoReset BIT11 DW I2C bus 1 at 0xfedc3000 (400 KHz) VBOOT: Loading verstage. CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/verstage' CBFS: Found @ offset aa8c0 size d5a4 coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 verstage starting... Probing TPM I2C: done! DID_VID 0x00281ae0 TPM ready after 0 ms cr50 TPM 2.0 (i2c 1:0x50 id 0x28) TPM: setup succeeded src/security/tpm/tss/tcg-2.0/tss.c:177 index 0x1007 return code 0 Chrome EC: UHEPI supported Phase 1 FMAP: Found "FLASH" version 1.1 at d7f000. FMAP: base = ff000000 size = 1000000 #areas = 30 FMAP: area GBB found @ d80000 (458752 bytes) VB2:vb2_check_recovery() Recovery reason from previous boot: 0x0 / 0x0 VB2:vb2_check_recovery() Recovery was requested manually VB2:vb2_check_recovery() We have a recovery request: 0x2 / 0x0 Recovery requested (1009000e) tlcl_extend: response is 0 tlcl_extend: response is 0 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/romstage' CBFS: Found @ offset 80 size d2e4 coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 romstage starting... CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'smu_fw' CBFS: Found @ offset 7bc00 size 12262 PSP: Load blob type 19 from @ffe6bc38... OK Google Chrome set keyboard backlight: 4 status (0) POST: 0x37 agesawrapper_amdinitreset() entry CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'AGESA_PRE_MEM' CBFS: Found @ offset df80 size 53bcc agesawrapper_amdinitreset() returned AGESA_SUCCESS POST: 0x38 agesawrapper_amdinitearly() entry Warning - AGESA callout: platform_PcieSlotResetControl not supported Warning - AGESA callout: platform_PcieSlotResetControl not supported agesawrapper_amdinitearly() returned AGESA_SUCCESS POST: 0x40 agesawrapper_amdinitpost() entry DRAM clear on reset: Keep variant_mainboard_read_spd SPD index 9 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'spd.bin' CBFS: Found @ offset 79bc0 size 2000 AGESA set: umamode UMA_SPECIFIED : syslimit 0x12effffff, bottomio 0x00d00000 : uma size 16MB, uma start 0xcf000000 agesawrapper_amdinitpost() returned AGESA_SUCCESS POST: 0x41 Boot Count incremented to 139250 POST: 0x42 PSP: Notify that DRAM is available... OK POST: 0x43 CBMEM: IMD: root @ cdfff000 254 entries. IMD: root @ cdffec00 62 entries. External stage cache: IMD: root @ cefff000 254 entries. IMD: root @ ceffec00 62 entries. creating vboot_handoff structure Chrome EC: UHEPI supported Chrome EC: clear events_b mask to 0x0000000021004000 POST: 0x44 MTRR Range: Start=cd000000 End=ce000000 (Size 1000000) MTRR Range: Start=ff000000 End=0 (Size 1000000) MTRR Range: Start=ce800000 End=cf000000 (Size 800000) POST: 0x45 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/postcar' CBFS: Found @ offset a2a80 size 41f4 Decompressing stage fallback/postcar @ 0xcdfa1fc0 (33488 bytes) Loading module at cdfa2000 with entry cdfa2000. filesize: 0x3fd0 memsize: 0x8290 Processing 114 relocs. Offset value of 0xcbfa2000 coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 postcar starting... CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/ramstage' CBFS: Found @ offset 61bc0 size 17f95 Decompressing stage fallback/ramstage @ 0xcde9efc0 (1055256 bytes) Loading module at cde9f000 with entry cde9f000. filesize: 0x37198 memsize: 0x1019d8 Processing 3480 relocs. Offset value of 0xcdd9f000 coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 ramstage starting... POST: 0x39 FMAP: Found "FLASH" version 1.1 at d7f000. FMAP: base = ff000000 size = 1000000 #areas = 30 FMAP: area RO_VPD found @ c00000 (16384 bytes) WARNING: RO_VPD is uninitialized or empty. FMAP: area RW_VPD found @ 465000 (8192 bytes) FMAP: area RW_VPD found @ 465000 (8192 bytes) POST: 0x80 Normal boot. POST: 0x46 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'smu_fw2' CBFS: Found @ offset 8dec0 size 4cf2 PSP: Load blob type 1a from @ffe7def8... OK POST: 0x47 agesawrapper_amdinitenv() entry CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'AGESA_POST_MEM' CBFS: Found @ offset b7f00 size 135b2 Decompressing stage AGESA_POST_MEM @ 0xcde6cfc0 (198492 bytes) Loading module at cde6d000 with entry cde6d000. filesize: 0x2f340 memsize: 0x2f480 Processing 1271 relocs. Offset value of 0xce06d000 AGESA: Saving stage to cache Fch OEM config in INIT ENV Done agesawrapper_amdinitenv() returned AGESA_SUCCESS POST: 0x70 BS: BS_PRE_DEVICE times (us): entry 124092 run 1060 exit 0 POST: 0x71 Board ID: 6 mainboard: EC init Chrome EC: Set SMI mask to 0x0000000000000000 Chrome EC: UHEPI supported Chrome EC: Set S5 LAZY WAKE mask to 0x0000000000000006 Chrome EC: Set S3 LAZY WAKE mask to 0x0000000010001006 Chrome EC: Set WAKE mask to 0x0000000000000000 DW I2C bus 0 at 0xfedc2000 (400 KHz) DW I2C bus 2 at 0xfedc4000 (400 KHz) DW I2C bus 3 at 0xfedc5000 (400 KHz) FMAP: area RW_ELOG found @ 45d000 (16384 bytes) Manufacturer: ef SF: Detected W25Q128FW with sector size 0x1000, total 0x1000000 ELOG: NV offset 0x45d000 size 0x4000 ELOG: area is 4096 bytes, full threshold 3842, shrink size 1024 ELOG: Event(17) added with size 13 at 2024-06-26 03:54:00 UTC POST: Unexpected post code in previous boot: 0x90 ELOG: Event(A3) added with size 11 at 2024-06-26 03:54:00 UTC ELOG: Event(9F) added with size 14 at 2024-06-26 03:54:00 UTC PM1_STS: PWRBTN BMSTATUS setup_bsp_ramtop, TOP MEM: msr.lo = 0xd0000000, msr.hi = 0x00000000 setup_bsp_ramtop, TOP MEM2: msr.lo = 0x2f000000, msr.hi = 0x00000001 BS: BS_DEV_INIT_CHIPS times (us): entry 0 run 96399 exit 1 POST: 0x72 Enumerating buses... Show all devs... Before device enumeration. Root Device: enabled 1 CPU_CLUSTER: 0: enabled 1 DOMAIN: 0000: enabled 1 MMIO: fedc2000: enabled 1 MMIO: fedc3000: enabled 1 MMIO: fedc4000: enabled 1 MMIO: fedc5000: enabled 1 APIC: 10: enabled 1 PCI: 00:00.0: enabled 1 PCI: 00:00.2: enabled 0 PCI: 00:01.0: enabled 1 PCI: 00:01.1: enabled 1 PCI: 00:02.0: enabled 1 PCI: 00:02.1: enabled 1 PCI: 00:02.2: enabled 1 PCI: 00:02.3: enabled 1 PCI: 00:02.4: enabled 1 PCI: 00:02.5: enabled 1 PCI: 00:08.0: enabled 1 PCI: 00:09.0: enabled 1 PCI: 00:09.2: enabled 1 PCI: 00:10.0: enabled 1 PCI: 00:11.0: enabled 0 PCI: 00:12.0: enabled 1 PCI: 00:14.0: enabled 1 PCI: 00:14.3: enabled 1 PCI: 00:14.7: enabled 1 PCI: 00:18.0: enabled 1 PCI: 00:18.1: enabled 1 PCI: 00:18.2: enabled 1 PCI: 00:18.3: enabled 1 PCI: 00:18.4: enabled 1 PCI: 00:18.5: enabled 1 GENERIC: 0.0: enabled 1 I2C: 00:1a: enabled 1 GENERIC: 0.1: enabled 1 I2C: 00:50: enabled 1 I2C: 00:15: enabled 1 I2C: 00:39: enabled 1 I2C: 00:10: enabled 1 PCI: 00:00.0: enabled 1 PNP: 0c09.0: enabled 1 Compare with tree... Root Device: enabled 1 CPU_CLUSTER: 0: enabled 1 APIC: 10: enabled 1 DOMAIN: 0000: enabled 1 PCI: 00:00.0: enabled 1 PCI: 00:00.2: enabled 0 PCI: 00:01.0: enabled 1 PCI: 00:01.1: enabled 1 PCI: 00:02.0: enabled 1 PCI: 00:02.1: enabled 1 PCI: 00:02.2: enabled 1 PCI: 00:02.3: enabled 1 PCI: 00:02.4: enabled 1 PCI: 00:00.0: enabled 1 PCI: 00:02.5: enabled 1 PCI: 00:08.0: enabled 1 PCI: 00:09.0: enabled 1 PCI: 00:09.2: enabled 1 PCI: 00:10.0: enabled 1 PCI: 00:11.0: enabled 0 PCI: 00:12.0: enabled 1 PCI: 00:14.0: enabled 1 PCI: 00:14.3: enabled 1 PNP: 0c09.0: enabled 1 PCI: 00:14.7: enabled 1 PCI: 00:18.0: enabled 1 PCI: 00:18.1: enabled 1 PCI: 00:18.2: enabled 1 PCI: 00:18.3: enabled 1 PCI: 00:18.4: enabled 1 PCI: 00:18.5: enabled 1 MMIO: fedc2000: enabled 1 GENERIC: 0.0: enabled 1 I2C: 00:1a: enabled 1 GENERIC: 0.1: enabled 1 MMIO: fedc3000: enabled 1 I2C: 00:50: enabled 1 MMIO: fedc4000: enabled 1 I2C: 00:15: enabled 1 MMIO: fedc5000: enabled 1 I2C: 00:39: enabled 1 I2C: 00:10: enabled 1 Mainboard Grunt Enable. Root Device scanning... root_dev_scan_bus for Root Device CPU_CLUSTER: 0 enabled DOMAIN: 0000 enabled MMIO: fedc2000 enabled MMIO: fedc3000 enabled MMIO: fedc4000 enabled MMIO: fedc5000 enabled DOMAIN: 0000 scanning... PCI: pci_scan_bus for bus 00 POST: 0x24 sb_enable PCI: 00:00.0 [1022/1576] enabled sb_enable sb_enable PCI: 00:01.0 [1002/98e4] enabled sb_enable PCI: 00:01.1 [1002/15b3] enabled sb_enable PCI: 00:02.0 [1022/157b] enabled sb_enable PCI: Static device PCI: 00:02.1 not found, disabling it. sb_enable Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 Capability: type 0x05 @ 0xa0 Capability: type 0x0d @ 0xc0 Capability: type 0x08 @ 0xc8 Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 PCI: 00:02.2 subordinate bus PCI Express PCI: 00:02.2 [1022/157c] enabled sb_enable PCI: Static device PCI: 00:02.3 not found, disabling it. sb_enable Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 Capability: type 0x05 @ 0xa0 Capability: type 0x0d @ 0xc0 Capability: type 0x08 @ 0xc8 Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 PCI: 00:02.4 subordinate bus PCI Express PCI: 00:02.4 [1022/157c] enabled sb_enable PCI: Static device PCI: 00:02.5 not found, disabling it. PCI: 00:03.0 [1022/157b] enabled sb_enable PCI: 00:08.0 [1022/1578] enabled sb_enable PCI: 00:09.0 [1022/157d] enabled sb_enable PCI: Static device PCI: 00:09.2 not found, disabling it. sb_enable PCI: 00:10.0 [1022/0000] bus ops PCI: 00:10.0 [1022/7914] enabled sb_enable sb_enable PCI: 00:12.0 [1022/0000] bus ops PCI: 00:12.0 [1022/7908] enabled sb_enable PCI: 00:14.0 [1022/790b] bus ops PCI: 00:14.0 [1022/790b] enabled sb_enable PCI: 00:14.3 [1022/0000] bus ops PCI: 00:14.3 [1022/790e] enabled sb_enable PCI: 00:14.7 [1022/7906] enabled sb_enable PCI: 00:18.0 [1022/15b0] ops PCI: 00:18.0 [1022/15b0] enabled sb_enable PCI: 00:18.1 [1022/15b1] enabled sb_enable PCI: 00:18.2 [1022/15b2] enabled sb_enable PCI: 00:18.3 [1022/15b3] enabled sb_enable PCI: 00:18.4 [1022/15b4] enabled sb_enable PCI: 00:18.5 [1022/15b5] enabled POST: 0x25 PCI: 00:02.2 scanning... do_pci_scan_bridge for PCI: 00:02.2 PCI: pci_scan_bus for bus 01 POST: 0x24 PCI: 01:00.0 [168c/003e] enabled POST: 0x25 POST: 0x55 Capability: type 0x01 @ 0x40 Capability: type 0x05 @ 0x50 Capability: type 0x10 @ 0x70 Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 Enabling Common Clock Configuration ASPM: Enabled L0s and L1 Capability: type 0x01 @ 0x40 Capability: type 0x05 @ 0x50 Capability: type 0x10 @ 0x70 scan_bus: scanning of bus PCI: 00:02.2 took 40757 usecs PCI: 00:02.4 scanning... do_pci_scan_bridge for PCI: 00:02.4 PCI: pci_scan_bus for bus 02 POST: 0x24 PCI: 02:00.0 [1217/0000] ops PCI: 02:00.0 [1217/8620] enabled POST: 0x25 POST: 0x55 Capability: type 0x01 @ 0x6c Capability: type 0x05 @ 0x48 Capability: type 0x10 @ 0x80 Capability: type 0x01 @ 0x50 Capability: type 0x10 @ 0x58 ASPM: Enabled L0s and L1 Capability: type 0x01 @ 0x6c Capability: type 0x05 @ 0x48 Capability: type 0x10 @ 0x80 scan_bus: scanning of bus PCI: 00:02.4 took 40325 usecs PCI: 00:10.0 scanning... scan_usb_bus for PCI: 00:10.0 scan_usb_bus for PCI: 00:10.0 done scan_bus: scanning of bus PCI: 00:10.0 took 8113 usecs PCI: 00:12.0 scanning... scan_usb_bus for PCI: 00:12.0 scan_usb_bus for PCI: 00:12.0 done scan_bus: scanning of bus PCI: 00:12.0 took 8111 usecs PCI: 00:14.0 scanning... scan_generic_bus for PCI: 00:14.0 scan_generic_bus for PCI: 00:14.0 done scan_bus: scanning of bus PCI: 00:14.0 took 8802 usecs PCI: 00:14.3 scanning... scan_lpc_bus for PCI: 00:14.3 PNP: 0c09.0 enabled scan_lpc_bus for PCI: 00:14.3 done scan_bus: scanning of bus PCI: 00:14.3 took 9944 usecs POST: 0x55 scan_bus: scanning of bus DOMAIN: 0000 took 315106 usecs MMIO: fedc2000 scanning... scan_generic_bus for MMIO: fedc2000 bus: MMIO: fedc2000[0]->GENERIC: 0.0 enabled bus: MMIO: fedc2000[0]->I2C: 01:1a enabled bus: MMIO: fedc2000[0]->GENERIC: 0.1 enabled scan_generic_bus for MMIO: fedc2000 done scan_bus: scanning of bus MMIO: fedc2000 took 21203 usecs MMIO: fedc3000 scanning... scan_generic_bus for MMIO: fedc3000 bus: MMIO: fedc3000[0]->I2C: 02:50 enabled scan_generic_bus for MMIO: fedc3000 done scan_bus: scanning of bus MMIO: fedc3000 took 13150 usecs MMIO: fedc4000 scanning... scan_generic_bus for MMIO: fedc4000 bus: MMIO: fedc4000[0]->I2C: 03:15 enabled scan_generic_bus for MMIO: fedc4000 done scan_bus: scanning of bus MMIO: fedc4000 took 13171 usecs MMIO: fedc5000 scanning... scan_generic_bus for MMIO: fedc5000 bus: MMIO: fedc5000[0]->I2C: 04:39 enabled bus: MMIO: fedc5000[0]->I2C: 04:10 enabled scan_generic_bus for MMIO: fedc5000 done scan_bus: scanning of bus MMIO: fedc5000 took 16983 usecs root_dev_scan_bus for Root Device done scan_bus: scanning of bus Root Device took 426198 usecs done BS: BS_DEV_ENUMERATE times (us): entry 0 run 631130 exit 0 POST: 0x73 found VGA at PCI: 00:01.0 Setting up VGA for PCI: 00:01.0 Setting PCI_BRIDGE_CTL_VGA for bridge DOMAIN: 0000 Setting PCI_BRIDGE_CTL_VGA for bridge Root Device Allocating resources... Reading resources... Root Device read_resources bus 0 link: 0 CPU_CLUSTER: 0 read_resources bus 0 link: 0 CPU_CLUSTER: 0 read_resources bus 0 link: 0 done DOMAIN: 0000 read_resources bus 0 link: 0 PCI: 00:02.2 read_resources bus 1 link: 0 PCI: 00:02.2 read_resources bus 1 link: 0 done PCI: 00:02.4 read_resources bus 2 link: 0 PCI: 00:02.4 read_resources bus 2 link: 0 done PCI: 00:14.3 read_resources bus 0 link: 0 PCI: 00:14.3 read_resources bus 0 link: 0 done Adding PCIe enhanced config space BAR 0xf8000000-0xfc000000. DOMAIN: 0000 read_resources bus 0 link: 0 done MMIO: fedc2000 read_resources bus 1 link: 0 MMIO: fedc2000 read_resources bus 1 link: 0 done MMIO: fedc3000 read_resources bus 2 link: 0 MMIO: fedc3000 read_resources bus 2 link: 0 done MMIO: fedc4000 read_resources bus 3 link: 0 MMIO: fedc4000 read_resources bus 3 link: 0 done MMIO: fedc5000 read_resources bus 4 link: 0 MMIO: fedc5000 read_resources bus 4 link: 0 done Root Device read_resources bus 0 link: 0 done Done reading resources. Show resources in subtree (Root Device)...After reading. Root Device child on link 0 CPU_CLUSTER: 0 CPU_CLUSTER: 0 child on link 0 APIC: 10 APIC: 10 DOMAIN: 0000 child on link 0 PCI: 00:00.0 DOMAIN: 0000 resource base 0 size 0 align 0 gran 0 limit ffff flags 40040100 index 10000000 DOMAIN: 0000 resource base 0 size 0 align 0 gran 0 limit ffffffff flags 40040200 index 10000100 PCI: 00:00.0 PCI: 00:00.2 PCI: 00:01.0 PCI: 00:01.0 resource base 0 size 4000000 align 26 gran 26 limit ffffffffffffffff flags 1201 index 10 PCI: 00:01.0 resource base 0 size 800000 align 23 gran 23 limit ffffffffffffffff flags 1201 index 18 PCI: 00:01.0 resource base 0 size 100 align 8 gran 8 limit ffff flags 100 index 20 PCI: 00:01.0 resource base 0 size 40000 align 18 gran 18 limit ffffffff flags 200 index 24 PCI: 00:01.0 resource base 0 size 20000 align 17 gran 17 limit ffffffff flags 2200 index 30 PCI: 00:01.1 PCI: 00:01.1 resource base 0 size 4000 align 14 gran 14 limit ffffffffffffffff flags 201 index 10 PCI: 00:02.0 PCI: 00:02.1 PCI: 00:02.2 child on link 0 PCI: 01:00.0 PCI: 00:02.2 resource base 0 size 0 align 12 gran 12 limit ffffffff flags 80102 index 1c PCI: 00:02.2 resource base 0 size 0 align 20 gran 20 limit ffffffffffffffff flags 81202 index 24 PCI: 00:02.2 resource base 0 size 0 align 20 gran 20 limit ffffffff flags 80202 index 20 PCI: 01:00.0 PCI: 01:00.0 resource base 0 size 200000 align 21 gran 21 limit ffffffffffffffff flags 201 index 10 PCI: 00:02.3 PCI: 00:02.4 child on link 0 PCI: 02:00.0 PCI: 00:02.4 resource base 0 size 0 align 12 gran 12 limit ffffffff flags 80102 index 1c PCI: 00:02.4 resource base 0 size 0 align 20 gran 20 limit ffffffffffffffff flags 81202 index 24 PCI: 00:02.4 resource base 0 size 0 align 20 gran 20 limit ffffffff flags 80202 index 20 PCI: 02:00.0 PCI: 02:00.0 resource base 0 size 1000 align 12 gran 12 limit ffffffff flags 200 index 10 PCI: 02:00.0 resource base 0 size 800 align 12 gran 11 limit ffffffff flags 200 index 14 PCI: 00:02.5 PCI: 00:03.0 PCI: 00:08.0 PCI: 00:08.0 resource base 0 size 20000 align 17 gran 17 limit ffffffffffffffff flags 1201 index 10 PCI: 00:08.0 resource base 0 size 100000 align 20 gran 20 limit ffffffff flags 200 index 18 PCI: 00:08.0 resource base 0 size 1000 align 12 gran 12 limit ffffffff flags 200 index 1c PCI: 00:08.0 resource base 0 size 100000 align 20 gran 20 limit ffffffff flags 200 index 20 PCI: 00:08.0 resource base 0 size 2000 align 13 gran 13 limit ffffffff flags 200 index 24 PCI: 00:09.0 PCI: 00:09.2 PCI: 00:10.0 PCI: 00:10.0 resource base 0 size 2000 align 13 gran 13 limit ffffffffffffffff flags 201 index 10 PCI: 00:11.0 PCI: 00:12.0 PCI: 00:12.0 resource base 0 size 100 align 12 gran 8 limit ffffffff flags 200 index 10 PCI: 00:14.0 PCI: 00:14.3 child on link 0 PNP: 0c09.0 PCI: 00:14.3 resource base 0 size 1000 align 0 gran 0 limit 0 flags c0040100 index 10000000 PCI: 00:14.3 resource base ff000000 size 1000000 align 0 gran 0 limit 0 flags c0040200 index 10000100 PCI: 00:14.3 resource base fec10000 size 400 align 0 gran 0 limit 0 flags e0040200 index 2 PCI: 00:14.3 resource base fec00000 size 1000 align 0 gran 0 limit 0 flags c0000200 index 3 PCI: 00:14.3 resource base fedc2000 size 4000 align 0 gran 0 limit 0 flags c0000200 index 4 PNP: 0c09.0 PNP: 0c09.0 resource base 800 size 1ff align 0 gran 0 limit 0 flags c0000100 index 0 PCI: 00:14.7 PCI: 00:14.7 resource base 0 size 100 align 12 gran 8 limit ffffffffffffffff flags 201 index 10 PCI: 00:18.0 PCI: 00:18.0 resource base f8000000 size 4000000 align 0 gran 0 limit 0 flags f0000200 index c0010058 PCI: 00:18.0 resource base fec20000 size 1000 align 0 gran 0 limit 0 flags c0000200 index fec20000 PCI: 00:18.1 PCI: 00:18.2 PCI: 00:18.3 PCI: 00:18.4 PCI: 00:18.5 MMIO: fedc2000 child on link 0 GENERIC: 0.0 GENERIC: 0.0 I2C: 01:1a GENERIC: 0.1 MMIO: fedc3000 child on link 0 I2C: 02:50 I2C: 02:50 MMIO: fedc4000 child on link 0 I2C: 03:15 I2C: 03:15 MMIO: fedc5000 child on link 0 I2C: 04:39 I2C: 04:39 I2C: 04:10 DOMAIN: 0000 io: base: 0 size: 0 align: 0 gran: 0 limit: ffff PCI: 00:02.2 io: base: 0 size: 0 align: 12 gran: 12 limit: ffffffff PCI: 00:02.2 io: base: 0 size: 0 align: 12 gran: 12 limit: ffffffff done PCI: 00:02.4 io: base: 0 size: 0 align: 12 gran: 12 limit: ffffffff PCI: 00:02.4 io: base: 0 size: 0 align: 12 gran: 12 limit: ffffffff done PCI: 00:01.0 20 * [0x0 - 0xff] io DOMAIN: 0000 io: base: 100 size: 100 align: 8 gran: 0 limit: ffff done DOMAIN: 0000 mem: base: 0 size: 0 align: 0 gran: 0 limit: ffffffff PCI: 00:02.2 prefmem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffffffffffff PCI: 00:02.2 prefmem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffffffffffff done PCI: 00:02.2 mem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffff PCI: 01:00.0 10 * [0x0 - 0x1fffff] mem PCI: 00:02.2 mem: base: 200000 size: 200000 align: 21 gran: 20 limit: ffffffff done PCI: 00:02.4 prefmem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffffffffffff PCI: 00:02.4 prefmem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffffffffffff done PCI: 00:02.4 mem: base: 0 size: 0 align: 20 gran: 20 limit: ffffffff PCI: 02:00.0 10 * [0x0 - 0xfff] mem PCI: 02:00.0 14 * [0x1000 - 0x17ff] mem PCI: 00:02.4 mem: base: 1800 size: 100000 align: 20 gran: 20 limit: ffffffff done PCI: 00:01.0 10 * [0x0 - 0x3ffffff] prefmem PCI: 00:01.0 18 * [0x4000000 - 0x47fffff] prefmem PCI: 00:02.2 20 * [0x4800000 - 0x49fffff] mem PCI: 00:02.4 20 * [0x4a00000 - 0x4afffff] mem PCI: 00:08.0 18 * [0x4b00000 - 0x4bfffff] mem PCI: 00:08.0 20 * [0x4c00000 - 0x4cfffff] mem PCI: 00:01.0 24 * [0x4d00000 - 0x4d3ffff] mem PCI: 00:01.0 30 * [0x4d40000 - 0x4d5ffff] mem PCI: 00:08.0 10 * [0x4d60000 - 0x4d7ffff] prefmem PCI: 00:01.1 10 * [0x4d80000 - 0x4d83fff] mem PCI: 00:08.0 24 * [0x4d84000 - 0x4d85fff] mem PCI: 00:10.0 10 * [0x4d86000 - 0x4d87fff] mem PCI: 00:08.0 1c * [0x4d88000 - 0x4d88fff] mem PCI: 00:12.0 10 * [0x4d89000 - 0x4d890ff] mem PCI: 00:14.7 10 * [0x4d8a000 - 0x4d8a0ff] mem DOMAIN: 0000 mem: base: 4d8a100 size: 4d8a100 align: 26 gran: 0 limit: ffffffff done avoid_fixed_resources: DOMAIN: 0000 avoid_fixed_resources:@DOMAIN: 0000 10000000 limit 0000ffff avoid_fixed_resources:@DOMAIN: 0000 10000100 limit ffffffff constrain_resources: PCI: 00:14.3 10000000 base 00000000 limit 00000fff io (fixed) constrain_resources: PCI: 00:14.3 10000100 base ff000000 limit ffffffff mem (fixed) constrain_resources: PCI: 00:14.3 02 base fec10000 limit fec103ff mem (fixed) constrain_resources: PCI: 00:14.3 03 base fec00000 limit fec00fff mem (fixed) constrain_resources: PCI: 00:18.0 c0010058 base f8000000 limit fbffffff mem (fixed) avoid_fixed_resources:@DOMAIN: 0000 10000000 base 00001000 limit 0000ffff avoid_fixed_resources:@DOMAIN: 0000 10000100 base f0000000 limit f7ffffff Setting resources... DOMAIN: 0000 io: base:1000 size:100 align:8 gran:0 limit:ffff PCI: 00:01.0 20 * [0x1000 - 0x10ff] io DOMAIN: 0000 io: next_base: 1100 size: 100 align: 8 gran: 0 done PCI: 00:02.2 io: base:ffff size:0 align:12 gran:12 limit:ffff PCI: 00:02.2 io: next_base: ffff size: 0 align: 12 gran: 12 done PCI: 00:02.4 io: base:ffff size:0 align:12 gran:12 limit:ffff PCI: 00:02.4 io: next_base: ffff size: 0 align: 12 gran: 12 done DOMAIN: 0000 mem: base:f0000000 size:4d8a100 align:26 gran:0 limit:f7ffffff PCI: 00:01.0 10 * [0xf0000000 - 0xf3ffffff] prefmem PCI: 00:01.0 18 * [0xf4000000 - 0xf47fffff] prefmem PCI: 00:02.2 20 * [0xf4800000 - 0xf49fffff] mem PCI: 00:02.4 20 * [0xf4a00000 - 0xf4afffff] mem PCI: 00:08.0 18 * [0xf4b00000 - 0xf4bfffff] mem PCI: 00:08.0 20 * [0xf4c00000 - 0xf4cfffff] mem PCI: 00:01.0 24 * [0xf4d00000 - 0xf4d3ffff] mem PCI: 00:01.0 30 * [0xf4d40000 - 0xf4d5ffff] mem PCI: 00:08.0 10 * [0xf4d60000 - 0xf4d7ffff] prefmem PCI: 00:01.1 10 * [0xf4d80000 - 0xf4d83fff] mem PCI: 00:08.0 24 * [0xf4d84000 - 0xf4d85fff] mem PCI: 00:10.0 10 * [0xf4d86000 - 0xf4d87fff] mem PCI: 00:08.0 1c * [0xf4d88000 - 0xf4d88fff] mem PCI: 00:12.0 10 * [0xf4d89000 - 0xf4d890ff] mem PCI: 00:14.7 10 * [0xf4d8a000 - 0xf4d8a0ff] mem DOMAIN: 0000 mem: next_base: f4d8a100 size: 4d8a100 align: 26 gran: 0 done PCI: 00:02.2 prefmem: base:f7ffffff size:0 align:20 gran:20 limit:f7ffffff PCI: 00:02.2 prefmem: next_base: f7ffffff size: 0 align: 20 gran: 20 done PCI: 00:02.2 mem: base:f4800000 size:200000 align:21 gran:20 limit:f49fffff PCI: 01:00.0 10 * [0xf4800000 - 0xf49fffff] mem PCI: 00:02.2 mem: next_base: f4a00000 size: 200000 align: 21 gran: 20 done PCI: 00:02.4 prefmem: base:f7ffffff size:0 align:20 gran:20 limit:f7ffffff PCI: 00:02.4 prefmem: next_base: f7ffffff size: 0 align: 20 gran: 20 done PCI: 00:02.4 mem: base:f4a00000 size:100000 align:20 gran:20 limit:f4afffff PCI: 02:00.0 10 * [0xf4a00000 - 0xf4a00fff] mem PCI: 02:00.0 14 * [0xf4a01000 - 0xf4a017ff] mem PCI: 00:02.4 mem: next_base: f4a01800 size: 100000 align: 20 gran: 20 done Root Device assign_resources, bus 0 link: 0 DOMAIN: 0000 assign_resources, bus 0 link: 0 PCI: 00:01.0 10 <- [0x00f0000000 - 0x00f3ffffff] size 0x04000000 gran 0x1a prefmem64 PCI: 00:01.0 18 <- [0x00f4000000 - 0x00f47fffff] size 0x00800000 gran 0x17 prefmem64 PCI: 00:01.0 20 <- [0x0000001000 - 0x00000010ff] size 0x00000100 gran 0x08 io PCI: 00:01.0 24 <- [0x00f4d00000 - 0x00f4d3ffff] size 0x00040000 gran 0x12 mem PCI: 00:01.0 30 <- [0x00f4d40000 - 0x00f4d5ffff] size 0x00020000 gran 0x11 romem PCI: 00:01.1 10 <- [0x00f4d80000 - 0x00f4d83fff] size 0x00004000 gran 0x0e mem64 PCI: 00:02.2 1c <- [0x000000ffff - 0x000000fffe] size 0x00000000 gran 0x0c bus 01 io PCI: 00:02.2 24 <- [0x00f7ffffff - 0x00f7fffffe] size 0x00000000 gran 0x14 bus 01 prefmem PCI: 00:02.2 20 <- [0x00f4800000 - 0x00f49fffff] size 0x00200000 gran 0x14 bus 01 mem PCI: 00:02.2 assign_resources, bus 1 link: 0 PCI: 01:00.0 10 <- [0x00f4800000 - 0x00f49fffff] size 0x00200000 gran 0x15 mem64 PCI: 00:02.2 assign_resources, bus 1 link: 0 PCI: 00:02.4 1c <- [0x000000ffff - 0x000000fffe] size 0x00000000 gran 0x0c bus 02 io PCI: 00:02.4 24 <- [0x00f7ffffff - 0x00f7fffffe] size 0x00000000 gran 0x14 bus 02 prefmem PCI: 00:02.4 20 <- [0x00f4a00000 - 0x00f4afffff] size 0x00100000 gran 0x14 bus 02 mem PCI: 00:02.4 assign_resources, bus 2 link: 0 PCI: 02:00.0 10 <- [0x00f4a00000 - 0x00f4a00fff] size 0x00001000 gran 0x0c mem PCI: 02:00.0 14 <- [0x00f4a01000 - 0x00f4a017ff] size 0x00000800 gran 0x0b mem PCI: 00:02.4 assign_resources, bus 2 link: 0 PCI: 00:08.0 10 <- [0x00f4d60000 - 0x00f4d7ffff] size 0x00020000 gran 0x11 prefmem64 PCI: 00:08.0 18 <- [0x00f4b00000 - 0x00f4bfffff] size 0x00100000 gran 0x14 mem PCI: 00:08.0 1c <- [0x00f4d88000 - 0x00f4d88fff] size 0x00001000 gran 0x0c mem PCI: 00:08.0 20 <- [0x00f4c00000 - 0x00f4cfffff] size 0x00100000 gran 0x14 mem PCI: 00:08.0 24 <- [0x00f4d84000 - 0x00f4d85fff] size 0x00002000 gran 0x0d mem PCI: 00:10.0 10 <- [0x00f4d86000 - 0x00f4d87fff] size 0x00002000 gran 0x0d mem64 PCI: 00:12.0 10 <- [0x00f4d89000 - 0x00f4d890ff] size 0x00000100 gran 0x08 mem PCI: 00:14.3 assign_resources, bus 0 link: 0 PCI: 00:14.3 assign_resources, bus 0 link: 0 PCI: 00:14.7 10 <- [0x00f4d8a000 - 0x00f4d8a0ff] size 0x00000100 gran 0x08 mem64 DOMAIN: 0000 assign_resources, bus 0 link: 0 Root Device assign_resources, bus 0 link: 0 Done setting resources. Show resources in subtree (Root Device)...After assigning values. Root Device child on link 0 CPU_CLUSTER: 0 CPU_CLUSTER: 0 child on link 0 APIC: 10 APIC: 10 DOMAIN: 0000 child on link 0 PCI: 00:00.0 DOMAIN: 0000 resource base 1000 size 100 align 8 gran 0 limit ffff flags 40040100 index 10000000 DOMAIN: 0000 resource base f0000000 size 4d8a100 align 26 gran 0 limit f7ffffff flags 40040200 index 10000100 DOMAIN: 0000 resource base 0 size a0000 align 0 gran 0 limit 0 flags e0004200 index 10 DOMAIN: 0000 resource base a0000 size 20000 align 0 gran 0 limit 0 flags f0000200 index 11 DOMAIN: 0000 resource base c0000 size 40000 align 0 gran 0 limit 0 flags f0004200 index 12 DOMAIN: 0000 resource base 100000 size cdf00000 align 0 gran 0 limit 0 flags e0004200 index 13 DOMAIN: 0000 resource base ce000000 size 2000000 align 0 gran 0 limit 0 flags f0004200 index 14 DOMAIN: 0000 resource base 100000000 size 2f000000 align 0 gran 0 limit 0 flags e0004200 index 15 PCI: 00:00.0 PCI: 00:00.2 PCI: 00:01.0 PCI: 00:01.0 resource base f0000000 size 4000000 align 26 gran 26 limit f3ffffff flags 60001201 index 10 PCI: 00:01.0 resource base f4000000 size 800000 align 23 gran 23 limit f47fffff flags 60001201 index 18 PCI: 00:01.0 resource base 1000 size 100 align 8 gran 8 limit 10ff flags 60000100 index 20 PCI: 00:01.0 resource base f4d00000 size 40000 align 18 gran 18 limit f4d3ffff flags 60000200 index 24 PCI: 00:01.0 resource base f4d40000 size 20000 align 17 gran 17 limit f4d5ffff flags 60002200 index 30 PCI: 00:01.1 PCI: 00:01.1 resource base f4d80000 size 4000 align 14 gran 14 limit f4d83fff flags 60000201 index 10 PCI: 00:02.0 PCI: 00:02.1 PCI: 00:02.2 child on link 0 PCI: 01:00.0 PCI: 00:02.2 resource base ffff size 0 align 12 gran 12 limit ffff flags 60080102 index 1c PCI: 00:02.2 resource base f7ffffff size 0 align 20 gran 20 limit f7ffffff flags 60081202 index 24 PCI: 00:02.2 resource base f4800000 size 200000 align 21 gran 20 limit f49fffff flags 60080202 index 20 PCI: 01:00.0 PCI: 01:00.0 resource base f4800000 size 200000 align 21 gran 21 limit f49fffff flags 60000201 index 10 PCI: 00:02.3 PCI: 00:02.4 child on link 0 PCI: 02:00.0 PCI: 00:02.4 resource base ffff size 0 align 12 gran 12 limit ffff flags 60080102 index 1c PCI: 00:02.4 resource base f7ffffff size 0 align 20 gran 20 limit f7ffffff flags 60081202 index 24 PCI: 00:02.4 resource base f4a00000 size 100000 align 20 gran 20 limit f4afffff flags 60080202 index 20 PCI: 02:00.0 PCI: 02:00.0 resource base f4a00000 size 1000 align 12 gran 12 limit f4a00fff flags 60000200 index 10 PCI: 02:00.0 resource base f4a01000 size 800 align 12 gran 11 limit f4a017ff flags 60000200 index 14 PCI: 00:02.5 PCI: 00:03.0 PCI: 00:08.0 PCI: 00:08.0 resource base f4d60000 size 20000 align 17 gran 17 limit f4d7ffff flags 60001201 index 10 PCI: 00:08.0 resource base f4b00000 size 100000 align 20 gran 20 limit f4bfffff flags 60000200 index 18 PCI: 00:08.0 resource base f4d88000 size 1000 align 12 gran 12 limit f4d88fff flags 60000200 index 1c PCI: 00:08.0 resource base f4c00000 size 100000 align 20 gran 20 limit f4cfffff flags 60000200 index 20 PCI: 00:08.0 resource base f4d84000 size 2000 align 13 gran 13 limit f4d85fff flags 60000200 index 24 PCI: 00:09.0 PCI: 00:09.2 PCI: 00:10.0 PCI: 00:10.0 resource base f4d86000 size 2000 align 13 gran 13 limit f4d87fff flags 60000201 index 10 PCI: 00:11.0 PCI: 00:12.0 PCI: 00:12.0 resource base f4d89000 size 100 align 12 gran 8 limit f4d890ff flags 60000200 index 10 PCI: 00:14.0 PCI: 00:14.3 child on link 0 PNP: 0c09.0 PCI: 00:14.3 resource base 0 size 1000 align 0 gran 0 limit 0 flags c0040100 index 10000000 PCI: 00:14.3 resource base ff000000 size 1000000 align 0 gran 0 limit 0 flags c0040200 index 10000100 PCI: 00:14.3 resource base fec10000 size 400 align 0 gran 0 limit 0 flags e0040200 index 2 PCI: 00:14.3 resource base fec00000 size 1000 align 0 gran 0 limit 0 flags c0000200 index 3 PCI: 00:14.3 resource base fedc2000 size 4000 align 0 gran 0 limit 0 flags c0000200 index 4 PNP: 0c09.0 PNP: 0c09.0 resource base 800 size 1ff align 0 gran 0 limit 0 flags c0000100 index 0 PCI: 00:14.7 PCI: 00:14.7 resource base f4d8a000 size 100 align 12 gran 8 limit f4d8a0ff flags 60000201 index 10 PCI: 00:18.0 PCI: 00:18.0 resource base f8000000 size 4000000 align 0 gran 0 limit 0 flags f0000200 index c0010058 PCI: 00:18.0 resource base fec20000 size 1000 align 0 gran 0 limit 0 flags c0000200 index fec20000 PCI: 00:18.1 PCI: 00:18.2 PCI: 00:18.3 PCI: 00:18.4 PCI: 00:18.5 MMIO: fedc2000 child on link 0 GENERIC: 0.0 GENERIC: 0.0 I2C: 01:1a GENERIC: 0.1 MMIO: fedc3000 child on link 0 I2C: 02:50 I2C: 02:50 MMIO: fedc4000 child on link 0 I2C: 03:15 I2C: 03:15 MMIO: fedc5000 child on link 0 I2C: 04:39 I2C: 04:39 I2C: 04:10 Done allocating resources. BS: BS_DEV_RESOURCES times (us): entry 0 run 1563821 exit 0 PCI_INTR tables: Writing registers C00/C01 for PCI IRQ routing: PCI_INTR_INDEX name PIC mode APIC mode 0x00 INTA# 0x03 0x10 0x01 INTB# 0x04 0x11 0x02 INTC# 0x05 0x12 0x03 INTD# 0x07 0x13 0x04 INTE# 0x0B 0x14 0x05 INTF# 0x1F 0x1F 0x06 INTG# 0x1F 0x16 0x07 INTH# 0x1F 0x17 0x08 Misc 0xFA 0x00 0x09 Misc0 0xF1 0x00 0x0A Misc1 0x00 0x00 0x0B Misc2 0x00 0x00 0x0C Ser IRQ INTA 0x1F 0x1F 0x0D Ser IRQ INTB 0x1F 0x1F 0x0E Ser IRQ INTC 0x1F 0x1F 0x0F Ser IRQ INTD 0x1F 0x1F 0x10 SCI 0x09 0x09 0x11 SMBUS 0x1F 0x1F 0x12 ASF 0x1F 0x1F 0x13 HDA 0x03 0x10 0x14 FC 0x1F 0x1F 0x16 PerMon 0x1F 0x1F 0x17 SD 0x03 0x10 0x1A SDIOt 0x00 0x1F 0x30 EHCI 0x05 0x12 0x34 XHCI 0x04 0x12 0x41 SATA 0x07 0x13 0x62 GPIO 0x07 0x07 0x70 I2C0 0x03 0x03 0x71 I2C1 0x0F 0x0F 0x72 I2C2 0x06 0x06 0x73 I2C3 0x0E 0x0E 0x74 UART0 0x0A 0x0A 0x75 UART1 0x0B 0x0B PCI_CFG IRQ: Write PCI config space IRQ assignments PCI IRQ: Found device 0:01.00 using PIN A PCI Devfn (0x8) not found in pirq_data table PCI IRQ: Found device 0:01.01 using PIN B Found this device in pirq_data table entry 5 Orig INT_PIN : 2 (PIN B) PCI_INTR idx : 0x13 (HDA) INT_LINE : 0x3 (IRQ 3) PCI IRQ: Found device 0:02.02 using PIN A Found this device in pirq_data table entry 1 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x01 (INTB#) INT_LINE : 0x4 (IRQ 4) PCI IRQ: Found device 0:02.04 using PIN A Found this device in pirq_data table entry 3 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x03 (INTD#) INT_LINE : 0x7 (IRQ 7) PCI IRQ: Found device 0:08.00 using PIN A PCI Devfn (0x40) not found in pirq_data table PCI IRQ: Found device 0:10.00 using PIN A Found this device in pirq_data table entry 10 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x34 (XHCI) INT_LINE : 0x4 (IRQ 4) PCI IRQ: Found device 0:12.00 using PIN A Found this device in pirq_data table entry 9 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x30 (EHCI) INT_LINE : 0x5 (IRQ 5) PCI IRQ: Found device 0:14.07 using PIN A Found this device in pirq_data table entry 6 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x17 (SD) INT_LINE : 0x3 (IRQ 3) PCI IRQ: Found device 2:00.00 using PIN A With INT_PIN swizzled to PIN A Attached to bridge device 0:02h.04h Found this device in pirq_data table entry 3 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x03 (INTD#) INT_LINE : 0x7 (IRQ 7) PCI IRQ: Found device 1:00.00 using PIN A With INT_PIN swizzled to PIN A Attached to bridge device 0:02h.02h Found this device in pirq_data table entry 1 Orig INT_PIN : 1 (PIN A) PCI_INTR idx : 0x01 (INTB#) INT_LINE : 0x4 (IRQ 4) PCI_CFG IRQ: Finished writing PCI config space IRQ assignments POST: 0x74 Enabling resources... agesawrapper_amdinitmid() entry agesawrapper_amdinitmid() returned AGESA_SUCCESS PCI: 00:00.0 subsystem <- 1022/1576 PCI: 00:00.0 cmd <- 04 PCI: 00:01.0 subsystem <- 1002/98e4 PCI: 00:01.0 cmd <- 07 PCI: 00:01.1 subsystem <- 1002/15b3 PCI: 00:01.1 cmd <- 02 PCI: 00:02.0 subsystem <- 1022/157b PCI: 00:02.0 cmd <- 00 PCI: 00:02.2 bridge ctrl <- 0003 PCI: 00:02.2 cmd <- 06 PCI: 00:02.4 bridge ctrl <- 0003 PCI: 00:02.4 cmd <- 06 PCI: 00:03.0 cmd <- 00 PCI: 00:08.0 subsystem <- 1022/1578 PCI: 00:08.0 cmd <- 06 PCI: 00:09.0 subsystem <- 1022/157d PCI: 00:09.0 cmd <- 00 PCI: 00:10.0 subsystem <- 1022/7914 PCI: 00:10.0 cmd <- 02 PCI: 00:12.0 subsystem <- 1022/7908 PCI: 00:12.0 cmd <- 02 PCI: 00:14.0 subsystem <- 1022/790b PCI: 00:14.0 cmd <- 403 PCI: 00:14.3 subsystem <- 1022/790e PCI: 00:14.3 cmd <- 0f Southbridge LPC decode:PNP: 0c09.0, base=0x00000800, end=0x000009fe Covered by wideIO 0 PCI: 00:14.7 subsystem <- 1022/7906 PCI: 00:14.7 cmd <- 06 PCI: 00:18.0 cmd <- 00 PCI: 00:18.1 subsystem <- 1022/15b1 PCI: 00:18.1 cmd <- 00 PCI: 00:18.2 subsystem <- 1022/15b2 PCI: 00:18.2 cmd <- 00 PCI: 00:18.3 subsystem <- 1022/15b3 PCI: 00:18.3 cmd <- 00 PCI: 00:18.4 subsystem <- 1022/15b4 PCI: 00:18.4 cmd <- 00 PCI: 00:18.5 subsystem <- 1022/15b5 PCI: 00:18.5 cmd <- 00 PCI: 01:00.0 cmd <- 02 PCI: 02:00.0 subsystem <- 1217/8620 PCI: 02:00.0 cmd <- 06 done. BS: BS_DEV_ENABLE times (us): entry 279578 run 130753 exit 0 POST: 0x75 Initializing devices... Root Device init ... Root Device init finished in 1948 usecs POST: 0x75 CPU_CLUSTER: 0 init ... MTRR: Physical address space: 0x0000000000000000 - 0x00000000000a0000 size 0x000a0000 type 6 0x00000000000a0000 - 0x00000000000c0000 size 0x00020000 type 0 0x00000000000c0000 - 0x00000000d0000000 size 0xcff40000 type 6 0x00000000d0000000 - 0x00000000f0000000 size 0x20000000 type 0 0x00000000f0000000 - 0x00000000f4800000 size 0x04800000 type 1 0x00000000f4800000 - 0x0000000100000000 size 0x0b800000 type 0 0x0000000100000000 - 0x000000012f000000 size 0x2f000000 type 6 MTRR: Fixed MSR 0x250 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x258 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x259 0x0000000000000000 MTRR: Fixed MSR 0x268 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x269 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26a 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26b 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26c 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26d 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26e 0x1e1e1e1e1e1e1e1e MTRR: Fixed MSR 0x26f 0x1e1e1e1e1e1e1e1e call enable_fixed_mtrr() CPU physical address size: 48 bits MTRR: default type WB/UC MTRR counts: 8/6. MTRR: UC selected as default type. MTRR: 0 base 0x0000000000000000 mask 0x0000ffff80000000 type 6 MTRR: 1 base 0x0000000080000000 mask 0x0000ffffc0000000 type 6 MTRR: 2 base 0x00000000c0000000 mask 0x0000fffff0000000 type 6 MTRR: 3 base 0x00000000f0000000 mask 0x0000fffffc000000 type 1 MTRR: 4 base 0x00000000f4000000 mask 0x0000ffffff800000 type 1 MTRR: 5 base 0x0000000100000000 mask 0x0000ffffc0000000 type 6 MTRR check Fixed MTRRs : Enabled Variable MTRRs: Enabled POST: 0x93 Will perform SMM setup. CPU: AMD A4-9120C RADEON R4, 5 COMPUTE CORES 2C+3G . Loading module at 00030000 with entry 00030000. filesize: 0x170 memsize: 0x170 Processing 16 relocs. Offset value of 0x00030000 Attempting to start 1 APs Waiting for 10ms after sending INIT. Waiting for 1st SIPI to complete...AP: slot 1 apic_id 11. done. Waiting for 2nd SIPI to complete...done. Loading module at 00038000 with entry 00038000. filesize: 0x1a8 memsize: 0x1a8 Processing 13 relocs. Offset value of 0x00038000 SMM Module: stub loaded at 00038000. Will call cdeb995b(00000000) Installing SMM handler to 0xce800000 Loading module at ce810000 with entry ce81142b. filesize: 0x6c98 memsize: 0xad18 Processing 481 relocs. Offset value of 0xce810000 Loading module at ce808000 with entry ce808000. filesize: 0x1a8 memsize: 0x1a8 Processing 13 relocs. Offset value of 0xce808000 SMM Module: placing jmp sequence at ce807e00 rel16 0x01fd SMM Module: stub loaded at ce808000. Will call ce81142b(00000000) New SMBASE 0xce800000 Relocation complete. New SMBASE 0xce7ffe00 Relocation complete. Initializing CPU #0 CPU: vendor AMD device 670f00 CPU: family 15, model 70, stepping 00 Setting up local APIC... apic_id: 0x10 done. CPU #0 initialized Initializing CPU #1 CPU: vendor AMD device 670f00 CPU: family 15, model 70, stepping 00 Setting up local APIC... apic_id: 0x11 done. CPU #1 initialized bsp_do_flight_plan done after 91 msecs. MTRR: TEMPORARY Physical address space: 0x0000000000000000 - 0x00000000000a0000 size 0x000a0000 type 6 0x00000000000a0000 - 0x00000000000c0000 size 0x00020000 type 0 0x00000000000c0000 - 0x00000000d0000000 size 0xcff40000 type 6 0x00000000d0000000 - 0x00000000ff000000 size 0x2f000000 type 0 0x00000000ff000000 - 0x0000000100000000 size 0x01000000 type 5 0x0000000100000000 - 0x000000012f000000 size 0x2f000000 type 6 MTRR: default type WB/UC MTRR counts: 7/5. MTRR: UC selected as default type. MTRR: 0 base 0x0000000000000000 mask 0x0000ffff80000000 type 6 MTRR: 1 base 0x0000000080000000 mask 0x0000ffffc0000000 type 6 MTRR: 2 base 0x00000000c0000000 mask 0x0000fffff0000000 type 6 MTRR: 3 base 0x00000000ff000000 mask 0x0000ffffff000000 type 5 MTRR: 4 base 0x0000000100000000 mask 0x0000ffffc0000000 type 6 CPU_CLUSTER: 0 init finished in 346088 usecs POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 PCI: 00:00.0 init ... PCI: 00:00.0 init finished in 2002 usecs POST: 0x75 POST: 0x75 PCI: 00:01.0 init ... CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'pci1002,98e4.rom' CBFS: Found @ offset 92c00 size fe00 Mapping PCI device 100298e4 to 100298e0 In CBFS, ROM address for PCI: 00:01.0 = ffe82c48 PCI expansion ROM, signature 0xaa55, INIT size 0xfe00, data ptr 0x01c0 PCI ROM image, vendor ID 1002, device ID 98e0, PCI ROM image, Class Code 030000, Code Type 00 Copying VGA ROM Image from ffe82c48 to 0xc0000, 0xfe00 bytes Real mode stub @00000600: 867 bytes Calling Option ROM... ... Option ROM returned. VBE: Getting information about VESA mode 41d2 VBE: resolution: 1366x768@16 VBE: framebuffer: f0000000 VBE: Setting VESA mode 41d2 VGA Option ROM was run PCI: 00:01.0 init finished in 112231 usecs POST: 0x75 PCI: 00:01.1 init ... PCI: 00:01.1 init finished in 2002 usecs POST: 0x75 PCI: 00:02.0 init ... PCI: 00:02.0 init finished in 2002 usecs POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 PCI: 00:03.0 init ... PCI: 00:03.0 init finished in 2002 usecs POST: 0x75 PCI: 00:08.0 init ... PCI: 00:08.0 init finished in 2002 usecs POST: 0x75 PCI: 00:09.0 init ... PCI: 00:09.0 init finished in 2002 usecs POST: 0x75 POST: 0x75 PCI: 00:10.0 init ... PCI: 00:10.0 init finished in 2002 usecs POST: 0x75 POST: 0x75 PCI: 00:12.0 init ... PCI: 00:12.0 init finished in 2002 usecs POST: 0x75 PCI: 00:14.0 init ... IOAPIC: Initializing IOAPIC at 0xfec00000 IOAPIC: Bootstrap Processor Local APIC = 0x10 IOAPIC: ID = 0x04 IOAPIC: Dumping registers reg 0x0000: 0x04000000 reg 0x0001: 0x00178021 reg 0x0002: 0x04000000 IOAPIC: 24 interrupts IOAPIC: Enabling interrupts on FSB IOAPIC: reg 0x00000000 value 0x10000000 0x00000700 IOAPIC: reg 0x00000001 value 0x00000000 0x00010000 IOAPIC: reg 0x00000002 value 0x00000000 0x00010000 IOAPIC: reg 0x00000003 value 0x00000000 0x00010000 IOAPIC: reg 0x00000004 value 0x00000000 0x00010000 IOAPIC: reg 0x00000005 value 0x00000000 0x00010000 IOAPIC: reg 0x00000006 value 0x00000000 0x00010000 IOAPIC: reg 0x00000007 value 0x00000000 0x00010000 IOAPIC: reg 0x00000008 value 0x00000000 0x00010000 IOAPIC: reg 0x00000009 value 0x00000000 0x00010000 IOAPIC: reg 0x0000000a value 0x00000000 0x00010000 IOAPIC: reg 0x0000000b value 0x00000000 0x00010000 IOAPIC: reg 0x0000000c value 0x00000000 0x00010000 IOAPIC: reg 0x0000000d value 0x00000000 0x00010000 IOAPIC: reg 0x0000000e value 0x00000000 0x00010000 IOAPIC: reg 0x0000000f value 0x00000000 0x00010000 IOAPIC: reg 0x00000010 value 0x00000000 0x00010000 IOAPIC: reg 0x00000011 value 0x00000000 0x00010000 IOAPIC: reg 0x00000012 value 0x00000000 0x00010000 IOAPIC: reg 0x00000013 value 0x00000000 0x00010000 IOAPIC: reg 0x00000014 value 0x00000000 0x00010000 IOAPIC: reg 0x00000015 value 0x00000000 0x00010000 IOAPIC: reg 0x00000016 value 0x00000000 0x00010000 IOAPIC: reg 0x00000017 value 0x00000000 0x00010000 PCI: 00:14.0 init finished in 133956 usecs POST: 0x75 PCI: 00:14.3 init ... RTC Init PCI: 00:14.3 init finished in 2964 usecs POST: 0x75 PCI: 00:14.7 init ... PCI: 00:14.7 init finished in 2002 usecs POST: 0x75 PCI: 00:18.0 init ... IOAPIC: Initializing IOAPIC at 0xfec20000 IOAPIC: Bootstrap Processor Local APIC = 0x10 IOAPIC: ID = 0x05 IOAPIC: Dumping registers reg 0x0000: 0x05000000 reg 0x0001: 0x001f8021 reg 0x0002: 0x00000000 IOAPIC: 32 interrupts IOAPIC: Enabling interrupts on FSB IOAPIC: reg 0x00000000 value 0x10000000 0x00000700 IOAPIC: reg 0x00000001 value 0x00000000 0x00010000 IOAPIC: reg 0x00000002 value 0x00000000 0x00010000 IOAPIC: reg 0x00000003 value 0x00000000 0x00010000 IOAPIC: reg 0x00000004 value 0x00000000 0x00010000 IOAPIC: reg 0x00000005 value 0x00000000 0x00010000 IOAPIC: reg 0x00000006 value 0x00000000 0x00010000 IOAPIC: reg 0x00000007 value 0x00000000 0x00010000 IOAPIC: reg 0x00000008 value 0x00000000 0x00010000 IOAPIC: reg 0x00000009 value 0x00000000 0x00010000 IOAPIC: reg 0x0000000a value 0x00000000 0x00010000 IOAPIC: reg 0x0000000b value 0x00000000 0x00010000 IOAPIC: reg 0x0000000c value 0x00000000 0x00010000 IOAPIC: reg 0x0000000d value 0x00000000 0x00010000 IOAPIC: reg 0x0000000e value 0x00000000 0x00010000 IOAPIC: reg 0x0000000f value 0x00000000 0x00010000 IOAPIC: reg 0x00000010 value 0x00000000 0x00010000 IOAPIC: reg 0x00000011 value 0x00000000 0x00010000 IOAPIC: reg 0x00000012 value 0x00000000 0x00010000 IOAPIC: reg 0x00000013 value 0x00000000 0x00010000 IOAPIC: reg 0x00000014 value 0x00000000 0x00010000 IOAPIC: reg 0x00000015 value 0x00000000 0x00010000 IOAPIC: reg 0x00000016 value 0x00000000 0x00010000 IOAPIC: reg 0x00000017 value 0x00000000 0x00010000 IOAPIC: reg 0x00000018 value 0x00000000 0x00010000 IOAPIC: reg 0x00000019 value 0x00000000 0x00010000 IOAPIC: reg 0x0000001a value 0x00000000 0x00010000 IOAPIC: reg 0x0000001b value 0x00000000 0x00010000 IOAPIC: reg 0x0000001c value 0x00000000 0x00010000 IOAPIC: reg 0x0000001d value 0x00000000 0x00010000 IOAPIC: reg 0x0000001e value 0x00000000 0x00010000 IOAPIC: reg 0x0000001f value 0x00000000 0x00010000 PCI: 00:18.0 init finished in 170064 usecs POST: 0x75 PCI: 00:18.1 init ... PCI: 00:18.1 init finished in 2002 usecs POST: 0x75 PCI: 00:18.2 init ... PCI: 00:18.2 init finished in 2002 usecs POST: 0x75 PCI: 00:18.3 init ... PCI: 00:18.3 init finished in 2002 usecs POST: 0x75 PCI: 00:18.4 init ... PCI: 00:18.4 init finished in 2002 usecs POST: 0x75 PCI: 00:18.5 init ... PCI: 00:18.5 init finished in 2002 usecs POST: 0x75 PCI: 01:00.0 init ... PCI: 01:00.0 init finished in 2002 usecs POST: 0x75 PCI: 02:00.0 init ... BayHub BH720: Power-saving enabled (link_ctrl=0x110103) PCI: 02:00.0 init finished in 7127 usecs POST: 0x75 PNP: 0c09.0 init ... Google Chrome EC: Hello got back 11223344 status (0) Google Chrome EC: version: ro: careena_v2.0.11488-7215d6e0e4 rw: careena_v2.0.11488-7215d6e0e4 running image: 1 Google Chrome EC uptime: 7.058 seconds Google Chrome AP resets since EC boot: 0 Google Chrome most recent AP reset causes: Google Chrome EC reset flags at last EC boot: reset-pin | hard PNP: 0c09.0 init finished in 35107 usecs POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 POST: 0x75 Devices initialized Show all devs... After init. Root Device: enabled 1 CPU_CLUSTER: 0: enabled 1 DOMAIN: 0000: enabled 1 MMIO: fedc2000: enabled 1 MMIO: fedc3000: enabled 1 MMIO: fedc4000: enabled 1 MMIO: fedc5000: enabled 1 APIC: 10: enabled 1 PCI: 00:00.0: enabled 1 PCI: 00:00.2: enabled 0 PCI: 00:01.0: enabled 1 PCI: 00:01.1: enabled 1 PCI: 00:02.0: enabled 1 PCI: 00:02.1: enabled 0 PCI: 00:02.2: enabled 1 PCI: 00:02.3: enabled 0 PCI: 00:02.4: enabled 1 PCI: 00:02.5: enabled 0 PCI: 00:08.0: enabled 1 PCI: 00:09.0: enabled 1 PCI: 00:09.2: enabled 0 PCI: 00:10.0: enabled 1 PCI: 00:11.0: enabled 0 PCI: 00:12.0: enabled 1 PCI: 00:14.0: enabled 1 PCI: 00:14.3: enabled 1 PCI: 00:14.7: enabled 1 PCI: 00:18.0: enabled 1 PCI: 00:18.1: enabled 1 PCI: 00:18.2: enabled 1 PCI: 00:18.3: enabled 1 PCI: 00:18.4: enabled 1 PCI: 00:18.5: enabled 1 GENERIC: 0.0: enabled 1 I2C: 01:1a: enabled 1 GENERIC: 0.1: enabled 1 I2C: 02:50: enabled 1 I2C: 03:15: enabled 1 I2C: 04:39: enabled 1 I2C: 04:10: enabled 1 PCI: 02:00.0: enabled 1 PNP: 0c09.0: enabled 1 PCI: 00:03.0: enabled 1 PCI: 01:00.0: enabled 1 APIC: 11: enabled 1 BS: BS_DEV_INIT times (us): entry 0 run 1077086 exit 150 ELOG: Event(A1) added with size 10 at 2024-06-26 03:54:04 UTC elog_add_boot_reason: Logged recovery mode boot (Dev-switch on), reason: 0x02 ELOG: Event(A0) added with size 9 at 2024-06-26 03:54:04 UTC elog_add_boot_reason: Logged dev mode boot POST: 0x76 Finalize devices... Devices finalized FMAP: area RW_NVRAM found @ 467000 (20480 bytes) agesawrapper_amdinitlate() entry DmiTable:cdfbd4a3, AcpiPstatein: cdfbc2b9, AcpiSrat:00000000,AcpiSlit:00000000, Mce:cdfbd327, Cmc:cdfbd3e9,Alib:cdfbe586, AcpiIvrs:00000000 in agesawrapper_amdinitlate agesawrapper_amdinitlate() returned AGESA_SUCCESS agesawrapper_amdinitrtb() entry agesawrapper_amdinitrtb() returned AGESA_SUCCESS BS: BS_POST_DEVICE times (us): entry 22178 run 4547 exit 37832 FMAP: area RW_MRC_CACHE found @ 0 (65536 bytes) MRC: Checking cached data update for 'RW_MRC_CACHE'. MRC: cache data 'RW_MRC_CACHE' needs update. ELOG: Event(AA) added with size 11 at 2024-06-26 03:54:04 UTC POST: 0x77 BS: BS_OS_RESUME_CHECK times (us): entry 29564 run 1061 exit 0 ELOG: Event(91) added with size 10 at 2024-06-26 03:54:04 UTC POST: 0x79 POST: 0x9c CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/dsdt.aml' CBFS: Found @ offset a6cc0 size 3b94 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/slic' CBFS: 'fallback/slic' not found. ACPI: Writing ACPI tables at cde2e000. ACPI: * FACS ACPI: * DSDT Ramoops buffer: 0x100000@0xcdd2e000. ACPI: * FADT pm_base: 0x0400 ACPI: added table 1/32, length now 40 ACPI: * SSDT ACPI \_PR report 2 core(s) dw_i2c: bad counts. hcnt = -1 lcnt = 9 dw_i2c: bad counts. hcnt = -1 lcnt = 13 dw_i2c: bad counts. hcnt = -13 lcnt = 11 dw_i2c: bad counts. hcnt = -7 lcnt = 16 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'pci1002,98e4.rom' CBFS: Found @ offset 92c00 size fe00 Mapping PCI device 100298e4 to 100298e0 In CBFS, ROM address for PCI: 00:01.0 = ffe82c48 PCI expansion ROM, signature 0xaa55, INIT size 0xfe00, data ptr 0x01c0 PCI ROM image, vendor ID 1002, device ID 98e0, PCI ROM image, Class Code 030000, Code Type 00 \_SB.I2CA.ADAU: Analog Digital DMIC \_SB.I2CA.DLG7: Dialog Semiconductor DA7219 Audio Codec address 01ah irq 0 \_SB.I2CA.MAXM: Maxim Integrated 98357A Amplifier \_SB.I2CB.TPMI: I2C TPM at I2C: 02:50 \_SB.I2CC.D015: ELAN Touchpad at I2C: 03:15 \_SB.I2CD.D039: Raydium Touchscreen at I2C: 04:39 \_SB.I2CD.D010: ELAN Touchscreen at I2C: 04:10 ACPI: added table 2/32, length now 44 ACPI: * MCFG ACPI: added table 3/32, length now 48 ACPI: * TCPA TCPA log created at cdd0e000 ACPI: added table 4/32, length now 52 ACPI: * MADT ACPI: added table 5/32, length now 56 current = cde32e10 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'pci1002,98e4.rom' CBFS: Found @ offset 92c00 size fe00 Mapping PCI device 100298e4 to 100298e0 In CBFS, ROM address for PCI: 00:01.0 = ffe82c48 PCI expansion ROM, signature 0xaa55, INIT size 0xfe00, data ptr 0x01c0 PCI ROM image, vendor ID 1002, device ID 98e0, PCI ROM image, Class Code 030000, Code Type 00 ACPI: * VFCT at cde32e10 Copying initialized VBIOS image from 000c0000 ACPI: added table 6/32, length now 60 ACPI: * HPET ACPI: added table 7/32, length now 64 ACPI: added table 8/32, length now 68 ACPI: * IVRS at cde42e90 AGESA IVRS table NULL. Skipping. ACPI: * SRAT at cde42e90 AGESA SRAT table NULL. Skipping. ACPI: * SLIT at cde42e90 AGESA SLIT table NULL. Skipping. ACPI: * AGESA ALIB SSDT at cde42e90 ACPI: added table 9/32, length now 72 ACPI: * SSDT at cde479f0 ACPI: added table 10/32, length now 76 ACPI: * SSDT for PState at cde47e2c ACPI: done. ACPI tables: 106032 bytes. smbios_write_tables: cdd0d000 Create SMBIOS type 17 SMBIOS tables: 539 bytes. Writing table forward entry at 0x00000500 Wrote coreboot table at: 00000500, 0x10 bytes, checksum 11f9 Writing coreboot table at 0xcde52000 0. 0000000000000000-0000000000000fff: CONFIGURATION TABLES 1. 0000000000001000-000000000009ffff: RAM 2. 00000000000a0000-00000000000fffff: RESERVED 3. 0000000000100000-00000000cdd0cfff: RAM 4. 00000000cdd0d000-00000000cde9efff: CONFIGURATION TABLES 5. 00000000cde9f000-00000000cdfa0fff: RAMSTAGE 6. 00000000cdfa1000-00000000cdffffff: CONFIGURATION TABLES 7. 00000000ce000000-00000000cfffffff: RESERVED 8. 00000000f8000000-00000000fbffffff: RESERVED 9. 0000000100000000-000000012effffff: RAM Passing 5 GPIOs to payload: NAME | PORT | POLARITY | VALUE write protect | undefined | high | low recovery | undefined | high | low lid | undefined | high | high power | undefined | high | low EC in RW | 0x0000000f | high | low Board ID: 6 SKU ID: 33 CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) Wrote coreboot table at: cde52000, 0x538 bytes, checksum 69c9 coreboot table: 1360 bytes. IMD ROOT 0. cdfff000 00001000 IMD SMALL 1. cdffe000 00001000 CONSOLE 2. cdfde000 00020000 TIME STAMP 3. cdfdd000 00000910 VBOOT 4. cdfdc000 00000c0c ACPISCRATCH 5. cdfac000 00030000 ROMSTG STCK 6. cdfab000 00000400 AFTER CAR 7. cdfa1000 0000a000 RAMSTAGE 8. cde9e000 00103000 REFCODE 9. cde6c000 00032000 ACPI GNVS 10. cde6b000 00001000 SMM BACKUP 11. cde5b000 00010000 MRC DATA 12. cde5a000 00000e75 COREBOOT 13. cde52000 00008000 ACPI 14. cde2e000 00024000 RAMOOPS 15. cdd2e000 00100000 VGA ROM #0 16. cdd1e000 0000fe00 TCPA TCGLOG17. cdd0e000 00010000 SMBIOS 18. cdd0d000 00000800 IMD small region: IMD ROOT 0. cdffec00 00000400 VBOOT SEL 1. cdffebe0 00000008 EC HOSTEVENT 2. cdffebc0 00000008 ROMSTAGE 3. cdffeba0 00000004 VPD 4. cdffeb60 00000027 POWER STATE 5. cdffeb40 00000010 MEM INFO 6. cdffe9e0 00000149 COREBOOTFWD 7. cdffe9a0 00000028 BS: BS_WRITE_TABLES times (us): entry 5555 run 438436 exit 0 POST: 0x7a CBFS: 'Master Header Locator' located CBFS at [df0000:ffffc0) CBFS: Locating 'fallback/payload' CBFS: Found @ offset 1ae180 size 39f90 Loading segment from ROM address 0xfff9e1b8 code (compression=0) New segment dstaddr 0x30104020 memsize 0x254890 srcaddr 0xfff9e1f0 filesize 0x39f58 Loading segment from ROM address 0xfff9e1d4 Entry Point 0x30104020 Loading Segment: addr: 0x0000000030104020 memsz: 0x0000000000254890 filesz: 0x0000000000039f58 lb: [0x00000000cde9f000, 0x00000000cdfa09d8) Post relocation: addr: 0x0000000030104020 memsz: 0x0000000000254890 filesz: 0x0000000000039f58 it's not compressed! [ 0x30104020, 3013df78, 0x303588b0) <- fff9e1f0 Clearing Segment: addr: 0x000000003013df78 memsz: 0x000000000021a938 dest 30104020, end 303588b0, bouncebuffer ffffffff Loaded segments Lock SMM configuration POST: 0xfe BS: BS_PAYLOAD_LOAD times (us): entry 227 run 92761 exit 3327 PSP: Notify that POST is finishing... OK POST: 0x7b mp_park_aps done after 0 msecs. Jumping to boot code at 30104020(cde52000) POST: 0xf8 CPU0: stack: cdeda000 - cdedb000, lowest used address cdeda558, stack used: 2728 bytes Starting depthcharge on grunt... WARNING: can't convert coreboot GPIOs, 'lid' won't be resampled at runtime! WARNING: can't convert coreboot GPIOs, 'power' won't be resampled at runtime! The GBB signature is at 0x30004020 and is: 24 47 42 42 [firmware-grunt-11031.B-collabora] Dec 11 2020 09:59:28 grunt: tftpboot 192.168.201.1 14570632/tftp-deploy-xtmrbodq/kernel/bzImage 14570632/tftp-deploy-xtmrbodq/kernel/cmdline 14570632/tftp-deploy-xtmrbodq/ramdisk/ramdisk.cpio.gz tftpboot 192.168.201.1 14570632/tftp-deploy-xtmrbodq/kernel/bzImageodq/kernel/cmdline 14570632/tftp-deploy-xtmrbodq/ramdisk/ramdisk.cpio.gz Waiting for link R8152: Initializing Version 9 (ocp_data = 6010) R8152: Done initializing Adding net device R8152: Initializing Version 9 (ocp_data = 6010) R8152: Done initializing net_add_device: Attemp to include the same device done. MAC: 00:e0:4c:78:41:78 Sending DHCP discover... done. Waiting for reply... done. Sending DHCP request... done. Waiting for reply... done. My ip is 192.168.201.18 The DHCP server ip is 192.168.201.1 TFTP server IP predefined by user: 192.168.201.1 Bootfile predefined by user: 14570632/tftp-deploy-xtmrbodq/kernel/bzImage Sending tftp read request... done. Waiting for the transfer... 00000000 ################################################################ 00080000 ################################################################ 00100000 ################################################################ 00180000 ################################################################ 00200000 ################################################################ 00280000 ################################################################ 00300000 ################################################################ 00380000 ################################################################ 00400000 ################################################################ 00480000 ################################################################ 00500000 ################################################################ 00580000 ################################################################ 00600000 ################################################################ 00680000 ################################################################ 00700000 ################################################################ 00780000 ################################################################ 00800000 ################################################################ 00880000 ################################################################ 00900000 ################################################################ 00980000 ################################################################ 00a00000 ################################################################ 00a80000 ################################################################ 00b00000 ################################################################ 00b80000 ################################################################ 00c00000 ################################################################ 00c80000 ################################################################ 00d00000 ################################################################ 00d80000 ################################################################ 00e00000 ################################################################ 00e80000 ################################################################ 00f00000 ################################################################ 00f80000 ################################################################ 01000000 ################################################################ 01080000 ################################################################ 01100000 ################################################################ 01180000 ################################################################ 01200000 ################################################################ 01280000 ################################################################ 01300000 ################################################################ 01380000 ################################################################ 01400000 ################################################################ 01480000 ################################################################ 01500000 ################################################################ 01580000 ###################################### done. The bootfile was 22849664 bytes long. Sending tftp read request... done. Waiting for the transfer... 00000000 ################################################################ 00080000 ################################################################ 00100000 ################################################################ 00180000 ################################################################ 00200000 ################################################################ 00280000 ################################################################ 00300000 ################################################################ 00380000 ################################################################ 00400000 ################################################################ 00480000 ################################################################ 00500000 ################################################################ 00580000 ################################################################ 00600000 ################################################################ 00680000 ################################################################ 00700000 ################################################################ 00780000 ################################################################ 00800000 ################################################################ 00880000 ################################################################ 00900000 ################################################################ 00980000 ################################################################ 00a00000 ################################################################ 00a80000 ################################################################ 00b00000 ################################################################ 00b80000 ################################################################ 00c00000 ########################################################### done. Sending tftp read request... done. Waiting for the transfer... 00000000 # done. Command line loaded dynamically from TFTP file: 14570632/tftp-deploy-xtmrbodq/kernel/cmdline The command line is: earlyprintk=uart8250,mmio32,0xfedc6000,115200n8 console_msg_format=syslog earlycon deferred_probe_timeout=60 console=ttyS0,115200n8 root=/dev/nfs rw nfsroot=192.168.201.1:/var/lib/lava/dispatcher/tmp/14570632/extract-nfsrootfs-royrbfuz,tcp,hard,v3 ip=dhcp tftpserverip=192.168.201.1 Shutting down all USB controllers. Removing current net device Finalizing coreboot coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 smm starting... SMI# #0 Exiting depthcharge with code 4 at timestamp: 25373936 Starting kernel ... coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 smm starting... SMI# #0 Chrome EC: Set SMI mask to 0x0000000000000000 Chrome EC: UHEPI supported Clearing pending EC events. Error code 1 is expected. EC returned error result code 9 Chrome EC: Set SCI mask to 0x00000000142609fb <5>[ 0.000000] Linux version 5.10.218-cip49 (KernelCI@build-j244636-x86-64-gcc-10-x86-64-defconfig-x86-board-dlvlk) (gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2) #1 SMP Tue Jun 25 11:39:21 UTC 2024 <6>[ 0.000000] Command line: earlyprintk=uart8250,mmio32,0xfedc6000,115200n8 console_msg_format=syslog earlycon deferred_probe_timeout=60 console=ttyS0,115200n8 root=/dev/nfs rw nfsroot=192.168.201.1:/var/lib/lava/dispatcher/tmp/14570632/extract-nfsrootfs-royrbfuz,tcp,hard,v3 ip=dhcp tftpserverip=192.168.201.1 <6>[ 0.000000] BIOS-provided physical RAM map: <6>[ 0.000000] BIOS-e820: [mem 0x0000000000000000-0x0000000000000fff] type 16 <6>[ 0.000000] BIOS-e820: [mem 0x0000000000001000-0x000000000009ffff] usable <6>[ 0.000000] BIOS-e820: [mem 0x00000000000a0000-0x00000000000fffff] reserved <6>[ 0.000000] BIOS-e820: [mem 0x0000000000100000-0x00000000cdd0cfff] usable <6>[ 0.000000] BIOS-e820: [mem 0x00000000cdd0d000-0x00000000cdffffff] type 16 <6>[ 0.000000] BIOS-e820: [mem 0x00000000ce000000-0x00000000cfffffff] reserved <6>[ 0.000000] BIOS-e820: [mem 0x00000000f8000000-0x00000000fbffffff] reserved <6>[ 0.000000] BIOS-e820: [mem 0x0000000100000000-0x000000012effffff] usable <6>[ 0.000000] NX (Execute Disable) protection: active <6>[ 0.000000] SMBIOS 2.7 present. <6>[ 0.000000] DMI: Google Grunt/Grunt, BIOS 09/05/2019 <6>[ 0.000000] tsc: Fast TSC calibration using PIT <6>[ 0.000000] tsc: Detected 1596.935 MHz processor <6>[ 0.001314] last_pfn = 0x12f000 max_arch_pfn = 0x400000000 <6>[ 0.001816] x86/PAT: Configuration [0-7]: WB WC UC- UC WB WP UC- WT <6>[ 0.003367] last_pfn = 0xcdd0d max_arch_pfn = 0x400000000 <6>[ 0.009857] check: Scanning 1 areas for low memory corruption <6>[ 0.009867] Using GB pages for direct mapping <6>[ 0.010364] RAMDISK: [mem 0x3738b000-0x37ffffff] <6>[ 0.010371] ACPI: Early table checksum verification disabled <6>[ 0.010377] ACPI: RSDP 0x00000000000F0000 000024 (v02 COREv4) <6>[ 0.010387] ACPI: XSDT 0x00000000CDE2E0E0 000074 (v01 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010398] ACPI: FACP 0x00000000CDE31E60 0000F4 (v04 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010410] ACPI: DSDT 0x00000000CDE2E280 003BE0 (v02 COREv4 COREBOOT 00010001 INTL 20180531) <6>[ 0.010419] ACPI: FACS 0x00000000CDE2E240 000040 <6>[ 0.010426] ACPI: SSDT 0x00000000CDE31F60 000DB5 (v02 COREv4 COREBOOT 0000002A CORE 0000002A) <6>[ 0.010434] ACPI: MCFG 0x00000000CDE32D20 00003C (v01 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010442] ACPI: TCPA 0x00000000CDE32D60 000032 (v02 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010450] ACPI: APIC 0x00000000CDE32DA0 00006E (v02 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010457] ACPI: VFCT 0x00000000CDE32E10 00FE69 (v01 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010465] ACPI: HPET 0x00000000CDE42C80 000038 (v01 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010473] ACPI: HEST 0x00000000CDE42CC0 0001D0 (v01 COREv4 COREBOOT 00000000 CORE 00000000) <6>[ 0.010480] ACPI: SSDT 0x00000000CDE42E90 004B5B (v02 AMD AGESA 00000002 MSFT 04000000) <6>[ 0.010488] ACPI: SSDT 0x00000000CDE479F0 00043C (v01 AMD AGESA 00000001 AMD 00000001) <6>[ 0.010496] ACPI: Reserving FACP table memory at [mem 0xcde31e60-0xcde31f53] <6>[ 0.010500] ACPI: Reserving DSDT table memory at [mem 0xcde2e280-0xcde31e5f] <6>[ 0.010503] ACPI: Reserving FACS table memory at [mem 0xcde2e240-0xcde2e27f] <6>[ 0.010506] ACPI: Reserving SSDT table memory at [mem 0xcde31f60-0xcde32d14] <6>[ 0.010509] ACPI: Reserving MCFG table memory at [mem 0xcde32d20-0xcde32d5b] <6>[ 0.010513] ACPI: Reserving TCPA table memory at [mem 0xcde32d60-0xcde32d91] <6>[ 0.010516] ACPI: Reserving APIC table memory at [mem 0xcde32da0-0xcde32e0d] <6>[ 0.010519] ACPI: Reserving VFCT table memory at [mem 0xcde32e10-0xcde42c78] <6>[ 0.010522] ACPI: Reserving HPET table memory at [mem 0xcde42c80-0xcde42cb7] <6>[ 0.010526] ACPI: Reserving HEST table memory at [mem 0xcde42cc0-0xcde42e8f] <6>[ 0.010529] ACPI: Reserving SSDT table memory at [mem 0xcde42e90-0xcde479ea] <6>[ 0.010532] ACPI: Reserving SSDT table memory at [mem 0xcde479f0-0xcde47e2b] <6>[ 0.010598] No NUMA configuration found <6>[ 0.010601] Faking a node at [mem 0x0000000000000000-0x000000012effffff] <6>[ 0.010608] NODE_DATA(0) allocated [mem 0x12effa000-0x12effdfff] <6>[ 0.010644] Zone ranges: <6>[ 0.010648] DMA [mem 0x0000000000001000-0x0000000000ffffff] <6>[ 0.010653] DMA32 [mem 0x0000000001000000-0x00000000ffffffff] <6>[ 0.010658] Normal [mem 0x0000000100000000-0x000000012effffff] <6>[ 0.010662] Movable zone start for each node <6>[ 0.010665] Early memory node ranges <6>[ 0.010669] node 0: [mem 0x0000000000001000-0x000000000009ffff] <6>[ 0.010672] node 0: [mem 0x0000000000100000-0x00000000cdd0cfff] <6>[ 0.010676] node 0: [mem 0x0000000100000000-0x000000012effffff] <6>[ 0.010680] Initmem setup node 0 [mem 0x0000000000001000-0x000000012effffff] <6>[ 0.010706] On node 0, zone DMA: 1 pages in unavailable ranges <6>[ 0.010755] On node 0, zone DMA: 96 pages in unavailable ranges <6>[ 0.027834] On node 0, zone Normal: 8947 pages in unavailable ranges <6>[ 0.028450] On node 0, zone Normal: 4096 pages in unavailable ranges <6>[ 0.028515] ACPI: PM-Timer IO Port: 0x418 <6>[ 0.028529] ACPI: LAPIC_NMI (acpi_id[0xff] high edge lint[0x1]) <6>[ 0.028548] IOAPIC[0]: apic_id 4, version 33, address 0xfec00000, GSI 0-23 <6>[ 0.028560] IOAPIC[1]: apic_id 5, version 33, address 0xfec20000, GSI 24-55 <6>[ 0.028566] ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl) <6>[ 0.028570] ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 low level) <6>[ 0.028580] Using ACPI (MADT) for SMP configuration information <6>[ 0.028585] ACPI: HPET id: 0x10228201 base: 0xfed00000 <6>[ 0.028592] smpboot: Allowing 2 CPUs, 0 hotplug CPUs <6>[ 0.028614] PM: hibernation: Registered nosave memory: [mem 0x00000000-0x00000fff] <6>[ 0.028619] PM: hibernation: Registered nosave memory: [mem 0x000a0000-0x000fffff] <6>[ 0.028623] PM: hibernation: Registered nosave memory: [mem 0xcdd0d000-0xcdffffff] <6>[ 0.028627] PM: hibernation: Registered nosave memory: [mem 0xce000000-0xcfffffff] <6>[ 0.028630] PM: hibernation: Registered nosave memory: [mem 0xd0000000-0xf7ffffff] <6>[ 0.028633] PM: hibernation: Registered nosave memory: [mem 0xf8000000-0xfbffffff] <6>[ 0.028636] PM: hibernation: Registered nosave memory: [mem 0xfc000000-0xffffffff] <6>[ 0.028643] [mem 0xd0000000-0xf7ffffff] available for PCI devices <6>[ 0.028650] clocksource: refined-jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 1910969940391419 ns <6>[ 0.038053] setup_percpu: NR_CPUS:64 nr_cpumask_bits:64 nr_cpu_ids:2 nr_node_ids:1 <6>[ 0.038603] percpu: Embedded 59 pages/cpu s200848 r8192 d32624 u1048576 <6>[ 0.038668] Built 1 zonelists, mobility grouping on. Total pages: 1019233 <6>[ 0.038672] Policy zone: Normal <5>[ 0.038685] Kernel command line: earlyprintk=uart8250,mmio32,0xfedc6000,115200n8 console_msg_format=syslog earlycon deferred_probe_timeout=60 console=ttyS0,115200n8 root=/dev/nfs rw nfsroot=192.168.201.1:/var/lib/lava/dispatcher/tmp/14570632/extract-nfsrootfs-royrbfuz,tcp,hard,v3 ip=dhcp tftpserverip=192.168.201.1 <6>[ 0.039794] Dentry cache hash table entries: 524288 (order: 10, 4194304 bytes, linear) <6>[ 0.040277] Inode-cache hash table entries: 262144 (order: 9, 2097152 bytes, linear) <6>[ 0.040306] mem auto-init: stack:off, heap alloc:off, heap free:off <6>[ 0.082349] Memory: 3912616K/4141744K available (22546K kernel code, 3715K rwdata, 24604K rodata, 2164K init, 13960K bss, 228868K reserved, 0K cma-reserved) <6>[ 0.082461] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=2, Nodes=1 <6>[ 0.082545] ftrace: allocating 61810 entries in 242 pages <6>[ 0.140049] ftrace: allocated 242 pages with 5 groups <6>[ 0.140314] Running RCU self tests <6>[ 0.140324] rcu: Hierarchical RCU implementation. <6>[ 0.140327] rcu: RCU event tracing is enabled. <6>[ 0.140330] rcu: RCU lockdep checking is enabled. <6>[ 0.140334] rcu: RCU restricting CPUs from NR_CPUS=64 to nr_cpu_ids=2. <6>[ 0.140338] Rude variant of Tasks RCU enabled. <6>[ 0.140340] Tracing variant of Tasks RCU enabled. <6>[ 0.140344] rcu: RCU calculated value of scheduler-enlistment delay is 100 jiffies. <6>[ 0.140348] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=2 <6>[ 0.147238] NR_IRQS: 4352, nr_irqs: 512, preallocated irqs: 16 <5>[ 0.147564] random: crng init done <6>[ 0.147672] Console: colour dummy device 80x25 <6>[ 0.173714] printk: console [ttyS0] enabled <4>[ 0.173868] Lock dependency validator: Copyright (c) 2006 Red Hat, Inc., Ingo Molnar <4>[ 0.174138] ... MAX_LOCKDEP_SUBCLASSES: 8 <4>[ 0.174288] ... MAX_LOCK_DEPTH: 48 <4>[ 0.174441] ... MAX_LOCKDEP_KEYS: 8192 <4>[ 0.174600] ... CLASSHASH_SIZE: 4096 <4>[ 0.174759] ... MAX_LOCKDEP_ENTRIES: 32768 <4>[ 0.174921] ... MAX_LOCKDEP_CHAINS: 65536 <4>[ 0.175082] ... CHAINHASH_SIZE: 32768 <4>[ 0.175244] memory used by lock dependency info: 6365 kB <4>[ 0.175437] memory used for stack traces: 4224 kB <4>[ 0.175609] per task-struct memory footprint: 1920 bytes <6>[ 0.175855] ACPI: Core revision 20200925 <6>[ 0.176236] clocksource: hpet: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 133484873504 ns <6>[ 0.176601] APIC: Switch to symmetric I/O mode setup <6>[ 0.177217] ..TIMER: vector=0x30 apic1=0 pin1=2 apic2=0 pin2=0 <6>[ 0.181591] clocksource: tsc-early: mask: 0xffffffffffffffff max_cycles: 0x1704d59a2b3, max_idle_ns: 440795231855 ns <6>[ 0.181974] Calibrating delay loop (skipped), value calculated using timer frequency.. 3193.87 BogoMIPS (lpj=1596935) <6>[ 0.182351] BIOS may not properly restore RDRAND after suspend, hiding RDRAND via CPUID. Use rdrand=force to reenable. <6>[ 0.183041] LVT offset 1 assigned for vector 0xf9 <6>[ 0.183222] Last level iTLB entries: 4KB 512, 2MB 1024, 4MB 512 <6>[ 0.183432] Last level dTLB entries: 4KB 1024, 2MB 1024, 4MB 512, 1GB 0 <6>[ 0.183670] Spectre V1 : Mitigation: usercopy/swapgs barriers and __user pointer sanitization <6>[ 0.183964] Spectre V2 : Mitigation: Retpolines <6>[ 0.184129] Spectre V2 : Spectre v2 / SpectreRSB mitigation: Filling RSB on context switch <6>[ 0.184415] Spectre V2 : Spectre v2 / SpectreRSB : Filling RSB on VMEXIT <6>[ 0.184650] Spectre V2 : Enabling Speculation Barrier for firmware calls <6>[ 0.184962] RETBleed: Mitigation: untrained return thunk <6>[ 0.185155] Spectre V2 : mitigation: Enabling conditional Indirect Branch Prediction Barrier <6>[ 0.185449] Speculative Store Bypass: Mitigation: Speculative Store Bypass disabled via prctl and seccomp <6>[ 0.185792] x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers' <6>[ 0.185962] x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers' <6>[ 0.186186] x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers' <6>[ 0.186412] x86/fpu: xstate_offset[2]: 576, xstate_sizes[2]: 256 <6>[ 0.186631] x86/fpu: Enabled xstate features 0x7, context size is 832 bytes, using 'standard' format. <4>[ 0.211046] ------------[ cut here ]------------ <4>[ 0.211230] missing return thunk: lkdtm_rodata_do_nothing+0x0/0x10-lkdtm_rodata_do_nothing+0x5/0x10: e9 00 00 00 00 <4>[ 0.211242] WARNING: CPU: 0 PID: 0 at arch/x86/kernel/alternative.c:730 apply_returns+0x1c2/0x1e0 <4>[ 0.211904] Modules linked in: <4>[ 0.211964] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.10.218-cip49 #1 <4>[ 0.212198] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 0.212410] RIP: 0010:apply_returns+0x1c2/0x1e0 <4>[ 0.212577] Code: 80 3d c0 19 47 03 00 75 8b 49 89 e8 b9 05 00 00 00 4c 89 fa 48 89 ee 48 c7 c7 10 c3 7c bc c6 05 a2 19 47 03 01 e8 44 99 15 01 <0f> 0b e9 63 ff ff ff e8 02 ef 1d 01 e9 c7 56 15 01 66 66 2e 0f 1f <4>[ 0.212962] RSP: 0000:ffffffffbcc03e30 EFLAGS: 00010286 <4>[ 0.213153] RAX: 0000000000000000 RBX: ffffffffbd82c1f4 RCX: 0000000000000000 <4>[ 0.213403] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffb9b78671 <4>[ 0.213962] RBP: ffffffffbc440b60 R08: 0000000000000001 R09: 0000000000000001 <4>[ 0.214212] R10: ffffffffbcc8ffc0 R11: 3fffffffffffffff R12: ffffffffbd8451dc <4>[ 0.214461] R13: ffffffffbcc03ea8 R14: 0000000000000005 R15: ffffffffbc440b65 <4>[ 0.214712] FS: 0000000000000000(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 0.214962] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 0.215166] CR2: ffff98af6efff000 CR3: 0000000023426000 CR4: 00000000001506f0 <4>[ 0.215416] Call Trace: <4>[ 0.215521] ? __warn+0x80/0x110 <4>[ 0.215645] ? apply_returns+0x1c2/0x1e0 <4>[ 0.215794] ? report_bug+0x9e/0xc0 <4>[ 0.215964] ? __warn_printk+0x6c/0x8d <4>[ 0.216107] ? handle_bug+0x41/0x90 <4>[ 0.216240] ? exc_invalid_op+0x14/0x70 <4>[ 0.216384] ? asm_exc_invalid_op+0x12/0x20 <4>[ 0.216546] ? console_unlock+0x4d1/0x5f0 <4>[ 0.216695] ? apply_returns+0x1c2/0x1e0 <4>[ 0.216855] alternative_instructions+0x7d/0x143 <4>[ 0.216965] arch_cpu_finalize_init+0x28/0x47 <4>[ 0.217126] start_kernel+0x4ad/0x557 <4>[ 0.217268] secondary_startup_64_no_verify+0xbe/0xcb <4>[ 0.217460] irq event stamp: 108041 <4>[ 0.217593] hardirqs last enabled at (108049): [] console_unlock+0x4d1/0x5f0 <4>[ 0.217963] hardirqs last disabled at (108060): [] console_unlock+0x444/0x5f0 <4>[ 0.218265] softirqs last enabled at (108058): [] irq_enter_rcu+0x71/0x80 <4>[ 0.218559] softirqs last disabled at (108057): [] irq_enter_rcu+0x56/0x80 <4>[ 0.218853] ---[ end trace 8fa2a604a62aa032 ]--- <6>[ 0.230165] Freeing SMP alternatives memory: 48K <6>[ 0.230340] pid_max: default: 32768 minimum: 301 <6>[ 0.230585] LSM: Security Framework initializing <6>[ 0.230778] SELinux: Initializing. <6>[ 0.230944] LSM support for eBPF active <6>[ 0.230997] Mount-cache hash table entries: 8192 (order: 4, 65536 bytes, linear) <6>[ 0.231270] Mountpoint-cache hash table entries: 8192 (order: 4, 65536 bytes, linear) <6>[ 0.233181] smpboot: CPU 0 Converting physical 2 to logical die 0 <6>[ 0.335420] smpboot: CPU0: AMD A4-9120C RADEON R4, 5 COMPUTE CORES 2C+3G (family: 0x15, model: 0x70, stepping: 0x0) <6>[ 0.335958] Performance Events: Fam15h core perfctr, AMD PMU driver. <6>[ 0.335968] ... version: 0 <6>[ 0.336117] ... bit width: 48 <6>[ 0.336267] ... generic registers: 6 <6>[ 0.336415] ... value mask: 0000ffffffffffff <6>[ 0.336606] ... max period: 00007fffffffffff <6>[ 0.336796] ... fixed-purpose events: 0 <6>[ 0.336962] ... event mask: 000000000000003f <6>[ 0.337433] rcu: Hierarchical SRCU implementation. <6>[ 0.338924] smp: Bringing up secondary CPUs ... <6>[ 0.339450] x86: Booting SMP configuration: <6>[ 0.339622] .... node #0, CPUs: #1 <6>[ 0.341108] smp: Brought up 1 node, 2 CPUs <6>[ 0.341336] smpboot: Max logical packages: 1 <6>[ 0.341493] smpboot: Total of 2 processors activated (6387.74 BogoMIPS) <6>[ 0.344025] devtmpfs: initialized <6>[ 0.344339] x86/mm: Memory block size: 128MB <6>[ 0.347025] clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 1911260446275000 ns <6>[ 0.347314] futex hash table entries: 512 (order: 4, 65536 bytes, linear) <6>[ 0.348039] pinctrl core: initialized pinctrl subsystem <6>[ 0.348889] PM: RTC time: 03:54:26, date: 2024-06-26 <6>[ 0.349401] NET: Registered protocol family 16 <6>[ 0.350189] audit: initializing netlink subsys (disabled) <5>[ 0.350412] audit: type=2000 audit(1719374065.173:1): state=initialized audit_enabled=0 res=1 <6>[ 0.350510] thermal_sys: Registered thermal governor 'step_wise' <6>[ 0.350963] thermal_sys: Registered thermal governor 'user_space' <6>[ 0.351255] cpuidle: using governor menu <6>[ 0.351860] ACPI: bus type PCI registered <6>[ 0.352193] PCI: MMCONFIG for domain 0000 [bus 00-40] at [mem 0xf8000000-0xfc0fffff] (base 0xf8000000) <6>[ 0.352519] PCI: MMCONFIG at [mem 0xf8000000-0xfc0fffff] reserved in E820 <6>[ 0.352759] PCI: MMCONFIG for 0000 [bus00-1f] at [mem 0xf8000000-0xf9ffffff] (base 0xf8000000) (size reduced!) <6>[ 0.352990] PCI: Using configuration type 1 for base access <6>[ 0.374822] Kprobes globally optimized <6>[ 0.375067] HugeTLB registered 1.00 GiB page size, pre-allocated 0 pages <6>[ 0.375223] HugeTLB registered 2.00 MiB page size, pre-allocated 0 pages <6>[ 0.376082] cryptomgr_test (28) used greatest stack depth: 14880 bytes left <6>[ 0.378262] ACPI: Added _OSI(Module Device) <6>[ 0.378423] ACPI: Added _OSI(Processor Device) <6>[ 0.378586] ACPI: Added _OSI(3.0 _SCP Extensions) <6>[ 0.378975] ACPI: Added _OSI(Processor Aggregator Device) <6>[ 0.379171] ACPI: Added _OSI(Linux-Dell-Video) <6>[ 0.379336] ACPI: Added _OSI(Linux-Lenovo-NV-HDMI-Audio) <6>[ 0.379528] ACPI: Added _OSI(Linux-HPI-Hybrid-Graphics) <6>[ 0.393065] ACPI: 4 ACPI AML tables successfully acquired and loaded <6>[ 0.402043] ACPI: EC: EC started <6>[ 0.402185] ACPI: EC: interrupt blocked <6>[ 0.402704] ACPI: EC: EC_CMD/EC_SC=0x66, EC_DATA=0x62 <6>[ 0.402891] ACPI: \_SB_.PCI0.LPCB.EC0_: Boot DSDT EC used to handle transactions <6>[ 0.402962] ACPI: Interpreter enabled <6>[ 0.403151] ACPI: (supports S0 S1 S3 S4 S5) <6>[ 0.403307] ACPI: Using IOAPIC for interrupt routing <6>[ 0.403520] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug <6>[ 0.404563] ACPI: Enabled 3 GPEs in block 00 to 1F <6>[ 0.406924] ACPI: Power Resource [P0U2] (off) <6>[ 0.407093] ACPI: Power Resource [P3U2] (off) <6>[ 0.408730] ACPI: Power Resource [P0U3] (off) <6>[ 0.409004] ACPI: Power Resource [P3U3] (off) <6>[ 0.417233] ACPI: Power Resource [PRIC] (on) <6>[ 0.443447] ACPI: Power Resource [PRIC] (on) <6>[ 0.473910] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff]) <6>[ 0.473970] acpi PNP0A08:00: _OSC: OS supports [ExtendedConfig ASPM ClockPM Segments MSI HPX-Type3] <6>[ 0.474455] acpi PNP0A08:00: _OSC: OS now controls [PME PCIeCapability LTR] <6>[ 0.474746] acpi PNP0A08:00: [Firmware Info]: MMCONFIG for domain 0000 [bus 00-1f] only partially covers this bridge <6>[ 0.475051] acpi PNP0A08:00: host bridge window expanded to [io 0x0000-0x0cf7 window]; [io 0x03b0-0x03df window] ignored <6>[ 0.475585] PCI host bridge to bus 0000:00 <6>[ 0.475964] pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window] <6>[ 0.476205] pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window] <6>[ 0.476445] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff] <6>[ 0.476687] pci_bus 0000:00: root bus resource [mem 0x000c0000-0x000dffff] <6>[ 0.476963] pci_bus 0000:00: root bus resource [mem 0xd0000000-0xffffffff] <6>[ 0.477206] pci_bus 0000:00: root bus resource [bus 00-ff] <6>[ 0.477457] pci 0000:00:00.0: [1022:1576] type 00 class 0x060000 <6>[ 0.478318] pci 0000:00:01.0: [1002:98e4] type 00 class 0x030000 <6>[ 0.478548] pci 0000:00:01.0: reg 0x10: [mem 0xf0000000-0xf3ffffff 64bit pref] <6>[ 0.478811] pci 0000:00:01.0: reg 0x18: [mem 0xf4000000-0xf47fffff 64bit pref] <6>[ 0.478969] pci 0000:00:01.0: reg 0x20: [io 0x1000-0x10ff] <6>[ 0.479175] pci 0000:00:01.0: reg 0x24: [mem 0xf4d00000-0xf4d3ffff] <6>[ 0.479403] pci 0000:00:01.0: reg 0x30: [mem 0xf4d40000-0xf4d5ffff pref] <6>[ 0.479646] pci 0000:00:01.0: enabling Extended Tags <6>[ 0.480011] pci 0000:00:01.0: supports D1 D2 <6>[ 0.480169] pci 0000:00:01.0: PME# supported from D1 D2 D3hot <6>[ 0.480697] pci 0000:00:01.1: [1002:15b3] type 00 class 0x040300 <6>[ 0.480926] pci 0000:00:01.1: reg 0x10: [mem 0xf4d80000-0xf4d83fff 64bit] <6>[ 0.480996] pci 0000:00:01.1: enabling Extended Tags <6>[ 0.481224] pci 0000:00:01.1: supports D1 D2 <6>[ 0.481585] pci 0000:00:02.0: [1022:157b] type 00 class 0x060000 <6>[ 0.482184] pci 0000:00:02.2: [1022:157c] type 01 class 0x060400 <6>[ 0.482442] pci 0000:00:02.2: enabling Extended Tags <6>[ 0.482685] pci 0000:00:02.2: PME# supported from D0 D3hot D3cold <6>[ 0.483266] pci 0000:00:02.4: [1022:157c] type 01 class 0x060400 <6>[ 0.483525] pci 0000:00:02.4: enabling Extended Tags <6>[ 0.483767] pci 0000:00:02.4: PME# supported from D0 D3hot D3cold <6>[ 0.484274] pci 0000:00:03.0: [1022:157b] type 00 class 0x060000 <6>[ 0.484716] pci 0000:00:08.0: [1022:1578] type 00 class 0x108000 <6>[ 0.484975] pci 0000:00:08.0: reg 0x10: [mem 0xf4d60000-0xf4d7ffff 64bit pref] <6>[ 0.485234] pci 0000:00:08.0: reg 0x18: [mem 0xf4b00000-0xf4bfffff] <6>[ 0.485461] pci 0000:00:08.0: reg 0x1c: [mem 0xf4d88000-0xf4d88fff] <6>[ 0.485688] pci 0000:00:08.0: reg 0x20: [mem 0xf4c00000-0xf4cfffff] <6>[ 0.485915] pci 0000:00:08.0: reg 0x24: [mem 0xf4d84000-0xf4d85fff] <6>[ 0.486182] pci 0000:00:09.0: [1022:157d] type 00 class 0x060000 <6>[ 0.486638] pci 0000:00:10.0: [1022:7914] type 00 class 0x0c0330 <6>[ 0.486988] pci 0000:00:10.0: reg 0x10: [mem 0xf4d86000-0xf4d87fff 64bit] <6>[ 0.487362] pci 0000:00:10.0: PME# supported from D0 D3hot D3cold <6>[ 0.487997] pci 0000:00:12.0: [1022:7908] type 00 class 0x0c0320 <6>[ 0.488229] pci 0000:00:12.0: reg 0x10: [mem 0xf4d89000-0xf4d890ff] <6>[ 0.488545] pci 0000:00:12.0: supports D1 D2 <6>[ 0.488703] pci 0000:00:12.0: PME# supported from D0 D1 D2 D3hot D3cold <6>[ 0.489218] pci 0000:00:14.0: [1022:790b] type 00 class 0x0c0500 <6>[ 0.489759] pci 0000:00:14.3: [1022:790e] type 00 class 0x060100 <6>[ 0.490304] pci 0000:00:14.7: [1022:7906] type 00 class 0x080501 <6>[ 0.490540] pci 0000:00:14.7: reg 0x10: [mem 0xf4d8a000-0xf4d8a0ff 64bit] <6>[ 0.490867] pci 0000:00:14.7: PME# supported from D3cold <6>[ 0.491240] pci 0000:00:18.0: [1022:15b0] type 00 class 0x060000 <6>[ 0.491659] pci 0000:00:18.1: [1022:15b1] type 00 class 0x060000 <6>[ 0.492163] pci 0000:00:18.2: [1022:15b2] type 00 class 0x060000 <6>[ 0.492586] pci 0000:00:18.3: [1022:15b3] type 00 class 0x060000 <6>[ 0.493049] pci 0000:00:18.4: [1022:15b4] type 00 class 0x060000 <6>[ 0.493462] pci 0000:00:18.5: [1022:15b5] type 00 class 0x060000 <6>[ 0.494059] pci 0000:01:00.0: [168c:003e] type 00 class 0x028000 <6>[ 0.494359] pci 0000:01:00.0: reg 0x10: [mem 0xf4800000-0xf49fffff 64bit] <6>[ 0.494869] pci 0000:01:00.0: PME# supported from D0 D3hot D3cold <6>[ 0.495407] pci 0000:00:02.2: PCI bridge to [bus 01] <6>[ 0.495595] pci 0000:00:02.2: bridge window [mem 0xf4800000-0xf49fffff] <6>[ 0.496160] pci 0000:02:00.0: [1217:8620] type 00 class 0x080501 <6>[ 0.496478] pci 0000:02:00.0: reg 0x10: [mem 0xf4a00000-0xf4a00fff] <6>[ 0.496794] pci 0000:02:00.0: reg 0x14: [mem 0xf4a01000-0xf4a017ff] <6>[ 0.497196] pci 0000:02:00.0: PME# supported from D3hot D3cold <6>[ 0.500211] pci 0000:00:02.4: PCI bridge to [bus 02] <6>[ 0.500407] pci 0000:00:02.4: bridge window [mem 0xf4a00000-0xf4afffff] <6>[ 0.502449] ACPI: PCI Interrupt Link [INTA] (IRQs *3 4 5 7 10 11 12 15) <6>[ 0.502832] ACPI: PCI Interrupt Link [INTB] (IRQs 3 *4 5 7 10 11 12 15) <6>[ 0.503074] ACPI: PCI Interrupt Link [INTC] (IRQs 3 4 *5 7 10 11 12 15) <6>[ 0.503431] ACPI: PCI Interrupt Link [INTD] (IRQs 3 4 5 *7 10 11 12 15) <6>[ 0.503788] ACPI: PCI Interrupt Link [INTE] (IRQs 3 4 5 7 10 *11 12 15) <6>[ 0.504070] ACPI: PCI Interrupt Link [INTF] (IRQs 9) *0 <6>[ 0.504371] ACPI: PCI Interrupt Link [INTG] (IRQs 3 4 5 7 10 11 12 15) *0 <6>[ 0.504734] ACPI: PCI Interrupt Link [INTH] (IRQs 3 4 5 7 10 11 12 15) *0 <6>[ 0.508887] ACPI: EC: interrupt unblocked <6>[ 0.508962] ACPI: EC: event unblocked <6>[ 0.509105] ACPI: EC: EC_CMD/EC_SC=0x66, EC_DATA=0x62 <6>[ 0.509293] ACPI: EC: GPE=0x3 <6>[ 0.509410] ACPI: \_SB_.PCI0.LPCB.EC0_: Boot DSDT EC initialization complete <6>[ 0.509659] ACPI: \_SB_.PCI0.LPCB.EC0_: EC: Used to handle transactions and events <6>[ 0.510271] iommu: Default domain type: Translated <6>[ 0.510295] pci 0000:00:01.0: vgaarb: setting as boot VGA device <6>[ 0.510295] pci 0000:00:01.0: vgaarb: VGA device added: decodes=io+mem,owns=io+mem,locks=none <6>[ 0.510980] pci 0000:00:01.0: vgaarb: bridge control possible <6>[ 0.511186] vgaarb: loaded <5>[ 0.512026] SCSI subsystem initialized <6>[ 0.512186] ACPI: bus type USB registered <6>[ 0.512377] usbcore: registered new interface driver usbfs <6>[ 0.513002] usbcore: registered new interface driver hub <6>[ 0.513215] usbcore: registered new device driver usb <6>[ 0.528037] mc: Linux media interface: v0.10 <6>[ 0.528224] videodev: Linux video capture interface: v2.00 <6>[ 0.528449] pps_core: LinuxPPS API ver. 1 registered <6>[ 0.528963] pps_core: Software ver. 5.3.6 - Copyright 2005-2007 Rodolfo Giometti <6>[ 0.529288] PTP clock support registered <6>[ 0.529495] Advanced Linux Sound Architecture Driver Initialized. <6>[ 0.530625] NetLabel: Initializing <6>[ 0.530755] NetLabel: domain hash size = 128 <6>[ 0.530962] NetLabel: protocols = UNLABELED CIPSOv4 CALIPSO <6>[ 0.531214] NetLabel: unlabeled traffic allowed by default <6>[ 0.531469] PCI: Using ACPI for IRQ routing <6>[ 0.533202] hpet0: at MMIO 0xfed00000, IRQs 2, 8, 0 <6>[ 0.533387] hpet0: 3 comparators, 32-bit 14.318180 MHz counter <6>[ 0.536044] clocksource: Switched to clocksource tsc-early <5>[ 0.892553] VFS: Disk quotas dquot_6.6.0 <6>[ 0.892735] VFS: Dquot-cache hash table entries: 512 (order 0, 4096 bytes) <6>[ 0.893252] pnp: PnP ACPI init <6>[ 0.893806] system 00:00: [mem 0xfec1000a-0xfec11009] has been reserved <6>[ 0.894447] system 00:03: [io 0x0900-0x09fe] has been reserved <6>[ 0.894804] system 00:04: [io 0x0200] has been reserved <6>[ 0.894997] system 00:04: [io 0x0204] has been reserved <6>[ 0.895190] system 00:04: [io 0x0800-0x087f] has been reserved <6>[ 0.895407] system 00:04: [io 0x0880-0x08ff] has been reserved <6>[ 0.897171] pnp: PnP ACPI: found 6 devices <6>[ 0.907602] clocksource: acpi_pm: mask: 0xffffff max_cycles: 0xffffff, max_idle_ns: 2085701024 ns <6>[ 0.908001] NET: Registered protocol family 2 <6>[ 0.908360] IP idents hash table entries: 65536 (order: 7, 524288 bytes, linear) <6>[ 0.909620] tcp_listen_portaddr_hash hash table entries: 2048 (order: 5, 163840 bytes, linear) <6>[ 0.909992] TCP established hash table entries: 32768 (order: 6, 262144 bytes, linear) <6>[ 0.910489] TCP bind hash table entries: 32768 (order: 9, 2359296 bytes, linear) <6>[ 0.911779] TCP: Hash tables configured (established 32768 bind 32768) <6>[ 0.912514] MPTCP token hash table entries: 4096 (order: 6, 360448 bytes, linear) <6>[ 0.912936] UDP hash table entries: 2048 (order: 6, 327680 bytes, linear) <6>[ 0.913330] UDP-Lite hash table entries: 2048 (order: 6, 327680 bytes, linear) <6>[ 0.913846] NET: Registered protocol family 1 <6>[ 0.914568] RPC: Registered named UNIX socket transport module. <6>[ 0.914802] RPC: Registered udp transport module. <6>[ 0.914973] RPC: Registered tcp transport module. <6>[ 0.915145] RPC: Registered tcp NFSv4.1 backchannel transport module. <6>[ 0.915743] NET: Registered protocol family 44 <6>[ 0.915931] pci 0000:00:02.2: PCI bridge to [bus 01] <6>[ 0.916124] pci 0000:00:02.2: bridge window [mem 0xf4800000-0xf49fffff] <6>[ 0.916370] pci 0000:00:02.4: PCI bridge to [bus 02] <6>[ 0.916553] pci 0000:00:02.4: bridge window [mem 0xf4a00000-0xf4afffff] <6>[ 0.916801] pci_bus 0000:00: resource 4 [io 0x0000-0x0cf7 window] <6>[ 0.917021] pci_bus 0000:00: resource 5 [io 0x0d00-0xffff window] <6>[ 0.917249] pci_bus 0000:00: resource 6 [mem 0x000a0000-0x000bffff] <6>[ 0.917471] pci_bus 0000:00: resource 7 [mem 0x000c0000-0x000dffff] <6>[ 0.917693] pci_bus 0000:00: resource 8 [mem 0xd0000000-0xffffffff] <6>[ 0.917916] pci_bus 0000:01: resource 1 [mem 0xf4800000-0xf49fffff] <6>[ 0.918143] pci_bus 0000:02: resource 1 [mem 0xf4a00000-0xf4afffff] <6>[ 0.918489] pci 0000:00:01.0: disabling ATS <6>[ 0.918649] pci 0000:00:01.0: Video device with shadowed ROM at [mem 0x000c0000-0x000dffff] <6>[ 0.919104] pci 0000:00:01.1: D0 power state depends on 0000:00:01.0 <6>[ 0.920081] pci 0000:00:10.0: PME# does not work under D0, disabling it <6>[ 0.920857] PCI: CLS 64 bytes, default 64 <6>[ 0.921282] Unpacking initramfs... <6>[ 1.241608] Freeing initrd memory: 12756K <6>[ 1.241813] PCI-DMA: Using software bounce buffering for IO (SWIOTLB) <6>[ 1.242043] software IO TLB: mapped [mem 0x00000000c9d0d000-0x00000000cdd0d000] (64MB) <6>[ 1.242385] LVT offset 0 assigned for vector 0x400 <6>[ 1.242649] perf: AMD IBS detected (0x000007ff) <3>[ 1.242872] kvm: no hardware support <6>[ 1.243104] kvm: Nested Virtualization enabled <6>[ 1.243270] SVM: kvm: Nested Paging enabled <6>[ 1.243423] SVM: Virtual VMLOAD VMSAVE supported <6>[ 1.243654] SVM: Virtual GIF supported <6>[ 1.245111] check: Scanning for low memory corruption every 60 seconds <5>[ 1.246634] Initialise system trusted keyrings <6>[ 1.246994] workingset: timestamp_bits=56 max_order=20 bucket_order=0 <5>[ 1.257799] NFS: Registering the id_resolver key type <5>[ 1.258017] Key type id_resolver registered <5>[ 1.258193] Key type id_legacy registered <5>[ 1.273830] Key type asymmetric registered <5>[ 1.274008] Asymmetric key parser 'x509' registered <6>[ 1.274228] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 248) <6>[ 1.274510] io scheduler mq-deadline registered <6>[ 1.274677] io scheduler kyber registered <4>[ 1.274990] test_firmware: interface ready <6>[ 1.276840] pcieport 0000:00:02.2: PME: Signaling with IRQ 25 <6>[ 1.277510] pcieport 0000:00:02.4: PME: Signaling with IRQ 26 <6>[ 1.278400] ACPI: AC Adapter [AC] (on-line) <6>[ 1.278795] input: Lid Switch as /devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A08:00/device:17/PNP0C09:00/PNP0C0D:00/input/input0 <6>[ 1.279704] ACPI: Lid Switch [LID0] <6>[ 1.279974] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input1 <6>[ 1.280369] ACPI: Power Button [PWRF] <6>[ 1.280771] ACPI: Video Device [IGFX] (multi-head: no rom: yes post: no) <6>[ 1.281484] input: Video Bus as /devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A08:00/LNXVIDEO:00/input/input2 <6>[ 1.281926] ACPI: \_PR_.P000: Found 2 idle states <6>[ 1.282554] ACPI: \_PR_.P001: Found 2 idle states <6>[ 1.284573] thermal LNXTHERM:00: registered as thermal_zone0 <6>[ 1.284781] ACPI: Thermal Zone [THRM] (32 C) <6>[ 1.285345] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled <6>[ 1.287580] battery: ACPI: Battery Slot [BAT0] (battery present) <6>[ 1.288433] printk: console [ttyS0] disabled <6>[ 1.288797] AMD0020:00: ttyS0 at MMIO 0xfedc6000 (irq = 10, base_baud = 3000000) is a 16550A <6>[ 2.261492] tsc: Refined TSC clocksource calibration: 1597.002 MHz <6>[ 2.261509] clocksource: tsc: mask: 0xffffffffffffffff max_cycles: 0x170514dcf86, max_idle_ns: 440795282824 ns <6>[ 2.261581] clocksource: Switched to clocksource tsc <6>[ 4.088885] printk: console [ttyS0] enabled <6>[ 4.094124] AMD0020:01: ttyS1 at MMIO 0xfedc8000 (irq = 11, base_baud = 3000000) is a 16550A <6>[ 4.103429] Non-volatile memory driver v1.3 <6>[ 4.107966] Linux agpgart interface v0.103 <6>[ 4.112589] ACPI: bus type drm_connector registered <6>[ 4.117831] [drm] amdgpu kernel modesetting enabled. <6>[ 4.123111] amdgpu 0000:00:01.0: vgaarb: deactivate vga console <6>[ 4.129796] [drm] initializing kernel modesetting (STONEY 0x1002:0x98E4 0x1002:0x1EB0 0xEB). <4>[ 4.138500] amdgpu 0000:00:01.0: amdgpu: Trusted Memory Zone (TMZ) feature not supported <6>[ 4.146925] [drm] register mmio base: 0xF4D00000 <6>[ 4.151803] [drm] register mmio size: 262144 <6>[ 4.156337] [drm] add ip block number 0 <6>[ 4.161475] [drm] add ip block number 1 <6>[ 4.166529] [drm] add ip block number 2 <6>[ 4.171319] [drm] add ip block number 3 <6>[ 4.176369] [drm] add ip block number 4 <6>[ 4.181508] [drm] add ip block number 5 <6>[ 4.186644] [drm] add ip block number 6 <6>[ 4.191175] [drm] add ip block number 7 <6>[ 4.196224] [drm] add ip block number 8 <6>[ 4.201273] [drm] add ip block number 9 <6>[ 4.206202] amdgpu 0000:00:01.0: amdgpu: Fetched VBIOS from VFCT <6>[ 4.212469] amdgpu: ATOM BIOS: 113-C91400-010 <6>[ 4.217110] [drm] UVD is enabled in physical mode <6>[ 4.222075] [drm] VCE enabled in VM mode <6>[ 4.226391] [drm] vm size is 64 GB, 2 levels, block size is 10-bit, fragment size is 9-bit <6>[ 4.234917] amdgpu 0000:00:01.0: amdgpu: VRAM: 16M 0x000000F400000000 - 0x000000F400FFFFFF (16M used) <6>[ 4.244389] amdgpu 0000:00:01.0: amdgpu: GART: 1024M 0x000000FF00000000 - 0x000000FF3FFFFFFF <6>[ 4.253085] [drm] Detected VRAM RAM=16M, BAR=16M <6>[ 4.257961] [drm] RAM width 64bits UNKNOWN <6>[ 4.262651] [TTM] Zone kernel: Available graphics memory: 1962840 KiB <6>[ 4.269467] [TTM] Initializing pool allocator <6>[ 4.274106] [TTM] Initializing DMA pool allocator <6>[ 4.279263] [drm] amdgpu: 16M of VRAM memory ready <6>[ 4.284323] [drm] amdgpu: 2875M of GTT memory ready. <6>[ 4.289553] [drm] GART: num cpu pages 262144, num gpu pages 262144 <6>[ 4.296081] [drm] PCIE GART of 1024M enabled (table at 0x000000F400401000). <6>[ 4.305675] amdgpu: hwmgr_sw_init smu backed is smu8_smu <6>[ 4.311283] [drm] Found UVD firmware Version: 1.43 Family ID: 15 <6>[ 4.317556] [drm] UVD ENC is disabled <6>[ 4.321835] [drm] Found VCE firmware Version: 52.0 Binary ID: 3 <6>[ 4.329738] amdgpu: smu version 33.09.00 <6>[ 4.341983] [drm] DM_PPLIB: values for Engine clock <6>[ 4.347128] [drm] DM_PPLIB: 200000 <6>[ 4.350886] [drm] DM_PPLIB: 300000 <6>[ 4.354637] [drm] DM_PPLIB: 400000 <6>[ 4.358388] [drm] DM_PPLIB: 450000 <6>[ 4.362138] [drm] DM_PPLIB: 496560 <6>[ 4.365889] [drm] DM_PPLIB: 533340 <6>[ 4.369646] [drm] DM_PPLIB: 576000 <6>[ 4.373396] [drm] DM_PPLIB: 600000 <6>[ 4.377159] [drm] DM_PPLIB: Validation clocks: <6>[ 4.381867] [drm] DM_PPLIB: engine_max_clock: 60000 <6>[ 4.387264] [drm] DM_PPLIB: memory_max_clock: 93300 <6>[ 4.392660] [drm] DM_PPLIB: level : 8 <6>[ 4.397711] [drm] DM_PPLIB: values for Display clock <6>[ 4.402933] [drm] DM_PPLIB: 300000 <6>[ 4.406683] [drm] DM_PPLIB: 400000 <6>[ 4.410435] [drm] DM_PPLIB: 496560 <6>[ 4.414184] [drm] DM_PPLIB: 626090 <6>[ 4.417931] [drm] DM_PPLIB: 685720 <6>[ 4.421679] [drm] DM_PPLIB: 757900 <6>[ 4.425425] [drm] DM_PPLIB: 800000 <6>[ 4.429173] [drm] DM_PPLIB: 847060 <6>[ 4.432922] [drm] DM_PPLIB: Validation clocks: <6>[ 4.437623] [drm] DM_PPLIB: engine_max_clock: 60000 <6>[ 4.443019] [drm] DM_PPLIB: memory_max_clock: 93300 <6>[ 4.448415] [drm] DM_PPLIB: level : 8 <6>[ 4.453466] [drm] DM_PPLIB: values for Memory clock <6>[ 4.458601] [drm] DM_PPLIB: 667000 <6>[ 4.462351] [drm] DM_PPLIB: 933000 <6>[ 4.466101] [drm] DM_PPLIB: Validation clocks: <6>[ 4.470802] [drm] DM_PPLIB: engine_max_clock: 60000 <6>[ 4.476201] [drm] DM_PPLIB: memory_max_clock: 93300 <6>[ 4.481595] [drm] DM_PPLIB: level : 8 <6>[ 4.486769] [drm] Display Core initialized with v3.2.104! <6>[ 4.605414] [drm] UVD initialized successfully. <6>[ 4.711326] [drm] VCE initialized successfully. <6>[ 4.716619] amdgpu 0000:00:01.0: amdgpu: SE 1, SH per SE 1, CU per SH 3, active_cu_number 3 <6>[ 4.726493] [drm] fb mappable at 0xCF86F000 <6>[ 4.730971] [drm] vram apper at 0xCF000000 <6>[ 4.735327] [drm] size 1179648 <6>[ 4.738644] [drm] fb depth is 8 <6>[ 4.742047] [drm] pitch is 1536 <6>[ 4.746141] fbcon: amdgpudrmfb (fb0) is primary device <6>[ 4.748109] Console: switching to colour frame buffer device 170x48 <6>[ 4.761808] amdgpu 0000:00:01.0: [drm] fb0: amdgpudrmfb frame buffer device <6>[ 4.772761] [drm] Initialized amdgpu 3.40.0 20150101 for 0000:00:01.0 on minor 0 <6>[ 4.781757] [drm] Initialized vgem 1.0.0 20120112 for vgem on minor 1 <6>[ 4.795195] loop: module loaded <6>[ 4.799017] lkdtm: No crash points registered, enable through debugfs <6>[ 4.807147] e100: Intel(R) PRO/100 Network Driver <6>[ 4.812120] e100: Copyright(c) 1999-2006 Intel Corporation <6>[ 4.817899] e1000: Intel(R) PRO/1000 Network Driver <6>[ 4.823036] e1000: Copyright (c) 1999-2006 Intel Corporation. <6>[ 4.829110] e1000e: Intel(R) PRO/1000 Network Driver <6>[ 4.834344] e1000e: Copyright(c) 1999 - 2015 Intel Corporation. <6>[ 4.840571] sky2: driver version 1.30 <6>[ 4.844679] usbcore: registered new interface driver r8152 <6>[ 4.850458] usbcore: registered new interface driver asix <6>[ 4.856137] usbcore: registered new interface driver ax88179_178a <6>[ 4.862515] usbcore: registered new interface driver cdc_ether <6>[ 4.868624] usbcore: registered new interface driver net1080 <6>[ 4.874561] usbcore: registered new interface driver cdc_subset <6>[ 4.880758] usbcore: registered new interface driver zaurus <6>[ 4.886621] usbcore: registered new interface driver cdc_ncm <6>[ 4.892804] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver <6>[ 4.899619] ehci-pci: EHCI PCI platform driver <6>[ 4.904721] ehci-pci 0000:00:12.0: EHCI Host Controller <6>[ 4.910767] ehci-pci 0000:00:12.0: new USB bus registered, assigned bus number 1 <6>[ 4.918487] ehci-pci 0000:00:12.0: debug port 2 <6>[ 4.923455] ehci-pci 0000:00:12.0: irq 18, io mem 0xf4d89000 <6>[ 4.935700] ehci-pci 0000:00:12.0: USB 2.0 started, EHCI 1.00 <6>[ 4.942199] usb usb1: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 5.10 <6>[ 4.950751] usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1 <6>[ 4.958311] usb usb1: Product: EHCI Host Controller <6>[ 4.963452] usb usb1: Manufacturer: Linux 5.10.218-cip49 ehci_hcd <6>[ 4.969804] usb usb1: SerialNumber: 0000:00:12.0 <6>[ 4.975694] hub 1-0:1.0: USB hub found <6>[ 4.979789] hub 1-0:1.0: 2 ports detected <6>[ 4.984947] ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver <6>[ 4.991416] ohci-pci: OHCI PCI platform driver <6>[ 4.996166] uhci_hcd: USB Universal Host Controller Interface driver <6>[ 5.003111] xhci_hcd 0000:00:10.0: xHCI Host Controller <6>[ 5.009296] xhci_hcd 0000:00:10.0: new USB bus registered, assigned bus number 2 <6>[ 5.017183] xhci_hcd 0000:00:10.0: hcc params 0x014040c3 hci version 0x100 quirks 0x0000000000000410 <6>[ 5.027437] xhci_hcd 0000:00:10.0: xHCI Host Controller <6>[ 5.033185] xhci_hcd 0000:00:10.0: new USB bus registered, assigned bus number 3 <6>[ 5.040850] xhci_hcd 0000:00:10.0: Host supports USB 3.0 SuperSpeed <6>[ 5.047609] usb usb2: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 5.10 <6>[ 5.056150] usb usb2: New USB device strings: Mfr=3, Product=2, SerialNumber=1 <6>[ 5.063629] usb usb2: Product: xHCI Host Controller <6>[ 5.068771] usb usb2: Manufacturer: Linux 5.10.218-cip49 xhci-hcd <6>[ 5.075123] usb usb2: SerialNumber: 0000:00:10.0 <6>[ 5.080596] hub 2-0:1.0: USB hub found <6>[ 5.084694] hub 2-0:1.0: 4 ports detected <6>[ 5.089620] usb usb3: We don't know the algorithms for LPM for this host, disabling LPM. <6>[ 5.098042] usb usb3: New USB device found, idVendor=1d6b, idProduct=0003, bcdDevice= 5.10 <6>[ 5.106562] usb usb3: New USB device strings: Mfr=3, Product=2, SerialNumber=1 <6>[ 5.114107] usb usb3: Product: xHCI Host Controller <6>[ 5.119246] usb usb3: Manufacturer: Linux 5.10.218-cip49 xhci-hcd <6>[ 5.125598] usb usb3: SerialNumber: 0000:00:10.0 <6>[ 5.131184] hub 3-0:1.0: USB hub found <6>[ 5.135270] hub 3-0:1.0: 4 ports detected <6>[ 5.140235] usbcore: registered new interface driver usblp <6>[ 5.146033] usbcore: registered new interface driver usb-storage <6>[ 5.152600] udc-core: couldn't find an available UDC - added [g_ether] to list of pending drivers <6>[ 5.161830] i8042: PNP: PS/2 Controller [PNP0303:PS2K] at 0x60,0x64 irq 1 <4>[ 5.168878] i8042: PNP: PS/2 appears to have AUX port disabled, if this is incorrect please boot with i8042.nopnp <4>[ 5.180585] i8042: Warning: Keylock active <6>[ 5.185110] serio: i8042 KBD port at 0x60,0x64 irq 1 <6>[ 5.191651] rtc_cmos 00:01: RTC can wake from S4 <6>[ 5.197591] rtc_cmos 00:01: registered as rtc0 <6>[ 5.202529] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input3 <6>[ 5.211653] rtc_cmos 00:01: alarms up to one day, 114 bytes nvram, hpet irqs <6>[ 5.219430] device-mapper: ioctl: 4.43.0-ioctl (2020-10-01) initialised: dm-devel@redhat.com <6>[ 5.228196] sdhci: Secure Digital Host Controller Interface driver <6>[ 5.234689] sdhci: Copyright(c) Pierre Ossman <6>[ 5.239473] sdhci-pci 0000:00:14.7: SDHCI controller found [1022:7906] (rev 1) <6>[ 5.248677] usb 1-1: new high-speed USB device number 2 using ehci-pci <6>[ 5.356841] mmc0: SDHCI controller on PCI [0000:00:14.7] using ADMA 64-bit <6>[ 5.364150] usb 2-1: new high-speed USB device number 2 using xhci_hcd <6>[ 5.371016] sdhci-pci 0000:02:00.0: SDHCI controller found [1217:8620] (rev 1) <6>[ 5.379092] mmc1: emmc 1.8v flag is set, force 1.8v signaling voltage <6>[ 5.386439] mmc1: SDHCI controller on PCI [0000:02:00.0] using ADMA <6>[ 5.393479] hid: raw HID events driver (C) Jiri Kosina <6>[ 5.399427] usbcore: registered new interface driver usbhid <6>[ 5.405293] usbhid: USB HID core driver <6>[ 5.410492] usb 1-1: New USB device found, idVendor=0438, idProduct=7900, bcdDevice= 0.18 <6>[ 5.413329] cros_ec_lpcs GOOG0004:00: Chrome EC device registered <6>[ 5.418972] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 <6>[ 5.426672] snd_hda_intel 0000:00:01.1: Force to non-snoop mode <6>[ 5.439252] hub 1-1:1.0: USB hub found <6>[ 5.439630] ipip: IPv4 and MPLS over IPv4 tunneling driver <6>[ 5.449479] hub 1-1:1.0: 4 ports detected <6>[ 5.454776] IPv4 over IPsec tunneling driver <3>[ 5.457272] snd_hda_intel 0000:00:01.1: Cannot probe codecs, giving up <6>[ 5.459679] Initializing XFRM netlink socket <6>[ 5.471215] NET: Registered protocol family 10 <6>[ 5.477233] Segment Routing with IPv6 <6>[ 5.482025] NET: Registered protocol family 17 <6>[ 5.487214] 8021q: 802.1Q VLAN Support v1.8 <5>[ 5.491790] Key type dns_resolver registered <6>[ 5.496339] x86/pm: family 0x15 cpu detected, MSR saving is needed during suspending. <6>[ 5.505175] microcode: CPU0: patch_level=0x06006705 <6>[ 5.510343] microcode: CPU1: patch_level=0x06006705 <6>[ 5.515532] microcode: Microcode Update Driver: v2.2. <6>[ 5.515544] IPI shorthand broadcast: enabled <6>[ 5.525485] sched_clock: Marking stable (5496004614, 29441839)->(5553392699, -27946246) <6>[ 5.534054] registered taskstats version 1 <5>[ 5.538458] Loading compiled-in X.509 certificates <6>[ 5.544289] usb 2-1: New USB device found, idVendor=04b4, idProduct=6502, bcdDevice=50.10 <6>[ 5.546414] PM: Magic number: 12:161:918 <6>[ 5.552798] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 <6>[ 5.564663] printk: console [netcon0] enabled <6>[ 5.566776] hub 2-1:1.0: USB hub found <6>[ 5.569292] netconsole: network logging started <6>[ 5.573654] hub 2-1:1.0: 4 ports detected <6>[ 5.582885] acpi_cpufreq: overriding BIOS provided _PSD data <6>[ 5.707469] usb 2-3: new high-speed USB device number 3 using xhci_hcd <6>[ 5.766477] usb 1-1.1: new high-speed USB device number 3 using ehci-pci <6>[ 5.848405] usb 2-3: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=31.00 <6>[ 5.856851] usb 2-3: New USB device strings: Mfr=1, Product=2, SerialNumber=6 <6>[ 5.864244] usb 2-3: Product: USB 10/100/1000 LAN <6>[ 5.869209] usb 2-3: Manufacturer: Realtek <6>[ 5.873571] usb 2-3: SerialNumber: 001000001 <6>[ 5.913773] usb 1-1.1: New USB device found, idVendor=05c8, idProduct=03d1, bcdDevice= 1.03 <6>[ 5.922390] usb 1-1.1: New USB device strings: Mfr=3, Product=1, SerialNumber=2 <6>[ 5.929955] usb 1-1.1: Product: HP TrueVision HD Camera <6>[ 5.935452] usb 1-1.1: Manufacturer: Foxlink <6>[ 5.939984] usb 1-1.1: SerialNumber: 0x0001 <6>[ 5.944452] usb 2-1.1: new high-speed USB device number 4 using xhci_hcd <6>[ 6.031458] usb 1-1.2: new full-speed USB device number 4 using ehci-pci <6>[ 6.042281] usb 2-1.1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=31.00 <6>[ 6.050894] usb 2-1.1: New USB device strings: Mfr=1, Product=2, SerialNumber=6 <6>[ 6.058458] usb 2-1.1: Product: USB 10/100/1000 LAN <6>[ 6.063596] usb 2-1.1: Manufacturer: Realtek <6>[ 6.068127] usb 2-1.1: SerialNumber: 000000000000 <6>[ 6.142250] usb 1-1.2: New USB device found, idVendor=0cf3, idProduct=e300, bcdDevice= 0.01 <6>[ 6.150866] usb 1-1.2: New USB device strings: Mfr=0, Product=0, SerialNumber=0 <6>[ 6.159712] usb 2-3: reset high-speed USB device number 3 using xhci_hcd <6>[ 6.362523] usb 2-1.1: reset high-speed USB device number 4 using xhci_hcd <6>[ 6.393288] r8152 2-3:1.0: load rtl8153b-2 v2 04/27/23 successfully <6>[ 6.457195] r8152 2-3:1.0 eth0: v1.11.11 <6>[ 6.545653] r8152 2-1.1:1.0: load rtl8153b-2 v2 04/27/23 successfully <6>[ 6.609703] r8152 2-1.1:1.0 eth1: v1.11.11 <6>[ 6.670914] mmc1: new HS200 MMC card at address 0001 <6>[ 6.677189] mmcblk1: mmc1:0001 DF4016 14.7 GiB <6>[ 6.682199] mmcblk1boot0: mmc1:0001 DF4016 partition 1 4.00 MiB <6>[ 6.688545] mmcblk1boot1: mmc1:0001 DF4016 partition 2 4.00 MiB <6>[ 6.695119] mmcblk1rpmb: mmc1:0001 DF4016 partition 3 4.00 MiB, chardev (245:0) <6>[ 6.713784] mmcblk1: p1 p2 p3 p4 p5 p6 p7 p8 p9 p10 p11 p12 <6>[ 8.057782] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready <6>[ 8.065037] r8152 2-3:1.0 eth0: carrier on <5>[ 8.069475] Sending DHCP requests ., OK <6>[ 8.081995] IP-Config: Got DHCP answer from 192.168.201.1, my address is 192.168.201.18 <6>[ 8.090261] IP-Config: Complete: <6>[ 8.093766] device=eth0, hwaddr=00:e0:4c:78:41:78, ipaddr=192.168.201.18, mask=255.255.255.0, gw=192.168.201.1 <6>[ 8.104450] host=hp-11a-g6-ee-grunt-cbg-9, domain=lava-rack, nis-domain=(none) <6>[ 8.112364] bootserver=192.168.201.1, rootserver=192.168.201.1, rootpath= <6>[ 8.112366] nameserver0=192.168.201.1 <5>[ 8.162002] cfg80211: Loading compiled-in X.509 certificates for regulatory database <6>[ 8.175049] modprobe (97) used greatest stack depth: 14208 bytes left <5>[ 8.182694] cfg80211: Loaded X.509 cert 'sforshee: 00b28ddf47aef9cea7' <5>[ 8.189820] cfg80211: Loaded X.509 cert 'wens: 61c038651aabdcf94bd0ac7ff06c7248db18c600' <4>[ 8.198549] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 <6>[ 8.199537] clk: Disabling unused clocks <6>[ 8.207527] cfg80211: failed to load regulatory.db <6>[ 8.211782] ALSA device list: <6>[ 8.219980] No soundcards found. <4>[ 8.224206] dw-apb-uart AMD0020:00: forbid DMA for kernel console <6>[ 8.235191] Freeing unused kernel image (initmem) memory: 2164K <6>[ 8.247830] Write protecting the kernel read-only data: 51200k <6>[ 8.255351] Freeing unused kernel image (text/rodata gap) memory: 2028K <6>[ 8.263233] Freeing unused kernel image (rodata/data gap) memory: 2020K <6>[ 8.270134] Run /init as init process Loading, please wait... Starting systemd-udevd version 252.22-1~deb12u1 <6>[ 8.300861] systemd-udevd (123) used greatest stack depth: 13600 bytes left <4>[ 8.657678] elan_i2c i2c-ELAN0000:00: supply vcc not found, using dummy regulator <4>[ 8.665862] raydium_ts i2c-RAYD0001:00: supply avdd not found, using dummy regulator <6>[ 8.676219] chromeos ramoops using acpi device. <4>[ 8.690997] cros-usbpd-notify-acpi GOOG0003:00: Couldn't get Chrome EC device pointer. <4>[ 8.693027] raydium_ts i2c-RAYD0001:00: supply vccio not found, using dummy regulator <3>[ 8.731358] designware-i2s designware-i2s.1.auto: IRQ index 0 not found <3>[ 8.740623] designware-i2s designware-i2s.2.auto: IRQ index 0 not found <3>[ 8.750107] designware-i2s designware-i2s.3.auto: IRQ index 0 not found <3>[ 8.774658] raydium_ts i2c-RAYD0001:00: nothing at this address <6>[ 8.783555] piix4_smbus 0000:00:14.0: SMBus Host Controller at 0xb00, revision 0 <6>[ 8.788280] r8152 2-1.1:1.0 enxf4f5e850e77e: renamed from eth1 <6>[ 8.791260] piix4_smbus 0000:00:14.0: Using register 0x02 for SMBus port selection <6>[ 8.810534] piix4_smbus 0000:00:14.0: Auxiliary SMBus Host Controller at 0xb20 <6>[ 8.823264] elan_i2c i2c-ELAN0000:00: Elan Touchpad: Module ID: 0x00b4, Firmware: 0x0002, Sample: 0x0002, IAP: 0x000e <6>[ 8.845801] input: Elan Touchpad as /devices/platform/AMD0010:02/i2c-2/i2c-ELAN0000:00/input/input4 <4>[ 8.862728] da7219 i2c-DLGS7219:00: Using default DAI clk names: da7219-dai-wclk, da7219-dai-bclk <6>[ 8.880229] uvcvideo: Found UVC 1.00 device HP TrueVision HD Camera (05c8:03d1) <6>[ 8.891358] sp5100_tco: SP5100/SB800 TCO WatchDog Timer Driver <6>[ 8.931135] Bluetooth: Core ver 2.22 <6>[ 8.934904] sp5100-tco sp5100-tco: Using 0xfeb00000 for watchdog MMIO address <6>[ 8.936161] NET: Registered protocol family 31 <6>[ 8.947149] Bluetooth: HCI device and connection manager initialized <6>[ 8.956588] Bluetooth: HCI socket layer initialized <6>[ 8.962528] Bluetooth: L2CAP socket layer initialized <6>[ 8.972304] input: HP TrueVision HD Camera: HP Tru as /devices/pci0000:00/0000:00:12.0/usb1/1-1/1-1.1/1-1.1:1.0/input/input5 <6>[ 8.972796] ath10k_pci 0000:01:00.0: pci irq msi oper_irq_mode 2 irq_mode 0 reset_mode 0 <6>[ 9.005009] sp5100-tco sp5100-tco: initialized. heartbeat=60 sec (nowayout=0) coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 smm starting... SMI# #0 GSMI Unknown: 0xff <6>[ 9.034511] amd-da7219-play: codec dai name = da7219-hifi <6>[ 9.049502] usbcore: registere coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 smm starting... SMI# #0 GSMI Handshake d new interface driver uvcvideo <6>[ 9.064041] USB Video Class driver (1.1.1) <6>[ 9.091789] Bluetooth: SCO socket layer initialized <6>[ 9.107277] usbcore: registered new interface driver btusb <4>[ 9.114754] bluetooth hci0: Direct firmware load for qca/rampatch_usb_00000302.bin failed with error -2 <6>[ 9.123969] Registered efivars operations <3>[ 9.124519] Bluetooth: hci0: failed to request rampatch file: qca/rampatch_usb_00000302.bin (-2) <6>[ 9.139164] input: acpd7219m98357 Headset Jack as /devices/platform/AMD7219:00/sound/card0/input6 <6>[ 9.156497] gsmi version 1.0 loaded Begin: Loading essential drivers ... done. Begin: Running /scripts/init-premount ... done. Begin: Mounting root file system ... Begin: Running /scripts/nfs-top ... done. Begin: Running /scripts/nfs-premount ... Waiting up to 60 secs for any ethernet to become available Device /sys/class/net/enxf4f5e850e77e found done. Begin: Waiting up to 180 secs for any network device to become available ... done. IP-Config: eth0 hardware address 00:e0:4c:78:41:78 mtu 1500 DHCP IP-Config: enxf4f5e850e77e hardware address f4:f5:e8:50:e7:7e mtu 1500 DHCP IP-Config: eth0 complete (dhcp from 192.168.201.1): address: 192.168.201.18 broadcast: 192.168.201.255 netmask: 255.255.255.0 gateway: 192.168.201.1 dns0 : 192.168.201.1 dns1 : 0.0.0.0 host : hp-11a-g6-ee-grunt-cbg-9 domain : lava<6>[ 9.289913] ipconfig (176) used greatest stack depth: 13048 bytes left -rack rootserver: 192.168.201.1 rootpath: filename : <6>[ 9.300368] ath10k_pci 0000:01:00.0: qca6174 hw3.2 target 0x05030000 chip_id 0x00340aff sub 1a56:1435 <6>[ 9.332572] ath10k_pci 0000:01:00.0: kconfig debug 0 debugfs 0 tracing 0 dfs 0 testmode 0 <6>[ 9.341681] ath10k_pci 0000:01:00.0: firmware ver WLAN.RM.4.4.1-00309- api 6 features wowlan,ignore-otp,mfp crc32 0793bcf2 <6>[ 9.356630] nfsmount (177) used greatest stack depth: 12504 bytes left done. Begin: Running /scripts/nfs-bottom ... done. Begin: Running /scripts/init-bottom ... done. <6>[ 9.423567] ath10k_pci 0000:01:00.0: board_file api 2 bmi_id N/A crc32 d2863f91 <6>[ 9.515652] ath10k_pci 0000:01:00.0: htt-ver 3.87 wmi-op 4 htt-op 3 cal otp max-sta 32 raw 0 hwcrypto 1 SELinux: Could not open policy file <= /etc/selinux/targeted/policy/policy.33: No such file or directory <30>[ 10.750020] systemd[1]: systemd 252.22-1~deb12u1 running in system mode (+PAM +AUDIT +SELINUX +APPARMOR +IMA +SMACK +SECCOMP +GCRYPT -GNUTLS +OPENSSL +ACL +BLKID +CURL +ELFUTILS +FIDO2 +IDN2 -IDN +IPTC +KMOD +LIBCRYPTSETUP +LIBFDISK +PCRE2 -PWQUALITY +P11KIT +QRENCODE +TPM2 +BZIP2 +LZ4 +XZ +ZLIB +ZSTD -BPF_FRAMEWORK -XKBCOMMON +UTMP +SYSVINIT default-hierarchy=unified) <30>[ 10.783068] systemd[1]: Detected architecture x86-64. Welcome to Debian GNU/Linux 12 (bookworm)! <30>[ 10.806347] systemd[1]: Hostname set to . <30>[ 11.429128] systemd[1]: Queued start job for default target graphical.target. <30>[ 11.439733] systemd[1]: Created slice system-getty.slice - Slice /system/getty. [ OK ] Created slice system-getty.slice - Slice /system/getty. <30>[ 11.459665] systemd[1]: Created slice system-modprobe.slice - Slice /system/modprobe. [ OK ] Created slice system-modpr…lice - Slice /system/modprobe. <30>[ 11.479665] systemd[1]: Created slice system-serial\x2dgetty.slice - Slice /system/serial-getty. [ OK ] Created slice system-seria… - Slice /system/serial-getty. <30>[ 11.500528] systemd[1]: Created slice user.slice - User and Session Slice. [ OK ] Created slice user.slice - User and Session Slice. <30>[ 11.518319] systemd[1]: Started systemd-ask-password-console.path - Dispatch Password Requests to Console Directory Watch. [ OK ] Started systemd-ask-passwo…quests to Console Directory Watch. <30>[ 11.541148] systemd[1]: Started systemd-ask-password-wall.path - Forward Password Requests to Wall Directory Watch. [ OK ] Started systemd-ask-passwo… Requests to Wall Directory Watch. <30>[ 11.564082] systemd[1]: Set up automount proc-sys-fs-binfmt_misc.automount - Arbitrary Executable File Formats File System Automount Point. [ OK ] Set up automount proc-sys-…rmats File System Automount Point. <30>[ 11.587925] systemd[1]: Expecting device dev-ttyS0.device - /dev/ttyS0... Expecting device dev-ttyS0.device - /dev/ttyS0... <30>[ 11.604868] systemd[1]: Reached target cryptsetup.target - Local Encrypted Volumes. [ OK ] Reached target cryptsetup.…get - Local Encrypted Volumes. <30>[ 11.623906] systemd[1]: Reached target integritysetup.target - Local Integrity Protected Volumes. [ OK ] Reached target integrityse…Local Integrity Protected Volumes. <30>[ 11.644911] systemd[1]: Reached target paths.target - Path Units. [ OK ] Reached target paths.target - Path Units. <30>[ 11.660893] systemd[1]: Reached target remote-fs.target - Remote File Systems. [ OK ] Reached target remote-fs.target - Remote File Systems. <30>[ 11.678887] systemd[1]: Reached target slices.target - Slice Units. [ OK ] Reached target slices.target - Slice Units. <30>[ 11.695909] systemd[1]: Reached target swap.target - Swaps. [ OK ] Reached target swap.target - Swaps. <30>[ 11.710888] systemd[1]: Reached target veritysetup.target - Local Verity Protected Volumes. [ OK ] Reached target veritysetup… - Local Verity Protected Volumes. <30>[ 11.731256] systemd[1]: Listening on systemd-initctl.socket - initctl Compatibility Named Pipe. [ OK ] Listening on systemd-initc… initctl Compatibility Named Pipe. <30>[ 11.753693] systemd[1]: Listening on systemd-journald-audit.socket - Journal Audit Socket. [ OK ] Listening on systemd-journ…socket - Journal Audit Socket. <30>[ 11.773859] systemd[1]: Listening on systemd-journald-dev-log.socket - Journal Socket (/dev/log). [ OK ] Listening on systemd-journ…t - Journal Socket (/dev/log). <30>[ 11.792487] systemd[1]: Listening on systemd-journald.socket - Journal Socket. [ OK ] Listening on systemd-journald.socket - Journal Socket. <30>[ 11.809802] systemd[1]: Listening on systemd-networkd.socket - Network Service Netlink Socket. [ OK ] Listening on systemd-netwo… - Network Service Netlink Socket. <30>[ 11.829415] systemd[1]: Listening on systemd-udevd-control.socket - udev Control Socket. [ OK ] Listening on systemd-udevd….socket - udev Control Socket. <30>[ 11.847363] systemd[1]: Listening on systemd-udevd-kernel.socket - udev Kernel Socket. [ OK ] Listening on systemd-udevd…l.socket - udev Kernel Socket. <30>[ 11.867405] systemd[1]: Mounting dev-hugepages.mount - Huge Pages File System... Mounting dev-hugepages.mount - Huge Pages File System... <30>[ 11.886850] systemd[1]: Mounting dev-mqueue.mount - POSIX Message Queue File System... Mounting dev-mqueue.mount…POSIX Message Queue File System... <30>[ 11.906800] systemd[1]: Mounting sys-kernel-debug.mount - Kernel Debug File System... Mounting sys-kernel-debug.… - Kernel Debug File System... <30>[ 11.929173] systemd[1]: Mounting sys-kernel-tracing.mount - Kernel Trace File System... Mounting sys-kernel-tracin… - Kernel Trace File System... <30>[ 11.950345] systemd[1]: Starting kmod-static-nodes.service - Create List of Static Device Nodes... Starting kmod-static-nodes…ate List of Static Device Nodes... <30>[ 11.971994] systemd[1]: Starting modprobe@configfs.service - Load Kernel Module configfs... Starting modprobe@configfs…m - Load Kernel Module configfs... <30>[ 11.995262] systemd[1]: Starting modprobe@dm_mod.service - Load Kernel Module dm_mod... Starting modprobe@dm_mod.s…[0m - Load Kernel Module dm_mod... <30>[ 12.016333] systemd[1]: Starting modprobe@drm.service - Load Kernel Module drm... Starting modprobe@drm.service - Load Kernel Module drm... <30>[ 12.037784] systemd[1]: Starting modprobe@efi_pstore.service - Load Kernel Module efi_pstore... Starting modprobe@efi_psto…- Load Kernel Module efi_pstore... <30>[ 12.059289] systemd[1]: Starting modprobe@fuse.service - Load Kernel Module fuse... Starting modprobe@fuse.ser…e - Load Kernel Module fuse... <30>[ 12.081268] systemd[1]: Starting modprobe@loop.service - Load Kernel Module loop... Starting modprobe@loop.ser…e - Load Kernel Module loop... <6>[ 12.100267] fuse: init (API version 7.32) <30>[ 12.109354] systemd[1]: Starting systemd-journald.service - Journal Service... Starting systemd-journald.service - Journal Service... <30>[ 12.131194] systemd[1]: Starting systemd-modules-load.service - Load Kernel Modules... Starting systemd-modules-l…rvice - Load Kernel Modules... <30>[ 12.152347] systemd[1]: Starting systemd-network-generator.service - Generate network units from Kernel command line... Starting systemd-network-g… units from Kernel command line... <30>[ 12.177404] systemd[1]: Starting systemd-remount-fs.service - Remount Root and Kernel File Systems... Starting systemd-remount-f…nt Root and Kernel File Systems... <30>[ 12.201736] systemd[1]: Starting systemd-udev-trigger.service - Coldplug All udev Devices... Starting systemd-udev-trig…[0m - Coldplug All udev Devices... <30>[ 12.234888] systemd[1]: Mounted dev-hugepages.mount - Huge Pages File System. [ OK ] Mounted dev-hugepages.mount - Huge Pages File System. <30>[ 12.253382] systemd[1]: Mounted dev-mqueue.mount - POSIX Message Queue File System. [ OK ] Mounted dev-mqueue.mount[…- POSIX Message Queue File System. <30>[ 12.273133] systemd[1]: Mounted sys-kernel-debug.mount - Kernel Debug File System. [ OK ] Mounted sys-kernel-debug.m…nt - Kernel Debug File System. <30>[ 12.293060] systemd[1]: Mounted sys-kernel-tracing.mount - Kernel Trace File System. [ OK ] Mounted sys-kernel-tracing…nt - Kernel Trace File System. <30>[ 12.315114] systemd[1]: Finished kmod-static-nodes.service - Create List of Static Device Nodes. [ OK ] Finished kmod-static-nodes…reate List of Static Device Nodes. <30>[ 12.338061] systemd[1]: modprobe@configfs.service: Deactivated successfully. <30>[ 12.346546] systemd[1]: Finished modprobe@configfs.service - Load Kernel Module configfs. [ OK ] Finished modprobe@configfs…[0m - Load Kernel Module configfs. <30>[ 12.370726] systemd[1]: modprobe@dm_mod.service: Deactivated successfully. <30>[ 12.388616] systemd[1]: Finished modprobe@dm_mod.service - Load Kernel Module dm_mod. [ OK ] Finished modprobe@dm_mod.s…e - Load Kernel Module dm_mod. <30>[ 12.415684] systemd[1]: modprobe@drm.service: Deactivated successfully. <30>[ 12.426626] systemd[1]: Finished modprobe@drm.service - Load Kernel Module drm. [ OK ] Finished modprobe@drm.service - Load Kernel Module drm. <30>[ 12.448003] systemd[1]: Started systemd-journald.service - Journal Service. [ OK ] Started systemd-journald.service - Journal Service. [ OK ] Finished modprobe@efi_psto…m - Load Kernel Module efi_pstore. [ OK ] Finished modprobe@fuse.service - Load Kernel Module fuse. [ OK ] Finished modprobe@loop.service - Load Kernel Module loop. [ OK ] Finished systemd-modules-l…service - Load Kernel Modules. [ OK ] Finished systemd-network-g…rk units from Kernel command line. [ OK ] Finished systemd-remount-f…ount Root and Kernel File Systems. [ OK ] Reached target network-pre…get - Preparation for Network. Mounting sys-fs-fuse-conne… - FUSE Control File System... Mounting sys-kernel-config…ernel Configuration File System... <6>[ 12.561312] mount (220) used greatest stack depth: 12368 bytes left Starting systemd-journal-f…h Journal to Persistent Storage... Starting systemd-random-se…ice - Load/Save Random Seed... Starting systemd-sysctl.se…ce - Apply Kernel Variables... Starting systemd-sysusers.…rvice - Create System Users... [ OK ] Mounted sys-fs-fuse-connec…nt - FUSE Control File System. [ OK ] Mounted sys-kernel-config.… Kernel Configuration File System. [ OK ] Finished systemd-random-se…rvice - Load/Save Random Seed. <46>[ 12.666024] systemd-journald[215]: Received client request to flush runtime journal. [ OK ] Finished systemd-sysctl.service - Apply Kernel Variables. [ OK ] Finished systemd-sysusers.service - Create System Users. Starting systemd-tmpfiles-…ate Static Device Nodes in /dev... [ OK ] Finished systemd-udev-trig…e - Coldplug All udev Devices. [ OK ] Finished systemd-tmpfiles-…reate Static Device Nodes in /dev. [ OK ] Finished systemd-journal-f…ush Journal to Persistent Storage. [ OK ] Reached target local-fs-pr…reparation for Local File Systems. [ OK ] Reached target local-fs.target - Local File Systems. Starting systemd-binfmt.se…et Up Additional Binary Formats... Starting systemd-tmpfiles-… Volatile Files and Directories... Starting systemd-udevd.ser…ger for Device Events and Files... Mounting proc-sys-fs-binfm…utable File Formats File System... [ OK ] Mounted proc-sys-fs-binfmt…ecutable File Formats File System. [ OK ] Finished systemd-binfmt.se… Set Up Additional Binary Formats. [ OK ] Finished systemd-tmpfiles-…te Volatile Files and Directories. Starting systemd-timesyncd… - Network Time Synchronization... Starting systemd-update-ut…rd System Boot/Shutdown in UTMP... [ OK ] Started systemd-udevd.serv…nager for Device Events and Files. Starting systemd-networkd.…ice - Network Configuration... [ OK ] Found device dev-ttyS0.device - /dev/ttyS0. [ OK ] Finished systemd-update-ut…cord System Boot/Shutdown in UTMP. <6>[ 15.042747] ath10k_pci 0000:01:00.0 wlp1s0: renamed from wlan0 [ OK ] Started systemd-timesyncd.…0m - Network Time Synchronization. [ OK ] Created slice system-syste…- Slice /system/systemd-backlight. [ OK ] Reached target bluetooth.target - Bluetooth Support. [ OK ] Reached target time-set.target - System Time Set. [ OK ] Listening on systemd-rfkil…l Switch Status /dev/rfkill Watch. Starting modprobe@dm_mod.s…[0m - Load Kernel Module dm_mod... Starting modprobe@efi_psto…- Load Kernel Module efi_pstore... Starting modprobe@loop.ser…e - Load Kernel Module loop... Starting systemd-backlight…ghtness of backlight:amdgpu_bl0... [ OK ] Started systemd-networkd.service - Network Configuration. [ OK ] Finished modprobe@dm_mod.s…e - Load Kernel Module dm_mod. [ OK ] Finished modprobe@efi_psto…m - Load Kernel Module efi_pstore. [ OK ] Finished modprobe@loop.service - Load Kernel Module loop. [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. [ OK ] Reached target network.target - Network. Starting systemd-backlight…ghtness of backlight:amdgpu_bl0... Starting systemd-rfkill.se…Load/Save RF Kill Switch Status... [ OK ] Started systemd-rfkill.ser…- Load/Save RF Kill Switch Status. [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. Starting systemd-backlight…ghtness of backlight:amdgpu_bl0... [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. Starting systemd-backlight…ghtness of backlight:amdgpu_bl0... [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. Starting systemd-backlight…ghtness of backlight:amdgpu_bl0... [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. [FAILED] Failed to start systemd-ba…rightness of backlight:amdgpu_bl0. See 'systemctl status systemd-backlight…klight:amdgpu_bl0.service' for details. [ OK ] Reached target sysinit.target - System Initialization. [ OK ] Started apt-daily.timer - Daily apt download activities. [ OK ] Started apt-daily-upgrade.… apt upgrade and clean activities. [ OK ] Started dpkg-db-backup.tim… Daily dpkg database backup timer. [ OK ] Started e2scrub_all.timer…etadata Check for All Filesystems. [ OK ] Started fstrim.timer - Discard unused blocks once a week. [ OK ] Started systemd-tmpfiles-c… Cleanup of Temporary Directories. [ OK ] Reached target timers.target - Timer Units. [ OK ] Listening on dbus.socket[…- D-Bus System Message Bus Socket. [ OK ] Reached target sockets.target - Socket Units. [ OK ] Reached target basic.target - Basic System. Starting alsa-restore.serv…- Save/Restore Sound Card State... Starting dbus.service - D-Bus System Message Bus... Starting e2scrub_reap.serv…e ext4 Metadata Check Snapshots... Starting systemd-logind.se…ice - User Login Management... Starting systemd-user-sess…vice - Permit User Sessions... [ OK ] Finished alsa-restore.serv…m - Save/Restore Sound Card State. [ OK ] Reached target sound.target - Sound Card. [ OK ] Finished systemd-user-sess…ervice - Permit User Sessions. [ OK ] Started getty@tty1.service - Getty on tty1. [ OK ] Started serial-getty@ttyS0…rvice - Serial Getty on ttyS0. [ OK ] Reached target getty.target - Login Prompts. [ OK ] Started dbus.service - D-Bus System Message Bus. [ OK ] Finished e2scrub_reap.serv…ine ext4 Metadata Check Snapshots. [ OK ] Started systemd-logind.service - User Login Management. [ OK ] Reached target multi-user.target - Multi-User System. [ OK ] Reached target graphical.target - Graphical Interface. Starting systemd-update-ut… Record Runlevel Change in UTMP... [ OK ] Finished systemd-update-ut… - Record Runlevel Change in UTMP. Debian GNU/Linux 12 debian-bookworm-amd64 ttyS0 debian-bookworm-amd64 login: root (automatic login) Linux debian-bookworm-amd64 5.10.218-cip49 #1 SMP Tue Jun 25 11:39:21 UTC 2024 x86_64 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. / # / # export NFS_ROOTFS='/var/lib/lava/dispatcher/tmp/14570632/extract-nfsrootfs-royrbfuz' export NFS_ROOTFS='/var/lib/lava/dispatcher/tmp/14570632/extract-nfsrootfs-royrbfuz' / # export NFS_SERVER_IP='192.168.201.1' export NFS_SERVER_IP='192.168.201.1' / # # # / # export SHELL=/bin/bash export SHELL=/bin/bash / # . /lava-14570632/environment . /lava-14570632/environment / # /lava-14570632/bin/lava-test-runner /lava-14570632/0 /lava-14570632/bin/lava-test-runner /lava-14570632/0 + export TESTRUN_ID=0_timesync-off + TESTRUN_ID=0_timesync-off + cd /lava-14570632/0/tests/0_timesync-off ++ cat uuid + UUID=14570632_1.5.2.3.1 + set +x + systemctl stop systemd-timesyncd + set +x + export TESTRUN_ID=1_kselftest-lkdtm + TESTRUN_ID=1_kselftest-lkdtm + cd /lava-14570632/0/tests/1_kselftest-lkdtm ++ cat uuid + UUID=14570632_1.5.2.3.5 + set +x + cd ./automated/linux/kselftest/ + ./kselftest.sh -c lkdtm -T '' -t kselftest_armhf.tar.gz -s True -u http://storage.kernelci.org/cip-gitlab/ci-iwamatsu-linux-5.10.y-cip-rc/v5.10.218-cip49-41-ga1157ad99348c/x86_64/x86_64_defconfig+x86-board+kselftest/gcc-10/kselftest.tar.xz -L '' -S /dev/null -b hp-11A-G6-EE-grunt -g cip-gitlab -e '' -p /opt/kselftests/mainline/ -n 1 -i 1 INFO: install_deps skipped --2024-06-26 03:54:45-- http://storage.kernelci.org/cip-gitlab/ci-iwamatsu-linux-5.10.y-cip-rc/v5.10.218-cip49-41-ga1157ad99348c/x86_64/x86_64_defconfig+x86-board+kselftest/gcc-10/kselftest.tar.xz Resolving storage.kernelci.org (storage.kernelci.org)... 20.171.243.82 Connecting to storage.kernelci.org (storage.kernelci.org)|20.171.243.82|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 3547724 (3.4M) [application/octet-stream] Saving to: 'kselftest_armhf.tar.gz' kselftest_armhf.tar 0%[ ] 0 --.-KB/s kselftest_armhf.tar 1%[ ] 46.39K 162KB/s kselftest_armhf.tar 6%[> ] 217.50K 379KB/s kselftest_armhf.tar 23%[===> ] 828.37K 910KB/s kselftest_armhf.tar 57%[==========> ] 1.95M 1.61MB/s kselftest_armhf.tar 86%[================> ] 2.93M 2.04MB/s kselftest_armhf.tar 100%[===================>] 3.38M 2.13MB/s in 1.6s 2024-06-26 03:54:47 (2.13 MB/s) - 'kselftest_armhf.tar.gz' saved [3547724/3547724] skiplist: ======================================== ======================================== lkdtm:PANIC.sh lkdtm:BUG.sh lkdtm:WARNING.sh lkdtm:WARNING_MESSAGE.sh lkdtm:EXCEPTION.sh lkdtm:LOOP.sh lkdtm:EXHAUST_STACK.sh lkdtm:CORRUPT_STACK.sh lkdtm:CORRUPT_STACK_STRONG.sh lkdtm:CORRUPT_LIST_ADD.sh lkdtm:CORRUPT_LIST_DEL.sh lkdtm:STACK_GUARD_PAGE_LEADING.sh lkdtm:STACK_GUARD_PAGE_TRAILING.sh lkdtm:UNSET_SMEP.sh lkdtm:DOUBLE_FAULT.sh lkdtm:CORRUPT_PAC.sh lkdtm:UNALIGNED_LOAD_STORE_WRITE.sh lkdtm:OVERWRITE_ALLOCATION.sh lkdtm:WRITE_AFTER_FREE.sh lkdtm:READ_AFTER_FREE.sh lkdtm:WRITE_BUDDY_AFTER_FREE.sh lkdtm:READ_BUDDY_AFTER_FREE.sh lkdtm:SLAB_FREE_DOUBLE.sh lkdtm:SLAB_FREE_CROSS.sh lkdtm:SLAB_FREE_PAGE.sh lkdtm:SOFTLOCKUP.sh lkdtm:HARDLOCKUP.sh lkdtm:SPINLOCKUP.sh lkdtm:HUNG_TASK.sh lkdtm:EXEC_DATA.sh lkdtm:EXEC_STACK.sh lkdtm:EXEC_KMALLOC.sh lkdtm:EXEC_VMALLOC.sh lkdtm:EXEC_RODATA.sh lkdtm:EXEC_USERSPACE.sh lkdtm:EXEC_NULL.sh lkdtm:ACCESS_USERSPACE.sh lkdtm:ACCESS_NULL.sh lkdtm:WRITE_RO.sh lkdtm:WRITE_RO_AFTER_INIT.sh lkdtm:WRITE_KERN.sh lkdtm:REFCOUNT_INC_OVERFLOW.sh lkdtm:REFCOUNT_ADD_OVERFLOW.sh lkdtm:REFCOUNT_INC_NOT_ZERO_OVERFLOW.sh lkdtm:REFCOUNT_ADD_NOT_ZERO_OVERFLOW.sh lkdtm:REFCOUNT_DEC_ZERO.sh lkdtm:REFCOUNT_DEC_NEGATIVE.sh lkdtm:REFCOUNT_DEC_AND_TEST_NEGATIVE.sh lkdtm:REFCOUNT_SUB_AND_TEST_NEGATIVE.sh lkdtm:REFCOUNT_INC_ZERO.sh lkdtm:REFCOUNT_ADD_ZERO.sh lkdtm:REFCOUNT_INC_SATURATED.sh lkdtm:REFCOUNT_DEC_SATURATED.sh lkdtm:REFCOUNT_ADD_SATURATED.sh lkdtm:REFCOUNT_INC_NOT_ZERO_SATURATED.sh lkdtm:REFCOUNT_ADD_NOT_ZERO_SATURATED.sh lkdtm:REFCOUNT_DEC_AND_TEST_SATURATED.sh lkdtm:REFCOUNT_SUB_AND_TEST_SATURATED.sh lkdtm:REFCOUNT_TIMING.sh lkdtm:ATOMIC_TIMING.sh lkdtm:USERCOPY_HEAP_SIZE_TO.sh lkdtm:USERCOPY_HEAP_SIZE_FROM.sh lkdtm:USERCOPY_HEAP_WHITELIST_TO.sh lkdtm:USERCOPY_HEAP_WHITELIST_FROM.sh lkdtm:USERCOPY_STACK_FRAME_TO.sh lkdtm:USERCOPY_STACK_FRAME_FROM.sh lkdtm:USERCOPY_STACK_BEYOND.sh lkdtm:USERCOPY_KERNEL.sh lkdtm:STACKLEAK_ERASING.sh lkdtm:CFI_FORWARD_PROTO.sh ============== Tests to run =============== lkdtm:PANIC.sh lkdtm:BUG.sh lkdtm:WARNING.sh lkdtm:WARNING_MESSAGE.sh lkdtm:EXCEPTION.sh lkdtm:LOOP.sh lkdtm:EXHAUST_STACK.sh lkdtm:CORRUPT_STACK.sh lkdtm:CORRUPT_STACK_STRONG.sh lkdtm:CORRUPT_LIST_ADD.sh lkdtm:CORRUPT_LIST_DEL.sh lkdtm:STACK_GUARD_PAGE_LEADING.sh lkdtm:STACK_GUARD_PAGE_TRAILING.sh lkdtm:UNSET_SMEP.sh lkdtm:DOUBLE_FAULT.sh lkdtm:CORRUPT_PAC.sh lkdtm:UNALIGNED_LOAD_STORE_WRITE.sh lkdtm:OVERWRITE_ALLOCATION.sh lkdtm:WRITE_AFTER_FREE.sh lkdtm:READ_AFTER_FREE.sh lkdtm:WRITE_BUDDY_AFTER_FREE.sh lkdtm:READ_BUDDY_AFTER_FREE.sh lkdtm:SLAB_FREE_DOUBLE.sh lkdtm:SLAB_FREE_CROSS.sh lkdtm:SLAB_FREE_PAGE.sh lkdtm:SOFTLOCKUP.sh lkdtm:HARDLOCKUP.sh lkdtm:SPINLOCKUP.sh lkdtm:HUNG_TASK.sh lkdtm:EXEC_DATA.sh lkdtm:EXEC_STACK.sh lkdtm:EXEC_KMALLOC.sh lkdtm:EXEC_VMALLOC.sh lkdtm:EXEC_RODATA.sh lkdtm:EXEC_USERSPACE.sh lkdtm:EXEC_NULL.sh lkdtm:ACCESS_USERSPACE.sh lkdtm:ACCESS_NULL.sh lkdtm:WRITE_RO.sh lkdtm:WRITE_RO_AFTER_INIT.sh lkdtm:WRITE_KERN.sh lkdtm:REFCOUNT_INC_OVERFLOW.sh lkdtm:REFCOUNT_ADD_OVERFLOW.sh lkdtm:REFCOUNT_INC_NOT_ZERO_OVERFLOW.sh lkdtm:REFCOUNT_ADD_NOT_ZERO_OVERFLOW.sh lkdtm:REFCOUNT_DEC_ZERO.sh lkdtm:REFCOUNT_DEC_NEGATIVE.sh lkdtm:REFCOUNT_DEC_AND_TEST_NEGATIVE.sh lkdtm:REFCOUNT_SUB_AND_TEST_NEGATIVE.sh lkdtm:REFCOUNT_INC_ZERO.sh lkdtm:REFCOUNT_ADD_ZERO.sh lkdtm:REFCOUNT_INC_SATURATED.sh lkdtm:REFCOUNT_DEC_SATURATED.sh lkdtm:REFCOUNT_ADD_SATURATED.sh lkdtm:REFCOUNT_INC_NOT_ZERO_SATURATED.sh lkdtm:REFCOUNT_ADD_NOT_ZERO_SATURATED.sh lkdtm:REFCOUNT_DEC_AND_TEST_SATURATED.sh lkdtm:REFCOUNT_SUB_AND_TEST_SATURATED.sh lkdtm:REFCOUNT_TIMING.sh lkdtm:ATOMIC_TIMING.sh lkdtm:USERCOPY_HEAP_SIZE_TO.sh lkdtm:USERCOPY_HEAP_SIZE_FROM.sh lkdtm:USERCOPY_HEAP_WHITELIST_TO.sh lkdtm:USERCOPY_HEAP_WHITELIST_FROM.sh lkdtm:USERCOPY_STACK_FRAME_TO.sh lkdtm:USERCOPY_STACK_FRAME_FROM.sh lkdtm:USERCOPY_STACK_BEYOND.sh lkdtm:USERCOPY_KERNEL.sh lkdtm:STACKLEAK_ERASING.sh lkdtm:CFI_FORWARD_PROTO.sh ===========End Tests to run =============== shardfile-lkdtm pass <12>[ 30.065674] kselftest: Running tests in lkdtm TAP version 13 1..70 # selftests: lkdtm: PANIC.sh # Skipping PANIC: crashes entire system ok 1 selftests: lkdtm: PANIC.sh # SKIP # selftests: lkdtm: BUG.sh <6>[ 30.587604] lkdtm: Performing direct entry BUG <4>[ 30.592823] ------------[ cut here ]------------ <2>[ 30.597713] kernel BUG at drivers/misc/lkdtm/bugs.c:76! <4>[ 30.603283] invalid opcode: 0000 [#1] SMP NOPTI <4>[ 30.608071] CPU: 1 PID: 661 Comm: cat Tainted: G W 5.10.218-cip49 #1 <4>[ 30.615972] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 30.622148] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 30.626325] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 30.645322] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 30.650800] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 30.658181] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 30.665562] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 30.672944] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 30.680325] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 30.687707] FS: 00007f83b7db2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 30.696042] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 30.702039] CR2: 00007f83b7ba4000 CR3: 000000010341a000 CR4: 00000000001506e0 <4>[ 30.709420] Call Trace: <4>[ 30.712130] ? __die_body.cold+0x1a/0x1f <4>[ 30.716311] ? die+0x2b/0x50 <4>[ 30.719449] ? do_trap+0x91/0x110 <4>[ 30.723017] ? lkdtm_BUG+0x5/0x10 <4>[ 30.726588] ? do_error_trap+0x90/0x110 <4>[ 30.730676] ? lkdtm_BUG+0x5/0x10 <4>[ 30.734246] ? lkdtm_BUG+0x5/0x10 <4>[ 30.737819] ? exc_invalid_op+0x4e/0x70 <4>[ 30.741908] ? lkdtm_BUG+0x5/0x10 <4>[ 30.745478] ? asm_exc_invalid_op+0x12/0x20 <4>[ 30.749917] ? direct_entry+0xe0/0xe0 <4>[ 30.753835] ? lkdtm_BUG+0x5/0x10 <4>[ 30.757422] direct_entry.cold+0x2c/0x38 <4>[ 30.761605] full_proxy_write+0x56/0x80 <4>[ 30.765698] vfs_write+0xea/0x3b0 <4>[ 30.769271] ksys_write+0x68/0xf0 <4>[ 30.772842] do_syscall_64+0x33/0x40 <4>[ 30.776672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 30.781976] RIP: 0033:0x7f83b7cbd240 <4>[ 30.785807] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 30.804804] RSP: 002b:00007fffe0c46d78 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 30.812638] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f83b7cbd240 <4>[ 30.820021] RDX: 0000000000000004 RSI: 00007f83b7ba4000 RDI: 0000000000000001 <4>[ 30.827403] RBP: 0000000000000004 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 30.834786] R10: 00007f83b7bde4d0 R11: 0000000000000202 R12: 00007f83b7ba4000 <4>[ 30.842167] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 30.849555] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c coreboot-56f9d1cd49 Thu Sep 5 21:57:06 UTC 2019 smm starting... SMI# #1 GSMI Set Event Log (type=0xdead instance=0x3) FMAP: Found "FLASH" version 1.1 at d7f000. FMAP: base = ff000000 size = 1000000 #areas = 30 FMAP: area RW_ELOG found @ 45d000 (16384 bytes) Manufacturer: ef SF: Detected W25Q128FW with sector size 0x1000, total 0x1000000 ELOG: NV offset 0x45d000 size 0x4000 ELOG: area is 4096 bytes, full threshold 3842, shrink size 1024 ELOG: Event(81) added with size 13 at 2024-06-26 03:54:56 UTC <0>[ 30.953266] gsmi: Log Shutdown Reason 0x03 <4>[ 30.960184] ---[ end trace 8fa2a604a62aa034 ]--- <4>[ 30.965154] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 30.969337] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 30.988458] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 30.993959] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 31.001418] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 31.008819] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 31.016208] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 31.023609] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 31.031000] FS: 00007f83b7db2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 31.039343] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 31.045344] CR2: 00007f83b7ba4000 CR3: 000000010341a000 CR4: 00000000001506e0 # Segmentation fault # [ 30.587604] lkdtm: Performing direct entry BUG # [ 30.592823] ------------[ cut here ]------------ # [ 30.597713] kernel BUG at drivers/misc/lkdtm/bugs.c:76! # [ 30.603283] invalid opcode: 0000 [#1] SMP NOPTI # [ 30.608071] CPU: 1 PID: 661 Comm: cat Tainted: G W 5.10.218-cip49 #1 # [ 30.615972] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 30.622148] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 30.626325] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 30.645322] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 30.650800] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 30.658181] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 30.665562] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 30.672944] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 30.680325] R13: ffffa6b680bf7f10 R1<6>[ 31.222668] lkdtm: Performing direct entry WARNING 4: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 30.687707] FS: 00007f83b7db2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 30.696042] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 30.702039] CR2: 00007f83b7ba4000 CR3: 000000<4>[ 31.233624] ------------[ cut here ]------------ 010341a000 CR4: 00000000001506e0 # [ 30.709420] Call Trace: # [ 30.712130] ? __die_body.cold+0x1a/0x1f # [ 30.716311] ? die+0x2b/0x50 # [ 30.719449] ? do_trap+0x91/0x110 # [ 30.723017] ? lkdtm_BUG+0x5/0x10 # [ 30.726588] ? do_error_t<4>[ 31.260642] WARNING: CPU: 1 PID: 700 at drivers/misc/lkdtm/bugs.c:83 lkdtm_WARNING+0x13/0x20 rap+0x90/0x110 # [ 30.730676] ? lkdtm_BUG+0x5/0x10 # [ 30.734246] ? lkdtm_BUG+0x5/0x10 # [ 30.737819] ? exc_invalid_op+0x4e/0x70 # [ 30.741908] ? lkdtm_BUG+0x5/0x10 # [ 30.745478] ? asm_exc_invalid_op+0x12/0x20 # [ 30.749917] ? dire<4>[ 31.293996] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c ct_entry+0xe0/0xe0 # [ 30.753835] ? lkdtm_BUG+0x5/0x10 # [ 30.757422] direct_entry.cold+0x2c/0x38 # [ 30.761605] full_proxy_write+0x56/0x80 # [ 30.765698] vfs_write+0xea/0x3b0 # [ 30.769271] ksys_write+0x68/0xf0 # [ 30.772842] do_sy<4>[ 31.368024] CPU: 1 PID: 700 Comm: cat Tainted: G D W 5.10.218-cip49 #1 scall_64+0x33/0x40 # [ 30.776672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 30.781976] RIP: 0033:0x7f83b7cbd240 # [ 30.785807] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01<4>[ 31.398056] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 30.804804] RSP: 002b:00007fffe0c46d78 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 30.812638] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f83b7cbd240<4>[ 31.426473] RIP: 0010:lkdtm_WARNING+0x13/0x20 # [ 30.820021] RDX: 0000000000000004 RSI: 00007f83b7ba4000 RDI: 0000000000000001 # [ 30.827403] RBP: 0000000000000004 R08: 00000000ffffffff R09: 0000000000000000 # [ 30.834786] R10: 00007f83b7bde4d0 R11: 0000000000000202 R12: 00007f83b7ba4000 # <4>[ 31.453195] Code: c0 f4 ff ff ff eb c9 0f 1f 44 00 00 0f 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 01 75 05 e9 8d 42 a8 00 <0f> 0b e9 86 42 a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 8b 05 a1 06 [ 30.842167] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 30.849555] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btint<4>[ 31.494402] RSP: 0018:ffffa6b680e87e60 EFLAGS: 00010202 el gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common <4>[ 31.522043] RAX: ffffffffba5807a0 RBX: 0000000000000002 RCX: 0000000000000000 kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 30.953266] gsmi: Log Shutdown Reason 0x03 # [ 30.960<4>[ 31.551609] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406e0 184] ---[ end trace 8fa2a604a62aa034 ]--- # [ 30.965154] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 30.969337] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f <4>[ 31.581178] RBP: ffffffffbc8d00e7 R08: 0000000000000000 R09: 0000000000000000 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 30.988458] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 30.993959] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 31.001418] RDX: 0000000000000000 RSI: ffff98af6ad1bf<4>[ 31.610749] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000008 50 RDI: ffffffffbc4406d0 # [ 31.008819] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 31.016208] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 31.023609] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 <4>[ 31.640320] R13: ffffa6b680e87f10 R14: ffffa6b680e87f10 R15: ffff98af43add000 R1<4>[ 31.669819] FS: 00007f2894c82740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 31.678309] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 5: ffff98af45c74000<4>[ 31.684319] CR2: 00007f2894a7c000 CR3: 0000000107462000 CR4: 00000000001506e0 <4>[ 31.693363] Call Trace: # [ 31.031000] FS: 00007f83b7db2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 31.696251] ? __warn+0x80/0x110 <4>[ 31.707964] ? lkdtm_WARNING+0x13/0x20 # [ 31.039343] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033<4>[ 31.711974] ? report_bug+0x9e/0xc0 <4>[ 31.721456] ? handle_bug+0x41/0x90 # [ 31.045344] CR2: 00007f83b7ba4000 CR3: 000000010341a000 CR4: 00000000001506e0 # BUG: saw 'kernel BUG at': ok ok 2 selftests: lkdtm: BUG.sh # selftests: lkdtm: WARNING.sh <4>[ 31.725367] ? exc_invalid_op+0x14/0x70 <4>[ 31.744968] ? asm_exc_invalid_op+0x12/0x20 <4>[ 31.749413] ? lkdtm_BUG+0x10/0x10 <4>[ 31.753099] ? lkdtm_WARNING+0x13/0x20 <4>[ 31.757122] direct_entry.cold+0x2c/0x38 <4>[ 31.761307] full_proxy_write+0x56/0x80 <4>[ 31.765407] vfs_write+0xea/0x3b0 <4>[ 31.768984] ksys_write+0x68/0xf0 <4>[ 31.772596] do_syscall_64+0x33/0x40 <4>[ 31.776453] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 31.781765] RIP: 0033:0x7f2894b95240 <4>[ 31.785643] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 31.807209] RSP: 002b:00007ffc92d33918 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 31.815036] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f2894b95240 <4>[ 31.822491] RDX: 0000000000000008 RSI: 00007f2894a7c000 RDI: 0000000000000001 <4>[ 31.829894] RBP: 0000000000000008 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 31.837313] R10: 00007f2894ab64d0 R11: 0000000000000202 R12: 00007f2894a7c000 <4>[ 31.844752] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 31.852286] irq event stamp: 0 <4>[ 31.855656] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 31.862216] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 31.870678] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 31.879149] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 31.885732] ---[ end trace 8fa2a604a62aa035 ]--- # [ 31.222668] lkdtm: Performing direct entry WARNING # [ 31.233624] ------------[ cut here ]------------ # [ 31.260642] WARNING: CPU: 1 PID: 700 at drivers/misc/lkdtm/bugs.c:83 lkdtm_WARNING+0x13/0x20 # [ 31.293996] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 31.368024] CPU: 1 PID: 700 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 31.398056] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 31.426473] RIP: 0010:lkdtm_WARNING+0x13/0x20 # [ 31.453195] Code: c0 f4 ff f<6>[ 32.020757] lkdtm: Performing direct entry WARNING_MESSAGE f ff eb c9 0f 1f 44 00 00 0f 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 01 75 05 e9 8d 42 a8 00 <0f> 0b e9 86 42 a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 8b 05 a1 06 # [ 31.494402] RSP: 0018:ffffa6b680e87e60 EFLAGS: 00010202 # [ 31.<4>[ 32.034947] ------------[ cut here ]------------ 522043] RAX: ffffffffba5807a0 RBX: 0000000000000002 RCX: 0000000000000000 # [ 31.551609] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406e0 # [ 31.581178] RBP: ffffffffbc8d00e7 R08: 0000000000000000 R09: 0000000000000000 # [ 31.6107<4>[ 32.062048] Warning message trigger count: 2 49] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000008 # [ 31.640320] R13: ffffa6b680e87f10 R14: ffffa6b680e87f10 R15: ffff98af43add000 # [ 31.669819] FS: 00007f2894c82740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ <4>[ 32.088818] WARNING: CPU: 1 PID: 736 at drivers/misc/lkdtm/bugs.c:88 lkdtm_WARNING_MESSAGE+0x20/0x30 31.678309] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 31.684319] CR2: 00007f2894a7c000 CR3: 0000000107462000 CR4: 00000000001506e0 # [ 31.693363] Call Trace: # [ 31.696251] ? __warn+0x80/0x110 # [ 31.707964] ? lkdtm_WARNING+0x13/0x<4>[ 32.120282] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 20 # [ 31.711974] ? report_bug+0x9e/0xc0 # [ 31.721456] ? handle_bug+0x41/0x90 # [ 31.725367] ? exc_invalid_op+0x14/0x70 # [ 31.744968] ? asm_exc_invalid_op+0x12/0x20 # [ 31.749413] ? lkdtm_BUG+0x10/0x10 # [ 31.753099] ? lkdtm_WARNI<4>[ 32.196751] CPU: 1 PID: 736 Comm: cat Tainted: G D W 5.10.218-cip49 #1 NG+0x13/0x20 # [ 31.757122] direct_entry.cold+0x2c/0x38 # [ 31.761307] full_proxy_write+0x56/0x80 # [ 31.765407] vfs_write+0xea/0x3b0 # [ 31.768984] ksys_write+0x68/0xf0 # [ 31.772596] do_syscall_64+0x33/0x40 # [ 31.776453] entry_SY<4>[ 32.226852] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 SCALL_64_after_hwframe+0x67/0xd1 # [ 31.781765] RIP: 0033:0x7f2894b95240 # [ 31.785643] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0<4>[ 32.255291] RIP: 0010:lkdtm_WARNING_MESSAGE+0x20/0x30 f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 31.807209] RSP: 002b:00007ffc92d33918 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 31.815036] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f2894b95240 # [ 31.822491] RDX: 0000000000000008 RSI: <4>[ 32.282706] Code: 86 42 a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 8b 05 a1 06 eb 03 48 c7 c7 48 06 8d bc 8d 70 01 89 35 91 06 eb 03 e8 f6 fe 68 00 <0f> 0b e9 59 42 a8 00 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 c7 00007f2894a7c000 RDI: 0000000000000001 # [ 31.829894] RBP: 0000000000000008 R08: 00000000ffffffff R09: 0000000000000000 # [ 31.837313] R10: 00007f2894ab64d0 R11: 0000000000000202 R12: 00007f2894a7c000 # [ 31.844752] R13: 0000000000000001 R14: 0000<4>[ 32.326473] RSP: 0018:ffffa6b680f07e60 EFLAGS: 00010286 000000020000 R15: 0000000000000000 # [ 31.852286] irq event stamp: 0 # [ 31.855656] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 31.862216] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 31.8706<4>[ 32.351612] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 78] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 31.879149] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 31.885732] ---[ end trace 8fa2a604a62aa035 ]--- # WARNING: saw 'WARNING:': ok ok 3 selftest<4>[ 32.381135] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 s: lkdtm: WARNING.sh # selftests: lkdtm: WARNING_MESSAGE.sh <4>[ 32.410690] RBP: ffffffffbc8d00ef R08: 0000000000000000 R09: 0000000000000000 <4>[ 32.423461] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000010 <4>[ 32.430889] R13: ffffa6b680f07f10 R14: ffffa6b680f07f10 R15: ffff98af46fb3000 <4>[ 32.438326] FS: 00007f119fdda740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 32.446689] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 32.452738] CR2: 00007f119fbd4000 CR3: 00000001071ea000 CR4: 00000000001506e0 <4>[ 32.460149] Call Trace: <4>[ 32.462910] ? __warn+0x80/0x110 <4>[ 32.466421] ? lkdtm_WARNING_MESSAGE+0x20/0x30 <4>[ 32.471174] ? report_bug+0x9e/0xc0 <4>[ 32.474949] ? handle_bug+0x41/0x90 <4>[ 32.478785] ? exc_invalid_op+0x14/0x70 <4>[ 32.482904] ? asm_exc_invalid_op+0x12/0x20 <4>[ 32.487397] ? lkdtm_WARNING_MESSAGE+0x20/0x30 <4>[ 32.492116] direct_entry.cold+0x2c/0x38 <4>[ 32.496303] full_proxy_write+0x56/0x80 <4>[ 32.500403] vfs_write+0xea/0x3b0 <4>[ 32.503981] ksys_write+0x68/0xf0 <4>[ 32.507587] do_syscall_64+0x33/0x40 <4>[ 32.511438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 32.516750] RIP: 0033:0x7f119fced240 <4>[ 32.520588] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 32.539614] RSP: 002b:00007fff3e319bc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 32.547444] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f119fced240 <4>[ 32.554839] RDX: 0000000000000010 RSI: 00007f119fbd4000 RDI: 0000000000000001 <4>[ 32.562230] RBP: 0000000000000010 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 32.569639] R10: 00007f119fc0e4d0 R11: 0000000000000202 R12: 00007f119fbd4000 <4>[ 32.577041] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 32.584438] irq event stamp: 0 <4>[ 32.587757] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 32.594287] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 32.602741] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 32.611181] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 32.617711] ---[ end trace 8fa2a604a62aa036 ]--- # [ 32.020757] lkdtm: Performing direct entry WARNING_MESSAGE # [ 32.034947] ------------[ cut here ]------------ # [ 32.062048] Warning message trigger count: 2 # [ 32.088818] WARNING: CPU: 1 PID: 736 at drivers/misc/lkdtm/bugs.c:88 lkdtm_WARNING_MESSAGE+0x20/0x30 # [ 32.120282] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 32.196751] CPU: 1 PID: 736 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 32.226852] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 32.255291] RIP: 0010:lkdtm_WARNING_MESSAGE+0x20/0x30 # [ 32.282706] Code: 86 42 a8 00 66 0f 1f 44 00 00 0f 1f 44 00 0<6>[ 32.733702] lkdtm: Performing direct entry EXCEPTION 0 8b 05 a1 06 eb 03 48 c7 c7 48 06 8d bc 8d 70 01 89 35 91 06 eb 03 e8 f6 fe 68 00 <0f> 0b e9 59 42 a8 00 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 c7 # [ 32.326473] RSP: 0018:ffffa6b680f07e60 EFLAGS: 00010286 # [ 32.351612] RAX: 0000000000000000 RBX<1>[ 32.750798] BUG: kernel NULL pointer dereference, address: 0000000000000000 : <0000000000000003 RCX: 0000000000000000 # [ 32.381135] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 32.410690] RBP: ffffffffbc8d00ef R08: 0000000000000000 R09: 0000000000000000 # [ 32.423461] R10: 00000000ffffe000 R11: 3f1>[ 32.780182] #PF: supervisor write access in kernel mode <1>[ 32.807846] #PF: error_code(0x0002) - not-present page ffffffffffffff R12: 0000000000000010 # [ 32.430889] R13: ffffa6b680f07f10 R14: ffffa6b680f07f10 R15: ffff98af46fb3000 # [ 32.438326] FS: 00007f119fdda740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 32.446689] CS: 0010 DS: 0000 ES:<6>[ 32.813234] PGD 0 P4D 0 0000 CR0: 0000000080050033 # [ 32.452738] CR2: 00007f119fbd4000 CR3: 00000001071ea000 CR4: 00000000001506e0 # [ 32.460149] Call Trace: # [ 32.462910] ? __warn+0x80/0x110 # [ 32.466421] ? lkdtm_WARNING_MESSAGE+0x20/0x30 # [ 32.471174] ? r<4>[ 32.838209] Oops: 0002 [#2] SMP NOPTI eport_bug+0x9e/0xc0 # [ 32.474949] ? handle_bug+0x41/0x90 # [ 32.478785] ? exc_invalid_op+0x14/0x70 # [ 32.482904] ? asm_exc_invalid_op+0x12/0x20 # [ 32.487397] ? lkdtm_WARNING_MESSAGE+0x20/0x30 # [ 32.492116] direct_entry.cold+0x2c/0x3<4>[ 32.864313] CPU: 1 PID: 769 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 32.894401] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 8 # [ 32.496303] full_proxy_write+0x56/0x80 # [ 32.500403] vfs_write+0xea/0x3b0 # [ 32.503981] ksys_write+0x68/0xf0 # [ 32.507587] do_syscall_64+0x33/0x40 # [ 32.511438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 32.516750] RIP: 00<4>[ 32.900577] RIP: 0010:lkdtm_EXCEPTION+0x5/0x20 33:0x7f119fced240 # [ 32.520588] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 32.539614] RS<4>[ 32.927452] Code: 48 c7 c7 48 06 8d bc 8d 70 01 89 35 91 06 eb 03 e8 f6 fe 68 00 0f 0b e9 59 42 a8 00 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 04 25 00 00 00 00 00 00 00 00 e9 3b 42 a8 00 66 66 2e 0f 1f 84 P: 002b:00007fff3e319bc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 32.547444] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f119fced240 # [ 32.554839] RDX: 0000000000000010 RSI: 00007f119fbd4000 RDI: 0000000000000001 # [ 32.562230] R<4>[ 32.968633] RSP: 0018:ffffa6b680f8fe60 EFLAGS: 00010286 BP: 0000000000000010 R08: 00000000ffffffff R09: 0000000000000000 # [ 32.569639] R10: 00007f119fc0e4d0 R11: 0000000000000202 R12: 00007f119fbd4000 # [ 32.577041] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 32.584438] irq e<4>[ 32.996304] RAX: ffffffffba5807f0 RBX: 0000000000000004 RCX: 0000000000000000 ve] 0x0 # [ 32.594287] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 32.602741] softirqs last enabled at (0): [] co4>[ 33.025868] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc440700 <4>[ 33.055437] RBP: ffffffffbc7c340f R08: 0000000000000000 R09: 0000000000000000 py_process+0x65c/0x20e0 # [ 32.611181] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 32.617711] ---[ end trace 8fa2a604a62aa036 ]--- # WARNING_MESSAGE: saw 'message trigger': ok ok 4 selftests: lkdtm: WARNING_MESSAGE.sh # selftests: <4>[ 33.062821] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a <4>[ 33.092385] R13: ffffa6b680f8ff10 R14: ffffa6b680f8ff10 R15: ffff98af47476000 lkdtm: EXCEPTION.sh <4>[ 33.099769] FS: 00007fca9f9d2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 33.109922] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 33.115918] CR2: 0000000000000000 CR3: 0000000107302000 CR4: 00000000001506e0 <4>[ 33.123301] Call Trace: <4>[ 33.126016] ? __die_body.cold+0x1a/0x1f <4>[ 33.130197] ? no_context+0x177/0x380 <4>[ 33.134118] ? exc_page_fault+0x53/0x170 <4>[ 33.138294] ? asm_exc_page_fault+0x1e/0x30 <4>[ 33.142735] ? lkdtm_WARNING_MESSAGE+0x30/0x30 <4>[ 33.147434] ? lkdtm_EXCEPTION+0x5/0x20 <4>[ 33.151526] direct_entry.cold+0x2c/0x38 <4>[ 33.155705] full_proxy_write+0x56/0x80 <4>[ 33.159798] vfs_write+0xea/0x3b0 <4>[ 33.163370] ksys_write+0x68/0xf0 <4>[ 33.166943] do_syscall_64+0x33/0x40 <4>[ 33.170775] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 33.176080] RIP: 0033:0x7fca9f8dd240 <4>[ 33.179910] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 33.198906] RSP: 002b:00007fff3b1fc278 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 33.206725] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007fca9f8dd240 <4>[ 33.214107] RDX: 000000000000000a RSI: 00007fca9f7c4000 RDI: 0000000000000001 <4>[ 33.221492] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 <4>[ 33.228875] R10: 00007fca9f7fe4d0 R11: 0000000000000202 R12: 00007fca9f7c4000 <4>[ 33.236261] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 33.243647] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 33.297985] CR2: 0000000000000000 <4>[ 33.304084] ---[ end trace 8fa2a604a62aa037 ]--- <4>[ 33.309047] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 33.313366] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 33.332438] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 33.337996] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 33.345430] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 33.352871] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 33.360348] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 33.367796] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 33.375253] FS: 00007fca9f9d2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 33.383683] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 33.389743] CR2: 0000000000000000 CR3: 0000000107302000 CR4: 00000000001506e0 <6>[ 33.800074] lkdtm: Performing direct entry CORRUPT_LIST_ADD # Killed # [ 32.733702] lkdtm: Performing direct entry EXCEPTION # [ 32.750798] BUG: kernel NULL pointer dereference, address: 0000000000000000 # [ 32.780182] #PF: supervisor write access in kernel mode # [ 32.807846] #PF: error_code(0x0002) - <6>[ 33.805936] lkdtm: attempting good list addition not-present page # [ 32.813234] PGD 0 P4D 0 # [ 32.838209] Oops: 0002 [#2] SMP NOPTI # [ 32.864313] CPU: 1 PID: 769 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 32.894401] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [<6>[ 33.832996] lkdtm: attempting corrupted list addition 32.900577] RIP: 0010:lkdtm_EXCEPTION+0x5/0x20 # [ 32.927452] Code: 48 c7 c7 48 06 8d bc 8d 70 01 89 35 91 06 eb 03 e8 f6 fe 68 00 0f 0b e9 59 42 a8 00 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 04 25 00 00 00 00 00 00 00 00 e9 3b 42 a8 00 66 66 2<3>[ 33.860489] lkdtm: list_add() corruption not detected! e 0f 1f 84 # [ 32.968633] RSP: 0018:ffffa6b680f8fe60 EFLAGS: 00010286 # [ 32.996304] RAX: ffffffffba5807f0 RBX: 0000000000000004 RCX: 0000000000000000 # [ 33.025868] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc440700 # [ 33.055437] RBP: ffffffffbc7c340f R08: 0000000000000000 R09: 0000000000000000 # [ 33.062821] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a # [ 33.092385] R13: ffffa6b680f8ff10 R14: ffffa6b680f8ff10 R15: ffff98af47476000 # [ 33.099769] FS: 00007fca9f9d2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 33.109922] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 33.115918] CR2: 0000000000000000 CR3: 0000000107302000 CR4: 00000000001506e0 # [ 33.123301] Call Trace: # [ 33.126016] ? __die_body.cold+0x1a/0x1f # [ 33.130197] ? no_context+0x177/0x380 # [ 33.134118] ? exc_page_fault+0x53/0x170 # [ 33.138294] ? asm_exc_page_fault+0x1e/0x30 # [ 33.142735] ? lkdtm_WARNING_MESSAGE+0x30/0x30 # [ 33.147434] ? lkdtm_EXCEPTION+0x5/0x20 # [ 33.151526] direct_entry.cold+0x2c/0x38 # [ 33.155705] full_proxy_write+0x56/0x80 # [ 33.159798] vfs_write+0xea/0x3b0 # [ 33.163370] ksys_write+0x68/0xf0 # [ 33.166943] do_syscall_64+0x33/0x40 # [ <6>[ 33.984414] lkdtm: Performing direct entry CORRUPT_LIST_DEL 33.170775] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 33.176080] RIP: 0033:0x7fca9f8dd240 # [ 33.179910] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00<6>[ 34.004799] lkdtm: attempting good list removal f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 33.198906] RSP: 002b:00007fff3b1fc278 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 33.206725] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007fca9f8dd240 # [ 33.214107] RDX: 00<6>[ 34.031791] lkdtm: attempting corrupted list removal 0000000000000a RSI: 00007fca9f7c4000 RDI: 0000000000000001 # [ 33.221492] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 # [ 33.228875] R10: 00007fca9f7fe4d0 R11: 0000000000000202 R12: 00007fca9f7c4000 # [ 33.236261] R13: 000000<3>[ 34.059184] lkdtm: list_del() corruption not detected! 0000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 33.243647] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 33.297985] CR2: 0000000000000000 # [ 33.304084] ---[ end trace 8fa2a604a62aa037 ]--- # [ 33.309047] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 33.313366] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83<6>[ 34.175269] lkdtm: Performing direct entry STACK_GUARD_PAGE_LEADING 05 c0 06 eb 03 # [ 33.332438] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 33.337996] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 33.345430] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 33.<6>[ 34.182035] lkdtm: attempting bad read from page below current stack 352871] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 33.360348] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 33.367796] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 33.3752<0>[ 34.210845] BUG: stack guard page was hit at 00000000966b4ee5 (stack is 000000004c543caf..0000000040ee577c) 53] FS: 00007fca9f9d2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 33.383683] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 33.389743] CR2: 0000000000000000 CR3: 0000000107302000 CR4: 00000000001506e0 # EXCEPTION: saw 'call<4>[ 34.242981] kernel stack overflow (page fault): 0000 [#3] SMP NOPTI trace:': ok ok 5 selftests: lkdtm: EXCEPTION.sh # selftests: lkdtm: LOOP.sh # Skipping LOOP: Hangs the system ok 6 selftests: lkdtm: LOOP.sh # SKIP # selftests: lkdtm: EXHAUST_STACK.sh # Skipping EXHAUST_STACK: Corrupts memory on failure ok 7 selft<4>[ 34.271683] CPU: 1 PID: 1001 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 34.301856] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 ests: lkdtm: EXHAUST_STACK.sh # SKIP # selftests: lkdtm: CORRUPT_STACK.sh # Skipping CORRUPT_STACK: Crashes entire system on success ok 8 selftests: lkdtm: CORRUPT_STACK.sh # SKIP # selftests: lkdtm: CORRUPT_STACK_STRONG.sh # Skipping CORRUPT_STACK_ST<4>[ 34.308031] RIP: 0010:lkdtm_STACK_GUARD_PAGE_LEADING+0x27/0x3a RONG: Crashes entire system on success ok 9 selftests: lkdtm: CORRUPT_STACK_STRONG.sh # SKIP # selftests: lkdtm: CORRUPT_LIST_ADD.sh # [ 33.800074] lkdtm: Performing direct entry CORRUPT_LIST_ADD # [ 33.805936] lkdtm: attempting good list addition <4>[ 34.336294] Code: c7 3a 00 0f 1f 44 00 00 53 48 c7 c7 e8 09 8d bc 50 65 48 8b 04 25 40 b0 01 00 48 8b 58 18 e8 8f dd fb ff 48 c7 c7 28 0a 8d bc <8a> 43 ff 88 44 24 07 0f b6 74 24 07 5a 5b e9 75 dd fb ff 0f 1f 44 # [ 33.832996] lkdtm: attempting corrupted list addition # [ 33.860489] lkdtm: list_add() corruption not detected! # CORRUPT_LIST_ADD: missing 'list_add corruption': [FAIL] not ok 10 selftests: lkdtm: CORRUPT_LIST_ADD.sh # exit=1 # selftests: lkdt<4>[ 34.377475] RSP: 0018:ffffa6b6812e7e50 EFLAGS: 00010246 m:< CORRUPT_LIST_DEL.sh # [ 33.984414] lkdtm: Performing direct entry CORRUPT_LIST_DEL # [ 34.004799] lkdtm: attempting good list removal # [ 34.031791] lkdtm: attempting corrupted list removal # [ 34.059184] lkdtm: list_del() corruption not det4>[ 34.405131] RAX: 0000000000000038 RBX: ffffa6b6812e4000 RCX: 0000000000000000 ec[ 34.434704] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d0a28 <4>[ 34.457169] RBP: ffffffffbc8d0152 R08: 0000000000000000 R09: 0000000000000000 <4>[ 34.464552] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000019 <4>[ 34.471936] R13: ffffa6b6812e7f10 R14: ffffa6b6812e7f10 R15: ffff98af47477000 <4>[ 34.479321] FS: 00007f00d5e12740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 34.487658] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 34.493653] CR2: ffffa6b6812e3fff CR3: 0000000105268000 CR4: 00000000001506e0 <4>[ 34.501038] Call Trace: <4>[ 34.503744] <#DF> <4>[ 34.506019] ? __die_body.cold+0x1a/0x1f <4>[ 34.510200] ? die+0x2b/0x50 <4>[ 34.513339] ? handle_stack_overflow+0x3e/0x4d <4>[ 34.518041] ? no_context+0x24d/0x380 <4>[ 34.521958] <4>[ 34.524314] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 34.578652] ---[ end trace 8fa2a604a62aa038 ]--- <4>[ 34.583526] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 34.587702] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 34.606702] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 34.612181] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 34.619566] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 34.626948] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 34.634333] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 34.641716] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 34.649103] FS: 00007f00d5e12740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 34.657441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 34.663438] CR2: ffffa6b6812e3fff CR3: 0000000105268000 CR4: 00000000001506e0 <3>[ 34.670826] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 34.679941] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1001, name: cat <4>[ 34.687759] INFO: lockdep is turned off. <4>[ 34.691935] irq event stamp: 0 <4>[ 34.695251] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 34.701771] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 34.710196] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 34.718621] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 34.725142] CPU: 1 PID: 1001 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 34.733133] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 34.739303] Call Trace: <4>[ 34.742011] dump_stack+0x77/0x9b <4>[ 34.745584] ___might_sleep.cold+0xa6/0xb6 <4>[ 34.749940] exit_signals+0x1c/0x300 <4>[ 34.753773] do_exit+0xc2/0xab0 <4>[ 34.757175] ? ksys_write+0x68/0xf0 <4>[ 34.760921] make_task_dead+0x2f/0x30 <4>[ 34.764842] rewind_stack_and_make_dead+0x17/0x20 <4>[ 34.769799] RIP: 0033:0x7f00d5d1d240 <4>[ 34.773632] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 34.792631] RSP: 002b:00007fffe990be68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 34.800451] RAX: ffffffffffffffda RBX: 0000000000000019 RCX: 00007f00d5d1d240 <4>[ 34.807837] RDX: 0000000000000019 RSI: 00007f00d5c04000 RDI: 0000000000000001 <4>[ 34.815220] RBP: 0000000000000019 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 34.822606] R10: 00007f00d5c3e4d0 R11: 0000000000000202 R12: 00007f00d5c04000 <4>[ 34.829988] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 34.977619] lkdtm: Performing direct entry STACK_GUARD_PAGE_TRAILING # Segmentation fault # [ 34.175269] lkdtm: Performing direct entry STACK_GUARD_PAGE_LEADING # [ 34.182035] lkdtm: attempting bad read from page below current stack # [ 34.210845] BUG: stack guard page was hit at 00000000966b4ee5 (stack is 00000000<6>[ 34.984245] lkdtm: attempting bad read from page above current stack 4c543caf..0000000040ee577c) # [ 34.242981] kernel stack overflow (page fault): 0000 [#3] SMP NOPTI # [ 34.271683] CPU: 1 PID: 1001 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 34.301856] Hardware name: Google Grunt/Grunt, BIOS 09/0<0>[ 35.013057] BUG: stack guard page was hit at 000000009e662df6 (stack is 00000000594da32c..0000000098e5a9cd) 5/2019 # [ 34.308031] RIP: 0010:lkdtm_STACK_GUARD_PAGE_LEADING+0x27/0x3a # [ 34.336294] Code: c7 3a 00 0f 1f 44 00 00 53 48 c7 c7 e8 09 8d bc 50 65 48 8b 04 25 40 b0 01 00 48 8b 58 18 e8 8f dd fb ff 48 c7 c7 28 0a 8d bc <8a> 43 ff 88 44 24 07 0f b6 7<4>[ 35.045203] kernel stack overflow (page fault): 0000 [#4] SMP NOPTI 4 24 07 5a 5b e9 75 dd fb ff 0f 1f 44 # [ 34.377475] RSP: 0018:ffffa6b6812e7e50 EFLAGS: 00010246 # [ 34.405131] RAX: 0000000000000038 RBX: ffffa6b6812e4000 RCX: 0000000000000000 # [ 34.434704] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: fffff<4>[ 35.073906] CPU: 1 PID: 1036 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 35.104078] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 fffbc8d0a28 # [ 34.457169] RBP: ffffffffbc8d0152 R08: 0000000000000000 R09: 0000000000000000 # [ 34.464552] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000019 # [ 34.471936] R13: ffffa6b6812e7f10 R14: ffffa6b6812e7f10 R15: ffff98af4<4>[ 35.110256] RIP: 0010:lkdtm_STACK_GUARD_PAGE_TRAILING+0x27/0x3d 7477000 # [ 34.479321] FS: 00007f00d5e12740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 34.487658] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 34.493653] CR2: ffffa6b6812e3fff CR3: 0000000105268000 CR4: 00000000001506e0 <4>[ 35.138605] Code: dd fb ff 0f 1f 44 00 00 53 48 c7 c7 60 0a 8d bc 50 65 48 8b 04 25 40 b0 01 00 48 8b 58 18 e8 55 dd fb ff 48 c7 c7 a0 0a 8d bc <8a> 83 00 40 00 00 88 44 24 07 0f b6 74 24 07 5a 5b e9 38 dd fb ff # [ 34.501038] Call Trace: # [ 34.503744] <#DF> # [ 34.506019] ? __die_body.cold+0x1a/0x1f # [ 34.510200] ? die+0x2b/0x50 # [ 34.513339] ? handle_stack_overflow+0x3e/0x4d # [ 34.518041] ? no_context+0x24d/0x380 # [ 34.521958] [ 35.179785] RSP: 0018:ffffa6b68136fe50 EFLAGS: 00010246 F>< # [ 34.524314] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k4>[ 35.207449] RAX: 0000000000000038 RBX: ffffa6b68136c000 RCX: 0000000000000000 _p[ 35.237021] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d0aa0 ia[ 35.266593] RBP: ffffffffbc8d016b R08: 0000000000000000 R09: 0000000000000000 7<9 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 34.606702] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 34.61214>[ 35.296165] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001a <4>[ 35.325736] R13: ffffa6b68136ff10 R14: ffffa6b68136ff10 R15: ffff98af428d1000 81] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 34.619566] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 34.626948] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 34.634333] <4>[ 35.333118] FS: 00007fcb2a1b2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 R1<0: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 34.641716] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 34.649103] FS: 00007f00d5e12740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 34.64>[ 35.363638] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 35.391823] CR2: ffffa6b681370000 CR3: 0000000106fb6000 CR4: 00000000001506e0 57441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 34.663438] CR2: ffffa6b6812e3fff CR3: 0000000105268000 CR4: 00000000001506e0 # [ 34.670826] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 34.6<4>[ 35.399208] Call Trace: 79941] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1001, name: cat # [ 34.687759] INFO: lockdep is turned off. # [ 34.691935] irq event stamp: 0 # [ 34.695251] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 34.701771] ha<4>[ 35.424096] <#DF> rdirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 34.710196] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 34.718621] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 34.<4>[ 35.448557] ? __die_body.cold+0x1a/0x1f 725142] CPU: 1 PID: 1001 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 34.733133] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 34.739303] Call Trace: # [ 34.742011] dump_stack+0x77/0x9b # [ 34.745584] ___might_sleep.c<4>[ 35.474918] ? die+0x2b/0x50 old+0xa6/0xb6 # [ 34.749940] exit_signals+0x1c/0x300 # [ 34.753773] do_exit+0xc2/0xab0 # [ 34.757175] ? ksys_write+0x68/0xf0 # [ 34.760921] make_task_dead+0x2f/0x30 # [ 34.764842] rewind_stack_and_make_dead+0x17/0x20 # [ 34.769799] R<4>[ 35.500237] ? handle_stack_overflow+0x3e/0x4d IP: 0033:0x7f00d5d1d240 # [ 34.773632] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 34.7926<4>[ 35.527123] ? no_context+0x24d/0x380 <4>[ 35.553222] 31] RSP: 002b:00007fffe990be68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 34.800451] RAX: ffffffffffffffda RBX: 0000000000000019 RCX: 00007f00d5d1d240 # [ 34.807837] RDX: 0000000000000019 RSI: 00007f00d5c04000 RDI: 0000000000000001 # [ 34.815<4>[ 35.555577] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 220] RBP: 0000000000000019 R08: 00000000ffffffff R09: 0000000000000000 # [ 34.822606] R10: 00007f00d5c3e4d0 R11: 0000000000000202 R12: 00007f00d5c04000 # [ 34.829988] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # STACK_GUARD_PA<4>[ 35.632037] ---[ end trace 8fa2a604a62aa039 ]--- GE_LEADING: saw 'call trace:': ok ok 12 selftests: lkdtm: STACK_GUARD_PAGE_LEADING.sh # selftests: lkdtm: STACK_GUARD_PAGE_TRAILING.sh <4>[ 35.659091] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 35.675225] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 35.694223] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 35.699700] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 35.707084] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 35.714466] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 35.721849] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 35.729231] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 35.736614] FS: 00007fcb2a1b2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 35.744951] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 35.750948] CR2: ffffa6b681370000 CR3: 0000000106fb6000 CR4: 00000000001506e0 <3>[ 35.758333] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 35.767452] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1036, name: cat <4>[ 35.775270] INFO: lockdep is turned off. <4>[ 35.779445] irq event stamp: 0 <4>[ 35.782758] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 35.789278] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 35.797701] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 35.806125] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 35.812643] CPU: 1 PID: 1036 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 35.820634] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 35.826802] Call Trace: <4>[ 35.829509] dump_stack+0x77/0x9b <4>[ 35.833082] ___might_sleep.cold+0xa6/0xb6 <4>[ 35.837437] exit_signals+0x1c/0x300 <4>[ 35.841270] do_exit+0xc2/0xab0 <4>[ 35.844670] ? ksys_write+0x68/0xf0 <4>[ 35.848416] make_task_dead+0x2f/0x30 <4>[ 35.852336] rewind_stack_and_make_dead+0x17/0x20 <4>[ 35.857293] RIP: 0033:0x7fcb2a0c5240 <4>[ 35.861124] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 35.880121] RSP: 002b:00007ffd3064eb88 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 35.887940] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 00007fcb2a0c5240 <4>[ 35.895323] RDX: 000000000000001a RSI: 00007fcb29fac000 RDI: 0000000000000001 <4>[ 35.902706] RBP: 000000000000001a R08: 00000000ffffffff R09: 0000000000000000 <4>[ 35.910089] R10: 00007fcb29fe64d0 R11: 0000000000000202 R12: 00007fcb29fac000 <4>[ 35.917472] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 35.927460] clocksource: Long readout interval, skipping watchdog check: cs_nsec: 1235502619 wd_nsec: 1235501858 # Segmentation fault # [ 34.977619] lkdtm: Performing direct entry STACK_GUARD_PAGE_TRAILING # [ 34.984245] lkdtm: attempting bad read from page above current stack # [ 35.013057] BUG: stack guard page was hit at 000000009e662df6 (stack is 00000000594da32c..0000000098e5a9cd) # [ 35.045203] kernel stack overflow (page fault): 0000 [#4] SMP NOPTI # [ 35.073906] CPU: 1 PID: 1036 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 35.104078] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 35.110256] RIP: 0010:lkdtm_STACK_GUARD_PAGE_TRAILING+0x27/0x3d # [ 35.138605] Code: dd fb ff 0f 1f 44 00 00 53 48 c7 c7 60 0a 8d bc 50 65 48 8b 04 25 40 b0 01 00 48 8b 58 18 e8 55 dd fb ff 48 c7 c7 a0 0a 8d bc <8a> 83 00 40 00 00 88 44 24 07 0f b6 74 24 07 5a 5b e9 38 dd fb ff # [ 35.179785] RSP: 0018:ffffa6b68136fe50 EFLAGS: 00010246 # [ 35.207449] RAX: 0000000000000038 RBX: ffffa6b68136c000 RCX: 0000000000000000 # [ 35.237021] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d0aa0 # [ 35.266593] RBP: ffffffffbc8d016b R08: 0000000000000000 R09: 0000000000000000 # [ 35.296165] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001a # [ 35.325736] R13: ffffa6b68136ff10 R14: ffffa6b68136ff10 R15: ffff98af428d1000 # [ 35.33<6>[ 36.133909] lkdtm: Performing direct entry UNSET_SMEP 3118] FS: 00007fcb2a1b2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 35.363638] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 35.391823] CR2: ffffa6b681370000 CR3: 0000000106fb6000 CR4: 00000000001506e0 # [ 35.399208] Cal<6>[ 36.159750] lkdtm: trying to clear SMEP normally l Trace: # [ 35.424096] <#DF> # [ 35.448557] ? __die_body.cold+0x1a/0x1f # [ 35.474918] ? die+0x2b/0x50 # [ 35.500237] ? handle_stack_overflow+0x3e/0x4d # [ 35.527123] ? no_context+0x24d/0x380 # [ 35.553222] # [ 35.555577]<4>[ 36.186830] ------------[ cut here ]------------ Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau700<4>[ 36.213875] pinned CR4 bits changed: 0x100000!? 2 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstor<4>[ 36.240859] WARNING: CPU: 1 PID: 1073 at arch/x86/kernel/cpu/common.c:396 native_write_cr4+0x45/0x60 e raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 35.632037] ---[ end trace 8fa2a604a62aa039 ]--- # [ 35.659091] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 35.675225] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea f<4>[ 36.272405] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c f ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 35.694223] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 35.699700] RAX: ffffffffba5<4>[ 36.351378] CPU: 1 PID: 1073 Comm: cat Tainted: G D W 5.10.218-cip49 #1 80790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 35.707084] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 35.714466] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 35.721849] R10: 00000000ffffe00<4>[ 36.379038] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 0 R11: 3fffffffffffffff R12: 0000000000000004 # [ 35.729231] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 35.736614] FS: 00007fcb2a1b2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 35.744951] CS: 0010 DS:<4>[ 36.407386] RIP: 0010:native_write_cr4+0x45/0x60 0000 ES: 0000 CR0: 0000000080050033 # [ 35.750948] CR2: ffffa6b681370000 CR3: 0000000106fb6000 CR4: 00000000001506e0 # [ 35.758333] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 35.767452] in_atomic(): <4>[ 36.434462] Code: 39 c2 75 2d 48 85 f6 75 05 e9 27 26 54 01 80 3d 27 63 46 03 00 75 f2 48 c7 c7 b0 d4 7c bc c6 05 17 63 46 03 01 e8 a1 e2 14 01 <0f> 0b e9 04 26 54 01 48 89 d6 48 81 e7 ff f7 ce ff 48 31 c6 48 09 0, irqs_disabled(): 1, non_block: 0, pid: 1036, name: cat # [ 35.775270] INFO: lockdep is turned off. # [ 35.779445] irq event stamp: 0 # [ 35.782758] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 35.789278] hardirqs last disabled<4>[ 36.475638] RSP: 0018:ffffa6b6813f7e48 EFLAGS: 00010286 at (0): [] copy_process+0x65c/0x20e0 # [ 35.797701] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 35.806125] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 35.812643] CPU: 1 PID: <4>[ 36.503325] RAX: 0000000000000000 RBX: 00000000000506e0 RCX: 0000000000000000 1036 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 35.820634] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 35.826802] Call Trace: # [ 35.829509] dump_stack+0x77/0x9b # [ 35.833082] ___might_sleep.cold+0xa6/0xb6 # [ <4>[ 36.532988] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 35.837437] exit_signals+0x1c/0x300<4>[ 36.562411] RBP: ffffffffbc8d0185 R08: 0000000000000000 R09: 0000000000000000 # [ 35.841270] do_exit+0xc2/0xab0 # [ 35.844670] ? ksys_write+0x68/0xf0 # [ 35.848416] make_task_dead+0x2f/0x30 # [ 35.852336] rewind_stack_and_make_dead+0x17/0x20 # [ 35.857293] RIP: 0033:0x7fcb2a0c5240 # [ 35.861124] Code: 40 00 48<4>[ 36.573019] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000b 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 35.880121] RSP: 002b:00007ffd3064eb88 EFLAGS: 00000202 ORIG_RAX<4>[ 36.602611] R13: ffffa6b6813f7f10 R14: ffffa6b6813f7f10 R15: ffff98af46f9a000 : 0000000000000001 # [ 35.887940] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 00007fcb2a0c5240 # [ 35.895323] RDX: 000000000000001a RSI: 00007fcb29fac000 RDI: 0000000000000001 # [ 35.902706] RBP: 000000000000001a R08: 00000000ffffffff R09: 00<4>[ 36.632175] FS: 00007f3d0d841740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 00000000000000 # [ 35.910089] R10: 00007fcb29fe64d0 R11: 0000000000000202 R12: 00007fcb29fac000 # [ 35.917472] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 35.927460] clocksource: Long readout interval, skipping watchdog c<4>[ 36.662731] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 heck: cs_nsec: 1235502619 wd_nsec: 1235501858 # STACK_GUARD_PAGE_TRAILING: saw 'call trace:': ok ok 13 selftests: lkdtm: STACK_GUARD_PAGE_TRAILING.sh # selftests: lkdtm: UNSET_SMEP.sh <4>[ 36.690829] CR2: 00007f3d0d5fc000 CR3: 00000001034ba000 CR4: 00000000001506e0 <4>[ 36.714520] Call Trace: <4>[ 36.717294] ? __warn+0x80/0x110 <4>[ 36.720839] ? native_write_cr4+0x45/0x60 <4>[ 36.725169] ? report_bug+0x9e/0xc0 <4>[ 36.728977] ? handle_bug+0x41/0x90 <4>[ 36.732790] ? exc_invalid_op+0x14/0x70 <4>[ 36.736939] ? asm_exc_invalid_op+0x12/0x20 <4>[ 36.741493] ? native_write_cr4+0x45/0x60 <4>[ 36.745783] ? native_write_cr4+0x45/0x60 <4>[ 36.750089] lkdtm_UNSET_SMEP.cold+0x1d/0x103 <4>[ 36.754719] direct_entry.cold+0x2c/0x38 <4>[ 36.758907] full_proxy_write+0x56/0x80 <4>[ 36.763007] vfs_write+0xea/0x3b0 <4>[ 36.766585] ksys_write+0x68/0xf0 <4>[ 36.770164] do_syscall_64+0x33/0x40 <4>[ 36.774002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 36.779336] RIP: 0033:0x7f3d0d715240 <4>[ 36.783180] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 36.804663] RSP: 002b:00007ffe9647a3d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 36.812577] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f3d0d715240 <4>[ 36.819984] RDX: 000000000000000b RSI: 00007f3d0d5fc000 RDI: 0000000000000001 <4>[ 36.827374] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 <4>[ 36.834767] R10: 00007f3d0d6364d0 R11: 0000000000000202 R12: 00007f3d0d5fc000 <4>[ 36.842183] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 36.849587] irq event stamp: 0 <4>[ 36.852934] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 36.859463] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 36.867897] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 36.876346] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 36.882871] ---[ end trace 8fa2a604a62aa03a ]--- <6>[ 36.887749] lkdtm: ok: SMEP did not get cleared <6>[ 36.892540] lkdtm: trying to clear SMEP with call gadget <6>[ 36.898112] lkdtm: ok: SMEP removal was reverted # [ 36.133909] lkdtm: Performing direct entry UNSET_SMEP # [ 36.159750] lkdtm: trying to clear SMEP normally # [ 36.186830] ------------[ cut here ]------------ # [ 36.213875] pinned CR4 bits changed: 0x100000!? # [ 36.240859] WARNING: CPU: 1 PID: 1073 at arch/x86/kernel/cpu/common.c:396 native_write_cr4+0x45/0x60 # [ 36.272405] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 36.351378] CPU: 1 PID: 1073 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 36.379038] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 36.407386] RIP: 0010:native_write_cr4+0x45/0x60 # [ 36.434462] Code: 39 c2 75 2d <6>[ 37.017067] lkdtm: Performing direct entry DOUBLE_FAULT 48 85 f6 75 05 e9 27 26 54 01 80 3d 27 63 46 03 00 75 f2 48 c7 c7 b0 d4 7c bc c6 05 17 63 46 03 01 e8 a1 e2 14 01 <0f> 0b e9 04 26 54 01 48 89 d6 48 81 e7 ff f7 ce ff 48 31 c6 48 09 # [ 36.475638] RSP: 0018:ffffa6b6813f7e48 EFLAGS: 00010286 # [ 36.50<3>[ 37.034658] lkdtm: XFAIL: this test is ia32-only 3325] RAX: 0000000000000000 RBX: 00000000000506e0 RCX: 0000000000000000 # [ 36.532988] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 36.562411] RBP: ffffffffbc8d0185 R08: 0000000000000000 R09: 0000000000000000 # [ 36.573019] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000b # [ 36.602611] R13: ffffa6b6813f7f10 R14: ffffa6b6813f7f10 R15: ffff98af46f9a000 # [ 36.632175] FS: 00007f3d0d841740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 36.662731] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 36.690829] CR2: 00007f3d0d5fc000 CR3: 00000001034ba000 CR4: 00000000001506e0 # [ 36.714520] Call Trace: # [ 36.717294] ? __warn+0x80/0x110 # [ 36.720839] ? native_write_cr4+0x45/0x60 # [ 36.725169] ? report_bug+0x9e/0xc0 # [ 36.728977] ? handle_bug+0x41/0x90 # [ 36.732790] ? exc_invalid_op+0x14/0x70 # [ 36.736939] ? asm_exc_invalid_op+0x12/0x20 # [ 36.741493] ? native_write_cr4+0x45/0x60 # [ 36.745783] ? native_write_cr4+0x45/0x60 # [ 36.750089] lkdtm_UNSET_SMEP.cold+0x1d/0x103 # [ 36.754719] direct_entry.cold+0x2c/0x38 # [ 36.758907] full_proxy_write+0x56/0x80 # [ 36.763007] vfs_write+0xea/0x3b0 # [ 36.766585] ksys_write+0x68/0xf0 # [ 36.770164] do_syscall_64+0x33/0x40 # [ 36.774002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 36.779336] RIP: 0033:0x7f3d0d715240 # [ 36.783180] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 36.804663] RSP: 002b:00007ffe9647a3d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 36.812577] RAX: ffffffffffffffda RBX: 000000000000000b RCX:<6>[ 37.201172] lkdtm: Performing direct entry CORRUPT_PAC 00007f3d0d715240 # [ 36.819984] RDX: 000000000000000b RSI: 00007f3d0d5fc000 RDI: 0000000000000001 # [ 36.827374] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 # [ 36.834767] R10: 00007f3d0d6364d0 R11: 0000000000000202 R12: 000<3>[ 37.222394] lkdtm: XFAIL: this test is arm64-only 07f3d0d5fc000 # [ 36.842183] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 36.849587] irq event stamp: 0 # [ 36.852934] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 36.859463] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 36.867897] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 36.876346] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 36.882871] ---[ end trace 8fa2a604a62aa03a ]--- # [ 36.887749] lkdtm: ok: SMEP did not get cleared # [ 36.892540] lkdtm: trying to clear SMEP with call gadget # [ 36.898112] lkdtm: ok: SMEP removal was reverted # UNSET_SMEP: saw 'pinned CR4 bits changed:': ok ok 14 selftests: lkdtm: UNSET_SMEP.sh # selftests: lkdtm: DOUBLE_FAULT.sh # [ 37.017067] lkdtm: Performing direct entry DOUBLE_FAULT # [ 37.034658] lkdtm: XFAIL: this test is ia32-only # DOUBLE_FAULT: saw 'XFAIL': [SKIP] ok 15 selftests: lkdtm: DOUBLE_FAULT.sh # SKIP # selftests: lkdtm: CORRUPT_PAC.sh # [ 37.201172] lkdtm: Performing direct entry CORRUPT_PAC # [ 37.222394] lkdtm: XFAIL: this test is arm64-only # CORRUPT_PAC: saw 'XFAIL': [SKIP] ok 16 selftests: lkdtm: CORRUPT_PAC.sh # SKIP # selftests: <6>[ 37.350392] lkdtm: Performing direct entry UNALIGNED_LOAD_STORE_WRITE lkdtm: UNALIGNED_LOAD_STORE_WRITE.sh <3>[ 37.367159] lkdtm: XFAIL: arch has CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS # [ 37.350392] lkdtm: Performing direct entry UNALIGNED_LOAD_STORE_WRITE # [ 37.367159] lkdtm: XFAIL: arch has CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS # UNALIGNED_LOAD_STORE_WRITE: saw 'XFAIL': [SKIP] ok 17 selftests: lkdtm: UNALIGNED_LOAD_STORE_WRITE.sh # SKIP # selftests: lkdtm: OVERWRITE_ALLOCATION.sh # Skipping OVERWRITE_ALLOCATION: Corrupts memory on failure ok 18 selftests: lkdtm: OVERWRITE_ALLOCATION.sh # SKIP # selftests: lkdtm: WRITE_AFTER_FREE.sh # Skipping WRITE_AFTER_FREE: Corrupts memory on failure ok 19 selftests: lkdtm: WRITE_AFTER_FREE.sh # SKIP # selftests: lkdtm: READ_AFTER_FREE.sh <6>[ 37.571351] lkdtm: Performing direct entry READ_AFTER_FREE <6>[ 37.577106] lkdtm: Value in memory before free: 12345678 <6>[ 37.582718] lkdtm: Attempting bad read from freed memory <6>[ 37.588314] lkdtm: Memory was not poisoned # [ 37.571351] lkdtm: Performing direct entry READ_AFTER_FREE # [ 37.577106] lkdtm: Value in memory before free: 12345678 # [ 37.582718] lkdtm: Attempting bad read from freed memory # [ 37.588314] lkdtm: Memory was not poisoned # READ_AFTER_FREE: missing 'call trace:': [FAIL] not ok 20 selftests: lkdtm: READ_AFTER_FREE.sh # exit=1 # selftests: lkdtm: WRITE_BUDDY_AFTER_FREE.sh # Skipping WRITE_BUDDY_AFTER_FREE: Corrupts memory on failure ok 21 selftests: lkdtm: WRITE_BUDDY_AFTER_FREE.sh # SKIP # selftests: lkdtm: READ_BUDDY_AFTER_FREE.sh <6>[ 37.743409] lkdtm: Performing direct entry READ_BUDDY_AFTER_FREE <6>[ 37.749690] lkdtm: Value in memory before free: 12345678 <6>[ 37.755311] lkdtm: Attempting to read from freed memory <6>[ 37.760797] lkdtm: Buddy page was not poisoned # [ 37.743409] lkdtm: Performing direct entry READ_BUDDY_AFTER_FREE # [ 37.749690] lkdtm: Value in memory before free: 12345678 # [ 37.755311] lkdtm: Attempting to read from freed memory # [ 37.760797] lkdtm: Buddy page was not poisoned # READ_BUDDY_AFTER_FREE: missing 'call trace:': [FAIL] not ok 22 selftests: lkdtm: READ_BUDDY_AFTER_FREE.sh # exit=1 # selftests: lkdtm: SLAB_FREE_DOUBLE.sh <6>[ 37.860764] lkdtm: Performing direct entry SLAB_FREE_DOUBLE <6>[ 37.866610] lkdtm: Attempting double slab free ... # [ 37.860764] lkdtm: Performing direct entry SLAB_FREE_DOUBLE # [ 37.866610] lkdtm: Attempting double slab free ... # SLAB_FREE_DOUBLE: missing 'call trace:': [FAIL] not ok 23 selftests: lkdtm: SLAB_FREE_DOUBLE.sh # exit=1 # selftests: lkdtm: SLAB_FREE_CROSS.sh <6>[ 37.981123] lkdtm: Performing direct entry SLAB_FREE_CROSS <6>[ 37.986894] lkdtm: Attempting cross-cache slab free ... # [ 37.981123] lkdtm: Performing direct entry SLAB_FREE_CROSS # [ 37.986894] lkdtm: Attempting cross-cache slab free ... # SLAB_FREE_CROSS: missing 'call trace:': [FAIL] not ok 24 selftests: lkdtm: SLAB_FREE_CROSS.sh # exit=1 # selftests: lkdtm: SLAB_FREE_PAGE.sh <6>[ 38.095840] lkdtm: Performing direct entry SLAB_FREE_PAGE <6>[ 38.101507] lkdtm: Attempting non-Slab slab free ... # [ 38.095840] lkdtm: Performing direct entry SLAB_FREE_PAGE # [ 38.101507] lkdtm: Attempting non-Slab slab free ... # SLAB_FREE_PAGE: missing 'call trace:': [FAIL] not ok 25 selftests: lkdtm: SLAB_FREE_PAGE.sh # exit=1 # selftests: lkdtm: SOFTLOCKUP.sh # Skipping SOFTLOCKUP: Hangs the system ok 26 selftests: lkdtm: SOFTLOCKUP.sh # SKIP # selftests: lkdtm: HARDLOCKUP.sh # Skipping HARDLOCKUP: Hangs the system ok 27 selftests: lkdtm: HARDLOCKUP.sh # SKIP # selftests: lkdtm: SPINLOCKUP.sh # Skipping SPINLOCKUP: Hangs the system ok 28 selftests: lkdtm: SPINLOCKUP.sh # SKIP # selftests: lkdtm: HUNG_TASK.sh # Skipping HUNG_TASK: Hangs the system ok 29 selftests: lkdtm: HUNG_TASK.sh # SKIP # selftests: lkdtm: EXEC_DATA.sh <6>[ 38.406315] lkdtm: Performing direct entry EXEC_DATA <6>[ 38.411554] lkdtm: attempting ok execution at ffffffffba580b60 <6>[ 38.417681] lkdtm: attempting bad execution at ffffffffbe430ea0 <2>[ 38.423898] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) <1>[ 38.431630] BUG: unable to handle page fault for address: ffffffffbe430ea0 <1>[ 38.438752] #PF: supervisor instruction fetch in kernel mode <1>[ 38.444662] #PF: error_code(0x0011) - permissions violation <6>[ 38.450484] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000024c001e3 <4>[ 38.457438] Oops: 0011 [#5] SMP NOPTI <4>[ 38.461357] CPU: 1 PID: 1597 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 38.469347] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 38.475523] RIP: 0010:data_area+0x0/0x40 <4>[ 38.479700] Code: ff ff 00 05 8b 45 af 98 ff ff 00 04 8b 45 af 98 ff ff 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 55 <4>[ 38.498696] RSP: 0018:ffffa6b681b6fe48 EFLAGS: 00010246 <4>[ 38.504173] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 38.511556] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 38.518938] RBP: ffffffffbe430ea0 R08: 0000000000000000 R09: 0000000000000000 <4>[ 38.526320] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a <4>[ 38.533700] R13: ffffa6b681b6ff10 R14: ffffa6b681b6ff10 R15: ffff98af4623d000 <4>[ 38.541084] FS: 00007f21add02740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 38.549420] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 38.555415] CR2: ffffffffbe430ea0 CR3: 00000001071ea000 CR4: 00000000001506e0 <4>[ 38.562796] Call Trace: <4>[ 38.565504] ? __die_body.cold+0x1a/0x1f <4>[ 38.569684] ? no_context+0x177/0x380 <4>[ 38.573604] ? exc_page_fault+0xd7/0x170 <4>[ 38.577781] ? asm_exc_page_fault+0x1e/0x30 <4>[ 38.582225] ? execute_location+0x48/0x56 <4>[ 38.586489] ? direct_entry.cold+0x2c/0x38 <4>[ 38.590842] ? full_proxy_write+0x56/0x80 <4>[ 38.595107] ? vfs_write+0xea/0x3b0 <4>[ 38.598852] ? ksys_write+0x68/0xf0 <4>[ 38.602597] ? do_syscall_64+0x33/0x40 <4>[ 38.606602] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 38.612082] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 38.666418] CR2: ffffffffbe430ea0 <4>[ 38.669990] ---[ end trace 8fa2a604a62aa03b ]--- <4>[ 38.674864] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 38.679040] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 38.698038] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 38.703516] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 38.710899] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 38.718282] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 38.725665] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 38.733048] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 38.740431] FS: 00007f21add02740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 38.748769] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 38.754765] CR2: ffffffffbe430ea0 CR3: 00000001071ea000 CR4: 00000000001506e0 <3>[ 38.762151] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 38.771267] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1597, name: cat <4>[ 38.779082] INFO: lockdep is turned off. <4>[ 38.783257] irq event stamp: 0 <4>[ 38.786569] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 38.793089] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 38.801512] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 38.809936] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 38.816452] CPU: 1 PID: 1597 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 38.824442] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 38.830611] Call Trace: <4>[ 38.833319] dump_stack+0x77/0x9b <4>[ 38.836892] ___might_sleep.cold+0xa6/0xb6 <4>[ 38.841244] exit_signals+0x1c/0x300 <4>[ 38.845077] do_exit+0xc2/0xab0 <4>[ 38.848475] ? ksys_write+0x68/0xf0 <4>[ 38.852221] make_task_dead+0x2f/0x30 <4>[ 38.856140] rewind_stack_and_make_dead+0x17/0x20 <4>[ 38.861097] RIP: 0033:0x7f21adc0d240 <4>[ 38.864928] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 38.883924] RSP: 002b:00007ffe3e799d88 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 38.891741] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f21adc0d240 <4>[ 38.899123] RDX: 000000000000000a RSI: 00007f21adaf4000 RDI: 0000000000000001 <4>[ 38.906506] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 <4>[ 38.913889] R10: 00007f21adb2e4d0 R11: 0000000000000202 R12: 00007f21adaf4000 <4>[ 38.921273] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # Killed # [ 38.406315] lkdtm: Performing direct entry EXEC_DATA # [ 38.411554] lkdtm: attempting ok execution at ffffffffba580b60 # [ 38.417681] lkdtm: attempting bad execution at ffffffffbe430ea0 # [ 38.423898] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) # [ 38.431630] BUG: unable to handle page fault for address: ffffffffbe430ea0 # [ 38.438752] #PF: supervisor instruction fetch in kernel mode # [ 38.444662] #PF: error_code(0x0011) - permissions violation # [ 38.450484] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000024c001e3 # [ 38.457438] Oops: 0011 [#5] SMP NOPTI # [ 38.461357] CPU: 1 PID: 1597 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 38.469347] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 38.475523] RIP: 0010:data_area+0x0/0x40 # [ 38.479700] Code: ff ff 00 05 8b 45 af 98 ff ff 00 04 8b 45 af 98 ff ff 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 55 # [ 38.498696] RSP: 00<6>[ 39.066767] lkdtm: Performing direct entry EXEC_STACK 18:ffffa6b681b6fe48 EFLAGS: 00010246 # [ 38.504173] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 # [ 38.511556] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 38.518938] RBP: ffffffffbe430ea0 R08: 000000<6>[ 39.074631] lkdtm: attempting ok execution at ffffffffba580b60 0000000000 R09: 0000000000000000 # [ 38.526320] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a # [ 38.533700] R13: ffffa6b681b6ff10 R14: ffffa6b681b6ff10 R15: ffff98af4623d000 # [ 38.541084] FS: 00007f21add02740(0000) GS:ffff98<6>[ 39.102911] lkdtm: attempting bad execution at ffffa6b681be7e18 af6ad00000(0000) knlGS:0000000000000000 # [ 38.549420] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 38.555415] CR2: ffffffffbe430ea0 CR3: 00000001071ea000 CR4: 00000000001506e0 # [ 38.562796] Call Trace: # [ 38.565504] ? __die_body.co<2>[ 39.131278] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) ld+0x1a/0x1f # [ 38.569684] ? no_context+0x177/0x380 # [ 38.573604] ? exc_page_fault+0xd7/0x170 # [ 38.577781] ? asm_exc_page_fault+0x1e/0x30 # [ 38.582225] ? execute_location+0x48/0x56 # [ 38.586489] ? direct_entry.cold+0x2c/0x38 # [ <1>[ 39.161160] BUG: unable to handle page fault for address: ffffa6b681be7e18 38.590842] ? full_proxy_write+0x56/0x80 # [ 38.595107] ? vfs_write+0xea/0x3b0 # [ 38.598852] ? ksys_write+0x68/0xf0 # [ 38.602597] ? do_syscall_64+0x33/0x40 # [ 38.606602] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 38.612082] Modu<1>[ 39.190465] #PF: supervisor instruction fetch in kernel mode <1>[ 39.218559] #PF: error_code(0x0011) - permissions violation les linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd<6>[ 39.224381] PGD 100000067 P4D 100000067 PUD 100240067 PMD 102791067 PTE 80000001028e0163 _soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore ray<4>[ 39.254902] Oops: 0011 [#6] SMP NOPTI dium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 38.666418] CR2: ffffffffbe430ea0 # [ 38.669990] ---[ end trace 8fa2a604a62aa03b ]--- # [ 38.674864] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 38.679040] Code:<4>[ 39.281003] CPU: 1 PID: 1634 Comm: cat Tainted: G D W 5.10.218-cip49 #1 8<9 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 38.698038] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 000102864>[ 39.311176] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 38.703516] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 38.710899] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 38.718282] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # <4>[ 39.339535] RIP: 0010:0xffffa6b681be7e18 [ 38.725665] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 38.733048] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 38.740431] FS: 00007f21add02740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000<4>[ 39.365896] Code: 00 00 18 7e be 81 b6 a6 ff ff 7e 87 c5 ba ff ff ff ff 20 00 00 00 00 00 00 00 ae 02 8d bc ff ff ff ff aa 88 c5 ba ff ff ff ff <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 55 000 # [ 38.748769] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 38.754765] CR2: ffffffffbe430ea0 CR3: 00000001071ea000 CR4: 00000000001506e0 # [ 38.762151] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h<4>[ 39.407076] RSP: 0018:ffffa6b681be7df8 EFLAGS: 00010246 :49 # [ 38.771267] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1597, name: cat # [ 38.779082] INFO: lockdep is turned off. # [ 38.783257] irq event stamp: 0 # [ 38.786569] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ <4>[ 39.434741] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 <38.793089] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 38.801512] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 38.809936] softirqs last disabled at (0): [<0000000000000000>]4>[ 39.464309] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 0[ 39.493880] RBP: ffffa6b681be7e18 R08: 0000000000000000 R09: 0000000000000000 __[ 39.523451] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000b <4>[ 39.553022] R13: ffffa6b681be7f10 R14: ffffa6b681be7f10 R15: ffff98af471eb000 38.861097] RIP: 0033:0x7f21adc0d240 # [ 38.864928] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89<4>[ 39.560407] FS: 00007f66fbf23740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 39.590926] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 38.883924] RSP: 002b:00007ffe3e799d88 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 38.891741] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f21adc0d240 # [ 38.899123] RDX: 000000000000000a RSI: 00007f21adaf4000 RDI: 000000000000000<4>[ 39.596922] CR2: ffffa6b681be7e18 CR3: 0000000104240000 CR4: 00000000001506e0 <4>[ 39.626489] Call Trace: 1 # [ 38.906506] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 # [ 38.913889] R10: 00007f21adb2e4d0 R11: 0000000000000202 R12: 00007f21adaf4000 # [ 38.921273] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 #<4>[ 39.629202] ? __die_body.cold+0x1a/0x1f EXEC_DATA: saw 'call trace:': ok ok 30 selftests: lkdtm: EXEC_DATA.sh # selftests: lkdtm: EXEC_STACK.sh <4>[ 39.655556] ? no_context+0x177/0x380 <4>[ 39.668833] ? exc_page_fault+0xd7/0x170 <4>[ 39.673011] ? asm_exc_page_fault+0x1e/0x30 <4>[ 39.677456] ? execute_location+0x48/0x56 <4>[ 39.681719] ? lkdtm_EXEC_STACK+0x26/0x44 <4>[ 39.685986] ? direct_entry.cold+0x2c/0x38 <4>[ 39.690339] ? full_proxy_write+0x56/0x80 <4>[ 39.694606] ? vfs_write+0xea/0x3b0 <4>[ 39.698351] ? ksys_write+0x68/0xf0 <4>[ 39.702096] ? do_syscall_64+0x33/0x40 <4>[ 39.706100] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 39.711580] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 39.765915] CR2: ffffa6b681be7e18 <4>[ 39.769488] ---[ end trace 8fa2a604a62aa03c ]--- <4>[ 39.774378] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 39.778555] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 39.797565] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 39.803043] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 39.810426] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 39.817811] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 39.825192] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 39.832578] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 39.839961] FS: 00007f66fbf23740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 39.848296] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 39.854292] CR2: ffffa6b681be7e18 CR3: 0000000104240000 CR4: 00000000001506e0 <3>[ 39.861678] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 39.870795] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1634, name: cat <4>[ 39.878626] INFO: lockdep is turned off. <4>[ 39.882803] irq event stamp: 0 <4>[ 39.886114] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 39.892631] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 39.901071] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 39.909498] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 39.916017] CPU: 1 PID: 1634 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 39.924009] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 39.930178] Call Trace: <4>[ 39.932885] dump_stack+0x77/0x9b <4>[ 39.936460] ___might_sleep.cold+0xa6/0xb6 <4>[ 39.940812] exit_signals+0x1c/0x300 <4>[ 39.944644] do_exit+0xc2/0xab0 <4>[ 39.948045] ? ksys_write+0x68/0xf0 <4>[ 39.951789] make_task_dead+0x2f/0x30 <4>[ 39.955709] rewind_stack_and_make_dead+0x17/0x20 <4>[ 39.960667] RIP: 0033:0x7f66fbdf5240 <4>[ 39.964500] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 39.983500] RSP: 002b:00007fff586fbe48 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 39.991319] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f66fbdf5240 <4>[ 39.998701] RDX: 000000000000000b RSI: 00007f66fbcdc000 RDI: 0000000000000001 <4>[ 40.006086] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 <4>[ 40.013469] R10: 00007f66fbd164d0 R11: 0000000000000202 R12: 00007f66fbcdc000 <4>[ 40.020886] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 40.242193] lkdtm: Performing direct entry EXEC_KMALLOC # Killed # [ 39.066767] lkdtm: Performing direct entry EXEC_STACK # [ 39.074631] lkdtm: attempting ok execution at ffffffffba580b60 # [ 39.102911] lkdtm: attempting bad execution at ffffa6b681be7e18 # [ 39.131278] kernel tried to execute NX-pro<6>[ 40.247742] lkdtm: attempting ok execution at ffffffffba580b60 tected page - exploit attempt? (uid: 0) # [ 39.161160] BUG: unable to handle page fault for address: ffffa6b681be7e18 # [ 39.190465] #PF: supervisor instruction fetch in kernel mode # [ 39.218559] #PF: error_code(0x0011) - permissions violation #<6>[ 40.276054] lkdtm: attempting bad execution at ffff98af462ee840 [ 39.224381] PGD 100000067 P4D 100000067 PUD 100240067 PMD 102791067 PTE 80000001028e0163 # [ 39.254902] Oops: 0011 [#6] SMP NOPTI # [ 39.281003] CPU: 1 PID: 1634 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 39.311176] Hardware n<2>[ 40.304448] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) <1>[ 40.334264] BUG: unable to handle page fault for address: ffff98af462ee840 <1>[ 40.341388] #PF: supervisor instruction fetch in kernel mode <1>[ 40.347296] #PF: error_code(0x0011) - permissions violation <6>[ 40.353119] PGD 24e01067 P4D 24e01067 PUD 24e05067 PMD 106365063 PTE 80000001062ee163 <4>[ 40.361205] Oops: 0011 [#7] SMP NOPTI <4>[ 40.365124] CPU: 0 PID: 1671 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 40.373114] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 40.379285] RIP: 0010:0xffff98af462ee840 <4>[ 40.383463] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 33 48 43 af 98 ff ff 00 00 00 00 00 00 00 00 <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 55 <4>[ 40.402458] RSP: 0018:ffffa6b681c6fe38 EFLAGS: 00010246 <4>[ 40.407933] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 40.415315] RDX: 0000000000000000 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 <4>[ 40.422696] RBP: ffff98af462ee840 R08: 0000000000000000 R09: 0000000000000000 <4>[ 40.430077] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000d <4>[ 40.437459] R13: ffffa6b681c6ff10 R14: ffffa6b681c6ff10 R15: ffff98af46194000 <4>[ 40.444843] FS: 00007f9208d22740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 40.453179] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 40.459174] CR2: ffff98af462ee840 CR3: 00000001037dc000 CR4: 00000000001506f0 <4>[ 40.466555] Call Trace: <4>[ 40.469267] ? __die_body.cold+0x1a/0x1f <4>[ 40.473448] ? no_context+0x177/0x380 <4>[ 40.477367] ? exc_page_fault+0xd7/0x170 <4>[ 40.481546] ? asm_exc_page_fault+0x1e/0x30 <4>[ 40.485986] ? execute_location+0x48/0x56 <4>[ 40.490253] ? lkdtm_EXEC_KMALLOC+0x2c/0x40 <4>[ 40.494690] ? direct_entry.cold+0x2c/0x38 <4>[ 40.499043] ? full_proxy_write+0x56/0x80 <4>[ 40.503308] ? vfs_write+0xea/0x3b0 <4>[ 40.507052] ? ksys_write+0x68/0xf0 <4>[ 40.510795] ? do_syscall_64+0x33/0x40 <4>[ 40.514798] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 40.520277] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 40.574599] CR2: ffff98af462ee840 <4>[ 40.578170] ---[ end trace 8fa2a604a62aa03d ]--- <4>[ 40.583041] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 40.587219] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 40.606216] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 40.611693] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 40.619075] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 40.626457] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 40.633840] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 40.641224] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 40.648607] FS: 00007f9208d22740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 40.656943] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 40.662938] CR2: ffff98af462ee840 CR3: 00000001037dc000 CR4: 00000000001506f0 ame: Google Grunt/Grunt, BIOS 09/05/2019 # [ 39.339535] RIP: 0010:0xffffa6b681be7e18 # [ 39.365896] Code: 00 00 18 7e be 81 b6 a6 ff ff 7e 87 c5 ba ff ff ff ff 20 00 00 00 00 00 00 00 ae 02 8d bc ff ff ff ff aa 88 c5 ba ff ff ff ff <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 1f 44 00 00 0f 1f 44 00 00 55 # [ 39.407076] RSP: 0018:ffffa6b681be7df8 EFLAGS: 00010246 # [ 39.434741] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 # [ 39.464309] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 39.493880] RBP: ffffa6b681be7e18 R08: 0000000000000000 R09: 0000000000000000 # [ 39.523451] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000b # [ 39.553022] R13: ffffa6b681be7f10 R14: ffffa6b681be7f10 R15: ffff98af471eb000 # [ 39.560407] FS: 00007f66fbf23740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 39.590926] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 39.596922] CR2: ffffa6b681be7e18 CR3: 0000000104240000 CR4: 00000000001506e0 # [ 39.626489] Call Trace: # [ 39.629202] ? __die_body.cold+0x1a/0x1f # [ 39.655556] ? no_context+0x177/0x380 # [ 39.668833] ? exc_page_fault+0xd7/0x170 # [ 39.673011] ? asm_exc_page_fault+0x1e/0x30 # [ 39.677456] ? execute_location+0x48/0x56 # [ 39.681719] ? lkdtm_EXEC_STACK+0x26/0x44 # [ 39.685986] ? direct_entry.cold+0x2c/0x38 # [ 39.690339] ? full_proxy_write+0x56/0x80 # [ 39.694606] ? vfs_write+0xea/0x3b0 # [ 39.698351] ? ksys_write+0x68/0xf0 # [ 39.702096] ? do_syscall_64+0x33/0x40 # [ 39.706100] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 39.711580] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs bt<6>[ 40.807031] lkdtm: Performing direct entry EXEC_VMALLOC usb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic <6>[ 40.833681] lkdtm: attempting ok execution at ffffffffba580b60 ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 39.765915] CR2: ffffa6b681be7e18 <6>[ 40.859451] lkdtm: attempting bad execution at ffffa6b68070f000 # [ 39.769488] ---[ end trace 8fa2a604a62aa03c ]--- # [ 39.774378] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 39.778555] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> <2>[ 40.887775] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 39.797565] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 39.803043] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 39.810426] RDX: 0000000000000000 RSI: ff<1>[ 40.917665] BUG: unable to handle page fault for address: ffffa6b68070f000 ff<98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 39.817811] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 39.825192] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 39.832578] R13: ffffa6b680bf7f10 R14: ffffa61>[ 40.946972] #PF: supervisor instruction fetch in kernel mode b680bf7f10 R15: ffff98af45c74000 # [ 39.839961] FS: 00007f66fbf23740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 39.848296] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 39.854292] CR2: ffffa6b681be7e18 CR3: 000000010424000<1>[ 40.975070] #PF: error_code(0x0011) - permissions violation 0 CR4: 00000000001506e0 # [ 39.861678] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 39.870795] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1634, name: cat # [ 39.878626] INFO: lockdep is turn<6>[ 41.003080] PGD 100000067 P4D 100000067 PUD 100240067 PMD 105a86067 PTE 800000010341f163 ed off. # [ 39.882803] irq event stamp: 0 # [ 39.886114] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 39.892631] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 39.901071] softirqs last enabled <4>[ 41.033605] Oops: 0011 [#8] SMP NOPTI at (0): [] copy_process+0x65c/0x20e0 # [ 39.909498] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 39.916017] CPU: 1 PID: 1634 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 39.924009] Hardware name: Goo<4>[ 41.059708] CPU: 1 PID: 1708 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 41.089881] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 gle Grunt/Grunt, BIOS 09/05/2019 # [ 39.930178] Call Trace: # [ 39.932885] dump_stack+0x77/0x9b # [ 39.936460] ___might_sleep.cold+0xa6/0xb6 # [ 39.940812] exit_signals+0x1c/0x300 # [ 39.944644] do_exit+0xc2/0xab0 # [ 39.948045] ? k<4>[ 41.096056] RIP: 0010:0xffffa6b68070f000 sys_write+0x68/0xf0 # [ 39.951789] make_task_dead+0x2f/0x30 # [ 39.955709] rewind_stack_and_make_dead+0x17/0x20 # [ 39.960667] RIP: 0033:0x7f66fbdf5240 # [ 39.964500] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 <4>[ 41.122415] Code: Unable to access opcode bytes at RIP 0xffffa6b68070efd6. 0f< 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 39.983500] RSP: 002b:00007fff586fbe48 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 39.991319] RAX: ffffffffffffffda RB4>[ 41.151720] RSP: 0018:ffffa6b681cdfe38 EFLAGS: 00010246 <4>[ 41.179385] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 X: 000000000000000b RCX: 00007f66fbdf5240 # [ 39.998701] RDX: 000000000000000b RSI: 00007f66fbcdc000 RDI: 0000000000000001 # [ 40.006086] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 # [ 40.013469] R10: 00007f66fbd164d0 R11: 0<4>[ 41.186769] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 41.216336] RBP: ffffa6b68070f000 R08: 0000000000000000 R09: 0000000000000000 000000000000202 R12: 00007f66fbcdc000 # [ 40.020886] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # EXEC_STACK: saw 'call trace:': ok ok 31 selftests: lkdtm: EXEC_STACK.sh # selftests: lkdtm: EXEC_KMALLOC.sh # Killed # [ 40.2<4>[ 41.223721] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000d 42193] lkdtm: Performing direct entry EXEC_KMALLOC # [ 40.247742] lkdtm: attempting ok execution at ffffffffba580b60 # [ 40.276054] lkdtm: attempting bad execution at ffff98af462ee840 # [ 40.304448] kernel tried to execute NX-protected page - expl<4>[ 41.253288] R13: ffffa6b681cdff10 R14: ffffa6b681cdff10 R15: ffff98af4341f000 oit attempt? (uid: 0) # [ 40.334264] BUG: unable to handle page fault for address: ffff98af462ee840 # [ 40.341388] #PF: supervisor instruction fetch in kernel mode # [ 40.347296] #PF: error_code(0x0011) - permissions violation # [ 40.353119] PG<4>[ 41.282858] FS: 00007fb6810ca740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 D <24e01067 P4D 24e01067 PUD 24e05067 PMD 106365063 PTE 80000001062ee163 # [ 40.361205] Oops: 0011 [#7] SMP NOPTI # [ 40.365124] CPU: 0 PID: 1671 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 40.373114] Hardware name: Google Grunt/Gru4>[ 41.313381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 nt<, BIOS 09/05/2019 # [ 40.379285] RIP: 0010:0xffff98af462ee840 # [ 40.383463] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 33 48 43 af 98 ff ff 00 00 00 00 00 00 00 00 <0f> 1f 44 00 00 e9 d6 3e a8 00 66 0f 4>[ 41.341566] CR2: ffffa6b68070efd6 CR3: 000000010278a000 CR4: 00000000001506e0 1f< 44 00 00 0f 1f 44 00 00 55 # [ 40.402458] RSP: 0018:ffffa6b681c6fe38 EFLAGS: 00010246 # [ 40.407933] RAX: 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 # [ 40.415315] RDX: 0000000000000000 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1b4>[ 41.371138] Call Trace: f50 # [ 40.422696] RBP: ffff98af462ee840 R08: 0000000000000000 R09: 0000000000000000 # [ 40.430077] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000d # [ 40.437459] R13: ffffa6b681c6ff10 R14: ffffa6b681c6ff10 R15: ffff98af46194000 <4>[ 41.396039] ? __die_body.cold+0x1a/0x1f # [ 40.444843] FS: 00007f9208d22740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 40.453179] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 40.459174] CR2: ffff98af462ee840 CR3: 00000001037dc000 CR4: 00000000001506f0 # [ 40<4>[ 41.422399] ? no_context+0x177/0x380 .466555] Call Trace: # [ 40.469267] ? __die_body.cold+0x1a/0x1f # [ 40.473448] ? no_context+0x177/0x380 # [ 40.477367] ? exc_page_fault+0xd7/0x170 # [ 40.481546] ? asm_exc_page_fault+0x1e/0x30 # [ 40.485986] ? execute_location+0x48/0x56<4>[ 41.448503] ? exc_page_fault+0xd7/0x170 # [ 40.490253] ? lkdtm_EXEC_KMALLOC+0x2c/0x40 # [ 40.494690] ? direct_entry.cold+0x2c/0x38 # [ 40.499043] ? full_proxy_write+0x56/0x80 # [ 40.503308] ? vfs_write+0xea/0x3b0 # [ 40.507052] ? ksys_write+0x68/0xf0 # [ 40.510795] ? do_<4>[ 41.474860] ? asm_exc_page_fault+0x1e/0x30 syscall_64+0x33/0x40 # [ 40.514798] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 40.520277] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm bti<4>[ 41.501490] ? execute_location+0x48/0x56 ntel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_commo<4>[ 41.527937] ? lkdtm_EXEC_VMALLOC+0x20/0x30 n kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 40.574599] CR2: ffff98af462ee840 # [ 40.578170] --<4>[ 41.554558] ? direct_entry.cold+0x2c/0x38 -[ end trace 8fa2a604a62aa03d ]--- # [ 40.583041] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 40.587219] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 0<4>[ 41.581098] ? full_proxy_write+0x56/0x80 0 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 40.606216] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 40.611693] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 40.619075] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI:<4>[ 41.607547] ? vfs_write+0xea/0x3b0 ffffffffbc4406d0 # [ 40.626457] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 40.633840] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 40.641224] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: fff<4>[ 41.633475] ? ksys_write+0x68/0xf0 f98af45c74000 # [ 40.648607] FS: 00007f9208d22740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 40.656943] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 40.662938] CR2: ffff98af462ee840 CR3: 00000001037dc000 CR4: 000000000015<4>[ 41.659406] ? do_syscall_64+0x33/0x40 06f0 # EXEC_KMALLOC: saw 'call trace:': ok ok 32 selftests: lkdtm: EXEC_KMALLOC.sh # selftests: lkdtm: EXEC_VMALLOC.sh <4>[ 41.685594] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 41.701732] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 41.756069] CR2: ffffa6b68070f000 <4>[ 41.759641] ---[ end trace 8fa2a604a62aa03e ]--- <4>[ 41.764512] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 41.768691] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 41.787689] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 41.793168] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 41.800555] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 41.807938] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 41.815323] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 41.822707] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 41.830093] FS: 00007fb6810ca740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 41.838430] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 41.844427] CR2: ffffa6b68070efd6 CR3: 000000010278a000 CR4: 00000000001506e0 <3>[ 41.851815] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 41.860933] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1708, name: cat <4>[ 41.868753] INFO: lockdep is turned off. <4>[ 41.872929] irq event stamp: 0 <4>[ 41.876240] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 41.882759] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 41.891182] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 41.899608] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 41.906129] CPU: 1 PID: 1708 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 41.914120] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 41.920289] Call Trace: <4>[ 41.922997] dump_stack+0x77/0x9b <4>[ 41.926571] ___might_sleep.cold+0xa6/0xb6 <4>[ 41.930926] exit_signals+0x1c/0x300 <4>[ 41.934759] do_exit+0xc2/0xab0 <4>[ 41.938158] ? ksys_write+0x68/0xf0 <4>[ 41.941905] make_task_dead+0x2f/0x30 <4>[ 41.945825] rewind_stack_and_make_dead+0x17/0x20 <4>[ 41.950782] RIP: 0033:0x7fb680fdd240 <4>[ 41.954615] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 41.973614] RSP: 002b:00007ffe5d877e28 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 41.981435] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fb680fdd240 <4>[ 41.988816] RDX: 000000000000000d RSI: 00007fb680ec4000 RDI: 0000000000000001 <4>[ 41.996201] RBP: 000000000000000d R08: 00000000ffffffff R09: 0000000000000000 <4>[ 42.003583] R10: 00007fb680efe4d0 R11: 0000000000000202 R12: 00007fb680ec4000 <4>[ 42.010969] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 42.203152] lkdtm: Performing direct entry EXEC_RODATA # Killed # [ 40.807031] lkdtm: Performing direct entry EXEC_VMALLOC # [ 40.833681] lkdtm: attempting ok execution at ffffffffba580b60 # [ 40.859451] lkdtm: attempting bad execution at ffffa6b68070f000 # [ 40.887775] kernel tried to execute NX-p<6>[ 42.208560] lkdtm: attempting ok execution at ffffffffba580b60 rotected page - exploit attempt? (uid: 0) # [ 40.917665] BUG: unable to handle page fault for address: ffffa6b68070f000 # [ 40.946972] #PF: supervisor instruction fetch in kernel mode # [ 40.975070] #PF: error_code(0x0011) - permissions violation <6>[ 42.236847] lkdtm: attempting bad execution at ffffffffbc440b60 # [ 41.003080] PGD 100000067 P4D 100000067 PUD 100240067 PMD 105a86067 PTE 800000010341f163 # [ 41.033605] Oops: 0011 [#8] SMP NOPTI # [ 41.059708] CPU: 1 PID: 1708 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 41.089881] Hardware<2>[ 42.265218] kernel tried to execute NX-protected page - exploit attempt? (uid: 0) name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 41.096056] RIP: 0010:0xffffa6b68070f000 # [ 41.122415] Code: Unable to access opcode bytes at RIP 0xffffa6b68070efd6. # [ 41.151720] RSP: 0018:ffffa6b681cdfe38 EFLAGS: 00010246 # [ 41.179385] RAX:<1>[ 42.295096] BUG: unable to handle page fault for address: ffffffffbc440b60 0000000000000033 RBX: 0000000000000001 RCX: 0000000000000000 # [ 41.186769] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 41.216336] RBP: ffffa6b68070f000 R08: 0000000000000000 R09: 0000000000000000 # [ 41.223721] R10: 000<1>[ 42.324402] #PF: supervisor instruction fetch in kernel mode <1>[ 42.352497] #PF: error_code(0x0011) - permissions violation 00000ffffe000 R11: 3fffffffffffffff R12: 000000000000000d # [ 41.253288] R13: ffffa6b681cdff10 R14: ffffa6b681cdff10 R15: ffff98af4341f000 # [ 41.282858] FS: 00007fb6810ca740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 41.313381] C<6>[ 42.358319] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000022c001e1 S: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 41.341566] CR2: ffffa6b68070efd6 CR3: 000000010278a000 CR4: 00000000001506e0 # [ 41.371138] Call Trace: # [ 41.396039] ? __die_body.cold+0x1a/0x1f # [ 41.422399] ? no_context+0x177/0x380 #<4>[ 42.387454] Oops: 0011 [#9] SMP NOPTI [ 41.448503] ? exc_page_fault+0xd7/0x170 # [ 41.474860] ? asm_exc_page_fault+0x1e/0x30 # [ 41.501490] ? execute_location+0x48/0x56 # [ 41.527937] ? lkdtm_EXEC_VMALLOC+0x20/0x30 # [ 41.554558] ? direct_entry.cold+0x2c/0x38 # [ 41.5810<4>[ 42.413560] CPU: 1 PID: 1746 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 42.443731] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 98] ? full_proxy_write+0x56/0x80 # [ 41.607547] ? vfs_write+0xea/0x3b0 # [ 41.633475] ? ksys_write+0x68/0xf0 # [ 41.659406] ? do_syscall_64+0x33/0x40 # [ 41.685594] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 41.701732] Modules linke<4>[ 42.449908] RIP: 0010:lkdtm_rodata_do_nothing+0x0/0x10 d in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max9<4>[ 42.477475] Code: ff ff 1a 9d c5 ba ff ff ff ff fa 04 8d bc ff ff ff ff 60 84 c5 ba ff ff ff ff 55 aa 55 aa 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 54 68 69 73 20 69 8357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_<4>[ 42.518656] RSP: 0018:ffffa6b681d77e48 EFLAGS: 00010246 ts< elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 41.756069] CR2: ffffa6b68070f000 # [ 41.759641] ---[ end trace 8fa2a604a62aa03e ]--- # [ 41.764512] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 41.768691] Code: 89 ff e84>[ 42.546318] RAX: 0000000000000033 RBX: 0000000000000000 RCX: 0000000000000000 <4>[ 42.575889] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 41.787689] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 4<4>[ 42.583272] RBP: ffffffffbc440b60 R08: 0000000000000000 R09: 0000000000000000 1.<793168] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 41.800555] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 41.807938] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 41.814>[ 42.612838] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000c <4>[ 42.642408] R13: ffffa6b681d77f10 R14: ffffa6b681d77f10 R15: ffff98af4341c000 5323] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 41.822707] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 41.830093] FS: 00007fb6810ca740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ <4>[ 42.649792] FS: 00007f3d85681740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 41.838430] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 41.844427] CR2: ffffa6b68070efd6 CR3: 000000010278a000 CR4: 00000000001506e0 # [ 41.851815] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ <4>[ 42.680312] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <41.860933] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1708, name: cat # [ 41.868753] INFO: lockdep is turned off. # [ 41.872929] irq event stamp: 0 # [ 41.876240] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 41.88274>[ 42.708493] CR2: ffffffffbc440b60 CR3: 0000000106f2c000 CR4: 00000000001506e0 <4>[ 42.738079] Call Trace: 59] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 41.891182] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 41.899608] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [<4>[ 42.740791] ? __die_body.cold+0x1a/0x1f 41.906129] CPU: 1 PID: 1708 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 41.914120] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 41.920289] Call Trace: # [ 41.922997] dump_stack+0x77/0x9b # [ 41.926571] ___might_s<4>[ 42.767164] ? no_context+0x177/0x380 leep.cold+0xa6/0xb6 # [ 41.930926] exit_signals+0x1c/0x300 # [ 41.934759] do_exit+0xc2/0xab0 # [ 41.938158] ? ksys_write+0x68/0xf0 # [ 41.941905] make_task_dead+0x2f/0x30 # [ 41.945825] rewind_stack_and_make_dead+0x17/0x20 # [ 41.950<4>[ 42.793265] ? exc_page_fault+0xd7/0x170 782] RIP: 0033:0x7fb680fdd240 # [ 41.954615] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 4<4>[ 42.819623] ? asm_exc_page_fault+0x1e/0x30 1.973614] RSP: 002b:00007ffe5d877e28 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 41.981435] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fb680fdd240 # [ 41.988816] RDX: 000000000000000d RSI: 00007fb680ec4000 RDI: 0000000000000001 # [ <4>[ 42.846251] ? execute_location+0x48/0x56 41.996201] RBP: 000000000000000d R08: 00000000ffffffff R09: 0000000000000000 # [ 42.003583] R10: 00007fb680efe4d0 R11: 0000000000000202 R12: 00007fb680ec4000 # [ 42.010969] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # EXEC_VMA<4>[ 42.872696] ? direct_entry.cold+0x2c/0x38 LLOC: saw 'call trace:': ok ok 33 selftests: lkdtm: EXEC_VMALLOC.sh # selftests: lkdtm: EXEC_RODATA.sh <4>[ 42.899235] ? full_proxy_write+0x56/0x80 <4>[ 42.912684] ? vfs_write+0xea/0x3b0 <4>[ 42.916428] ? ksys_write+0x68/0xf0 <4>[ 42.920175] ? do_syscall_64+0x33/0x40 <4>[ 42.924179] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 42.929658] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 42.983993] CR2: ffffffffbc440b60 <4>[ 42.987576] ---[ end trace 8fa2a604a62aa03f ]--- <4>[ 42.992465] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 42.996643] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 43.015655] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 43.021132] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 43.028516] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 43.035900] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 43.043283] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 43.050667] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 43.058051] FS: 00007f3d85681740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 43.066389] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 43.072385] CR2: ffffffffbc440b60 CR3: 0000000106f2c000 CR4: 00000000001506e0 <3>[ 43.079772] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 43.088890] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1746, name: cat <4>[ 43.096709] INFO: lockdep is turned off. <4>[ 43.100886] irq event stamp: 0 <4>[ 43.104200] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 43.110721] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 43.119145] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 43.127572] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 43.134091] CPU: 1 PID: 1746 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 43.142082] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 43.148250] Call Trace: <4>[ 43.150958] dump_stack+0x77/0x9b <4>[ 43.154532] ___might_sleep.cold+0xa6/0xb6 <4>[ 43.158886] exit_signals+0x1c/0x300 <4>[ 43.162718] do_exit+0xc2/0xab0 <4>[ 43.166119] ? ksys_write+0x68/0xf0 <4>[ 43.169865] make_task_dead+0x2f/0x30 <4>[ 43.173785] rewind_stack_and_make_dead+0x17/0x20 <4>[ 43.178742] RIP: 0033:0x7f3d85555240 <4>[ 43.182576] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 43.201573] RSP: 002b:00007ffed1ccad38 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 43.209393] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f3d85555240 <4>[ 43.216778] RDX: 000000000000000c RSI: 00007f3d8543c000 RDI: 0000000000000001 <4>[ 43.224160] RBP: 000000000000000c R08: 00000000ffffffff R09: 0000000000000000 <4>[ 43.231543] R10: 00007f3d854764d0 R11: 0000000000000202 R12: 00007f3d8543c000 <4>[ 43.238929] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 43.480672] lkdtm: Performing direct entry EXEC_USERSPACE # Killed # [ 42.203152] lkdtm: Performing direct entry EXEC_RODATA # [ 42.208560] lkdtm: attempting ok execution at ffffffffba580b60 # [ 42.236847] lkdtm: attempting bad execution at ffffffffbc440b60 # [ 42.265218] kernel tried to execute NX-pr<6>[ 43.486342] lkdtm: attempting ok execution at ffffffffba580b60 otected page - exploit attempt? (uid: 0) # [ 42.295096] BUG: unable to handle page fault for address: ffffffffbc440b60 # [ 42.324402] #PF: supervisor instruction fetch in kernel mode # [ 42.352497] #PF: error_code(0x0011) - permissions violation <6>[ 43.514648] lkdtm: attempting bad execution at 00007fa631731000 # [ 42.358319] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000022c001e1 # [ 42.387454] Oops: 0011 [#9] SMP NOPTI # [ 42.413560] CPU: 1 PID: 1746 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 42.443731] Hardware name: Google Gru<2>[ 43.543011] unable to execute userspace code (SMEP?) (uid: 0) nt/Grunt, BIOS 09/05/2019 # [ 42.449908] RIP: 0010:lkdtm_rodata_do_nothing+0x0/0x10 # [ 42.477475] Code: ff ff 1a 9d c5 ba ff ff ff ff fa 04 8d bc ff ff ff ff 60 84 c5 ba ff ff ff ff 55 aa 55 aa 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0<1>[ 43.571142] BUG: unable to handle page fault for address: 00007fa631731000 0 00 00 00 00 00 00 00 00 00 00 54 68 69 73 20 69 # [ 42.518656] RSP: 0018:ffffa6b681d77e48 EFLAGS: 00010246 # [ 42.546318] RAX: 0000000000000033 RBX: 0000000000000000 RCX: 0000000000000000 # [ 42.575889] RDX: 0000000000000000 RSI: ffff98af6ad1bf5<1>[ 43.600449] #PF: supervisor instruction fetch in kernel mode <1>[ 43.628543] #PF: error_code(0x0011) - permissions violation 0 RDI: ffff98af6ad1bf50 # [ 42.583272] RBP: ffffffffbc440b60 R08: 0000000000000000 R09: 0000000000000000 # [ 42.612838] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000c # [ 42.642408] R13: ffffa6b681d77f10 R14: ffffa6b681d77f10 R1<6>[ 43.634366] PGD 10417d067 P4D 10417d067 PUD 10341e067 PMD 106141067 PTE 10bc82067 5: ffff98af4341c000 # [ 42.649792] FS: 00007f3d85681740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 42.680312] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 42.708493] CR2: ffffffffbc440b60 CR3: 0000000106f2c000 CR4: 000000<4>[ 43.664280] Oops: 0011 [#10] SMP NOPTI 00001506e0 # [ 42.738079] Call Trace: # [ 42.740791] ? __die_body.cold+0x1a/0x1f # [ 42.767164] ? no_context+0x177/0x380 # [ 42.793265] ? exc_page_fault+0xd7/0x170 # [ 42.819623] ? asm_exc_page_fault+0x1e/0x30 # [ 42.846251] ? execut<4>[ 43.690472] CPU: 1 PID: 1783 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 43.720645] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 e_location+0x48/0x56 # [ 42.872696] ? direct_entry.cold+0x2c/0x38 # [ 42.899235] ? full_proxy_write+0x56/0x80 # [ 42.912684] ? vfs_write+0xea/0x3b0 # [ 42.916428] ? ksys_write+0x68/0xf0 # [ 42.920175] ? do_syscall_64+0x33/0x40 # [ 42<4>[ 43.726817] RIP: 0010:0x7fa631731000 .9<24179] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 42.929658] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx4>[ 43.752826] Code: Unable to access opcode bytes at RIP 0x7fa631730fd6. 98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_<4>[ 43.781791] RSP: 0018:ffffa6b681defe50 EFLAGS: 00010246 au[ 43.809452] RAX: 0000000000000033 RBX: 0000000000000024 RCX: 0000000000000000 <4>[ 43.839021] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 ]--- # [ 42.992465] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 42.996643] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 0<4>[ 43.846403] RBP: 00007fa631731000 R08: 0000000000000000 R09: 0000000000000000 5 [ 43.875968] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000f 59<00] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 43.043283] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 43.050667] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 43.0580514>[ 43.905538] R13: ffffa6b681deff10 R14: ffffa6b681deff10 R15: ffff98af434bd000 ] FS: 00007f3d85681740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 43.066389] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 43.072385] CR2: ffffffffbc440b60 CR3: 0000000106f2c000 CR4: 00000000001506e0 # [ 43.079772] BUG: sl<4>[ 43.935112] FS: 00007fa631732740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 eeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 43.088890] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1746, name: cat # [ 43.096709] INFO: lockdep is turned off. # [ 43.100886] irq event stamp: 0 # [<4>[ 43.965632] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 43.104200] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 43.110721] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 43.119145] softirqs last enabled at (0): [] copy_process+0x65c/0<4>[ 43.993817] CR2: 00007fa631731000 CR3: 000000010620e000 CR4: 00000000001506e0 <4>[ 44.023385] Call Trace: x20e0 # [ 43.127572] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 43.134091] CPU: 1 PID: 1746 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 43.142082] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 43.14825<4>[ 44.026098] ? __die_body.cold+0x1a/0x1f 0] Call Trace: # [ 43.150958] dump_stack+0x77/0x9b # [ 43.154532] ___might_sleep.cold+0xa6/0xb6 # [ 43.158886] exit_signals+0x1c/0x300 # [ 43.162718] do_exit+0xc2/0xab0 # [ 43.166119] ? ksys_write+0x68/0xf0 # [ 43.169865] make_task_<4>[ 44.052464] ? no_context+0x177/0x380 dead+0x2f/0x30 # [ 43.173785] rewind_stack_and_make_dead+0x17/0x20 # [ 43.178742] RIP: 0033:0x7f3d85555240 # [ 43.182576] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 0<4>[ 44.078569] ? exc_page_fault+0x53/0x170 0 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 43.201573] RSP: 002b:00007ffed1ccad38 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 43.209393] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f3d85555240 # [ <4>[ 44.104928] ? asm_exc_page_fault+0x1e/0x30 43.216778] RDX: 000000000000000c RSI: 00007f3d8543c000 RDI: 0000000000000001 # [ 43.224160] RBP: 000000000000000c R08: 00000000ffffffff R09: 0000000000000000 # [ 43.231543] R10: 00007f3d854764d0 R11: 0000000000000202 R12: 00007f3d8543c000 # [ 43.2<4>[ 44.131556] ? lkdtm_EXEC_USERSPACE.cold+0x69/0xae 38929] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # EXEC_RODATA: saw 'call trace:': ok ok 34 selftests: lkdtm: EXEC_RODATA.sh # selftests: lkdtm: EXEC_USERSPACE.sh <4>[ 44.158779] ? direct_entry.cold+0x2c/0x38 <4>[ 44.179684] ? full_proxy_write+0x56/0x80 <4>[ 44.183950] ? vfs_write+0xea/0x3b0 <4>[ 44.187694] ? ksys_write+0x68/0xf0 <4>[ 44.191441] ? do_syscall_64+0x33/0x40 <4>[ 44.195446] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 44.200929] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 44.255264] CR2: 00007fa631731000 <4>[ 44.261430] ---[ end trace 8fa2a604a62aa040 ]--- <4>[ 44.266401] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 44.270701] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 44.289730] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 44.295293] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 44.302735] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 44.310167] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 44.317680] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 44.325158] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 44.332608] FS: 00007fa631732740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 44.341014] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 44.347075] CR2: 00007fa631731000 CR3: 000000010620e000 CR4: 00000000001506e0 <6>[ 44.506659] lkdtm: Performing direct entry EXEC_NULL # Killed # [ 43.480672] lkdtm: Performing direct entry EXEC_USERSPACE # [ 43.486342] lkdtm: attempting ok execution at ffffffffba580b60 # [ 43.514648] lkdtm: attempting bad execution at 00007fa631731000 # [ 43.543011] unable to execute userspac<6>[ 44.511898] lkdtm: attempting ok execution at ffffffffba580b60 e code (SMEP?) (uid: 0) # [ 43.571142] BUG: unable to handle page fault for address: 00007fa631731000 # [ 43.600449] #PF: supervisor instruction fetch in kernel mode # [ 43.628543] #PF: error_code(0x0011) - permissions violation # [ 43.634366] <6>[ 44.540178] lkdtm: attempting bad execution at 0000000000000000 PGD 10417d067 P4D 10417d067 PUD 10341e067 PMD 106141067 PTE 10bc82067 # [ 43.664280] Oops: 0011 [#10] SMP NOPTI # [ 43.690472] CPU: 1 PID: 1783 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 43.720645] Hardware name: Google Grunt/Grun<1>[ 44.568609] BUG: kernel NULL pointer dereference, address: 0000000000000000 <1>[ 44.597910] #PF: supervisor instruction fetch in kernel mode <1>[ 44.603823] #PF: error_code(0x0010) - not-present page <6>[ 44.609214] PGD 0 P4D 0 <4>[ 44.612007] Oops: 0010 [#11] SMP NOPTI <4>[ 44.616013] CPU: 0 PID: 1820 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 44.624002] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 44.630175] RIP: 0010:0x0 <4>[ 44.633057] Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6. <4>[ 44.640178] RSP: 0018:ffffa6b681e87e48 EFLAGS: 00010246 <4>[ 44.645655] RAX: 0000000000000033 RBX: 0000000000000000 RCX: 0000000000000000 <4>[ 44.653036] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 44.660418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 <4>[ 44.667800] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a <4>[ 44.675183] R13: ffffa6b681e87f10 R14: ffffa6b681e87f10 R15: ffff98af430d3000 <4>[ 44.682565] FS: 00007f4d10dea740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 44.690901] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 44.696896] CR2: ffffffffffffffd6 CR3: 0000000106f48000 CR4: 00000000001506f0 <4>[ 44.704277] Call Trace: <4>[ 44.706989] ? __die_body.cold+0x1a/0x1f <4>[ 44.711170] ? no_context+0x177/0x380 <4>[ 44.715091] ? exc_page_fault+0x53/0x170 <4>[ 44.719267] ? asm_exc_page_fault+0x1e/0x30 <4>[ 44.723709] execute_location+0x48/0x56 <4>[ 44.727800] direct_entry.cold+0x2c/0x38 <4>[ 44.731979] full_proxy_write+0x56/0x80 <4>[ 44.736071] vfs_write+0xea/0x3b0 <4>[ 44.739642] ksys_write+0x68/0xf0 <4>[ 44.743212] do_syscall_64+0x33/0x40 <4>[ 44.747044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 44.752347] RIP: 0033:0x7f4d10cf5240 <4>[ 44.756177] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 44.775172] RSP: 002b:00007ffc5c5c98f8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 44.782987] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f4d10cf5240 <4>[ 44.790368] RDX: 000000000000000a RSI: 00007f4d10bdc000 RDI: 0000000000000001 <4>[ 44.797749] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 <4>[ 44.805130] R10: 00007f4d10c164d0 R11: 0000000000000202 R12: 00007f4d10bdc000 <4>[ 44.812512] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 44.819898] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 44.874221] CR2: 0000000000000000 t, BIOS 09/05/2019 # [ 43.726817] RIP: 0010:0x7fa631731000 # [ 43.752826] Code: Unable to access opcode bytes at RIP 0x7fa631730fd6. # [ 43.781791] RSP: 0018:ffffa6b681defe50 EFLAGS: 00010246 # [ 43.809452] RAX: 0000000000000033 RBX: 000000000<4>[ 44.877887] ---[ end trace 8fa2a604a62aa041 ]--- 0000024 RCX: 0000000000000000 # [ 43.839021] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 43.846403] RBP: 00007fa631731000 R08: 0000000000000000 R09: 0000000000000000 # [ 43.875968] R10: 00000000ffffe000 R11: 3ffffffffffff<4>[ 44.904950] RIP: 0010:lkdtm_BUG+0x5/0x10 fff R12: 000000000000000f # [ 43.905538] R13: ffffa6b681deff10 R14: ffffa6b681deff10 R15: ffff98af434bd000 # [ 43.935112] FS: 00007fa631732740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 43.965632] CS: 0010 DS: 0000 ES: 0000 CR0: <4>[ 44.931313] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 0000000080050033 # [ 43.993817] CR2: 00007fa631731000 CR3: 000000010620e000 CR4: 00000000001506e0 # [ 44.023385] Call Trace: # [ 44.026098] ? __die_body.cold+0x1a/0x1f # [ 44.052464] ? no_context+0x177/0x380 # [ 44.078569] ? exc_page_faul<4>[ 44.972523] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 t+0x53/0x170 # [ 44.104928] ? asm_exc_page_fault+0x1e/0x30 # [ 44.131556] ? lkdtm_EXEC_USERSPACE.cold+0x69/0xae # [ 44.158779] ? direct_entry.cold+0x2c/0x38 # [ 44.179684] ? full_proxy_write+0x56/0x80 # [ 44.183950] ? vfs_write+0xea/0x3<4>[ 45.000186] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 b0 # [ 44.187694] ? ksys_write+0x68/0xf0 # [ 44.191441] ? do_syscall_64+0x33/0x40 # [ 44.195446] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 44.200929] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cro<4>[ 45.029755] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 s_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als vide<4>[ 45.059329] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 obuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine re<4>[ 45.088904] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 gmap_i2c # [ 44.255264] CR2: 00007fa631731000 # [ 44.261430] ---[ end trace 8fa2a604a62aa040 ]--- # [ 44.266401] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 44.270701] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 <4>[ 45.118489] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 44.289730] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 44.295293] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 00000000000000<4>[ 45.148061] FS: 00007f4d10dea740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 00 # [ 44.302735] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 44.310167] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 44.317680] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 45.178589] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 44.325158] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 44.332608] FS: 00007fa631732740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 44.341014] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 44.<4>[ 45.206797] CR2: ffffffffffffffd6 CR3: 0000000106f48000 CR4: 00000000001506f0 347075] CR2: 00007fa631731000 CR3: 000000010620e000 CR4: 00000000001506e0 # EXEC_USERSPACE: saw 'call trace:': ok ok 35 selftests: lkdtm: EXEC_USERSPACE.sh # selftests: lkdtm: EXEC_NULL.sh # Killed # [ 44.506659] lkdtm: Performing direct entry EXEC_NULL # [ 44.511898] lkdtm: attempting ok execution at ffffffffba580b60 # [ 44.540178] lkdtm: attempting bad execution at 0000000000000000 # [ 44.568609] BUG: kernel NULL pointer dereference, address: 0000000000000000 # [ 44.597910] #PF: supervisor instruction fetch in kernel mode # [ 44.603823] #PF: error_code(0x0010) - not-present page # [ 44.609214] PGD 0 P4D 0 # [ 44.612007] Oops: 0010 [#11] SMP NOPTI # [ 44.616013] CPU: 0 PID: 1820 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 44.624002] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 44.630175] RIP: 0010:0x0 # [ 44.633057] Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6. # [ 44.640178] RSP: 0018:ffffa6b681e87e48 EFLAGS: 00010246 # [ 44.645655] RAX: 0000000000000033 RBX: 0000000000000000 RCX: 0000000000000000 # [ 44.653036] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 44.660418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 # [ 44.667800] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000a # [ 44.675183] R13: ffffa6b681e87f10 R14: ffffa6b681e87f10 R15: ffff98af430d3000 # [ 44.682565] FS: 00007f4d10dea740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ <6>[ 45.387359] lkdtm: Performing direct entry ACCESS_USERSPACE 44.690901] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 44.696896] CR2: ffffffffffffffd6 CR3: 0000000106f48000 CR4: 00000000001506f0 # [ 44.704277] Call Trace: # [ 44.706989] ? __die_body.cold+0x1a/0x1f # [ 44.711170] ? no_context+<6>[ 45.398393] lkdtm: attempting bad read at 00007f790e2b9000 0x177/0x380 # [ 44.715091] ? exc_page_fault+0x53/0x170 # [ 44.719267] ? asm_exc_page_fault+0x1e/0x30 # [ 44.723709] execute_location+0x48/0x56 # [ 44.727800] direct_entry.cold+0x2c/0x38 # [ 44.731979] full_proxy_write+0x56/0x80 # [ 4<3>[ 45.426334] lkdtm: FAIL: survived bad read 4.736071] vfs_write+0xea/0x3b0 # [ 44.739642] ksys_write+0x68/0xf0 # [ 44.743212] do_syscall_64+0x33/0x40 # [ 44.747044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 44.752347] RIP: 0033:0x7f4d10cf5240 # [ 44.756177] Code: 40 00 48 8b 15<6>[ 45.452872] lkdtm: attempting bad write at 00007f790e2b9000 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 44.775172] RSP: 002b:00007ffc5c5c98f8 EFLAGS: 00000202 ORIG_RAX: 0000<3>[ 45.480863] lkdtm: FAIL: survived bad write 000000000001 # [ 44.782987] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f4d10cf5240 # [ 44.790368] RDX: 000000000000000a RSI: 00007f4d10bdc000 RDI: 0000000000000001 # [ 44.797749] RBP: 000000000000000a R08: 00000000ffffffff R09: 0000000000000000 # [ 44.805130] R10: 00007f4d10c164d0 R11: 0000000000000202 R12: 00007f4d10bdc000 # [ 44.812512] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 44.819898] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 44.874221] CR2: 0000000000000000 # [ 44.877887] ---[ end trace 8fa2a604a62aa041 ]--- # [ 44.904950] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 44.931313] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 44.972523] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 45.000186] RAX: ffffffffba580790 RBX: 00000000000<6>[ 45.634651] lkdtm: Performing direct entry ACCESS_NULL 00001 RCX: 0000000000000000 # [ 45.029755] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 45.059329] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 45.088904] R10: 00000000ffffe000 R11: 3ffffffffffffff<6>[ 45.645979] lkdtm: attempting bad read at 0000000000000000 f R12: 0000000000000004 # [ 45.118489] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 45.148061] FS: 00007f4d10dea740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 45.178589] CS: 0010 DS: 0000 ES: 0000 CR0: 0<1>[ 45.674222] BUG: kernel NULL pointer dereference, address: 0000000000000000 <1>[ 45.703207] #PF: supervisor read access in kernel mode 000000080050033 # [ 45.206797] CR2: ffffffffffffffd6 CR3: 0000000106f48000 CR4: 00000000001506f0 # EXEC_NULL: saw 'call trace:': ok ok 36 selftests: lkdtm: EXEC_NULL.sh # selftests: lkdtm: ACCESS_USERSPACE.sh # [ 45.387359] lkdtm: Performing direc<1>[ 45.708596] #PF: error_code(0x0000) - not-present page t entry ACCESS_USERSPACE # [ 45.398393] lkdtm: attempting bad read at 00007f790e2b9000 # [ 45.426334] lkdtm: FAIL: survived bad read # [ 45.452872] lkdtm: attempting bad write at 00007f790e2b9000 # [ 45.480863] lkdtm: FAIL: survived bad write <6>[ 45.736169] PGD 0 P4D 0 # ACCESS_USERSPACE: missing 'call trace:': [FAIL] not ok 37 selftests: lkdtm: ACCESS_USERSPACE.sh # exit=1 # selftests: lkdtm: ACCESS_NULL.sh <4>[ 45.761151] Oops: 0000 [#12] SMP NOPTI <4>[ 45.777719] CPU: 1 PID: 1891 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 45.785727] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 45.791904] RIP: 0010:lkdtm_ACCESS_NULL+0x14/0x53 <4>[ 45.796860] Code: 6d d6 fb ff be 00 10 00 00 48 89 ef e8 cb f4 0a ff e9 69 ff ff ff 0f 1f 44 00 00 53 31 f6 48 c7 c7 18 12 8d bc e8 47 d6 fb ff <48> 8b 1c 25 00 00 00 00 b8 de c0 de c0 48 c7 c7 40 12 8d bc 48 01 <4>[ 45.815856] RSP: 0018:ffffa6b681f97e58 EFLAGS: 00010246 <4>[ 45.821333] RAX: 000000000000002e RBX: 0000000000000027 RCX: 0000000000000000 <4>[ 45.828715] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 45.836096] RBP: ffffffffbc8d0309 R08: 0000000000000000 R09: 0000000000000000 <4>[ 45.843478] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000c <4>[ 45.850860] R13: ffffa6b681f97f10 R14: ffffa6b681f97f10 R15: ffff98af46ec5000 <4>[ 45.858244] FS: 00007fddf8212740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 45.866582] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 45.872578] CR2: 00007f4291082768 CR3: 000000010281a000 CR4: 00000000001506e0 <4>[ 45.879963] Call Trace: <4>[ 45.882674] ? __die_body.cold+0x1a/0x1f <4>[ 45.886854] ? no_context+0x177/0x380 <4>[ 45.890775] ? exc_page_fault+0x53/0x170 <4>[ 45.894952] ? asm_exc_page_fault+0x1e/0x30 <4>[ 45.899393] ? lkdtm_ACCESS_NULL+0x14/0x53 <4>[ 45.903743] ? lkdtm_ACCESS_NULL+0x14/0x53 <4>[ 45.908093] direct_entry.cold+0x2c/0x38 <4>[ 45.912273] full_proxy_write+0x56/0x80 <4>[ 45.916364] vfs_write+0xea/0x3b0 <4>[ 45.919934] ksys_write+0x68/0xf0 <4>[ 45.923505] do_syscall_64+0x33/0x40 <4>[ 45.927335] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 45.932640] RIP: 0033:0x7fddf80e5240 <4>[ 45.936472] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 45.955467] RSP: 002b:00007fff4b320b68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 45.963284] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007fddf80e5240 <4>[ 45.970667] RDX: 000000000000000c RSI: 00007fddf7fcc000 RDI: 0000000000000001 <4>[ 45.978048] RBP: 000000000000000c R08: 00000000ffffffff R09: 0000000000000000 <4>[ 45.985428] R10: 00007fddf80064d0 R11: 0000000000000202 R12: 00007fddf7fcc000 <4>[ 45.992810] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 46.000195] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 46.054517] CR2: 0000000000000000 <4>[ 46.060616] ---[ end trace 8fa2a604a62aa042 ]--- <4>[ 46.065596] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 46.069910] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 46.088945] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 46.094524] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 46.101969] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 46.109411] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 46.116859] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 46.124306] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 46.131758] FS: 00007fddf8212740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 46.140155] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 46.146214] CR2: 00007f4291082768 CR3: 000000010281a000 CR4: 00000000001506e0 <6>[ 46.337500] lkdtm: Performing direct entry WRITE_RO # Killed # [ 45.634651] lkdtm: Performing direct entry ACCESS_NULL # [ 45.645979] lkdtm: attempting bad read at 0000000000000000 # [ 45.674222] BUG: kernel NULL pointer dereference, address: 0000000000000000 # [ 45.703207] #PF: supervisor read <6>[ 46.342651] lkdtm: attempting bad rodata write at ffffffffbc440b50 access in kernel mode # [ 45.708596] #PF: error_code(0x0000) - not-present page # [ 45.736169] PGD 0 P4D 0 # [ 45.761151] Oops: 0000 [#12] SMP NOPTI # [ 45.777719] CPU: 1 PID: 1891 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ <1>[ 46.371289] BUG: unable to handle page fault for address: ffffffffbc440b50 45.785727] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 45.791904] RIP: 0010:lkdtm_ACCESS_NULL+0x14/0x53 # [ 45.796860] Code: 6d d6 fb ff be 00 10 00 00 48 89 ef e8 cb f4 0a ff e9 69 ff ff ff 0f 1f 44 00 00 53 31 f6 48 c7 c7 18 12 8d bc e<1>[ 46.400569] #PF: supervisor write access in kernel mode <1>[ 46.428230] #PF: error_code(0x0003) - permissions violation 8 47 d6 fb ff <48> 8b 1c 25 00 00 00 00 b8 de c0 de c0 48 c7 c7 40 12 8d bc 48 01 # [ 45.815856] RSP: 0018:ffffa6b681f97e58 EFLAGS: 00010246 # [ 45.821333] RAX: 000000000000002e RBX: 0000000000000027 RCX: 0000000000000000 # [ 45.828715] RDX: 00000<6>[ 46.434053] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000022c001e1 00000000000 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 45.836096] RBP: ffffffffbc8d0309 R08: 0000000000000000 R09: 0000000000000000 # [ 45.843478] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000000c # [ 45.850860] R13: ffffa6b68<4>[ 46.463186] Oops: 0003 [#13] SMP NOPTI 1f97f10 R14: ffffa6b681f97f10 R15: ffff98af46ec5000 # [ 45.858244] FS: 00007fddf8212740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 45.866582] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 45.872578] CR2: 00007f4291082768 C<4>[ 46.489376] CPU: 1 PID: 1927 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 46.519549] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 R3: 000000010281a000 CR4: 00000000001506e0 # [ 45.879963] Call Trace: # [ 45.882674] ? __die_body.cold+0x1a/0x1f # [ 45.886854] ? no_context+0x177/0x380 # [ 45.890775] ? exc_page_fault+0x53/0x170 # [ 45.894952] ? asm_exc_page_fault+0x1e/<4>[ 46.525723] RIP: 0010:lkdtm_WRITE_RO+0x2e/0x3a 0x30 # [ 45.899393] ? lkdtm_ACCESS_NULL+0x14/0x53 # [ 45.903743] ? lkdtm_ACCESS_NULL+0x14/0x53 # [ 45.908093] direct_entry.cold+0x2c/0x38 # [ 45.912273] full_proxy_write+0x56/0x80 # [ 45.916364] vfs_write+0xea/0x3b0 # [ 45.919934] k<4>[ 46.552597] Code: 00 48 c7 c7 f8 10 8d bc 48 c7 c6 50 0b 44 bc e8 f1 d8 fb ff 48 8b 05 a5 83 7e 01 ba 34 12 cd ab 48 c7 c7 28 11 8d bc 48 31 d0 <48> 89 05 8f 83 7e 01 e9 cf d8 fb ff 0f 1f 44 00 00 48 8b 05 7e 0b sys_write+0x68/0xf0 # [ 45.923505] do_syscall_64+0x33/0x40 # [ 45.927335] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 45.932640] RIP: 0033:0x7fddf80e5240 # [ 45.936472] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb <4>[ 46.593779] RSP: 0018:ffffa6b684027e60 EFLAGS: 00010202 <4>[ 46.621443] RAX: 000000000198b861 RBX: 0000000000000028 RCX: 0000000000000000 b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 45.955467] RSP: 002b:00007fff4b320b68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 45.963284] RAX: ffffffffffffffda<4>[ 46.628826] RDX: 00000000abcd1234 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d1128 <4>[ 46.658393] RBP: ffffffffbc8d0315 R08: 0000000000000000 R09: 0000000000000000 RBX: 000000000000000c RCX: 00007fddf80e5240 # [ 45.970667] RDX: 000000000000000c RSI: 00007fddf7fcc000 RDI: 0000000000000001 # [ 45.978048] RBP: 000000000000000c R08: 00000000ffffffff R09: 0000000000000000 # [ 45.985428] R10: 00007fddf80064d0 R11<4>[ 46.665776] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000009 <4>[ 46.695341] R13: ffffa6b684027f10 R14: ffffa6b684027f10 R15: ffff98af4466a000 : 0000000000000202 R12: 00007fddf7fcc000 # [ 45.992810] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 46.000195] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_cha<4>[ 46.702726] FS: 00007fc3f1af2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 46.733243] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 rdev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2<4>[ 46.739240] CR2: ffffffffbc440b50 CR3: 00000001046d8000 CR4: 00000000001506e0 <4>[ 46.768806] Call Trace: watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 46.054517] <4>[ 46.771519] ? __die_body.cold+0x1a/0x1f CR2: 0000000000000000 # [ 46.060616] ---[ end trace 8fa2a604a62aa042 ]--- # [ 46.065596] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 46.069910] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb <4>[ 46.797873] ? no_context+0x177/0x380 c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 46.088945] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 46.094524] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 46.101969] RDX: 0<4>[ 46.823979] ? exc_page_fault+0xd7/0x170 000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 46.109411] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 46.116859] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 46.124306] R13: ffffa<4>[ 46.850338] ? asm_exc_page_fault+0x1e/0x30 6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 46.131758] FS: 00007fddf8212740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 46.140155] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 46.146214] CR2: 00007f42910827<4>[ 46.876963] ? lkdtm_WRITE_RO+0x2e/0x3a 68 CR3: 000000010281a000 CR4: 00000000001506e0 # ACCESS_NULL: saw 'call trace:': ok ok 38 selftests: lkdtm: ACCESS_NULL.sh # selftests: lkdtm: WRITE_RO.sh <4>[ 46.903238] direct_entry.cold+0x2c/0x38 <4>[ 46.921197] full_proxy_write+0x56/0x80 <4>[ 46.925292] vfs_write+0xea/0x3b0 <4>[ 46.928863] ksys_write+0x68/0xf0 <4>[ 46.932436] do_syscall_64+0x33/0x40 <4>[ 46.936269] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 46.941575] RIP: 0033:0x7fc3f19c5240 <4>[ 46.945407] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 46.964405] RSP: 002b:00007ffde2fe51d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 46.972223] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007fc3f19c5240 <4>[ 46.979607] RDX: 0000000000000009 RSI: 00007fc3f18ac000 RDI: 0000000000000001 <4>[ 46.986992] RBP: 0000000000000009 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 46.994374] R10: 00007fc3f18e64d0 R11: 0000000000000202 R12: 00007fc3f18ac000 <4>[ 47.001759] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 47.009148] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 47.063484] CR2: ffffffffbc440b50 <4>[ 47.067057] ---[ end trace 8fa2a604a62aa043 ]--- <4>[ 47.071930] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 47.076107] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 47.095105] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 47.100583] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 47.107967] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 47.115353] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 47.122737] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 47.130123] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 47.137508] FS: 00007fc3f1af2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 47.145845] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 47.151842] CR2: ffffffffbc440b50 CR3: 00000001046d8000 CR4: 00000000001506e0 <3>[ 47.159227] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 47.168344] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1927, name: cat <4>[ 47.176163] INFO: lockdep is turned off. <4>[ 47.180339] irq event stamp: 0 <4>[ 47.183653] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 47.190174] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 47.198599] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 47.207024] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 47.213545] CPU: 1 PID: 1927 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 47.221536] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 47.227706] Call Trace: <4>[ 47.230415] dump_stack+0x77/0x9b <4>[ 47.233989] ___might_sleep.cold+0xa6/0xb6 <4>[ 47.238344] exit_signals+0x1c/0x300 <4>[ 47.242177] do_exit+0xc2/0xab0 <4>[ 47.245577] ? ksys_write+0x68/0xf0 <4>[ 47.249323] make_task_dead+0x2f/0x30 <4>[ 47.253244] rewind_stack_and_make_dead+0x17/0x20 <4>[ 47.258200] RIP: 0033:0x7fc3f19c5240 <4>[ 47.262033] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 47.281031] RSP: 002b:00007ffde2fe51d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 47.288852] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007fc3f19c5240 <4>[ 47.296233] RDX: 0000000000000009 RSI: 00007fc3f18ac000 RDI: 0000000000000001 <4>[ 47.303620] RBP: 0000000000000009 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 47.311003] R10: 00007fc3f18e64d0 R11: 0000000000000202 R12: 00007fc3f18ac000 <4>[ 47.318389] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 47.529444] lkdtm: Performing direct entry WRITE_RO_AFTER_INIT # Killed # [ 46.337500] lkdtm: Performing direct entry WRITE_RO # [ 46.342651] lkdtm: attempting bad rodata write at ffffffffbc440b50 # [ 46.371289] BUG: unable to handle page fault for address: ffffffffbc440b50 # [ 46.400569] #PF: supervisor w<6>[ 47.535577] lkdtm: attempting bad ro_after_init write at ffffffffbc959350 rite access in kernel mode # [ 46.428230] #PF: error_code(0x0003) - permissions violation # [ 46.434053] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 8000000022c001e1 # [ 46.463186] Oops: 0003 [#13] SMP NOPTI # [ 46.489376] CPU: 1 PID: 1927 Comm<1>[ 47.564819] BUG: unable to handle page fault for address: ffffffffbc959350 : cat Tainted: G D W 5.10.218-cip49 #1 # [ 46.519549] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 46.525723] RIP: 0010:lkdtm_WRITE_RO+0x2e/0x3a # [ 46.552597] Code: 00 48 c7 c7 f8 10 8d bc 48 c7 c6 50 0b 44 bc e8 f1 d8 fb <1>[ 47.594103] #PF: supervisor write access in kernel mode ff< 48 8b 05 a5 83 7e 01 ba 34 12 cd ab 48 c7 c7 28 11 8d bc 48 31 d0 <48> 89 05 8f 83 7e 01 e9 cf d8 fb ff 0f 1f 44 00 00 48 8b 05 7e 0b # [ 46.593779] RSP: 0018:ffffa6b684027e60 EFLAGS: 00010202 # [ 46.621443] RAX: 000000000198b861 RBX: 0000000000001>[ 47.621761] #PF: error_code(0x0003) - permissions violation 0028 RCX: 0000000000000000 # [ 46.628826] RDX: 00000000abcd1234 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d1128 # [ 46.658393] RBP: ffffffffbc8d0315 R08: 0000000000000000 R09: 0000000000000000 # [ 46.665776] R10: 00000000ffffe000 R11: 3fffffffffffffff<6>[ 47.649773] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 80000000230001e1 R12: 0000000000000009 # [ 46.695341] R13: ffffa6b684027f10 R14: ffffa6b684027f10 R15: ffff98af4466a000 # [ 46.702726] FS: 00007fc3f1af2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 46.733243] CS: 0010 DS: 0000 ES: 0000 CR0: 000<4>[ 47.678910] Oops: 0003 [#14] SMP NOPTI 0000080050033 # [ 46.739240] CR2: ffffffffbc440b50 CR3: 00000001046d8000 CR4: 00000000001506e0 # [ 46.768806] Call Trace: # [ 46.771519] ? __die_body.cold+0x1a/0x1f # [ 46.797873] ? no_context+0x177/0x380 # [ 46.823979] ? exc_page_fault+0<4>[ 47.705102] CPU: 1 PID: 1963 Comm: cat Tainted: G D W 5.10.218-cip49 #1 xd<7/0x170 # [ 46.850338] ? asm_exc_page_fault+0x1e/0x30 # [ 46.876963] ? lkdtm_WRITE_RO+0x2e/0x3a # [ 46.903238] direct_entry.cold+0x2c/0x38 # [ 46.921197] full_proxy_write+0x56/0x80 # [ 46.925292] vfs_write+0xea/0x3b0 # [ 46.928863]4>[ 47.735275] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 ksys_write+0x68/0xf0 # [ 46.932436] do_syscall_64+0x33/0x40 # [ 46.936269] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 46.941575] RIP: 0033:0x7fc3f19c5240 # [ 46.945407] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff <4>[ 47.763639] RIP: 0010:lkdtm_WRITE_RO_AFTER_INIT+0x4e/0x5a eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 46.964405] RSP: 002b:00007ffde2fe51d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 46.972223] RAX: fffffffffffff<4>[ 47.791471] Code: 11 8d bc e9 a3 d8 fb ff 48 c7 c7 80 11 8d bc e8 97 d8 fb ff 48 8b 05 4b 0b d0 01 ba 34 12 cd ab 48 c7 c7 28 11 8d bc 48 31 d0 <48> 89 05 35 0b d0 01 e9 75 d8 fb ff 0f 1f 44 00 00 41 54 48 c7 c7 fda RBX: 0000000000000009 RCX: 00007fc3f19c5240 # [ 46.979607] RDX: 0000000000000009 RSI: 00007fc3f18ac000 RDI: 0000000000000001 # [ 46.986992] RBP: 0000000000000009 R08: 00000000ffffffff R09: 0000000000000000 # [ 46.994374] R10: 00007fc3f18e64d0 <4>[ 47.832653] RSP: 0018:ffffa6b6840a7e60 EFLAGS: 00010202 R1<1: 0000000000000202 R12: 00007fc3f18ac000 # [ 47.001759] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 47.009148] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_4>[ 47.860317] RAX: 00000000fe67479e RBX: 0000000000000029 RCX: 0000000000000000 <4>[ 47.889888] RDX: 00000000abcd1234 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d1128 chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v<4>[ 47.897272] RBP: ffffffffbc8d031e R08: 0000000000000000 R09: 0000000000000000 <4>[ 47.926837] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000014 4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 47.06348<4>[ 47.934221] R13: ffffa6b6840a7f10 R14: ffffa6b6840a7f10 R15: ffff98af46fb2000 4] CR2: ffffffffbc440b50 # [ 47.067057] ---[ end trace 8fa2a604a62aa043 ]--- # [ 47.071930] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 47.076107] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff <4>[ 47.963788] FS: 00007fa7d8562740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 47.095105] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 47.100583] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 47.107967] RDX<4>[ 47.994312] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 : <0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 47.115353] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 47.122737] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 47.130123] R13: ff4>[ 48.022494] CR2: ffffffffbc959350 CR3: 0000000102864000 CR4: 00000000001506e0 ff[ 48.052065] Call Trace: 40b50 CR3: 00000001046d8000 CR4: 00000000001506e0 # [ 47.159227] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 47.168344] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1927, name: cat # [ 47.176<4>[ 48.076966] ? __die_body.cold+0x1a/0x1f 163] INFO: lockdep is turned off. # [ 47.180339] irq event stamp: 0 # [ 47.183653] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 47.190174] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 47.19859<4>[ 48.103327] ? no_context+0x177/0x380 9] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 47.207024] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 47.213545] CPU: 1 PID: 1927 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 47.<4>[ 48.129430] ? exc_page_fault+0xd7/0x170 221536] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 47.227706] Call Trace: # [ 47.230415] dump_stack+0x77/0x9b # [ 47.233989] ___might_sleep.cold+0xa6/0xb6 # [ 47.238344] exit_signals+0x1c/0x300 # [ 47.242177] do_exit+0xc2/0x<4>[ 48.155787] ? asm_exc_page_fault+0x1e/0x30 ab0 # [ 47.245577] ? ksys_write+0x68/0xf0 # [ 47.249323] make_task_dead+0x2f/0x30 # [ 47.253244] rewind_stack_and_make_dead+0x17/0x20 # [ 47.258200] RIP: 0033:0x7fc3f19c5240 # [ 47.262033] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 4<4>[ 48.182412] ? lkdtm_WRITE_RO_AFTER_INIT+0x4e/0x5a 8 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 47.281031] RSP: 002b:00007ffde2fe51d8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 47.288852<4>[ 48.209638] direct_entry.cold+0x2c/0x38 ] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007fc3f19c5240 # [ 47.296233] RDX: 0000000000000009 RSI: 00007fc3f18ac000 RDI: 0000000000000001 # [ 47.303620] RBP: 0000000000000009 R08: 00000000ffffffff R09: 0000000000000000 # [ 47.311003] R1<4>[ 48.236005] full_proxy_write+0x56/0x80 0: 00007fc3f18e64d0 R11: 0000000000000202 R12: 00007fc3f18ac000 # [ 47.318389] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # WRITE_RO: saw 'call trace:': ok ok 39 selftests: lkdtm: WRITE_RO.sh # selftests: lkdtm: WRITE_RO_AFTER_<4>[ 48.262281] vfs_write+0xea/0x3b0 INIT.sh <4>[ 48.288035] ksys_write+0x68/0xf0 <4>[ 48.292386] do_syscall_64+0x33/0x40 <4>[ 48.296219] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 48.301526] RIP: 0033:0x7fa7d8475240 <4>[ 48.305357] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 48.324355] RSP: 002b:00007ffc9c8027b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 48.332176] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00007fa7d8475240 <4>[ 48.339561] RDX: 0000000000000014 RSI: 00007fa7d835c000 RDI: 0000000000000001 <4>[ 48.346945] RBP: 0000000000000014 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 48.354330] R10: 00007fa7d83964d0 R11: 0000000000000202 R12: 00007fa7d835c000 <4>[ 48.361714] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 48.369104] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 48.423440] CR2: ffffffffbc959350 <4>[ 48.427013] ---[ end trace 8fa2a604a62aa044 ]--- <4>[ 48.431888] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 48.436065] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 48.455063] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 48.460541] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 48.467925] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 48.475309] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 48.482691] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 48.490077] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 48.497461] FS: 00007fa7d8562740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 48.505801] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 48.511796] CR2: ffffffffbc959350 CR3: 0000000102864000 CR4: 00000000001506e0 <3>[ 48.519184] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 48.528302] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1963, name: cat <4>[ 48.536121] INFO: lockdep is turned off. <4>[ 48.540297] irq event stamp: 0 <4>[ 48.543607] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 48.550129] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 48.558554] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 48.566979] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 48.573499] CPU: 1 PID: 1963 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 48.581490] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 48.587659] Call Trace: <4>[ 48.590368] dump_stack+0x77/0x9b <4>[ 48.593941] ___might_sleep.cold+0xa6/0xb6 <4>[ 48.598297] exit_signals+0x1c/0x300 <4>[ 48.602130] do_exit+0xc2/0xab0 <4>[ 48.605529] ? ksys_write+0x68/0xf0 <4>[ 48.609276] make_task_dead+0x2f/0x30 <4>[ 48.613196] rewind_stack_and_make_dead+0x17/0x20 <4>[ 48.618153] RIP: 0033:0x7fa7d8475240 <4>[ 48.621986] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 48.640984] RSP: 002b:00007ffc9c8027b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 48.648805] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00007fa7d8475240 <4>[ 48.656189] RDX: 0000000000000014 RSI: 00007fa7d835c000 RDI: 0000000000000001 <4>[ 48.663574] RBP: 0000000000000014 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 48.670958] R10: 00007fa7d83964d0 R11: 0000000000000202 R12: 00007fa7d835c000 <4>[ 48.678343] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 48.953101] lkdtm: Performing direct entry WRITE_KERN # Killed # [ 47.529444] lkdtm: Performing direct entry WRITE_RO_AFTER_INIT # [ 47.535577] lkdtm: attempting bad ro_after_init write at ffffffffbc959350 # [ 47.564819] BUG: unable to handle page fault for address: ffffffffbc959350 # [ 47.594103]<6>[ 48.958432] lkdtm: attempting bad 7175109 byte write at ffffffffbac58725 #PF: supervisor write access in kernel mode # [ 47.621761] #PF: error_code(0x0003) - permissions violation # [ 47.649773] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 80000000230001e1 # [ 47.678910] Oops: 0003 [#14] SMP NOPTI # [ 47.705102] CPU<1>[ 48.987592] BUG: unable to handle page fault for address: ffffffffbac58725 : 1 PID: 1963 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 47.735275] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 47.763639] RIP: 0010:lkdtm_WRITE_RO_AFTER_INIT+0x4e/0x5a # [ 47.791471] Code: 11 8d bc e9 a3 d8 fb ff 48 c<1>[ 49.016863] #PF: supervisor write access in kernel mode <1>[ 49.044522] #PF: error_code(0x0003) - permissions violation 7 c7 80 11 8d bc e8 97 d8 fb ff 48 8b 05 4b 0b d0 01 ba 34 12 cd ab 48 c7 c7 28 11 8d bc 48 31 d0 <48> 89 05 35 0b d0 01 e9 75 d8 fb ff 0f 1f 44 00 00 41 54 48 c7 c7 # [ 47.832653] RSP: 0018:ffffa6b6840a7e60 EFLAGS: 00010202 # [ 47.860317] RAX: 00000<6>[ 49.050345] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 214001e1 000fe67479e RBX: 0000000000000029 RCX: 0000000000000000 # [ 47.889888] RDX: 00000000abcd1234 RSI: ffff98af6ad1bf50 RDI: ffffffffbc8d1128 # [ 47.897272] RBP: ffffffffbc8d031e R08: 0000000000000000 R09: 0000000000000000 # [ 47.926837] R10: 00000000f<4>[ 49.078785] Oops: 0003 [#15] SMP NOPTI fffe000 R11: 3fffffffffffffff R12: 0000000000000014 # [ 47.934221] R13: ffffa6b6840a7f10 R14: ffffa6b6840a7f10 R15: ffff98af46fb2000 # [ 47.963788] FS: 00007fa7d8562740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 47.994312] CS: 00<4>[ 49.104978] CPU: 1 PID: 1999 Comm: cat Tainted: G D W 5.10.218-cip49 #1 10< DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 48.022494] CR2: ffffffffbc959350 CR3: 0000000102864000 CR4: 00000000001506e0 # [ 48.052065] Call Trace: # [ 48.076966] ? __die_body.cold+0x1a/0x1f # [ 48.103327] ? no_context+0x177/0x380 # [ 44>[ 49.135155] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 8.129430] ? exc_page_fault+0xd7/0x170 # [ 48.155787] ? asm_exc_page_fault+0x1e/0x30 # [ 48.182412] ? lkdtm_WRITE_RO_AFTER_INIT+0x4e/0x5a # [ 48.209638] direct_entry.cold+0x2c/0x38 # [ 48.236005] full_proxy_write+0x56/0x80 # [ 48.262281]<4>[ 49.163519] RIP: 0010:lkdtm_WRITE_KERN+0x38/0x4e vfs_write+0xea/0x3b0 # [ 48.288035] ksys_write+0x68/0xf0 # [ 48.292386] do_syscall_64+0x33/0x40 # [ 48.296219] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 48.301526] RIP: 0033:0x7fa7d8475240 # [ 48.305357] Code: 40 00 48 8b 15 c1 9b 0d<4>[ 49.190569] Code: 53 48 c7 c3 25 87 c5 ba 49 89 dc 48 89 da 49 81 ec 60 0b 58 ba 4c 89 e6 e8 4a d8 fb ff 48 89 df 4c 89 e1 48 c7 c6 60 0b 58 ba a4 48 c7 c7 28 11 8d bc e8 2f d8 fb ff 5b 41 5c e9 b7 fe ff ff 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 48.324355] RSP: 002b:00007ffc9c8027b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000<4>[ 49.231751] RSP: 0018:ffffa6b68411fe50 EFLAGS: 00010246 00<1 # [ 48.332176] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00007fa7d8475240 # [ 48.339561] RDX: 0000000000000014 RSI: 00007fa7d835c000 RDI: 0000000000000001 # [ 48.346945] RBP: 0000000000000014 R08: 00000000ffffffff R09: 0000000000000000 4>[ 49.259413] RAX: 000000000000003c RBX: ffffffffbac58725 RCX: 00000000006d7bc5 <4>[ 49.288983] RDX: 0000000000000000 RSI: ffffffffba580b60 RDI: ffffffffbac58725 # [ 48.354330] R10: 00007fa7d83964d0 R11: 0000000000000202 R12: 00007fa7d835c000 # [ 48.361714] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 48.369104] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger c<4>[ 49.296367] RBP: ffffffffbc8d0332 R08: 0000000000000000 R09: 0000000000000000 <4>[ 49.325932] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 00000000006d7bc5 ros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmall<4>[ 49.333314] R13: ffffa6b68411ff10 R14: ffffa6b68411ff10 R15: ffff98af43583000 oc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_<4>[ 49.362881] FS: 00007f37a512a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 49.393403] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 pcm_dmaengine regmap_i2c # [ 48.423440] CR2: ffffffffbc959350 # [ 48.427013] ---[ end trace 8fa2a604a62aa044 ]--- # [ 48.431888] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 48.436065] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff<4>[ 49.399398] CR2: ffffffffbac58725 CR3: 0000000102792000 CR4: 00000000001506e0 ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 48.455063] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 48.460541] RAX: ffffffffba580790 RBX: 0000000000000001 RCX<4>[ 49.428965] Call Trace: : 0000000000000000 # [ 48.467925] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 # [ 48.475309] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 48.482691] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 00<4>[ 49.453865] ? __die_body.cold+0x1a/0x1f 00000000000004 # [ 48.490077] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 # [ 48.497461] FS: 00007fa7d8562740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 48.505801] CS: 0010 DS: 0000 ES: 0000 CR0: 00000000800<4>[ 49.480227] ? no_context+0x177/0x380 50033 # [ 48.511796] CR2: ffffffffbc959350 CR3: 0000000102864000 CR4: 00000000001506e0 # [ 48.519184] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 48.528302] in_atomic(): 0, irqs_disabled(): 1, non_bloc<4>[ 49.506326] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 k: 0, pid: 1963, name: cat # [ 48.536121] INFO: lockdep is turned off. # [ 48.540297] irq event stamp: 0 # [ 48.543607] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 48.550129] hardirqs last disabled at (0): [] c<4>[ 49.533643] ? exc_page_fault+0xd7/0x170 opy_process+0x65c/0x20e0 # [ 48.558554] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 48.566979] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 48.573499] CPU: 1 PID: 1963 Comm: cat Tainted: G <4>[ 49.560004] ? asm_exc_page_fault+0x1e/0x30 D W 5.10.218-cip49 #1 # [ 48.581490] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 48.587659] Call Trace: # [ 48.590368] dump_stack+0x77/0x9b # [ 48.593941] ___might_sleep.cold+0xa6/0xb6 # [ 48.598297] exit_signals+0x1c/<4>[ 49.586626] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 0x300 # [ 48.602130] do_exit+0xc2/0xab0 # [ 48.605529] ? ksys_write+0x68/0xf0 # [ 48.609276] make_task_dead+0x2f/0x30 # [ 48.613196] rewind_stack_and_make_dead+0x17/0x20 # [ 48.618153] RIP: 0033:0x7fa7d8475240 # [ 48.621986] Code: 40 <4>[ 49.613948] ? lkdtm_SLAB_FREE_PAGE+0x40/0x40 00< 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 48.640984] RSP: 002b:00007ffc9c8027b8 EFLAGS: 00000202 ORI4>[ 49.640737] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 G_RAX: 0000000000000001 # [ 48.648805] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 00007fa7d8475240 # [ 48.656189] RDX: 0000000000000014 RSI: 00007fa7d835c000 RDI: 0000000000000001 # [ 48.663574] RBP: 0000000000000014 R08: 00000000ffffffff R0<4>[ 49.668056] ? lkdtm_WRITE_KERN+0x38/0x4e 9: 0000000000000000 # [ 48.670958] R10: 00007fa7d83964d0 R11: 0000000000000202 R12: 00007fa7d835c000 # [ 48.678343] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # WRITE_RO_AFTER_INIT: saw 'call trace:': ok ok 40 selftests: lkdt<4>[ 49.694508] direct_entry.cold+0x2c/0x38 m: WRITE_RO_AFTER_INIT.sh # selftests: lkdtm: WRITE_KERN.sh <4>[ 49.720874] full_proxy_write+0x56/0x80 <4>[ 49.730336] vfs_write+0xea/0x3b0 <4>[ 49.733907] ksys_write+0x68/0xf0 <4>[ 49.737480] do_syscall_64+0x33/0x40 <4>[ 49.741313] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 49.746620] RIP: 0033:0x7f37a5035240 <4>[ 49.750451] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 49.769450] RSP: 002b:00007fff815ef568 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 49.777270] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f37a5035240 <4>[ 49.784655] RDX: 000000000000000b RSI: 00007f37a4f1c000 RDI: 0000000000000001 <4>[ 49.792039] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 <4>[ 49.799424] R10: 00007f37a4f564d0 R11: 0000000000000202 R12: 00007f37a4f1c000 <4>[ 49.806806] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 49.814195] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c <4>[ 49.868526] CR2: ffffffffbac58725 <4>[ 49.872099] ---[ end trace 8fa2a604a62aa045 ]--- <4>[ 49.876970] RIP: 0010:lkdtm_BUG+0x5/0x10 <4>[ 49.881148] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f> 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 <4>[ 49.900146] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 <4>[ 49.905625] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 <4>[ 49.913007] RDX: 0000000000000000 RSI: ffff98af6ad1bf50 RDI: ffffffffbc4406d0 <4>[ 49.920392] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 <4>[ 49.927774] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 <4>[ 49.935160] R13: ffffa6b680bf7f10 R14: ffffa6b680bf7f10 R15: ffff98af45c74000 <4>[ 49.942544] FS: 00007f37a512a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 49.950883] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 49.956879] CR2: ffffffffbac58725 CR3: 0000000102792000 CR4: 00000000001506e0 <3>[ 49.964267] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 <3>[ 49.973384] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1999, name: cat <4>[ 49.981203] INFO: lockdep is turned off. <4>[ 49.985379] irq event stamp: 0 <4>[ 49.988689] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 49.995210] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 50.003636] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 50.012062] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 50.018583] CPU: 1 PID: 1999 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 50.026574] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 50.032743] Call Trace: <4>[ 50.035451] dump_stack+0x77/0x9b <4>[ 50.039025] ___might_sleep.cold+0xa6/0xb6 <4>[ 50.043380] exit_signals+0x1c/0x300 <4>[ 50.047212] do_exit+0xc2/0xab0 <4>[ 50.050611] ? ksys_write+0x68/0xf0 <4>[ 50.054355] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 <4>[ 50.059488] make_task_dead+0x2f/0x30 <4>[ 50.063409] rewind_stack_and_make_dead+0x17/0x20 <4>[ 50.068366] RIP: 0033:0x7f37a5035240 <4>[ 50.072199] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 50.091197] RSP: 002b:00007fff815ef568 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 50.099017] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f37a5035240 <4>[ 50.106401] RDX: 000000000000000b RSI: 00007f37a4f1c000 RDI: 0000000000000001 <4>[ 50.113785] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 <4>[ 50.121168] R10: 00007f37a4f564d0 R11: 0000000000000202 R12: 00007f37a4f1c000 <4>[ 50.128553] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <6>[ 50.317956] lkdtm: Performing direct entry REFCOUNT_INC_OVERFLOW # Killed # [ 48.953101] lkdtm: Performing direct entry WRITE_KERN # [ 48.958432] lkdtm: attempting bad 7175109 byte write at ffffffffbac58725 # [ 48.987592] BUG: unable to handle page fault for address: ffffffffbac58725 # [ 49.016863] #PF: supe<6>[ 50.324236] lkdtm: attempting good refcount_inc() without overflow rvisor write access in kernel mode # [ 49.044522] #PF: error_code(0x0003) - permissions violation # [ 49.050345] PGD 23429067 P4D 23429067 PUD 2342a063 PMD 214001e1 # [ 49.078785] Oops: 0003 [#15] SMP NOPTI # [ 49.104978] CPU: 1 PID: 1999 Comm<6>[ 50.355364] lkdtm: attempting bad refcount_inc() overflow : cat Tainted: G D W 5.10.218-cip49 #1 # [ 49.135155] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 49.163519] RIP: 0010:lkdtm_WRITE_KERN+0x38/0x4e # [ 49.190569] Code: 53 48 c7 c3 25 87 c5 ba 49 89 dc 48 89 da 49 81 ec 60 0<4>[ 50.380783] ------------[ cut here ]------------ b 58 ba 4c 89 e6 e8 4a d8 fb ff 48 89 df 4c 89 e1 48 c7 c6 60 0b 58 ba a4 48 c7 c7 28 11 8d bc e8 2f d8 fb ff 5b 41 5c e9 b7 fe ff ff # [ 49.231751] RSP: 0018:ffffa6b68411fe50 EFLAGS: 00010246 # [ 49.259413] RAX: 000000000000003c RBX: ffffffffba<4>[ 50.407746] refcount_t: saturated; leaking memory. c58725 RCX: 00000000006d7bc5 # [ 49.288983] RDX: 0000000000000000 RSI: ffffffffba580b60 RDI: ffffffffbac58725 # [ 49.296367] RBP: ffffffffbc8d0332 R08: 0000000000000000 R09: 0000000000000000 # [ 49.325932] R10: 00000000ffffe000 R11: 3fffffffffffff<4>[ 50.435067] WARNING: CPU: 1 PID: 2035 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 ff R12: 00000000006d7bc5 # [ 49.333314] R13: ffffa6b68411ff10 R14: ffffa6b68411ff10 R15: ffff98af43583000 # [ 49.362881] FS: 00007f37a512a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 49.393403] CS: 0010 DS: 0000 ES: 0000 CR0: 0<4>[ 50.465952] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 000000080050033 # [ 49.399398] CR2: ffffffffbac58725 CR3: 0000000102792000 CR4: 00000000001506e0 # [ 49.428965] Call Trace: # [ 49.453865] ? __die_body.cold+0x1a/0x1f # [ 49.480227] ? no_context+0x177/0x380 # [ 49.506326] ? lkdtm_SLAB_FRE<4>[ 50.542346] CPU: 1 PID: 2035 Comm: cat Tainted: G D W 5.10.218-cip49 #1 E_CROSS.cold+0x32/0x32 # [ 49.533643] ? exc_page_fault+0xd7/0x170 # [ 49.560004] ? asm_exc_page_fault+0x1e/0x30 # [ 49.586626] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 # [ 49.613948] ? lkdtm_SLAB_FREE_PAGE+0x40/0x40 # [ 49.640737] ? lkdtm<4>[ 50.572565] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 _SLAB_FREE_CROSS.cold+0x32/0x32 # [ 49.668056] ? lkdtm_WRITE_KERN+0x38/0x4e # [ 49.694508] direct_entry.cold+0x2c/0x38 # [ 49.720874] full_proxy_write+0x56/0x80 # [ 49.730336] vfs_write+0xea/0x3b0 # [ 49.733907] ksys_write+0x68/0xf0 # <4>[ 50.600894] RIP: 0010:refcount_warn_saturate+0x51/0x110 [ 49.737480] do_syscall_64+0x33/0x40 # [ 49.741313] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 49.746620] RIP: 0033:0x7f37a5035240 # [ 49.750451] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23<4>[ 50.628556] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 49.769450] RSP: 002b:00007fff815ef568 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 49.777270] RAX: ffffffffffffffda RBX: 000000000000000b <4>[ 50.669738] RSP: 0018:ffffa6b68419fe48 EFLAGS: 00010286 RCX: 00007f37a5035240 # [ 49.784655] RDX: 000000000000000b RSI: 00007f37a4f1c000 RDI: 0000000000000001 # [ 49.792039] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000000000 # [ 49.799424] R10: 00007f37a4f564d0 R11: 0000000000000202 R12:<4>[ 50.697407] RAX: 0000000000000000 RBX: 000000000000002b RCX: 0000000000000000 00007f37a4f1c000 # [ 49.806806] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 49.814195] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs bt<4>[ 50.726969] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 usb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic <4>[ 50.756544] RBP: ffffffffbc8d033d R08: 0000000000000000 R09: 0000000000000000 ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 49.868526] CR2: ffffffffbac58725 <4>[ 50.786118] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 # [ 49.872099] ---[ end trace 8fa2a604a62aa045 ]--- # [ 49.876970] RIP: 0010:lkdtm_BUG+0x5/0x10 # [ 49.881148] Code: 89 ff e8 be a6 79 ff 48 c7 c0 ea ff ff ff eb de 48 c7 c0 ea ff ff ff e9 b9 42 a8 00 48 c7 c0 f4 ff ff ff eb c9 0f 1f 44 00 00 <0f><4>[ 50.815709] R13: ffffa6b68419ff10 R14: ffffa6b68419ff10 R15: ffff98af446fe000 0b 66 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 05 c0 06 eb 03 # [ 49.900146] RSP: 0018:ffffa6b680bf7e60 EFLAGS: 00010286 # [ 49.905625] RAX: ffffffffba580790 RBX: 0000000000000001 RCX: 0000000000000000 # [ 49.913007] RDX: 0000000000000000 RSI: ffff98a<4>[ 50.847728] FS: 00007fad58f32740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 f6ad1bf50 RDI: ffffffffbc4406d0 # [ 49.920392] RBP: ffffffffbc936fc8 R08: 0000000000000001 R09: 0000000000000001 # [ 49.927774] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000004 # [ 49.935160] R13: ffffa6b680bf7f10 R14: ffffa6b680b<4>[ 50.876232] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 f7f10 R15: ffff98af45c74000 # [ 49.942544] FS: 00007f37a512a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 49.950883] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 49.956879] CR2: ffffffffbac58725 CR3: 0000000102792000 CR4<4>[ 50.904441] CR2: 00007fad58d2c000 CR3: 000000010446e000 CR4: 00000000001506e0 : 00000000001506e0 # [ 49.964267] BUG: sleeping function called from invalid context at include/linux/percpu-rwsem.h:49 # [ 49.973384] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 1999, name: cat # [ 49.981203] INFO: lockdep is turned of<4>[ 50.933961] Call Trace: f. # [ 49.985379] irq event stamp: 0 # [ 49.988689] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 49.995210] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 50.003636] softirqs last enabled at (0<4>[ 50.958891] ? __warn+0x80/0x110 ): [] copy_process+0x65c/0x20e0 # [ 50.012062] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 50.018583] CPU: 1 PID: 1999 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 50.026574] Hardware name: Google G<4>[ 50.984579] ? refcount_warn_saturate+0x51/0x110 runt/Grunt, BIOS 09/05/2019 # [ 50.032743] Call Trace: # [ 50.035451] dump_stack+0x77/0x9b # [ 50.039025] ___might_sleep.cold+0xa6/0xb6 # [ 50.043380] exit_signals+0x1c/0x300 # [ 50.047212] do_exit+0xc2/0xab0 # [ 50.050611] ? ksys_w<4>[ 51.011612] ? report_bug+0x9e/0xc0 rite+0x68/0xf0 # [ 50.054355] ? lkdtm_SLAB_FREE_CROSS.cold+0x32/0x32 # [ 50.059488] make_task_dead+0x2f/0x30 # [ 50.063409] rewind_stack_and_make_dead+0x17/0x20 # [ 50.068366] RIP: 0033:0x7f37a5035240 # [ 50.072199] Code: 40 00 48 8b 15 c<4>[ 51.037549] ? handle_bug+0x41/0x90 1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 50.091197] RSP: 002b:00007fff815ef568 EFLAGS: 00000202 ORIG_RAX: 000000<4>[ 51.063480] ? exc_invalid_op+0x14/0x70 0000000001 # [ 50.099017] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f37a5035240 # [ 50.106401] RDX: 000000000000000b RSI: 00007f37a4f1c000 RDI: 0000000000000001 # [ 50.113785] RBP: 000000000000000b R08: 00000000ffffffff R09: 0000000000<4>[ 51.089750] ? asm_exc_invalid_op+0x12/0x20 000000 # [ 50.121168] R10: 00007f37a4f564d0 R11: 0000000000000202 R12: 00007f37a4f1c000 # [ 50.128553] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # WRITE_KERN: saw 'call trace:': ok ok 41 selftests: lkdtm: WRITE_KERN.sh # se<4>[ 51.116381] ? refcount_warn_saturate+0x51/0x110 lftests: lkdtm: REFCOUNT_INC_OVERFLOW.sh <4>[ 51.143422] ? refcount_warn_saturate+0x51/0x110 <4>[ 51.151931] lkdtm_REFCOUNT_INC_OVERFLOW+0x70/0x98 <4>[ 51.157056] direct_entry.cold+0x2c/0x38 <4>[ 51.161301] full_proxy_write+0x56/0x80 <4>[ 51.165464] vfs_write+0xea/0x3b0 <4>[ 51.169116] ksys_write+0x68/0xf0 <4>[ 51.172785] do_syscall_64+0x33/0x40 <4>[ 51.176701] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 51.182108] RIP: 0033:0x7fad58e45240 <4>[ 51.186140] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 51.205294] RSP: 002b:00007ffe5aaf0018 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 51.213182] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007fad58e45240 <4>[ 51.220686] RDX: 0000000000000016 RSI: 00007fad58d2c000 RDI: 0000000000000001 <4>[ 51.228150] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 51.235630] R10: 00007fad58d664d0 R11: 0000000000000202 R12: 00007fad58d2c000 <4>[ 51.243072] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 51.250544] irq event stamp: 0 <4>[ 51.253905] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 51.260494] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 51.268952] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 51.277439] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 51.283983] ---[ end trace 8fa2a604a62aa046 ]--- <6>[ 51.288929] lkdtm: Overflow detected: saturated # [ 50.317956] lkdtm: Performing direct entry REFCOUNT_INC_OVERFLOW # [ 50.324236] lkdtm: attempting good refcount_inc() without overflow # [ 50.355364] lkdtm: attempting bad refcount_inc() overflow # [ 50.380783] ------------[ cut here ]------------ # [ 50.407746] refcount_t: saturated; leaking memory. # [ 50.435067] WARNING: CPU: 1 PID: 2035 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 # [ 50.465952] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 50.542346] CPU: 1 PID: 2035 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 50.572565] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 50.600894] RIP: 0010:refcount_warn_saturate+0x51/0x110 # [ 50.6285<6>[ 51.441985] lkdtm: Performing direct entry REFCOUNT_ADD_OVERFLOW 56] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 # [ 50.669738] RSP: 0018:ffffa6b68419fe48 EFLAGS:<6>[ 51.456696] lkdtm: attempting good refcount_add() without overflow 00010286 # [ 50.697407] RAX: 0000000000000000 RBX: 000000000000002b RCX: 0000000000000000 # [ 50.726969] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 50.756544] RBP: ffffffffbc8d033d R08: 0000000000000000 R09: 00000000000<6>[ 51.485341] lkdtm: attempting bad refcount_add() overflow 00000 # [ 50.786118] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 # [ 50.815709] R13: ffffa6b68419ff10 R14: ffffa6b68419ff10 R15: ffff98af446fe000 # [ 50.847728] FS: 00007fad58f32740(0000) GS:ffff98af6ad00000(0000) knlGS:0000<4>[ 51.513156] ------------[ cut here ]------------ 000000000000 # [ 50.876232] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 50.904441] CR2: 00007fad58d2c000 CR3: 000000010446e000 CR4: 00000000001506e0 # [ 50.933961] Call Trace: # [ 50.958891] ? __warn+0x80/0x110 # [ 50.984579] ? r<4>[ 51.540207] refcount_t: saturated; leaking memory. efcount_warn_saturate+0x51/0x110 # [ 51.011612] ? report_bug+0x9e/0xc0 # [ 51.037549] ? handle_bug+0x41/0x90 # [ 51.063480] ? exc_invalid_op+0x14/0x70 # [ 51.089750] ? asm_exc_invalid_op+0x12/0x20 # [ 51.116381] ? refcount_warn_saturate<4>[ 51.567479] WARNING: CPU: 1 PID: 2068 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 +0x51/0x110 # [ 51.143422] ? refcount_warn_saturate+0x51/0x110 # [ 51.151931] lkdtm_REFCOUNT_INC_OVERFLOW+0x70/0x98 # [ 51.157056] direct_entry.cold+0x2c/0x38 # [ 51.161301] full_proxy_write+0x56/0x80 # [ 51.165464] vfs_write+0xea/0x3b0<4>[ 51.598344] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 51.169116] ksys_write+0x68/0xf0 # [ 51.172785] do_syscall_64+0x33/0x40 # [ 51.176701] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 51.182108] RIP: 0033:0x7fad58e45240 # [ 51.186140] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 <4>[ 51.674903] CPU: 1 PID: 2068 Comm: cat Tainted: G D W 5.10.218-cip49 #1 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 51.205294] RSP: 002b:00007ffe5aaf0018 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 51.213182] <4>[ 51.704980] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007fad58e45240 # [ 51.220686] RDX: 0000000000000016 RSI: 00007fad58d2c000 RDI: 0000000000000001 # [ 51.228150] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 # [ 51.235630] R10:<4>[ 51.733383] RIP: 0010:refcount_warn_saturate+0x51/0x110 00007fad58d664d0 R11: 0000000000000202 R12: 00007fad58d2c000 # [ 51.243072] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 51.250544] irq event stamp: 0 # [ 51.253905] hardirqs last enabled at (0): [<0000000000000000>] 0x0<4>[ 51.761098] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 # [ 51.260494] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 51.268952] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 51.277439] softirqs last disabled at (0): [<000000000000<4>[ 51.802231] RSP: 0018:ffffa6b684217e48 EFLAGS: 00010286 0000>] 0x0 # [ 51.283983] ---[ end trace 8fa2a604a62aa046 ]--- # [ 51.288929] lkdtm: Overflow detected: saturated # REFCOUNT_INC_OVERFLOW: saw 'call trace:': ok ok 42 selftests: lkdtm: REFCOUNT_INC_OVERFLOW.sh # selftests: lkdtm: REFCOUNT_ADD_OVE<4>[ 51.829880] RAX: 0000000000000000 RBX: 000000000000002c RCX: 0000000000000000 RFLOW.sh <4>[ 51.861912] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 51.869357] RBP: ffffffffbc8d0353 R08: 0000000000000000 R09: 0000000000000000 <4>[ 51.876784] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 <4>[ 51.884260] R13: ffffa6b684217f10 R14: ffffa6b684217f10 R15: ffff98af4287e000 <4>[ 51.891697] FS: 00007f6d9ed52740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 51.900080] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 51.906141] CR2: 00007f6d9eb4c000 CR3: 00000001037ba000 CR4: 00000000001506e0 <4>[ 51.913595] Call Trace: <4>[ 51.916388] ? __warn+0x80/0x110 <4>[ 51.920025] ? refcount_warn_saturate+0x51/0x110 <4>[ 51.924969] ? report_bug+0x9e/0xc0 <4>[ 51.928862] ? handle_bug+0x41/0x90 <4>[ 51.932680] ? exc_invalid_op+0x14/0x70 <4>[ 51.936881] ? asm_exc_invalid_op+0x12/0x20 <4>[ 51.941489] ? refcount_warn_saturate+0x51/0x110 <4>[ 51.946585] ? refcount_warn_saturate+0x51/0x110 <4>[ 51.951514] lkdtm_REFCOUNT_ADD_OVERFLOW+0x7f/0xa7 <4>[ 51.956654] direct_entry.cold+0x2c/0x38 <4>[ 51.960975] full_proxy_write+0x56/0x80 <4>[ 51.965132] vfs_write+0xea/0x3b0 <4>[ 51.968784] ksys_write+0x68/0xf0 <4>[ 51.972494] do_syscall_64+0x33/0x40 <4>[ 51.976383] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 51.981707] RIP: 0033:0x7f6d9ec65240 <4>[ 51.985543] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 52.004571] RSP: 002b:00007ffd531c0818 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 52.012403] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007f6d9ec65240 <4>[ 52.019797] RDX: 0000000000000016 RSI: 00007f6d9eb4c000 RDI: 0000000000000001 <4>[ 52.027206] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 52.034598] R10: 00007f6d9eb864d0 R11: 0000000000000202 R12: 00007f6d9eb4c000 <4>[ 52.041988] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 52.049387] irq event stamp: 0 <4>[ 52.052707] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 52.059263] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 52.067703] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 52.076148] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 52.082671] ---[ end trace 8fa2a604a62aa047 ]--- <6>[ 52.087550] lkdtm: Overflow detected: saturated # [ 51.441985] lkdtm: Performing direct entry REFCOUNT_ADD_OVERFLOW # [ 51.456696] lkdtm: attempting good refcount_add() without overflow # [ 51.485341] lkdtm: attempting bad refcount_add() overflow # [ 51.513156] ------------[ cut here ]------------ # [ 51.540207] refcount_t: saturated; leaking memory. # [ 51.567479] WARNING: CPU: 1 PID: 2068 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 # [ 51.598344] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 51.674903] CPU: 1 PID: 2068 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 51.704980] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 51.733383] RIP: 0010:refcount_warn_saturate+0x51/0x110 # [ 51.761098] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 # [ 51.802231] RSP: 0018:ffffa6b684217e48 EFLAGS:<6>[ 52.245114] lkdtm: Performing direct entry REFCOUNT_INC_NOT_ZERO_OVERFLOW 00010286 # [ 51.829880] RAX: 0000000000000000 RBX: 000000000000002c RCX: 0000000000000000 # [ 51.861912] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 51.869357] RBP: ffffffffbc8d0353 R08: 0000000000000000 R09: 00000000000<6>[ 52.268672] lkdtm: attempting bad refcount_inc_not_zero() overflow 00000 # [ 51.876784] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 # [ 51.884260] R13: ffffa6b684217f10 R14: ffffa6b684217f10 R15: ffff98af4287e000 # [ 51.891697] FS: 00007f6d9ed52740(0000) GS:ffff98af6ad00000(0000) knlGS:0000<4>[ 52.297302] ------------[ cut here ]------------ 000000000000 # [ 51.900080] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 51.906141] CR2: 00007f6d9eb4c000 CR3: 00000001037ba000 CR4: 00000000001506e0 # [ 51.913595] Call Trace: # [ 51.916388] ? __warn+0x80/0x110 # [ 51.920025] ? r<4>[ 52.324406] refcount_t: saturated; leaking memory. efcount_warn_saturate+0x51/0x110 # [ 51.924969] ? report_bug+0x9e/0xc0 # [ 51.928862] ? handle_bug+0x41/0x90 # [ 51.932680] ? exc_invalid_op+0x14/0x70 # [ 51.936881] ? asm_exc_invalid_op+0x12/0x20 # [ 51.941489] ? refcount_warn_saturate<4>[ 52.354176] WARNING: CPU: 1 PID: 2101 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 +0x51/0x110 # [ 51.946585] ? refcount_warn_saturate+0x51/0x110 # [ 51.951514] lkdtm_REFCOUNT_ADD_OVERFLOW+0x7f/0xa7 # [ 51.956654] direct_entry.cold+0x2c/0x38 # [ 51.960975] full_proxy_write+0x56/0x80 # [ 51.965132] vfs_write+0xea/0x3b0<4>[ 52.382631] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 51.968784] ksys_write+0x68/0xf0 # [ 51.972494] do_syscall_64+0x33/0x40 # [ 51.976383] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 51.981707] RIP: 0033:0x7f6d9ec65240 # [ 51.985543] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 <4>[ 52.459017] CPU: 1 PID: 2101 Comm: cat Tainted: G D W 5.10.218-cip49 #1 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 52.004571] RSP: 002b:00007ffd531c0818 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 52.012403] <4>[ 52.489157] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007f6d9ec65240 # [ 52.019797] RDX: 0000000000000016 RSI: 00007f6d9eb4c000 RDI: 0000000000000001 # [ 52.027206] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 # [ 52.034598] R10:<4>[ 52.517533] RIP: 0010:refcount_warn_saturate+0x97/0x110 00007f6d9eb864d0 R11: 0000000000000202 R12: 00007f6d9eb4c000 # [ 52.041988] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 52.049387] irq event stamp: 0 # [ 52.052707] hardirqs last enabled at (0): [<0000000000000000>] 0x0<4>[ 52.545126] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 # [ 52.059263] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 52.067703] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 52.076148] softirqs last disabled at (0): [<000000000000<4>[ 52.586323] RSP: 0018:ffffa6b684297e38 EFLAGS: 00010282 0000>] 0x0 # [ 52.082671] ---[ end trace 8fa2a604a62aa047 ]--- # [ 52.087550] lkdtm: Overflow detected: saturated # REFCOUNT_ADD_OVERFLOW: saw 'call trace:': ok ok 43 selftests: lkdtm: REFCOUNT_ADD_OVERFLOW.sh # selftests: lkdtm: REFCOUNT_INC_NOT_<4>[ 52.613980] RAX: 0000000000000000 RBX: 000000007fffffff RCX: 0000000000000000 ZERO_OVERFLOW.sh <4>[ 52.643546] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 52.652500] RBP: ffffffffbc8cff90 R08: 0000000000000000 R09: 0000000000000000 <4>[ 52.659946] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001f <4>[ 52.667386] R13: ffffa6b684297f10 R14: ffffa6b684297f10 R15: ffff98af47213000 <4>[ 52.674840] FS: 00007f659c442740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 52.683239] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 52.689302] CR2: 00007f659c234000 CR3: 000000010446c000 CR4: 00000000001506e0 <4>[ 52.696772] Call Trace: <4>[ 52.699578] ? __warn+0x80/0x110 <4>[ 52.703164] ? refcount_warn_saturate+0x97/0x110 <4>[ 52.708218] ? report_bug+0x9e/0xc0 <4>[ 52.712046] ? handle_bug+0x41/0x90 <4>[ 52.715894] ? exc_invalid_op+0x14/0x70 <4>[ 52.720074] ? asm_exc_invalid_op+0x12/0x20 <4>[ 52.724691] ? refcount_warn_saturate+0x97/0x110 <4>[ 52.729667] ? refcount_warn_saturate+0x97/0x110 <4>[ 52.734700] __refcount_add_not_zero.constprop.0+0x2a/0x35 <4>[ 52.740566] lkdtm_REFCOUNT_INC_NOT_ZERO_OVERFLOW+0x3e/0x76 <4>[ 52.746458] direct_entry.cold+0x2c/0x38 <4>[ 52.750644] full_proxy_write+0x56/0x80 <4>[ 52.754745] vfs_write+0xea/0x3b0 <4>[ 52.758323] ksys_write+0x68/0xf0 <4>[ 52.761900] do_syscall_64+0x33/0x40 <4>[ 52.765739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 52.771052] RIP: 0033:0x7f659c34d240 <4>[ 52.774933] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 52.793970] RSP: 002b:00007ffe765a9f98 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 52.801826] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007f659c34d240 <4>[ 52.809237] RDX: 000000000000001f RSI: 00007f659c234000 RDI: 0000000000000001 <4>[ 52.816634] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 <4>[ 52.824026] R10: 00007f659c26e4d0 R11: 0000000000000202 R12: 00007f659c234000 <4>[ 52.831432] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 52.841297] irq event stamp: 0 <4>[ 52.844615] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 52.851145] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 52.859665] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 52.868099] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 52.874623] ---[ end trace 8fa2a604a62aa048 ]--- <6>[ 52.879503] lkdtm: Overflow detected: saturated # [ 52.245114] lkdtm: Performing direct entry REFCOUNT_INC_NOT_ZERO_OVERFLOW # [ 52.268672] lkdtm: attempting bad refcount_inc_not_zero() overflow # [ 52.297302] ------------[ cut here ]------------ # [ 52.324406] refcount_t: saturated; leaking memory. # [ 52.354176] WARNING: CPU: 1 PID: 2101 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 # [ 52.382631] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 52.459017] CPU: 1 PID: 2101 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 52.489157] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 52.517533] RIP: 0010:refcount_warn_saturate+0x97/0x110 # [ 52.545126] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 <6>[ 53.023148] lkdtm: Performing direct entry REFCOUNT_ADD_NOT_ZERO_OVERFLOW 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 # [ 52.586323] RSP: 0018:ffffa6b684297e38 EFLAGS: 00010282 # [ 52.613980] RAX: 0000000000000000 RBX: <6>[ 53.037583] lkdtm: attempting bad refcount_add_not_zero() overflow 000000007fffffff RCX: 0000000000000000 # [ 52.643546] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 52.652500] RBP: ffffffffbc8cff90 R08: 0000000000000000 R09: 0000000000000000 # [ 52.659946] R10: 00000000ffffe000 R11: 3fff<4>[ 53.066230] ------------[ cut here ]------------ ffffffffffff R12: 000000000000001f # [ 52.667386] R13: ffffa6b684297f10 R14: ffffa6b684297f10 R15: ffff98af47213000 # [ 52.674840] FS: 00007f659c442740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 52.683239] CS: 0010 DS: 0000 ES: 0<4>[ 53.093312] refcount_t: saturated; leaking memory. 000 CR0: 0000000080050033 # [ 52.689302] CR2: 00007f659c234000 CR3: 000000010446c000 CR4: 00000000001506e0 # [ 52.696772] Call Trace: # [ 52.699578] ? __warn+0x80/0x110 # [ 52.703164] ? refcount_warn_saturate+0x97/0x110 # [ 52.708218] ? r<4>[ 53.120575] WARNING: CPU: 1 PID: 2134 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 eport_bug+0x9e/0xc0 # [ 52.712046] ? handle_bug+0x41/0x90 # [ 52.715894] ? exc_invalid_op+0x14/0x70 # [ 52.720074] ? asm_exc_invalid_op+0x12/0x20 # [ 52.724691] ? refcount_warn_saturate+0x97/0x110 # [ 52.729667] ? refcount_warn_saturate<4>[ 53.151477] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c +0x97/0x110 # [ 52.734700] __refcount_add_not_zero.constprop.0+0x2a/0x35 # [ 52.740566] lkdtm_REFCOUNT_INC_NOT_ZERO_OVERFLOW+0x3e/0x76 # [ 52.746458] direct_entry.cold+0x2c/0x38 # [ 52.750644] full_proxy_write+0x56/0x80 # [ 52.754745] v<4>[ 53.227905] CPU: 1 PID: 2134 Comm: cat Tainted: G D W 5.10.218-cip49 #1 fs_write+0xea/0x3b0 # [ 52.758323] ksys_write+0x68/0xf0 # [ 52.761900] do_syscall_64+0x33/0x40 # [ 52.765739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 52.771052] RIP: 0033:0x7f659c34d240 # [ 52.774933] Code: 40 00 48 8b 15 c1 9b 0d 00<4>[ 53.258058] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 52.793970] RSP: 002b:00007ffe765a9f98 EFLAGS: 00000202 ORIG_RAX: 0000000000000001<4>[ 53.286405] RIP: 0010:refcount_warn_saturate+0x97/0x110 # [ 52.801826] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007f659c34d240 # [ 52.809237] RDX: 000000000000001f RSI: 00007f659c234000 RDI: 0000000000000001 # [ 52.816634] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 # <4>[ 53.314025] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 [ 52.824026] R10: 00007f659c26e4d0 R11: 0000000000000202 R12: 00007f659c234000 # [ 52.831432] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 52.841297] irq event stamp: 0 # [ 52.844615] hardirqs last enabled at (0): [<000<4>[ 53.357717] RSP: 0018:ffffa6b6842efe38 EFLAGS: 00010282 0000000000000>] 0x0 # [ 52.851145] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 52.859665] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 52.868099] softirqs last disabled at <4>[ 53.382891] RAX: 0000000000000000 RBX: 000000007fffffff RCX: 0000000000000000 (0): [<0000000000000000>] 0x0 # [ 52.874623] ---[ end trace 8fa2a604a62aa048 ]--- # [ 52.879503] lkdtm: Overflow detected: saturated # REFCOUNT_INC_NOT_ZERO_OVERFLOW: saw 'call trace:': ok ok 44 selftests: lkdtm: REFCOUNT_INC_NOT_ZERO_OVERFLOW.sh<4>[ 53.412475] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 53.441902] RBP: ffffffffbc8cffb0 R08: 0000000000000000 R09: 0000000000000000 <4>[ 53.449350] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001f # selftests: lkdtm: REFCOUNT_ADD_NOT_ZERO_OVERFLOW.sh <4>[ 53.456909] R13: ffffa6b6842eff10 R14: ffffa6b6842eff10 R15: ffff98af42813000 <4>[ 53.469069] FS: 00007fafdee3a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 53.477460] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 53.483500] CR2: 00007fafdebf4000 CR3: 0000000105272000 CR4: 00000000001506e0 <4>[ 53.490925] Call Trace: <4>[ 53.493693] ? __warn+0x80/0x110 <4>[ 53.497250] ? refcount_warn_saturate+0x97/0x110 <4>[ 53.502196] ? report_bug+0x9e/0xc0 <4>[ 53.506019] ? handle_bug+0x41/0x90 <4>[ 53.509842] ? exc_invalid_op+0x14/0x70 <4>[ 53.514029] ? asm_exc_invalid_op+0x12/0x20 <4>[ 53.518562] ? refcount_warn_saturate+0x97/0x110 <4>[ 53.523531] ? refcount_warn_saturate+0x97/0x110 <4>[ 53.528508] __refcount_add_not_zero.constprop.0+0x2a/0x35 <4>[ 53.534403] lkdtm_REFCOUNT_ADD_NOT_ZERO_OVERFLOW+0x3e/0x76 <4>[ 53.540283] direct_entry.cold+0x2c/0x38 <4>[ 53.544603] full_proxy_write+0x56/0x80 <4>[ 53.548747] vfs_write+0xea/0x3b0 <4>[ 53.552394] ksys_write+0x68/0xf0 <4>[ 53.556004] do_syscall_64+0x33/0x40 <4>[ 53.559852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 53.565188] RIP: 0033:0x7fafded0d240 <4>[ 53.569036] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 53.588043] RSP: 002b:00007fff514b8f68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 53.595889] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007fafded0d240 <4>[ 53.603282] RDX: 000000000000001f RSI: 00007fafdebf4000 RDI: 0000000000000001 <4>[ 53.610673] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 <4>[ 53.618067] R10: 00007fafdec2e4d0 R11: 0000000000000202 R12: 00007fafdebf4000 <4>[ 53.625486] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 53.632898] irq event stamp: 0 <4>[ 53.636229] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 53.642760] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 53.651194] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 53.659639] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 53.666162] ---[ end trace 8fa2a604a62aa049 ]--- <6>[ 53.671043] lkdtm: Overflow detected: saturated # [ 53.023148] lkdtm: Performing direct entry REFCOUNT_ADD_NOT_ZERO_OVERFLOW # [ 53.037583] lkdtm: attempting bad refcount_add_not_zero() overflow # [ 53.066230] ------------[ cut here ]------------ # [ 53.093312] refcount_t: saturated; leaking memory. # [ 53.120575] WARNING: CPU: 1 PID: 2134 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 # [ 53.151477] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 53.227905] CPU: 1 PID: 2134 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 53.258058] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 53.286405] RIP: 0010:refcount_warn_saturate+0x97/0x110 # [ 53.314025] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 <6>[ 53.819537] lkdtm: Performing direct entry REFCOUNT_DEC_ZERO 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 # [ 53.357717] RSP: 0018:ffffa6b6842efe38 EFLAGS: 00010282 # [ 53.382891] RAX: 0000000000000000 RBX: <6>[ 53.826348] lkdtm: attempting good refcount_dec() 000000007fffffff RCX: 0000000000000000 # [ 53.412475] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 53.441902] RBP: ffffffffbc8cffb0 R08: 0000000000000000 R09: 0000000000000000 # [ 53.449350] R10: 00000000ffffe000 R11: 3fff<6>[ 53.856031] lkdtm: attempting bad refcount_dec() to zero ffffffffffff R12: 000000000000001f # [ 53.456909] R13: ffffa6b6842eff10 R14: ffffa6b6842eff10 R15: ffff98af42813000 # [ 53.469069] FS: 00007fafdee3a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 53.477460] CS: 0010 DS: 0000 ES: 0<4>[ 53.881331] ------------[ cut here ]------------ 000 CR0: 0000000080050033 # [ 53.483500] CR2: 00007fafdebf4000 CR3: 0000000105272000 CR4: 00000000001506e0 # [ 53.490925] Call Trace: # [ 53.493693] ? __warn+0x80/0x110 # [ 53.497250] ? refcount_warn_saturate+0x97/0x110 # [ 53.502196] ? r<4>[ 53.908433] refcount_t: decrement hit 0; leaking memory. eport_bug+0x9e/0xc0 # [ 53.506019] ? handle_bug+0x41/0x90 # [ 53.509842] ? exc_invalid_op+0x14/0x70 # [ 53.514029] ? asm_exc_invalid_op+0x12/0x20 # [ 53.518562] ? refcount_warn_saturate+0x97/0x110 # [ 53.523531] ? refcount_warn_saturate<4>[ 53.936132] WARNING: CPU: 1 PID: 2167 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 +0x97/0x110 # [ 53.528508] __refcount_add_not_zero.constprop.0+0x2a/0x35 # [ 53.534403] lkdtm_REFCOUNT_ADD_NOT_ZERO_OVERFLOW+0x3e/0x76 # [ 53.540283] direct_entry.cold+0x2c/0x38 # [ 53.544603] full_proxy_write+0x56/0x80 # [ 53.548747] v<4>[ 53.966997] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c fs_write+0xea/0x3b0 # [ 53.552394] ksys_write+0x68/0xf0 # [ 53.556004] do_syscall_64+0x33/0x40 # [ 53.559852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 53.565188] RIP: 0033:0x7fafded0d240 # [ 53.569036] Code: 40 00 48 8b 15 c1 9b 0d 00<4>[ 54.043480] CPU: 1 PID: 2167 Comm: cat Tainted: G D W 5.10.218-cip49 #1 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 53.588043] RSP: 002b:00007fff514b8f68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001<4>[ 54.073600] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 53.595889] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007fafded0d240 # [ 53.603282] RDX: 000000000000001f RSI: 00007fafdebf4000 RDI: 0000000000000001 # [ 53.610673] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 # <4>[ 54.101947] RIP: 0010:refcount_warn_saturate+0xfb/0x110 [ 53.618067] R10: 00007fafdec2e4d0 R11: 0000000000000202 R12: 00007fafdebf4000 # [ 53.625486] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 53.632898] irq event stamp: 0 # [ 53.636229] hardirqs last enabled at (0): [<000<4>[ 54.129619] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 ce 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b 0000000000000>] 0x0 # [ 53.642760] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 53.651194] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 53.659639] softirqs last disabled at <4>[ 54.170794] RSP: 0018:ffffa6b68435fe48 EFLAGS: 00010286 (0): [<0000000000000000>] 0x0 # [ 53.666162] ---[ end trace 8fa2a604a62aa049 ]--- # [ 53.671043] lkdtm: Overflow detected: saturated # REFCOUNT_ADD_NOT_ZERO_OVERFLOW: saw 'call trace:': ok ok 45 selftests: lkdtm: REFCOUNT_ADD_NOT_ZERO_OVERFLOW.sh<4>[ 54.198485] RAX: 0000000000000000 RBX: 000000000000002f RCX: 0000000000000000 <4>[ 54.227846] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 54.235282] RBP: ffffffffbc8d0369 R08: 0000000000000000 R09: 0000000000000000 # selftests: lkdtm: REFCOUNT_DEC_ZERO.sh<4>[ 54.242846] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000012 <4>[ 54.253687] R13: ffffa6b68435ff10 R14: ffffa6b68435ff10 R15: ffff98af45c96000 <4>[ 54.261276] FS: 00007f337bee2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 54.269640] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 54.275692] CR2: 00007f337bcd4000 CR3: 0000000103ae0000 CR4: 00000000001506e0 <4>[ 54.283096] Call Trace: <4>[ 54.285861] ? __warn+0x80/0x110 <4>[ 54.289369] ? refcount_warn_saturate+0xfb/0x110 <4>[ 54.294312] ? report_bug+0x9e/0xc0 <4>[ 54.298118] ? handle_bug+0x41/0x90 <4>[ 54.301967] ? exc_invalid_op+0x14/0x70 <4>[ 54.306138] ? asm_exc_invalid_op+0x12/0x20 <4>[ 54.310655] ? refcount_warn_saturate+0xfb/0x110 <4>[ 54.315588] ? refcount_warn_saturate+0xfb/0x110 <4>[ 54.320550] lkdtm_REFCOUNT_DEC_ZERO+0x4d/0xbd <4>[ 54.325330] direct_entry.cold+0x2c/0x38 <4>[ 54.329583] full_proxy_write+0x56/0x80 <4>[ 54.333815] vfs_write+0xea/0x3b0 <4>[ 54.337573] ksys_write+0x68/0xf0 <4>[ 54.341230] do_syscall_64+0x33/0x40 <4>[ 54.345190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 54.350551] RIP: 0033:0x7f337bded240 <4>[ 54.354389] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 54.373425] RSP: 002b:00007ffe30c97f98 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 54.381263] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f337bded240 <4>[ 54.388650] RDX: 0000000000000012 RSI: 00007f337bcd4000 RDI: 0000000000000001 <4>[ 54.396061] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 54.403460] R10: 00007f337bd0e4d0 R11: 0000000000000202 R12: 00007f337bcd4000 <4>[ 54.410851] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 54.418258] irq event stamp: 0 <4>[ 54.421579] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 54.428134] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 54.436568] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 54.445001] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 54.451525] ---[ end trace 8fa2a604a62aa04a ]--- <6>[ 54.456405] lkdtm: Zero detected: saturated # [ 53.819537] lkdtm: Performing direct entry REFCOUNT_DEC_ZERO # [ 53.826348] lkdtm: attempting good refcount_dec() # [ 53.856031] lkdtm: attempting bad refcount_dec() to zero # [ 53.881331] ------------[ cut here ]------------ # [ 53.908433] refcount_t: decrement hit 0; leaking memory. # [ 53.936132] WARNING: CPU: 1 PID: 2167 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 # [ 53.966997] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 54.043480] CPU: 1 PID: 2167 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 54.073600] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 54.101947] RIP: 0010:refcount_warn_saturate+0xfb/0x110 # [ 54.129619] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 ce 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b # [ 54.170794] RSP: 0018:ffffa6b68435fe48 EFLAGS: 00010286 # [ 54.198485] RAX: 00000000<6>[ 54.612315] lkdtm: Performing direct entry REFCOUNT_DEC_NEGATIVE 00000000 RBX: 000000000000002f RCX: 0000000000000000 # [ 54.227846] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 54.235282] RBP: ffffffffbc8d0369 R08: 0000000000000000 R09: 0000000000000000 # [ 54.242846] R10: 00000000ffff<6>[ 54.635074] lkdtm: attempting bad refcount_dec() below zero e000 R11: 3fffffffffffffff R12: 0000000000000012 # [ 54.253687] R13: ffffa6b68435ff10 R14: ffffa6b68435ff10 R15: ffff98af45c96000 # [ 54.261276] FS: 00007f337bee2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 54.269640] CS: 0010 <4>[ 54.663094] ------------[ cut here ]------------ DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 54.275692] CR2: 00007f337bcd4000 CR3: 0000000103ae0000 CR4: 00000000001506e0 # [ 54.283096] Call Trace: # [ 54.285861] ? __warn+0x80/0x110 # [ 54.289369] ? refcount_warn_saturate+0xfb/0x110 # [ 5<4>[ 54.690202] refcount_t: decrement hit 0; leaking memory. 4.294312] ? report_bug+0x9e/0xc0 # [ 54.298118] ? handle_bug+0x41/0x90 # [ 54.301967] ? exc_invalid_op+0x14/0x70 # [ 54.306138] ? asm_exc_invalid_op+0x12/0x20 # [ 54.310655] ? refcount_warn_saturate+0xfb/0x110 # [ 54.315588] ? refcount<4>[ 54.717972] WARNING: CPU: 1 PID: 2203 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 _warn_saturate+0xfb/0x110 # [ 54.320550] lkdtm_REFCOUNT_DEC_ZERO+0x4d/0xbd # [ 54.325330] direct_entry.cold+0x2c/0x38 # [ 54.329583] full_proxy_write+0x56/0x80 # [ 54.333815] vfs_write+0xea/0x3b0 # [ 54.337573] ksys_write+0x68/0xf0 # [<4>[ 54.748891] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 54.341230] do_syscall_64+0x33/0x40 # [ 54.345190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 54.350551] RIP: 0033:0x7f337bded240 # [ 54.354389] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 <4>[ 54.825308] CPU: 1 PID: 2203 Comm: cat Tainted: G D W 5.10.218-cip49 #1 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 54.373425] RSP: 002b:00007ffe30c97f98 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 54.381263] RAX: ffffffffffffffda RBX: 0000000000000012 R<4>[ 54.857982] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 CX: 00007f337bded240 # [ 54.388650] RDX: 0000000000000012 RSI: 00007f337bcd4000 RDI: 0000000000000001 # [ 54.396061] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 # [ 54.403460] R10: 00007f337bd0e4d0 R11: 0000000000000202 R12: <4>[ 54.883785] RIP: 0010:refcount_warn_saturate+0xfb/0x110 00007f337bcd4000 # [ 54.410851] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 54.418258] irq event stamp: 0 # [ 54.421579] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 54.428134] hardirqs last disabled at <4>[ 54.911462] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 ce 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b (0): [] copy_process+0x65c/0x20e0 # [ 54.436568] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 54.445001] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 54.451525] ---[ end trace 8<4>[ 54.952634] RSP: 0018:ffffa6b6843e7e48 EFLAGS: 00010286 fa2a604a62aa04a ]--- # [ 54.456405] lkdtm: Zero detected: saturated # REFCOUNT_DEC_ZERO: saw 'call trace:': ok ok 46 selftests: lkdtm: REFCOUNT_DEC_ZERO.sh # selftests: lkdtm: REFCOUNT_DEC_NEGATIVE.sh <4>[ 54.980297] RAX: 0000000000000000 RBX: 0000000000000030 RCX: 0000000000000000 <4>[ 55.005690] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 55.013140] RBP: ffffffffbc8d037b R08: 0000000000000000 R09: 0000000000000000 <4>[ 55.020583] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 <4>[ 55.028032] R13: ffffa6b6843e7f10 R14: ffffa6b6843e7f10 R15: ffff98af47465000 <4>[ 55.035483] FS: 00007f87d882a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 55.043905] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 55.049993] CR2: 00007f87d8624000 CR3: 0000000106dc8000 CR4: 00000000001506e0 <4>[ 55.057487] Call Trace: <4>[ 55.060368] ? __warn+0x80/0x110 <4>[ 55.063914] ? refcount_warn_saturate+0xfb/0x110 <4>[ 55.068881] ? report_bug+0x9e/0xc0 <4>[ 55.072785] ? handle_bug+0x41/0x90 <4>[ 55.076578] ? exc_invalid_op+0x14/0x70 <4>[ 55.080765] ? asm_exc_invalid_op+0x12/0x20 <4>[ 55.085289] ? refcount_warn_saturate+0xfb/0x110 <4>[ 55.090316] ? refcount_warn_saturate+0xfb/0x110 <4>[ 55.095248] lkdtm_REFCOUNT_DEC_NEGATIVE+0x37/0x61 <4>[ 55.100459] direct_entry.cold+0x2c/0x38 <4>[ 55.104757] full_proxy_write+0x56/0x80 <4>[ 55.108954] vfs_write+0xea/0x3b0 <4>[ 55.112615] ksys_write+0x68/0xf0 <4>[ 55.116240] do_syscall_64+0x33/0x40 <4>[ 55.120082] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 55.125395] RIP: 0033:0x7f87d873d240 <4>[ 55.129279] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 55.148300] RSP: 002b:00007ffddc8bad48 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 55.156126] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007f87d873d240 <4>[ 55.163540] RDX: 0000000000000016 RSI: 00007f87d8624000 RDI: 0000000000000001 <4>[ 55.170939] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 55.178347] R10: 00007f87d865e4d0 R11: 0000000000000202 R12: 00007f87d8624000 <4>[ 55.185740] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 55.193150] irq event stamp: 0 <4>[ 55.196469] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 55.202997] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 55.211460] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 55.219901] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 55.226447] ---[ end trace 8fa2a604a62aa04b ]--- <6>[ 55.231326] lkdtm: Negative detected: saturated # [ 54.612315] lkdtm: Performing direct entry REFCOUNT_DEC_NEGATIVE # [ 54.635074] lkdtm: attempting bad refcount_dec() below zero # [ 54.663094] ------------[ cut here ]------------ # [ 54.690202] refcount_t: decrement hit 0; leaking memory. # [ 54.717972] WARNING: CPU: 1 PID: 2203 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 # [ 54.748891] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 54.825308] CPU: 1 PID: 2203 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 54.857982] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 54.883785] RIP: 0010:refcount_warn_saturate+0xfb/0x110 # [ 54.911462] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 c<6>[ 55.385810] lkdtm: Performing direct entry REFCOUNT_DEC_AND_TEST_NEGATIVE e 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b # [ 54.952634] RSP: 0018:ffffa6b6843e7e48 EFLAGS: 00010286 # [ 54.980297] RAX: 0000000000000000 RBX: 0000000000000030 RCX: 0000000000000000 # [ 55.005690] RDX: ffff98af6ad2c620 RSI: ffff98af6<6>[ 55.394696] lkdtm: attempting bad refcount_dec_and_test() below zero ad1bf50 RDI: ffff98af6ad1bf50 # [ 55.013140] RBP: ffffffffbc8d037b R08: 0000000000000000 R09: 0000000000000000 # [ 55.020583] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000016 # [ 55.028032] R13: ffffa6b6843e7f10 R14: ffffa6b6843e7<4>[ 55.423501] ------------[ cut here ]------------ f10 R15: ffff98af47465000 # [ 55.035483] FS: 00007f87d882a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 55.043905] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 55.049993] CR2: 00007f87d8624000 CR3: 0000000106dc8000 CR4: <4>[ 55.450583] refcount_t: underflow; use-after-free. 00000000001506e0 # [ 55.057487] Call Trace: # [ 55.060368] ? __warn+0x80/0x110 # [ 55.063914] ? refcount_warn_saturate+0xfb/0x110 # [ 55.068881] ? report_bug+0x9e/0xc0 # [ 55.072785] ? handle_bug+0x41/0x90 # [ 55.076578] ? exc_invali<4>[ 55.477823] WARNING: CPU: 1 PID: 2239 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 d_op+0x14/0x70 # [ 55.080765] ? asm_exc_invalid_op+0x12/0x20 # [ 55.085289] ? refcount_warn_saturate+0xfb/0x110 # [ 55.090316] ? refcount_warn_saturate+0xfb/0x110 # [ 55.095248] lkdtm_REFCOUNT_DEC_NEGATIVE+0x37/0x61 # [ 55.100459] direc<4>[ 55.508754] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c t_entry.cold+0x2c/0x38 # [ 55.104757] full_proxy_write+0x56/0x80 # [ 55.108954] vfs_write+0xea/0x3b0 # [ 55.112615] ksys_write+0x68/0xf0 # [ 55.116240] do_syscall_64+0x33/0x40 # [ 55.120082] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [<4>[ 55.585127] CPU: 1 PID: 2239 Comm: cat Tainted: G D W 5.10.218-cip49 #1 55.125395] RIP: 0033:0x7f87d873d240 # [ 55.129279] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89<4>[ 55.615359] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 55.148300] RSP: 002b:00007ffddc8bad48 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 55.156126] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 00007f87d873d240 # [ 55.163540] RDX: 0000000000000016 RSI: 00007f87d8624000 RDI: 000000000000000<4>[ 55.643667] RIP: 0010:refcount_warn_saturate+0xba/0x110 1 # [ 55.170939] RBP: 0000000000000016 R08: 00000000ffffffff R09: 0000000000000000 # [ 55.178347] R10: 00007f87d865e4d0 R11: 0000000000000202 R12: 00007f87d8624000 # [ 55.185740] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 #<4>[ 55.671387] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 [ 55.193150] irq event stamp: 0 # [ 55.196469] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 55.202997] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 55.211460] softirqs last enabled at (0): [<<4>[ 55.712495] RSP: 0018:ffffa6b684467e40 EFLAGS: 00010286 ffffffffb9afde5c>] copy_process+0x65c/0x20e0 # [ 55.219901] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 55.226447] ---[ end trace 8fa2a604a62aa04b ]--- # [ 55.231326] lkdtm: Negative detected: saturated # REFCOUNT_DEC_NEGATIVE: sa<4>[ 55.740181] RAX: 0000000000000000 RBX: 0000000000000031 RCX: 0000000000000000 w 'Negative detected: saturated': ok ok 47 selftests: lkdtm: REFCOUNT_DEC_NEGATIVE.sh # selftests: lkdtm: REFCOUNT_DEC_AND_TEST_NEGATIVE.sh <4>[ 55.769714] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 55.789501] RBP: ffffffffbc8cffd0 R08: 0000000000000000 R09: 0000000000000000 <4>[ 55.796924] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001f <4>[ 55.804354] R13: ffffa6b684467f10 R14: ffffa6b684467f10 R15: ffff98af4629d000 <4>[ 55.811798] FS: 00007f06a22c2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 55.820194] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 55.826242] CR2: 00007f06a20bc000 CR3: 00000001028e0000 CR4: 00000000001506e0 <4>[ 55.833674] Call Trace: <4>[ 55.836413] ? __warn+0x80/0x110 <4>[ 55.839987] ? refcount_warn_saturate+0xba/0x110 <4>[ 55.847478] ? report_bug+0x9e/0xc0 <4>[ 55.851325] ? handle_bug+0x41/0x90 <4>[ 55.855161] ? exc_invalid_op+0x14/0x70 <4>[ 55.859381] ? asm_exc_invalid_op+0x12/0x20 <4>[ 55.863912] ? refcount_warn_saturate+0xba/0x110 <4>[ 55.868866] __refcount_sub_and_test.constprop.0+0x3c/0x50 <4>[ 55.874716] lkdtm_REFCOUNT_DEC_AND_TEST_NEGATIVE+0x3e/0x78 <4>[ 55.880639] direct_entry.cold+0x2c/0x38 <4>[ 55.884904] full_proxy_write+0x56/0x80 <4>[ 55.889146] vfs_write+0xea/0x3b0 <4>[ 55.892811] ksys_write+0x68/0xf0 <4>[ 55.896485] do_syscall_64+0x33/0x40 <4>[ 55.900372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 55.905757] RIP: 0033:0x7f06a21d5240 <4>[ 55.909665] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 55.928704] RSP: 002b:00007fff64da3c38 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 55.936544] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007f06a21d5240 <4>[ 55.943934] RDX: 000000000000001f RSI: 00007f06a20bc000 RDI: 0000000000000001 <4>[ 55.951343] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 <4>[ 55.958740] R10: 00007f06a20f64d0 R11: 0000000000000202 R12: 00007f06a20bc000 <4>[ 55.966147] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 55.973547] irq event stamp: 0 <4>[ 55.976870] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 55.983410] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 55.991841] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 56.000298] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 56.006830] ---[ end trace 8fa2a604a62aa04c ]--- <6>[ 56.011724] lkdtm: Negative detected: saturated # [ 55.385810] lkdtm: Performing direct entry REFCOUNT_DEC_AND_TEST_NEGATIVE # [ 55.394696] lkdtm: attempting bad refcount_dec_and_test() below zero # [ 55.423501] ------------[ cut here ]------------ # [ 55.450583] refcount_t: underflow; use-after-free. # [ 55.477823] WARNING: CPU: 1 PID: 2239 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 # [ 55.508754] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 55.585127] CPU: 1 PID: 2239 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 55.615359] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 55.643667] RIP: 0010:refcount_warn_saturate+0xba/0x110 # [ 55.671387] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 # [ 55.712495] RSP: 0018:ffffa6b684467e40 EFLAGS: 00010286 # [ 55.740181] RAX: 0000000000000000 RBX: 0000000000000031 RCX: 00000000<6>[ 56.188092] lkdtm: Performing direct entry REFCOUNT_SUB_AND_TEST_NEGATIVE 00000000 # [ 55.769714] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 55.789501] RBP: ffffffffbc8cffd0 R08: 0000000000000000 R09: 0000000000000000 # [ 55.796924] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000<6>[ 56.197543] lkdtm: attempting bad refcount_sub_and_test() below zero 001f # [ 55.804354] R13: ffffa6b684467f10 R14: ffffa6b684467f10 R15: ffff98af4629d000 # [ 55.811798] FS: 00007f06a22c2740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 55.820194] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [<4>[ 56.226361] ------------[ cut here ]------------ 55.826242] CR2: 00007f06a20bc000 CR3: 00000001028e0000 CR4: 00000000001506e0 # [ 55.833674] Call Trace: # [ 55.836413] ? __warn+0x80/0x110 # [ 55.839987] ? refcount_warn_saturate+0xba/0x110 # [ 55.847478] ? report_bug+0x9e/0xc0 # [ 55.<4>[ 56.253419] refcount_t: underflow; use-after-free. 851325] ? handle_bug+0x41/0x90 # [ 55.855161] ? exc_invalid_op+0x14/0x70 # [ 55.859381] ? asm_exc_invalid_op+0x12/0x20 # [ 55.863912] ? refcount_warn_saturate+0xba/0x110 # [ 55.868866] __refcount_sub_and_test.constprop.0+0x3c/0x50 # [ 5<4>[ 56.280698] WARNING: CPU: 0 PID: 2275 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 5.874716] lkdtm_REFCOUNT_DEC_AND_TEST_NEGATIVE+0x3e/0x78 # [ 55.880639] direct_entry.cold+0x2c/0x38 # [ 55.884904] full_proxy_write+0x56/0x80 # [ 55.889146] vfs_write+0xea/0x3b0 # [ 55.892811] ksys_write+0x68/0xf0 # [ 55.896485] do_sys<4>[ 56.311542] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c call_64+0x33/0x40 # [ 55.900372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 55.905757] RIP: 0033:0x7f06a21d5240 # [ 55.909665] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 <4>[ 56.388001] CPU: 0 PID: 2275 Comm: cat Tainted: G D W 5.10.218-cip49 #1 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 55.928704] RSP: 002b:00007fff64da3c38 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 55.936544] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007f06a21d5240 <4>[ 56.418168] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 55.943934] RDX: 000000000000001f RSI: 00007f06a20bc000 RDI: 0000000000000001 # [ 55.951343] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 # [ 55.958740] R10: 00007f06a20f64d0 R11: 0000000000000202 R12: 00007f06a20bc000 # [<4>[ 56.446531] RIP: 0010:refcount_warn_saturate+0xba/0x110 55.966147] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 55.973547] irq event stamp: 0 # [ 55.976870] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 55.983410] hardirqs last disabled at (0): [[ 56.474199] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 5c>] copy_process+0x65c/0x20e0 # [ 55.991841] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 56.000298] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 56.006830] ---[ end trace 8fa2a604a62aa04c ]--- <4>[ 56.515390] RSP: 0018:ffffa6b6844d7e40 EFLAGS: 00010286 # [ 56.011724] lkdtm: Negative detected: saturated # REFCOUNT_DEC_AND_TEST_NEGATIVE: saw 'Negative detected: saturated': ok ok 48 selftests: lkdtm: REFCOUNT_DEC_AND_TEST_NEGATIVE.sh # selftests: lkdtm: REFCOUNT_SUB_AND_TEST_NEGATIVE.sh <4>[ 56.543071] RAX: 0000000000000000 RBX: 0000000000000032 RCX: 0000000000000000 <4>[ 56.571474] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 <4>[ 56.578867] RBP: ffffffffbc8cfff0 R08: 0000000000000000 R09: 0000000000000000 <4>[ 56.586260] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 000000000000001f <4>[ 56.593670] R13: ffffa6b6844d7f10 R14: ffffa6b6844d7f10 R15: ffff98af46194000 <4>[ 56.601064] FS: 00007fb56d35a740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 56.609411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 56.615416] CR2: 00007fb56d154000 CR3: 0000000103fa4000 CR4: 00000000001506f0 <4>[ 56.622807] Call Trace: <4>[ 56.625528] ? __warn+0x80/0x110 <4>[ 56.629025] ? refcount_warn_saturate+0xba/0x110 <4>[ 56.633908] ? report_bug+0x9e/0xc0 <4>[ 56.637664] ? handle_bug+0x41/0x90 <4>[ 56.641417] ? exc_invalid_op+0x14/0x70 <4>[ 56.645517] ? asm_exc_invalid_op+0x12/0x20 <4>[ 56.649970] ? refcount_warn_saturate+0xba/0x110 <4>[ 56.654852] __refcount_sub_and_test.constprop.0+0x3c/0x50 <4>[ 56.660601] lkdtm_REFCOUNT_SUB_AND_TEST_NEGATIVE+0x3e/0x7b <4>[ 56.666437] direct_entry.cold+0x2c/0x38 <4>[ 56.670627] full_proxy_write+0x56/0x80 <4>[ 56.674728] vfs_write+0xea/0x3b0 <4>[ 56.678310] ksys_write+0x68/0xf0 <4>[ 56.681893] do_syscall_64+0x33/0x40 <4>[ 56.685734] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 56.691049] RIP: 0033:0x7fb56d26d240 <4>[ 56.694890] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 56.713894] RSP: 002b:00007fff777448c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 56.721723] RAX: ffffffffffffffda RBX: 000000000000001f RCX: 00007fb56d26d240 <4>[ 56.729115] RDX: 000000000000001f RSI: 00007fb56d154000 RDI: 0000000000000001 <4>[ 56.736505] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 <4>[ 56.743896] R10: 00007fb56d18e4d0 R11: 0000000000000202 R12: 00007fb56d154000 <4>[ 56.751287] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 56.758684] irq event stamp: 0 <4>[ 56.762002] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 56.768548] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 56.776995] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 56.785449] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 56.791973] ---[ end trace 8fa2a604a62aa04d ]--- <6>[ 56.796853] lkdtm: Negative detected: saturated # [ 56.188092] lkdtm: Performing direct entry REFCOUNT_SUB_AND_TEST_NEGATIVE # [ 56.197543] lkdtm: attempting bad refcount_sub_and_test() below zero # [ 56.226361] ------------[ cut here ]------------ # [ 56.253419] refcount_t: underflow; use-after-free. # [ 56.280698] WARNING: CPU: 0 PID: 2275 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 # [ 56.311542] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 56.388001] CPU: 0 PID: 2275 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 56.418168] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 56.446531] RIP: 0010:refcount_warn_saturate+0xba/0x110 # [ 56.474199] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 # [ 56.515390] RSP: 0018:ffffa6b6844d7e40 EFLAGS: 00010286 # [ 56.543071] RAX: 0000000000000000 RBX<6>[ 56.958016] lkdtm: Performing direct entry REFCOUNT_INC_ZERO : 0000000000000032 RCX: 0000000000000000 # [ 56.571474] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 # [ 56.578867] RBP: ffffffffbc8cfff0 R08: 0000000000000000 R09: 0000000000000000 # [ 56.586260] R10: 00000000ffffe000 R11: 3f<6>[ 56.982598] lkdtm: attempting safe refcount_inc_not_zero() from zero ffffffffffffff R12: 000000000000001f # [ 56.593670] R13: ffffa6b6844d7f10 R14: ffffa6b6844d7f10 R15: ffff98af46194000 # [ 56.601064] FS: 00007fb56d35a740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 56.609411] CS: 0010 DS: 0000 ES:<6>[ 57.011403] lkdtm: Good: zero detected 0000 CR0: 0000000080050033 # [ 56.615416] CR2: 00007fb56d154000 CR3: 0000000103fa4000 CR4: 00000000001506f0 # [ 56.622807] Call Trace: # [ 56.625528] ? __warn+0x80/0x110 # [ 56.629025] ? refcount_warn_saturate+0xba/0x110 # [ 56.633908] ?<6>[ 57.037593] lkdtm: Correctly stayed at zero report_bug+0x9e/0xc0 # [ 56.637664] ? handle_bug+0x41/0x90 # [ 56.641417] ? exc_invalid_op+0x14/0x70 # [ 56.645517] ? asm_exc_invalid_op+0x12/0x20 # [ 56.649970] ? refcount_warn_saturate+0xba/0x110 # [ 56.654852] __refcount_sub_and_tes<6>[ 57.064215] lkdtm: attempting bad refcount_inc() from zero t.constprop.0+0x3c/0x50 # [ 56.660601] lkdtm_REFCOUNT_SUB_AND_TEST_NEGATIVE+0x3e/0x7b # [ 56.666437] direct_entry.cold+0x2c/0x38 # [ 56.670627] full_proxy_write+0x56/0x80 # [ 56.674728] vfs_write+0xea/0x3b0 # [ 56.678310] ksys_write+0x6<4>[ 57.092144] ------------[ cut here ]------------ 8/0xf0 # [ 56.681893] do_syscall_64+0x33/0x40 # [ 56.685734] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 56.691049] RIP: 0033:0x7fb56d26d240 # [ 56.694890] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 8<4>[ 57.119207] refcount_t: addition on 0; use-after-free. 0 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 56.713894] RSP: 002b:00007fff777448c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 56.721723] RAX: ffffffffffffffda RBX: 0000000<4>[ 57.146832] WARNING: CPU: 0 PID: 2308 at lib/refcount.c:25 refcount_warn_saturate+0x74/0x110 00000001f RCX: 00007fb56d26d240 # [ 56.729115] RDX: 000000000000001f RSI: 00007fb56d154000 RDI: 0000000000000001 # [ 56.736505] RBP: 000000000000001f R08: 00000000ffffffff R09: 0000000000000000 # [ 56.743896] R10: 00007fb56d18e4d0 R11: 00000000000<4>[ 57.177661] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 00202 R12: 00007fb56d154000 # [ 56.751287] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 56.758684] irq event stamp: 0 # [ 56.762002] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 56.768548] hardirqs last d<4>[ 57.254135] CPU: 0 PID: 2308 Comm: cat Tainted: G D W 5.10.218-cip49 #1 isabled at (0): [] copy_process+0x65c/0x20e0 # [ 56.776995] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 56.785449] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 56.791973] ---[ <4>[ 57.284338] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 end trace 8fa2a604a62aa04d ]--- # [ 56.796853] lkdtm: Negative detected: saturated # REFCOUNT_SUB_AND_TEST_NEGATIVE: saw 'Negative detected: saturated': ok ok 49 selftests: lkdtm: REFCOUNT_SUB_AND_TEST_NEGATIVE.sh # selftests: lkdtm: REFCOUNT_INC_ZER<4>[ 57.312708] RIP: 0010:refcount_warn_saturate+0x74/0x110 O.sh <4>[ 57.340311] Code: 02 01 e8 15 4e c5 00 0f 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 bc c6 05 54 cf f6 02 01 e8 f2 4d c5 00 <0f> 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 <4>[ 57.359812] RSP: 0018:ffffa6b68454fe48 EFLAGS: 00010286 <4>[ 57.365290] RAX: 0000000000000000 RBX: 0000000000000033 RCX: 0000000000000000 <4>[ 57.372695] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 <4>[ 57.380093] RBP: ffffffffbc8d0391 R08: 0000000000000000 R09: 0000000000000000 <4>[ 57.387486] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000012 <4>[ 57.394879] R13: ffffa6b68454ff10 R14: ffffa6b68454ff10 R15: ffff98af430d5000 <4>[ 57.402272] FS: 00007f9d1bb92740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 57.410632] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 57.416668] CR2: 00007f9d1b984000 CR3: 000000010466a000 CR4: 00000000001506f0 <4>[ 57.424061] Call Trace: <4>[ 57.426785] ? __warn+0x80/0x110 <4>[ 57.430282] ? refcount_warn_saturate+0x74/0x110 <4>[ 57.435165] ? report_bug+0x9e/0xc0 <4>[ 57.438922] ? handle_bug+0x41/0x90 <4>[ 57.442694] ? exc_invalid_op+0x14/0x70 <4>[ 57.446812] ? asm_exc_invalid_op+0x12/0x20 <4>[ 57.451265] ? refcount_warn_saturate+0x74/0x110 <4>[ 57.456144] ? refcount_warn_saturate+0x74/0x110 <4>[ 57.461026] lkdtm_REFCOUNT_INC_ZERO+0x99/0xc1 <4>[ 57.465738] direct_entry.cold+0x2c/0x38 <4>[ 57.469932] full_proxy_write+0x56/0x80 <4>[ 57.474035] vfs_write+0xea/0x3b0 <4>[ 57.477616] ksys_write+0x68/0xf0 <4>[ 57.481200] do_syscall_64+0x33/0x40 <4>[ 57.485041] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 57.490357] RIP: 0033:0x7f9d1ba9d240 <4>[ 57.494196] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 57.513203] RSP: 002b:00007ffec012bb68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 57.521031] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f9d1ba9d240 <4>[ 57.528421] RDX: 0000000000000012 RSI: 00007f9d1b984000 RDI: 0000000000000001 <4>[ 57.535814] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 57.543207] R10: 00007f9d1b9be4d0 R11: 0000000000000202 R12: 00007f9d1b984000 <4>[ 57.550598] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 57.557996] irq event stamp: 0 <4>[ 57.561315] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 57.567843] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 57.576276] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 57.584708] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 57.591231] ---[ end trace 8fa2a604a62aa04e ]--- <6>[ 57.596126] lkdtm: Zero detected: saturated # [ 56.958016] lkdtm: Performing direct entry REFCOUNT_INC_ZERO # [ 56.982598] lkdtm: attempting safe refcount_inc_not_zero() from zero # [ 57.011403] lkdtm: Good: zero detected # [ 57.037593] lkdtm: Correctly stayed at zero # [ 57.064215] lkdtm: attempting bad refcount_inc() from zero # [ 57.092144] ------------[ cut here ]------------ # [ 57.119207] refcount_t: addition on 0; use-after-free. # [ 57.146832] WARNING: CPU: 0 PID: 2308 at lib/refcount.c:25 refcount_warn_saturate+0x74/0x110 # [ 57.177661] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 57.254135] CPU: 0 PID: 2308 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 57.284338] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 57.312708] RIP: 0010:refcount_warn_saturate+0x74/0x110 # [ 57.340311] Code: 02 01 e8 15 4e c5 00 0f 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 bc c6 05 54 cf f6 02 01 e8 f2 4d c5 00 <0f> 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 # [ 57.359812] RSP: 0018:ffffa6b68454fe48 EFLAGS: 00010286 # [ 57.365290] RAX: 0000000000000000 RBX: 0000000000000033 RCX: 0000000000000000 # [ 57.372695] RDX: ffff98af6ac2c620 RSI<6>[ 57.789552] lkdtm: Performing direct entry REFCOUNT_ADD_ZERO : ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 # [ 57.380093] RBP: ffffffffbc8d0391 R08: 0000000000000000 R09: 0000000000000000 # [ 57.387486] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000012 # [ 57.394879] R13: ffffa6b68454ff10 R14: ff<6>[ 57.799020] lkdtm: attempting safe refcount_add_not_zero() from zero ffa6b68454ff10 R15: ffff98af430d5000 # [ 57.402272] FS: 00007f9d1bb92740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 57.410632] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 57.416668] CR2: 00007f9d1b984000 CR3: 00000001046<6>[ 57.827849] lkdtm: Good: zero detected 6a000 CR4: 00000000001506f0 # [ 57.424061] Call Trace: # [ 57.426785] ? __warn+0x80/0x110 # [ 57.430282] ? refcount_warn_saturate+0x74/0x110 # [ 57.435165] ? report_bug+0x9e/0xc0 # [ 57.438922] ? handle_bug+0x41/0x90 # [ 57.442694] ?<6>[ 57.854048] lkdtm: Correctly stayed at zero exc_invalid_op+0x14/0x70 # [ 57.446812] ? asm_exc_invalid_op+0x12/0x20 # [ 57.451265] ? refcount_warn_saturate+0x74/0x110 # [ 57.456144] ? refcount_warn_saturate+0x74/0x110 # [ 57.461026] lkdtm_REFCOUNT_INC_ZERO+0x99/0xc1 # [ 57.465738]<6>[ 57.880676] lkdtm: attempting bad refcount_add() from zero direct_entry.cold+0x2c/0x38 # [ 57.469932] full_proxy_write+0x56/0x80 # [ 57.474035] vfs_write+0xea/0x3b0 # [ 57.477616] ksys_write+0x68/0xf0 # [ 57.481200] do_syscall_64+0x33/0x40 # [ 57.485041] entry_SYSCALL_64_after_hwframe+0x67/0x<4>[ 57.908608] ------------[ cut here ]------------ d1 # [ 57.490357] RIP: 0033:0x7f9d1ba9d240 # [ 57.494196] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 2<4>[ 57.935672] refcount_t: addition on 0; use-after-free. 8 48 89 # [ 57.513203] RSP: 002b:00007ffec012bb68 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 57.521031] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f9d1ba9d240 # [ 57.528421] RDX: 0000000000000012 RSI: 00007f9d1b984000 RDI: 00000000<4>[ 57.963310] WARNING: CPU: 0 PID: 2341 at lib/refcount.c:25 refcount_warn_saturate+0x74/0x110 00000001 # [ 57.535814] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 # [ 57.543207] R10: 00007f9d1b9be4d0 R11: 0000000000000202 R12: 00007f9d1b984000 # [ 57.550598] R13: 0000000000000001 R14: 0000000000020000 R15: 000000000000<4>[ 57.994128] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 0000 # [ 57.557996] irq event stamp: 0 # [ 57.561315] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 57.567843] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 57.576276] softirqs last enabled at <4>[ 58.070606] CPU: 0 PID: 2341 Comm: cat Tainted: G D W 5.10.218-cip49 #1 (0): [] copy_process+0x65c/0x20e0 # [ 57.584708] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 57.591231] ---[ end trace 8fa2a604a62aa04e ]--- # [ 57.596126] lkdtm: Zero detected: saturated # REFCOUNT_INC_ZERO: sa<4>[ 58.100782] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 w <4>[ 58.129029] RIP: 0010:refcount_warn_saturate+0x74/0x110 'call trace:': ok<4>[ 58.134683] Code: 02 01 e8 15 4e c5 00 0f 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 bc c6 05 54 cf f6 02 01 e8 f2 4d c5 00 <0f> 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 <4>[ 58.155136] RSP: 0018:ffffa6b6845c7e48 EFLAGS: 00010286 <4>[ 58.160630] RAX: 0000000000000000 RBX: 0000000000000034 RCX: 0000000000000000 <4>[ 58.168183] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 ok 50 selftests: lkdtm: REFCOUNT_INC_ZERO.sh<4>[ 58.175587] RBP: ffffffffbc8d03a3 R08: 0000000000000000 R09: 0000000000000000 <4>[ 58.186773] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000012 <4>[ 58.194176] R13: ffffa6b6845c7f10 R14: ffffa6b6845c7f10 R15: ffff98af446da000 # selftests: lkdtm: REFCOUNT_ADD_ZERO.sh<4>[ 58.201759] FS: 00007f987f142740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 58.213559] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 58.219724] CR2: 00007f987ef3c000 CR3: 0000000106d22000 CR4: 00000000001506f0 <4>[ 58.227116] Call Trace: <4>[ 58.229835] ? __warn+0x80/0x110 <4>[ 58.233334] ? refcount_warn_saturate+0x74/0x110 <4>[ 58.238212] ? report_bug+0x9e/0xc0 <4>[ 58.241967] ? handle_bug+0x41/0x90 <4>[ 58.245718] ? exc_invalid_op+0x14/0x70 <4>[ 58.249820] ? asm_exc_invalid_op+0x12/0x20 <4>[ 58.254272] ? refcount_warn_saturate+0x74/0x110 <4>[ 58.259153] ? refcount_warn_saturate+0x74/0x110 <4>[ 58.264035] lkdtm_REFCOUNT_ADD_ZERO+0x99/0xc1 <4>[ 58.268746] direct_entry.cold+0x2c/0x38 <4>[ 58.272939] full_proxy_write+0x56/0x80 <4>[ 58.277044] vfs_write+0xea/0x3b0 <4>[ 58.280626] ksys_write+0x68/0xf0 <4>[ 58.284211] do_syscall_64+0x33/0x40 <4>[ 58.288053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 58.293367] RIP: 0033:0x7f987f055240 <4>[ 58.297210] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 58.316215] RSP: 002b:00007fff20da5da8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 58.324043] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f987f055240 <4>[ 58.331435] RDX: 0000000000000012 RSI: 00007f987ef3c000 RDI: 0000000000000001 <4>[ 58.338819] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 58.346211] R10: 00007f987ef764d0 R11: 0000000000000202 R12: 00007f987ef3c000 <4>[ 58.353602] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 58.361003] irq event stamp: 0 <4>[ 58.364323] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 58.370851] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 58.379286] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 58.387719] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 58.394244] ---[ end trace 8fa2a604a62aa04f ]--- <6>[ 58.399122] lkdtm: Zero detected: saturated # [ 57.789552] lkdtm: Performing direct entry REFCOUNT_ADD_ZERO # [ 57.799020] lkdtm: attempting safe refcount_add_not_zero() from zero # [ 57.827849] lkdtm: Good: zero detected # [ 57.854048] lkdtm: Correctly stayed at zero # [ 57.880676] lkdtm: attempting bad refcount_add() from zero # [ 57.908608] ------------[ cut here ]------------ # [ 57.935672] refcount_t: addition on 0; use-after-free. # [ 57.963310] WARNING: CPU: 0 PID: 2341 at lib/refcount.c:25 refcount_warn_saturate+0x74/0x110 # [ 57.994128] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 58.070606] CPU: 0 PID: 2341 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 58.100782] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 58.129029] RIP: 0010:refcount_warn_saturate+0x74/0x110 # [ 58.134683] Code: 02 01 e8 15 4e c5 00 0f 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 bc c6 05 54 cf f6 02 01 e8 f2 4d c5 00 <0f> 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 # [ 58.155136] RSP: 0018:ffffa6b6845c7e48 EFLAGS: 00010286 # [ 58.160630] RAX: 0000000000000000 RBX: 0000000000000034 RCX: 0000000000000000 # [ 58.168183] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 # [ 58.175587] RBP: ffffffffbc8d03a3 R08: 0000000000000000 R09: 0000000000000000 # [ 58.186773] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000012 # [ 58.194176] R13: ffffa6b6845c7f10 R14: ffffa6b6845c7f10 R15: ffff98af446da000 # [ 58.201759] FS: 00007f987f142740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 58.213559] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 58.219724] CR2: 00007f987ef3c000 CR3: 0000000106d22000 CR4: 00000000001506f0 # [ 58.227116] Call Trace: # [ 58.229835] ? _<6>[ 58.627423] lkdtm: Performing direct entry REFCOUNT_INC_SATURATED _warn+0x80/0x110 # [ 58.233334] ? refcount_warn_saturate+0x74/0x110 # [ 58.238212] ? report_bug+0x9e/0xc0 # [ 58.241967] ? handle_bug+0x41/0x90 # [ 58.245718] ? exc_invalid_op+0x14/0x70 # [ 58.249820] ? asm_exc_invalid_op+0x12/0x20 # [<6>[ 58.655553] lkdtm: attempting bad refcount_inc() from saturated 58.254272] ? refcount_warn_saturate+0x74/0x110 # [ 58.259153] ? refcount_warn_saturate+0x74/0x110 # [ 58.264035] lkdtm_REFCOUNT_ADD_ZERO+0x99/0xc1 # [ 58.268746] direct_entry.cold+0x2c/0x38 # [ 58.272939] full_proxy_write+0x56/0x80 # [<4>[ 58.683923] ------------[ cut here ]------------ 58.277044] vfs_write+0xea/0x3b0 # [ 58.280626] ksys_write+0x68/0xf0 # [ 58.284211] do_syscall_64+0x33/0x40 # [ 58.288053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 58.293367] RIP: 0033:0x7f987f055240 # [ 58.297210] Code: 40 00 48 8<4>[ 58.710957] refcount_t: saturated; leaking memory. b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 58.316215] RSP: 002b:00007fff20da5da8 EFLAGS: 00000202 ORIG_RAX: <4>[ 58.738234] WARNING: CPU: 1 PID: 2377 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 0000000000000001 # [ 58.324043] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f987f055240 # [ 58.331435] RDX: 0000000000000012 RSI: 00007f987ef3c000 RDI: 0000000000000001 # [ 58.338819] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000<4>[ 58.769048] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 000000000000 # [ 58.346211] R10: 00007f987ef764d0 R11: 0000000000000202 R12: 00007f987ef3c000 # [ 58.353602] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 58.361003] irq event stamp: 0 # [ 58.364323] hardirqs last enabl<4>[ 58.845512] CPU: 1 PID: 2377 Comm: cat Tainted: G D W 5.10.218-cip49 #1 ed at (0): [<0000000000000000>] 0x0 # [ 58.370851] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 58.379286] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 58.387719] softirqs l<4>[ 58.878168] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 ast disabled at (0): [<0000000000000000>] 0x0 # [ 58.394244] ---[ end trace 8fa2a604a62aa04f ]--- # [ 58.399122] lkdtm: Zero detected: saturated # REFCOUNT_ADD_ZERO: saw 'call trace:': ok ok 51 selftests: lkdtm: REFCOUNT_ADD_ZERO.sh # selftests: l<4>[ 58.904031] RIP: 0010:refcount_warn_saturate+0x51/0x110 kdtm: REFCOUNT_INC_SATURATED.sh <4>[ 58.931713] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 <4>[ 58.953559] RSP: 0018:ffffa6b68463fe48 EFLAGS: 00010286 <4>[ 58.959085] RAX: 0000000000000000 RBX: 0000000000000035 RCX: 0000000000000000 <4>[ 58.966595] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 58.974010] RBP: ffffffffbc8d03b5 R08: 0000000000000000 R09: 0000000000000000 <4>[ 58.981490] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 <4>[ 58.988949] R13: ffffa6b68463ff10 R14: ffffa6b68463ff10 R15: ffff98af4281b000 <4>[ 58.996453] FS: 00007fd448d5a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 59.004871] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 59.010960] CR2: 00007fd448b4c000 CR3: 00000001034a4000 CR4: 00000000001506e0 <4>[ 59.018394] Call Trace: <4>[ 59.021199] ? __warn+0x80/0x110 <4>[ 59.024755] ? refcount_warn_saturate+0x51/0x110 <4>[ 59.029686] ? report_bug+0x9e/0xc0 <4>[ 59.033480] ? handle_bug+0x41/0x90 <4>[ 59.037241] ? exc_invalid_op+0x14/0x70 <4>[ 59.041352] ? asm_exc_invalid_op+0x12/0x20 <4>[ 59.045807] ? refcount_warn_saturate+0x51/0x110 <4>[ 59.050702] ? refcount_warn_saturate+0x51/0x110 <4>[ 59.055583] lkdtm_REFCOUNT_INC_SATURATED+0x3c/0x64 <4>[ 59.060726] direct_entry.cold+0x2c/0x38 <4>[ 59.064915] full_proxy_write+0x56/0x80 <4>[ 59.069019] vfs_write+0xea/0x3b0 <4>[ 59.072598] ksys_write+0x68/0xf0 <4>[ 59.076180] do_syscall_64+0x33/0x40 <4>[ 59.080020] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 59.085363] RIP: 0033:0x7fd448c65240 <4>[ 59.089208] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 59.108225] RSP: 002b:00007fffaf3500c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 59.116065] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007fd448c65240 <4>[ 59.123458] RDX: 0000000000000017 RSI: 00007fd448b4c000 RDI: 0000000000000001 <4>[ 59.130848] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 59.138238] R10: 00007fd448b864d0 R11: 0000000000000202 R12: 00007fd448b4c000 <4>[ 59.145638] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 59.153047] irq event stamp: 0 <4>[ 59.156367] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 59.162894] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 59.171328] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 59.179772] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 59.186296] ---[ end trace 8fa2a604a62aa050 ]--- <6>[ 59.191175] lkdtm: Saturation detected: still saturated # [ 58.627423] lkdtm: Performing direct entry REFCOUNT_INC_SATURATED # [ 58.655553] lkdtm: attempting bad refcount_inc() from saturated # [ 58.683923] ------------[ cut here ]------------ # [ 58.710957] refcount_t: saturated; leaking memory. # [ 58.738234] WARNING: CPU: 1 PID: 2377 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 # [ 58.769048] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 58.845512] CPU: 1 PID: 2377 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 58.878168] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 58.904031] RIP: 0010:refcount_warn_saturate+0x51/0x110 # [ 58.931713] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 # [ 58.953559] RSP: 0018:ffffa6b68463fe48 EFLAGS: 00010286 # [ 58.959085] RAX: 0000000000000000 RBX: 0000000000000035 RCX: 0000000000000000 # [ 58.966595] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 58.974010] RBP: ffffffffbc8d03b5 R08: 0000000000000000 R09: 0000000000000000 # [ 58.981490] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 # [ 58.988949] R13: ffff<6>[ 59.384138] lkdtm: Performing direct entry REFCOUNT_DEC_SATURATED a6b68463ff10 R14: ffffa6b68463ff10 R15: ffff98af4281b000 # [ 58.996453] FS: 00007fd448d5a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 59.004871] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 59.010960] CR2: 00007fd448b4c<6>[ 59.406070] lkdtm: attempting bad refcount_dec() from saturated 000 CR3: 00000001034a4000 CR4: 00000000001506e0 # [ 59.018394] Call Trace: # [ 59.021199] ? __warn+0x80/0x110 # [ 59.024755] ? refcount_warn_saturate+0x51/0x110 # [ 59.029686] ? report_bug+0x9e/0xc0 # [ 59.033480] ? handle_bug+0x41/0x90 <4>[ 59.434477] ------------[ cut here ]------------ # [ 59.037241] ? exc_invalid_op+0x14/0x70 # [ 59.041352] ? asm_exc_invalid_op+0x12/0x20 # [ 59.045807] ? refcount_warn_saturate+0x51/0x110 # [ 59.050702] ? refcount_warn_saturate+0x51/0x110 # [ 59.055583] lkdtm_REFCOUNT_INC_SATURATED+0x<4>[ 59.461510] refcount_t: decrement hit 0; leaking memory. 3c/0x64 # [ 59.060726] direct_entry.cold+0x2c/0x38 # [ 59.064915] full_proxy_write+0x56/0x80 # [ 59.069019] vfs_write+0xea/0x3b0 # [ 59.072598] ksys_write+0x68/0xf0 # [ 59.076180] do_syscall_64+0x33/0x40 # [ 59.080020] entry_SYSCALL<4>[ 59.489308] WARNING: CPU: 1 PID: 2413 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 _64_after_hwframe+0x67/0xd1 # [ 59.085363] RIP: 0033:0x7fd448c65240 # [ 59.089208] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f <4>[ 59.520210] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 80 00 00 00 00 48 83 ec 28 48 89 # [ 59.108225] RSP: 002b:00007fffaf3500c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 59.116065] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007fd448c65240 # [ 59.123458] RDX: 0000000000000017 RSI: 00007<4>[ 59.596650] CPU: 1 PID: 2413 Comm: cat Tainted: G D W 5.10.218-cip49 #1 fd448b4c000 RDI: 0000000000000001 # [ 59.130848] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 # [ 59.138238] R10: 00007fd448b864d0 R11: 0000000000000202 R12: 00007fd448b4c000 # [ 59.145638] R13: 0000000000000001 R14: 000000000<4>[ 59.626764] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 0020000 R15: 0000000000000000 # [ 59.153047] irq event stamp: 0 # [ 59.156367] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 59.162894] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 59.171328] s<4>[ 59.655112] RIP: 0010:refcount_warn_saturate+0xfb/0x110 oftirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 59.179772] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 59.186296] ---[ end trace 8fa2a604a62aa050 ]--- # [ 59.191175] lkdtm: Saturation detected: stil<4>[ 59.682764] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 ce 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b l saturated # REFCOUNT_INC_SATURATED: saw 'Saturation detected: still saturated': ok ok 52 selftests: lkdtm: REFCOUNT_INC_SATURATED.sh # selftests: lkdtm: REFCOUNT_DEC_SATURATED.sh <4>[ 59.723960] RSP: 0018:ffffa6b6846c7e48 EFLAGS: 00010286 <4>[ 59.745470] RAX: 0000000000000000 RBX: 0000000000000036 RCX: 0000000000000000 <4>[ 59.752916] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 59.760362] RBP: ffffffffbc8d03cc R08: 0000000000000000 R09: 0000000000000000 <4>[ 59.767804] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 <4>[ 59.775248] R13: ffffa6b6846c7f10 R14: ffffa6b6846c7f10 R15: ffff98af46d21000 <4>[ 59.782692] FS: 00007fec4d042740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 59.791112] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 59.797203] CR2: 00007fec4ce3c000 CR3: 0000000107476000 CR4: 00000000001506e0 <4>[ 59.804675] Call Trace: <4>[ 59.807493] ? __warn+0x80/0x110 <4>[ 59.811080] ? refcount_warn_saturate+0xfb/0x110 <4>[ 59.816058] ? report_bug+0x9e/0xc0 <4>[ 59.819983] ? handle_bug+0x41/0x90 <4>[ 59.823820] ? exc_invalid_op+0x14/0x70 <4>[ 59.828014] ? asm_exc_invalid_op+0x12/0x20 <4>[ 59.832543] ? refcount_warn_saturate+0xfb/0x110 <4>[ 59.837489] ? refcount_warn_saturate+0xfb/0x110 <4>[ 59.842443] lkdtm_REFCOUNT_DEC_SATURATED+0x37/0x5f <4>[ 59.847683] direct_entry.cold+0x2c/0x38 <4>[ 59.851985] full_proxy_write+0x56/0x80 <4>[ 59.856103] vfs_write+0xea/0x3b0 <4>[ 59.859685] ksys_write+0x68/0xf0 <4>[ 59.863268] do_syscall_64+0x33/0x40 <4>[ 59.867112] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 59.872426] RIP: 0033:0x7fec4cf55240 <4>[ 59.876267] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 59.895304] RSP: 002b:00007ffdcaa8f088 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 59.903141] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007fec4cf55240 <4>[ 59.910545] RDX: 0000000000000017 RSI: 00007fec4ce3c000 RDI: 0000000000000001 <4>[ 59.917950] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 59.925344] R10: 00007fec4ce764d0 R11: 0000000000000202 R12: 00007fec4ce3c000 <4>[ 59.932735] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 59.940133] irq event stamp: 0 <4>[ 59.943451] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 59.949990] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 59.958422] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 59.966855] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 59.973379] ---[ end trace 8fa2a604a62aa051 ]--- <6>[ 59.978271] lkdtm: Saturation detected: still saturated # [ 59.384138] lkdtm: Performing direct entry REFCOUNT_DEC_SATURATED # [ 59.406070] lkdtm: attempting bad refcount_dec() from saturated # [ 59.434477] ------------[ cut here ]------------ # [ 59.461510] refcount_t: decrement hit 0; leaking memory. # [ 59.489308] WARNING: CPU: 1 PID: 2413 at lib/refcount.c:31 refcount_warn_saturate+0xfb/0x110 # [ 59.520210] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 59.596650] CPU: 1 PID: 2413 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 59.626764] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 59.655112] RIP: 0010:refcount_warn_saturate+0xfb/0x110 # [ 59.682764] Code: 90 aa 82 bc c6 05 e4 ce f6 02 01 e8 85 4d c5 00 0f 0b e9 e8 90 04 01 48 c7 c7 60 aa 82 bc c6 05 cb ce f6 02 01 e8 6b 4d c5 00 <0f> 0b e9 ce 90 04 01 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 8b # [ 59.723960] RSP: 0018:ffffa6b6846c7e48 EFLAGS: 00010286 # [ 59.745470] RAX: 0000000000000000 RBX: 0000000000000036 RCX: 0000000000000000 # [ 59.752916] RDX: ff<6>[ 60.161003] lkdtm: Performing direct entry REFCOUNT_ADD_SATURATED ff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 59.760362] RBP: ffffffffbc8d03cc R08: 0000000000000000 R09: 0000000000000000 # [ 59.767804] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 # [ 59.775248] R13: ffffa6<6>[ 60.170346] lkdtm: attempting bad refcount_dec() from saturated b6846c7f10 R14: ffffa6b6846c7f10 R15: ffff98af46d21000 # [ 59.782692] FS: 00007fec4d042740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 59.791112] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 59.797203] CR2: 00007fec4ce3c00<4>[ 60.198702] ------------[ cut here ]------------ 0 CR3: 0000000107476000 CR4: 00000000001506e0 # [ 59.804675] Call Trace: # [ 59.807493] ? __warn+0x80/0x110 # [ 59.811080] ? refcount_warn_saturate+0xfb/0x110 # [ 59.816058] ? report_bug+0x9e/0xc0 # [ 59.819983] ? handle_bug+0x41/0x90 #<4>[ 60.225779] refcount_t: saturated; leaking memory. [ 59.823820] ? exc_invalid_op+0x14/0x70 # [ 59.828014] ? asm_exc_invalid_op+0x12/0x20 # [ 59.832543] ? refcount_warn_saturate+0xfb/0x110 # [ 59.837489] ? refcount_warn_saturate+0xfb/0x110 # [ 59.842443] lkdtm_REFCOUNT_DEC_SATURATED+0x37<4>[ 60.253043] WARNING: CPU: 1 PID: 2449 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 /0x5f # [ 59.847683] direct_entry.cold+0x2c/0x38 # [ 59.851985] full_proxy_write+0x56/0x80 # [ 59.856103] vfs_write+0xea/0x3b0 # [ 59.859685] ksys_write+0x68/0xf0 # [ 59.863268] do_syscall_64+0x33/0x40 # [ 59.867112] entry_SYSCALL_6<4>[ 60.283970] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 4_after_hwframe+0x67/0xd1 # [ 59.872426] RIP: 0033:0x7fec4cf55240 # [ 59.876267] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80<4>[ 60.362886] CPU: 1 PID: 2449 Comm: cat Tainted: G D W 5.10.218-cip49 #1 00 00 00 00 48 83 ec 28 48 89 # [ 59.895304] RSP: 002b:00007ffdcaa8f088 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 59.903141] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007fec4cf55240 # [ 59.910545] RDX: 0000000000000017 RSI: 00007fe<4>[ 60.390561] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 c4ce3c000 RDI: 0000000000000001 # [ 59.917950] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 # [ 59.925344] R10: 00007fec4ce764d0 R11: 0000000000000202 R12: 00007fec4ce3c000 # [ 59.932735] R13: 0000000000000001 R14: 00000000000<4>[ 60.418872] RIP: 0010:refcount_warn_saturate+0x51/0x110 20000 R15: 0000000000000000 # [ 59.940133] irq event stamp: 0 # [ 59.943451] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 59.949990] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 59.958422] sof<4>[ 60.446567] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 tirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 59.966855] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 59.973379] ---[ end trace 8fa2a604a62aa051 ]--- # [ 59.978271] lkdtm: Saturation detected: still <4>[ 60.487695] RSP: 0018:ffffa6b68473fe48 EFLAGS: 00010286 saturated # REFCOUNT_DEC_SATURATED: saw 'Saturation detected: still saturated': ok ok 53 selftests: lkdtm: REFCOUNT_DEC_SATURATED.sh # selftests: lkdtm: REFCOUNT_ADD_SATURATED.sh <4>[ 60.515378] RAX: 0000000000000000 RBX: 0000000000000037 RCX: 0000000000000000 <4>[ 60.538599] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 60.546018] RBP: ffffffffbc8d03e3 R08: 0000000000000000 R09: 0000000000000000 <4>[ 60.553427] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 <4>[ 60.560839] R13: ffffa6b68473ff10 R14: ffffa6b68473ff10 R15: ffff98af47465000 <4>[ 60.568248] FS: 00007f4a40da1740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 60.576650] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 60.582678] CR2: 00007f4a40b5c000 CR3: 000000010747a000 CR4: 00000000001506e0 <4>[ 60.590117] Call Trace: <4>[ 60.592861] ? __warn+0x80/0x110 <4>[ 60.596420] ? refcount_warn_saturate+0x51/0x110 <4>[ 60.601342] ? report_bug+0x9e/0xc0 <4>[ 60.605181] ? handle_bug+0x41/0x90 <4>[ 60.609007] ? exc_invalid_op+0x14/0x70 <4>[ 60.613204] ? asm_exc_invalid_op+0x12/0x20 <4>[ 60.617739] ? refcount_warn_saturate+0x51/0x110 <4>[ 60.622714] ? refcount_warn_saturate+0x51/0x110 <4>[ 60.627689] lkdtm_REFCOUNT_ADD_SATURATED+0x3c/0x64 <4>[ 60.632924] direct_entry.cold+0x2c/0x38 <4>[ 60.637206] full_proxy_write+0x56/0x80 <4>[ 60.641460] vfs_write+0xea/0x3b0 <4>[ 60.645158] ksys_write+0x68/0xf0 <4>[ 60.648860] do_syscall_64+0x33/0x40 <4>[ 60.652755] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 60.658182] RIP: 0033:0x7f4a40c75240 <4>[ 60.662032] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 60.681058] RSP: 002b:00007ffe14b1eb18 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 60.688893] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007f4a40c75240 <4>[ 60.696286] RDX: 0000000000000017 RSI: 00007f4a40b5c000 RDI: 0000000000000001 <4>[ 60.703703] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 60.711094] R10: 00007f4a40b964d0 R11: 0000000000000202 R12: 00007f4a40b5c000 <4>[ 60.718498] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 60.725897] irq event stamp: 0 <4>[ 60.729218] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 60.735771] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 60.744214] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 60.752660] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 60.759184] ---[ end trace 8fa2a604a62aa052 ]--- <6>[ 60.764095] lkdtm: Saturation detected: still saturated # [ 60.161003] lkdtm: Performing direct entry REFCOUNT_ADD_SATURATED # [ 60.170346] lkdtm: attempting bad refcount_dec() from saturated # [ 60.198702] ------------[ cut here ]------------ # [ 60.225779] refcount_t: saturated; leaking memory. # [ 60.253043] WARNING: CPU: 1 PID: 2449 at lib/refcount.c:22 refcount_warn_saturate+0x51/0x110 # [ 60.283970] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 60.362886] CPU: 1 PID: 2449 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 60.390561] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 60.418872] RIP: 0010:refcount_warn_saturate+0x51/0x110 # [ 60.446567] Code: 84 bc 00 00 00 e9 9f 91 04 01 85 f6 74 46 80 3d 88 cf f6 02 00 75 ee 48 c7 c7 e0 a9 82 bc c6 05 78 cf f6 02 01 e8 15 4e c5 00 <0f> 0b e9 78 91 04 01 80 3d 64 cf f6 02 00 75 cb 48 c7 c7 08 aa 82 # [ 60.487695] RSP: 0018:ffffa6b68473fe48 EFLAGS: 00010286 # [ 60.515378] RAX: 0000000000000000 RBX: 0000000000000037 RCX: 0000000000000000 # [ 60.538599] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 60.546018] RBP: ffffffffbc8d03e3 R08: 0000000000000000 R09: 0000000000000000 # [ 60.553427] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000017 # [ 60.560839] R13: ffffa6b6<6>[ 60.950039] lkdtm: Performing direct entry REFCOUNT_INC_NOT_ZERO_SATURATED 8473ff10 R14: ffffa6b68473ff10 R15: ffff98af47465000 # [ 60.568248] FS: 00007f4a40da1740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 60.576650] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 60.582678] CR2: 00007f4a40b5c000 <6>[ 60.978828] lkdtm: attempting bad refcount_inc_not_zero() from saturated CR3: 000000010747a000 CR4: 00000000001506e0 # [ 60.590117] Call Trace: # [ 60.592861] ? __warn+0x80/0x110 # [ 60.596420] ? refcount_warn_saturate+0x51/0x110 # [ 60.601342] ? report_bug+0x9e/0xc0 # [ 60.605181] ? handle_bug+0x41/0x90 # [<4>[ 61.007993] ------------[ cut here ]------------ 60.609007] ? exc_invalid_op+0x14/0x70 # [ 60.613204] ? asm_exc_invalid_op+0x12/0x20 # [ 60.617739] ? refcount_warn_saturate+0x51/0x110 # [ 60.622714] ? refcount_warn_saturate+0x51/0x110 # [ 60.627689] lkdtm_REFCOUNT_ADD_SATURATED+0x3c/0<4>[ 61.035023] refcount_t: saturated; leaking memory. x64 # [ 60.632924] direct_entry.cold+0x2c/0x38 # [ 60.637206] full_proxy_write+0x56/0x80 # [ 60.641460] vfs_write+0xea/0x3b0 # [ 60.645158] ksys_write+0x68/0xf0 # [ 60.648860] do_syscall_64+0x33/0x40 # [ 60.652755] entry_SYSCALL_64_<4>[ 61.062405] WARNING: CPU: 1 PID: 2482 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 after_hwframe+0x67/0xd1 # [ 60.658182] RIP: 0033:0x7f4a40c75240 # [ 60.662032] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 0<4>[ 61.093128] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 0 00 00 00 48 83 ec 28 48 89 # [ 60.681058] RSP: 002b:00007ffe14b1eb18 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 60.688893] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 00007f4a40c75240 # [ 60.696286] RDX: 0000000000000017 RSI: 00007f4a4<4>[ 61.169633] CPU: 1 PID: 2482 Comm: cat Tainted: G D W 5.10.218-cip49 #1 0b5c000 RDI: 0000000000000001 # [ 60.703703] RBP: 0000000000000017 R08: 00000000ffffffff R09: 0000000000000000 # [ 60.711094] R10: 00007f4a40b964d0 R11: 0000000000000202 R12: 00007f4a40b5c000 # [ 60.718498] R13: 0000000000000001 R14: 0000000000020<4>[ 61.199809] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 000 R15: 0000000000000000 # [ 60.725897] irq event stamp: 0 # [ 60.729218] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 60.735771] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 60.744214] softi<4>[ 61.228138] RIP: 0010:refcount_warn_saturate+0x97/0x110 rqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 60.752660] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 60.759184] ---[ end trace 8fa2a604a62aa052 ]--- # [ 60.764095] lkdtm: Saturation detected: still sa<4>[ 61.255786] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 turated # REFCOUNT_ADD_SATURATED: saw 'Saturation detected: still saturated': ok ok 54 selftests: lkdtm: REFCOUNT_ADD_SATURATED.sh # selftests: lkdtm: REFCOUNT_INC_NOT_ZERO_SATURATED.sh <4>[ 61.296975] RSP: 0018:ffffa6b6847afe38 EFLAGS: 00010282 <4>[ 61.318893] RAX: 0000000000000000 RBX: 00000000c0000000 RCX: 0000000000000000 <4>[ 61.326318] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 61.333729] RBP: ffffffffbc8d0010 R08: 0000000000000000 R09: 0000000000000000 <4>[ 61.341148] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 <4>[ 61.348566] R13: ffffa6b6847aff10 R14: ffffa6b6847aff10 R15: ffff98af44404000 <4>[ 61.358558] FS: 00007fe2309fa740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 61.366923] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 61.372965] CR2: 00007fe2307ec000 CR3: 000000010629c000 CR4: 00000000001506e0 <4>[ 61.380383] Call Trace: <4>[ 61.383170] ? __warn+0x80/0x110 <4>[ 61.386689] ? refcount_warn_saturate+0x97/0x110 <4>[ 61.391602] ? report_bug+0x9e/0xc0 <4>[ 61.395382] ? handle_bug+0x41/0x90 <4>[ 61.399164] ? exc_invalid_op+0x14/0x70 <4>[ 61.403293] ? asm_exc_invalid_op+0x12/0x20 <4>[ 61.407801] ? refcount_warn_saturate+0x97/0x110 <4>[ 61.412702] ? refcount_warn_saturate+0x97/0x110 <4>[ 61.417665] __refcount_add_not_zero.constprop.0+0x2a/0x35 <4>[ 61.423502] lkdtm_REFCOUNT_INC_NOT_ZERO_SATURATED+0x3e/0x76 <4>[ 61.429519] direct_entry.cold+0x2c/0x38 <4>[ 61.433837] full_proxy_write+0x56/0x80 <4>[ 61.438032] vfs_write+0xea/0x3b0 <4>[ 61.441697] ksys_write+0x68/0xf0 <4>[ 61.445531] do_syscall_64+0x33/0x40 <4>[ 61.449390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 61.454797] RIP: 0033:0x7fe230905240 <4>[ 61.458834] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 61.477885] RSP: 002b:00007ffe75614e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 61.485803] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007fe230905240 <4>[ 61.493267] RDX: 0000000000000020 RSI: 00007fe2307ec000 RDI: 0000000000000001 <4>[ 61.500669] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 61.508073] R10: 00007fe2308264d0 R11: 0000000000000202 R12: 00007fe2307ec000 <4>[ 61.515505] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 61.522904] irq event stamp: 0 <4>[ 61.526227] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 61.532755] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 61.541187] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 61.549644] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 61.556175] ---[ end trace 8fa2a604a62aa053 ]--- <6>[ 61.561063] lkdtm: Saturation detected: still saturated # [ 60.950039] lkdtm: Performing direct entry REFCOUNT_INC_NOT_ZERO_SATURATED # [ 60.978828] lkdtm: attempting bad refcount_inc_not_zero() from saturated # [ 61.007993] ------------[ cut here ]------------ # [ 61.035023] refcount_t: saturated; leaking memory. # [ 61.062405] WARNING: CPU: 1 PID: 2482 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 # [ 61.093128] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 61.169633] CPU: 1 PID: 2482 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 61.199809] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 61.228138] RIP: 0010:refcount_warn_saturate+0x97/0x110 # [ 61.255786] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 # [ 61.296975] RSP: 0018:ffffa6b6847afe38 EFLAGS: 00010282 # [ 61.318893] RAX: 0000000000000000 RBX: 00000000c0000000 RCX: 0000000000000000 # [ 61.326318] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 61.333729] RBP: ffffffffbc8d0010 R08: 0000000000000000 R09: 0000000000000000 # [ 61.341148] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 # [ 61.3<6>[ 61.758893] lkdtm: Performing direct entry REFCOUNT_ADD_NOT_ZERO_SATURATED 48566] R13: ffffa6b6847aff10 R14: ffffa6b6847aff10 R15: ffff98af44404000 # [ 61.358558] FS: 00007fe2309fa740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 61.366923] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 61.372965] CR<6>[ 61.776620] lkdtm: attempting bad refcount_add_not_zero() from saturated 2: 00007fe2307ec000 CR3: 000000010629c000 CR4: 00000000001506e0 # [ 61.380383] Call Trace: # [ 61.383170] ? __warn+0x80/0x110 # [ 61.386689] ? refcount_warn_saturate+0x97/0x110 # [ 61.391602] ? report_bug+0x9e/0xc0 # [ 61.395382] ? handl<4>[ 61.805777] ------------[ cut here ]------------ e_bug+0x41/0x90 # [ 61.399164] ? exc_invalid_op+0x14/0x70 # [ 61.403293] ? asm_exc_invalid_op+0x12/0x20 # [ 61.407801] ? refcount_warn_saturate+0x97/0x110 # [ 61.412702] ? refcount_warn_saturate+0x97/0x110 # [ 61.417665] __refcount_add_<4>[ 61.832870] refcount_t: saturated; leaking memory. not_zero.constprop.0+0x2a/0x35 # [ 61.423502] lkdtm_REFCOUNT_INC_NOT_ZERO_SATURATED+0x3e/0x76 # [ 61.429519] direct_entry.cold+0x2c/0x38 # [ 61.433837] full_proxy_write+0x56/0x80 # [ 61.438032] vfs_write+0xea/0x3b0 # [ 61.441697] ksys_w<4>[ 61.862653] WARNING: CPU: 1 PID: 2515 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 rite+0x68/0xf0 # [ 61.445531] do_syscall_64+0x33/0x40 # [ 61.449390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 61.454797] RIP: 0033:0x7fe230905240 # [ 61.458834] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f<4>[ 61.891118] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 61.477885] RSP: 002b:00007ffe75614e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 61.485803] RAX: ffffffffffffffda RBX:<4>[ 61.967487] CPU: 1 PID: 2515 Comm: cat Tainted: G D W 5.10.218-cip49 #1 0000000000000020 RCX: 00007fe230905240 # [ 61.493267] RDX: 0000000000000020 RSI: 00007fe2307ec000 RDI: 0000000000000001 # [ 61.500669] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 # [ 61.508073] R10: 00007fe2308264d0 R11: 000<4>[ 61.997627] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 0000000000202 R12: 00007fe2307ec000 # [ 61.515505] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 61.522904] irq event stamp: 0 # [ 61.526227] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 61.532755] hardirq<4>[ 62.025968] RIP: 0010:refcount_warn_saturate+0x97/0x110 s last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 61.541187] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 61.549644] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 61.55617<4>[ 62.053579] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 5] ---[ end trace 8fa2a604a62aa053 ]--- # [ 61.561063] lkdtm: Saturation detected: still saturated # REFCOUNT_INC_NOT_ZERO_SATURATED: saw 'call trace:': ok ok 55 selftests: lkdtm: REFCOUNT_INC_NOT_ZERO_SATURATED.sh # selftests: lkdtm: REFCOUNT_ADD_NO<4>[ 62.094760] RSP: 0018:ffffa6b68481fe38 EFLAGS: 00010282 T_ZERO_SATURATED.sh <4>[ 62.122431] RAX: 0000000000000000 RBX: 00000000c0000000 RCX: 0000000000000000 <4>[ 62.131624] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 62.139037] RBP: ffffffffbc8d0030 R08: 0000000000000000 R09: 0000000000000000 <4>[ 62.146461] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 <4>[ 62.153873] R13: ffffa6b68481ff10 R14: ffffa6b68481ff10 R15: ffff98af43a7b000 <4>[ 62.161295] FS: 00007f6d8978a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 62.169656] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 62.175722] CR2: 00007f6d89544000 CR3: 000000010446e000 CR4: 00000000001506e0 <4>[ 62.183130] Call Trace: <4>[ 62.185909] ? __warn+0x80/0x110 <4>[ 62.189425] ? refcount_warn_saturate+0x97/0x110 <4>[ 62.194377] ? report_bug+0x9e/0xc0 <4>[ 62.198224] ? handle_bug+0x41/0x90 <4>[ 62.202077] ? exc_invalid_op+0x14/0x70 <4>[ 62.206291] ? asm_exc_invalid_op+0x12/0x20 <4>[ 62.210827] ? refcount_warn_saturate+0x97/0x110 <4>[ 62.215783] ? refcount_warn_saturate+0x97/0x110 <4>[ 62.220770] __refcount_add_not_zero.constprop.0+0x2a/0x35 <4>[ 62.226621] lkdtm_REFCOUNT_ADD_NOT_ZERO_SATURATED+0x3e/0x76 <4>[ 62.232681] direct_entry.cold+0x2c/0x38 <4>[ 62.236925] full_proxy_write+0x56/0x80 <4>[ 62.241136] vfs_write+0xea/0x3b0 <4>[ 62.244816] ksys_write+0x68/0xf0 <4>[ 62.248531] do_syscall_64+0x33/0x40 <4>[ 62.252415] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 62.257823] RIP: 0033:0x7f6d8965d240 <4>[ 62.261672] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 62.280700] RSP: 002b:00007ffc2674c7a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 62.288540] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007f6d8965d240 <4>[ 62.295929] RDX: 0000000000000020 RSI: 00007f6d89544000 RDI: 0000000000000001 <4>[ 62.303317] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 62.310705] R10: 00007f6d8957e4d0 R11: 0000000000000202 R12: 00007f6d89544000 <4>[ 62.318121] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 62.325522] irq event stamp: 0 <4>[ 62.328843] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 62.335371] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 62.343804] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 62.352254] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 62.361292] ---[ end trace 8fa2a604a62aa054 ]--- <6>[ 62.366171] lkdtm: Saturation detected: still saturated # [ 61.758893] lkdtm: Performing direct entry REFCOUNT_ADD_NOT_ZERO_SATURATED # [ 61.776620] lkdtm: attempting bad refcount_add_not_zero() from saturated # [ 61.805777] ------------[ cut here ]------------ # [ 61.832870] refcount_t: saturated; leaking memory. # [ 61.862653] WARNING: CPU: 1 PID: 2515 at lib/refcount.c:19 refcount_warn_saturate+0x97/0x110 # [ 61.891118] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 61.967487] CPU: 1 PID: 2515 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 61.997627] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 62.025968] RIP: 0010:refcount_warn_saturate+0x97/0x110 # [ 62.053579] Code: 02 01 e8 f2 4d c5 00 0f 0b e9 55 91 04 01 80 3d 43 cf f6 02 00 75 a8 48 c7 c7 e0 a9 82 bc c6 05 33 cf f6 02 01 e8 cf 4d c5 00 <0f> 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 # [ 62.094760] RSP: 0018:ffffa6b68481fe38 EFLAGS: 00010282 # [ 62.122431] RAX: 0000000000000000 RBX: 00000000c0000000 RCX: 0000000000000000 # [ 62.131624] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 62.139037] RBP: ffffffffbc8d0030 R08: 0000000000000000 R09: 0000000000000000 # [ 62.146461] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 # [ 62.153<6>[ 62.570274] lkdtm: Performing direct entry REFCOUNT_DEC_AND_TEST_SATURATED 873] R13: ffffa6b68481ff10 R14: ffffa6b68481ff10 R15: ffff98af43a7b000 # [ 62.161295] FS: 00007f6d8978a740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 62.169656] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 62.175722] CR2:<6>[ 62.581922] lkdtm: attempting bad refcount_dec_and_test() from saturated 00007f6d89544000 CR3: 000000010446e000 CR4: 00000000001506e0 # [ 62.183130] Call Trace: # [ 62.185909] ? __warn+0x80/0x110 # [ 62.189425] ? refcount_warn_saturate+0x97/0x110 # [ 62.194377] ? report_bug+0x9e/0xc0 # [ 62.198224] ? handle_<4>[ 62.611082] ------------[ cut here ]------------ bug+0x41/0x90 # [ 62.202077] ? exc_invalid_op+0x14/0x70 # [ 62.206291] ? asm_exc_invalid_op+0x12/0x20 # [ 62.210827] ? refcount_warn_saturate+0x97/0x110 # [ 62.215783] ? refcount_warn_saturate+0x97/0x110 # [ 62.220770] __refcount_add_no<4>[ 62.638164] refcount_t: underflow; use-after-free. t_zero.constprop.0+0x2a/0x35 # [ 62.226621] lkdtm_REFCOUNT_ADD_NOT_ZERO_SATURATED+0x3e/0x76 # [ 62.232681] direct_entry.cold+0x2c/0x38 # [ 62.236925] full_proxy_write+0x56/0x80 # [ 62.241136] vfs_write+0xea/0x3b0 # [ 62.244816] ksys_wri<4>[ 62.665431] WARNING: CPU: 1 PID: 2551 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 te+0x68/0xf0 # [ 62.248531] do_syscall_64+0x33/0x40 # [ 62.252415] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 62.257823] RIP: 0033:0x7f6d8965d240 # [ 62.261672] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1<4>[ 62.696339] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 62.280700] RSP: 002b:00007ffc2674c7a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 62.288540] RAX: ffffffffffffffda RBX: 0<4>[ 62.772748] CPU: 1 PID: 2551 Comm: cat Tainted: G D W 5.10.218-cip49 #1 000000000000020 RCX: 00007f6d8965d240 # [ 62.295929] RDX: 0000000000000020 RSI: 00007f6d89544000 RDI: 0000000000000001 # [ 62.303317] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 # [ 62.310705] R10: 00007f6d8957e4d0 R11: 00000<4>[ 62.802914] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 00000000202 R12: 00007f6d89544000 # [ 62.318121] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 62.325522] irq event stamp: 0 # [ 62.328843] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 62.335371] hardirqs <4>[ 62.831261] RIP: 0010:refcount_warn_saturate+0xba/0x110 last disabled at (0): [] copy_process+0x65c/0x20e0 # [ 62.343804] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 62.352254] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 62.361292]<4>[ 62.858975] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 ---[ end trace 8fa2a604a62aa054 ]--- # [ 62.366171] lkdtm: Saturation detected: still saturated # REFCOUNT_ADD_NOT_ZERO_SATURATED: saw 'call trace:': ok ok 56 selftests: lkdtm: REFCOUNT_ADD_NOT_ZERO_SATURATED.sh # selftests: lkdtm: REFCOUNT_DEC_AND_<4>[ 62.900117] RSP: 0018:ffffa6b6848a7e40 EFLAGS: 00010286 TEST_SATURATED.sh <4>[ 62.927724] RAX: 0000000000000000 RBX: 000000000000003a RCX: 0000000000000000 <4>[ 62.936754] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 <4>[ 62.944161] RBP: ffffffffbc8d0050 R08: 0000000000000000 R09: 0000000000000000 <4>[ 62.951577] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 <4>[ 62.958990] R13: ffffa6b6848a7f10 R14: ffffa6b6848a7f10 R15: ffff98af46f45000 <4>[ 62.966404] FS: 00007f26370d9740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 <4>[ 62.974771] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 62.980814] CR2: 00007f2636e94000 CR3: 00000001028d0000 CR4: 00000000001506e0 <4>[ 62.988223] Call Trace: <4>[ 62.990991] ? __warn+0x80/0x110 <4>[ 62.994504] ? refcount_warn_saturate+0xba/0x110 <4>[ 62.999458] ? report_bug+0x9e/0xc0 <4>[ 63.003259] ? handle_bug+0x41/0x90 <4>[ 63.007103] ? exc_invalid_op+0x14/0x70 <4>[ 63.011265] ? asm_exc_invalid_op+0x12/0x20 <4>[ 63.015792] ? refcount_warn_saturate+0xba/0x110 <4>[ 63.020750] __refcount_sub_and_test.constprop.0+0x3c/0x50 <4>[ 63.026628] lkdtm_REFCOUNT_DEC_AND_TEST_SATURATED+0x3e/0x76 <4>[ 63.032630] direct_entry.cold+0x2c/0x38 <4>[ 63.036963] full_proxy_write+0x56/0x80 <4>[ 63.041147] vfs_write+0xea/0x3b0 <4>[ 63.044807] ksys_write+0x68/0xf0 <4>[ 63.048497] do_syscall_64+0x33/0x40 <4>[ 63.052476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 63.057938] RIP: 0033:0x7f2636fad240 <4>[ 63.061855] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 63.080896] RSP: 002b:00007ffe13b5db78 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 63.088736] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007f2636fad240 <4>[ 63.096125] RDX: 0000000000000020 RSI: 00007f2636e94000 RDI: 0000000000000001 <4>[ 63.103514] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 63.110903] R10: 00007f2636ece4d0 R11: 0000000000000202 R12: 00007f2636e94000 <4>[ 63.118320] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 63.125724] irq event stamp: 0 <4>[ 63.129045] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 63.135574] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 63.144007] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 63.152467] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 63.158992] ---[ end trace 8fa2a604a62aa055 ]--- <6>[ 63.163872] lkdtm: Saturation detected: still saturated # [ 62.570274] lkdtm: Performing direct entry REFCOUNT_DEC_AND_TEST_SATURATED # [ 62.581922] lkdtm: attempting bad refcount_dec_and_test() from saturated # [ 62.611082] ------------[ cut here ]------------ # [ 62.638164] refcount_t: underflow; use-after-free. # [ 62.665431] WARNING: CPU: 1 PID: 2551 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 # [ 62.696339] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 62.772748] CPU: 1 PID: 2551 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 62.802914] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 62.831261] RIP: 0010:refcount_warn_saturate+0xba/0x110 # [ 62.858975] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 # [ 62.900117] RSP: 0018:ffffa6b6848a7e40 EFLAGS: 00010286 # [ 62.927724] RAX: 0000000000000000 RBX: 000000000000003a RCX: 0000000000000000 # [ 62.936754<6>[ 63.340542] lkdtm: Performing direct entry REFCOUNT_SUB_AND_TEST_SATURATED ] RDX: ffff98af6ad2c620 RSI: ffff98af6ad1bf50 RDI: ffff98af6ad1bf50 # [ 62.944161] RBP: ffffffffbc8d0050 R08: 0000000000000000 R09: 0000000000000000 # [ 62.951577] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 # [ 62.958990] R1<6>[ 63.357949] lkdtm: attempting bad refcount_sub_and_test() from saturated 3: ffffa6b6848a7f10 R14: ffffa6b6848a7f10 R15: ffff98af46f45000 # [ 62.966404] FS: 00007f26370d9740(0000) GS:ffff98af6ad00000(0000) knlGS:0000000000000000 # [ 62.974771] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 62.980814] CR2: 00007f<4>[ 63.387136] ------------[ cut here ]------------ 2636e94000 CR3: 00000001028d0000 CR4: 00000000001506e0 # [ 62.988223] Call Trace: # [ 62.990991] ? __warn+0x80/0x110 # [ 62.994504] ? refcount_warn_saturate+0xba/0x110 # [ 62.999458] ? report_bug+0x9e/0xc0 # [ 63.003259] ? handle_bug+0x4<4>[ 63.414213] refcount_t: underflow; use-after-free. 1/0x90 # [ 63.007103] ? exc_invalid_op+0x14/0x70 # [ 63.011265] ? asm_exc_invalid_op+0x12/0x20 # [ 63.015792] ? refcount_warn_saturate+0xba/0x110 # [ 63.020750] __refcount_sub_and_test.constprop.0+0x3c/0x50 # [ 63.026628] lkdtm_REFCOUNT<4>[ 63.441503] WARNING: CPU: 0 PID: 2587 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 _DEC_AND_TEST_SATURATED+0x3e/0x76 # [ 63.032630] direct_entry.cold+0x2c/0x38 # [ 63.036963] full_proxy_write+0x56/0x80 # [ 63.041147] vfs_write+0xea/0x3b0 # [ 63.044807] ksys_write+0x68/0xf0 # [ 63.048497] do_syscall_64+0x33/0x40 # [ <4>[ 63.472322] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c 63.052476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 63.057938] RIP: 0033:0x7f2636fad240 # [ 63.061855] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 0<4>[ 63.548791] CPU: 0 PID: 2587 Comm: cat Tainted: G D W 5.10.218-cip49 #1 0 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 63.080896] RSP: 002b:00007ffe13b5db78 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 63.088736] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007f2636fad240 # [ 63.096125] RDX: 0<4>[ 63.578970] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 000000000000020 RSI: 00007f2636e94000 RDI: 0000000000000001 # [ 63.103514] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 # [ 63.110903] R10: 00007f2636ece4d0 R11: 0000000000000202 R12: 00007f2636e94000 # [ 63.118320] R13: 00000<4>[ 63.607335] RIP: 0010:refcount_warn_saturate+0xba/0x110 00000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 63.125724] irq event stamp: 0 # [ 63.129045] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 63.135574] hardirqs last disabled at (0): [] copy_process+0x65c/<4>[ 63.635002] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 0x20e0 # [ 63.144007] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 63.152467] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 63.158992] ---[ end trace 8fa2a604a62aa055 ]--- # [ 63.163872] lkdtm:<4>[ 63.676190] RSP: 0018:ffffa6b684907e40 EFLAGS: 00010286 Saturation detected: still saturated # REFCOUNT_DEC_AND_TEST_SATURATED: saw 'Saturation detected: still saturated': ok ok 57 selftests: lkdtm: REFCOUNT_DEC_AND_TEST_SATURATED.sh # selftests: lkdtm: REFCOUNT_SUB_AND_TEST_SATURATED.sh <4>[ 63.703855] RAX: 0000000000000000 RBX: 000000000000003b RCX: 0000000000000000 <4>[ 63.731825] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 <4>[ 63.739220] RBP: ffffffffbc8d0070 R08: 0000000000000000 R09: 0000000000000000 <4>[ 63.746612] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 <4>[ 63.753996] R13: ffffa6b684907f10 R14: ffffa6b684907f10 R15: ffff98af47303000 <4>[ 63.761390] FS: 00007f806edb3740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 <4>[ 63.769736] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 <4>[ 63.775742] CR2: 00007f806eb6c000 CR3: 00000001037ba000 CR4: 00000000001506f0 <4>[ 63.783134] Call Trace: <4>[ 63.785858] ? __warn+0x80/0x110 <4>[ 63.789355] ? refcount_warn_saturate+0xba/0x110 <4>[ 63.794237] ? report_bug+0x9e/0xc0 <4>[ 63.797993] ? handle_bug+0x41/0x90 <4>[ 63.801746] ? exc_invalid_op+0x14/0x70 <4>[ 63.805847] ? asm_exc_invalid_op+0x12/0x20 <4>[ 63.810297] ? refcount_warn_saturate+0xba/0x110 <4>[ 63.815180] __refcount_sub_and_test.constprop.0+0x3c/0x50 <4>[ 63.820927] lkdtm_REFCOUNT_SUB_AND_TEST_SATURATED+0x3e/0x76 <4>[ 63.826864] direct_entry.cold+0x2c/0x38 <4>[ 63.831054] full_proxy_write+0x56/0x80 <4>[ 63.835156] vfs_write+0xea/0x3b0 <4>[ 63.838738] ksys_write+0x68/0xf0 <4>[ 63.842321] do_syscall_64+0x33/0x40 <4>[ 63.846161] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 63.851476] RIP: 0033:0x7f806ec85240 <4>[ 63.855317] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 63.874321] RSP: 002b:00007ffe5140abe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 63.882150] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007f806ec85240 <4>[ 63.889541] RDX: 0000000000000020 RSI: 00007f806eb6c000 RDI: 0000000000000001 <4>[ 63.896932] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 63.904323] R10: 00007f806eba64d0 R11: 0000000000000202 R12: 00007f806eb6c000 <4>[ 63.911713] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 <4>[ 63.919110] irq event stamp: 0 <4>[ 63.922429] hardirqs last enabled at (0): [<0000000000000000>] 0x0 <4>[ 63.928956] hardirqs last disabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 63.937389] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 <4>[ 63.945822] softirqs last disabled at (0): [<0000000000000000>] 0x0 <4>[ 63.952346] ---[ end trace 8fa2a604a62aa056 ]--- <6>[ 63.957225] lkdtm: Saturation detected: still saturated # [ 63.340542] lkdtm: Performing direct entry REFCOUNT_SUB_AND_TEST_SATURATED # [ 63.357949] lkdtm: attempting bad refcount_sub_and_test() from saturated # [ 63.387136] ------------[ cut here ]------------ # [ 63.414213] refcount_t: underflow; use-after-free. # [ 63.441503] WARNING: CPU: 0 PID: 2587 at lib/refcount.c:28 refcount_warn_saturate+0xba/0x110 # [ 63.472322] Modules linked in: fuse ip_tables cros_ec_lightbar cros_usbpd_logger cros_ec_sysfs cros_usbpd_charger cros_ec_chardev cros_ec_debugfs btusb btrtl btbcm btintel gsmi snd_soc_acp_da7219mx98357_mach cros_ec_dev bluetooth sp5100_tco ath10k_pci snd_soc_adau7002 snd_soc_max98357a uvcvideo snd_soc_da7219 ath10k_core videobuf2_vmalloc acpi_als videobuf2_memops videobuf2_v4l2 watchdog ecdh_generic ecc videobuf2_common kfifo_buf i2c_piix4 ath acp_audio_dma designware_i2s cros_usbpd_notify industrialio chromeos_pstore raydium_i2c_ts elan_i2c coreboot_table snd_soc_core snd_compress snd_pcm_dmaengine regmap_i2c # [ 63.548791] CPU: 0 PID: 2587 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 63.578970] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 63.607335] RIP: 0010:refcount_warn_saturate+0xba/0x110 # [ 63.635002] Code: 02 01 e8 cf 4d c5 00 0f 0b e9 32 91 04 01 80 3d 1d cf f6 02 00 75 85 48 c7 c7 38 aa 82 bc c6 05 0d cf f6 02 01 e8 ac 4d c5 00 <0f> 0b e9 0f 91 04 01 80 3d f8 ce f6 02 00 0f 85 5e ff ff ff 48 c7 # [ 63.676190] RSP: 0018:ffffa6b684907e40 EFLAGS: 00010286 # [ 63.703855] RAX: 0000000000000000 RBX: 000000000000003b RCX: 0000000000000000 # [ 63.731825] RDX: ffff98af6ac2c620 RSI: ffff98af6ac1bf50 RDI: ffff98af6ac1bf50 # [ 63.739220] RBP: ffffffffbc8d0070 R08: 0000000000000000 R09: 0000000000000000 # [ 63.746612] R10: 00000000ffffe000 R11: 3fffffffffffffff R12: 0000000000000020 # [ 63.753996] R13: ffffa6b684907f10 R14: ffffa6b684907f10 R15: ffff98af47303000 # [ 63.761390] FS: 00007f806edb3740(0000) GS:ffff98af6ac00000(0000) knlGS:0000000000000000 # [ 63.769736] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 # [ 63.775742] CR2: 00007f806eb6c000 CR3: 00000001037ba000 CR4: 00000000001506f0 # [ 63.783134] Call Trace: # [ 63.785858] ? __warn+0x80/0x110 # [ 63.789355] ? refcount_warn_saturate+0xba/0x110 # [ 63.794237] ? report_bug+0x9e/0xc0 # [ 63.797993] ? handle_bug+0x41/0x90 # [ 63.801746] ? exc_invalid_op+0x14/0x70 # [ 63.805847] ? asm_exc_invalid_op+0x12/0x20 # [ 63.810297] ? refcount_warn_saturate+0xba/0x110 # [ 63.815180] __refcount_sub_and_test.constprop.0+0x3c/0x50 # [ 63.820927] lkdtm_REFCOUNT_SUB_AND_TEST_SATURATED+0x3e/0x76 # [ 63.826864] direct_entry.cold+0x2c/0x38 # [ 63.831054] full_proxy_write+0x56/0x80 # [ 63.835156] vfs_write+0xea/0x3b0 # [ 63.838738] ksys_write+0x68/0xf0 # [ 63.842321] do_syscall_64+0x33/0x40 # [ 63.846161] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 63.851476] RIP: 0033:0x7f806ec85240 # [ 63.855317] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 63.874321] RSP: 002b:00007ffe5140abe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 63.882150] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00007f806ec85240 # [ 63.889541<6>[ 64.295309] lkdtm: Performing direct entry USERCOPY_HEAP_SIZE_TO ] RDX: 0000000000000020 RSI: 00007f806eb6c000 RDI: 0000000000000001 # [ 63.896932] RBP: 0000000000000020 R08: 00000000ffffffff R09: 0000000000000000 # [ 63.904323] R10: 00007f806eba64d0 R11: 0000000000000202 R12: 00007f806eb6c000 # [ 63.911713] R1<6>[ 64.306160] lkdtm: attempting good copy_to_user of correct size 3: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 63.919110] irq event stamp: 0 # [ 63.922429] hardirqs last enabled at (0): [<0000000000000000>] 0x0 # [ 63.928956] hardirqs last disabled at (0): [] copy_proces<6>[ 64.334564] lkdtm: attempting bad copy_to_user of too large size s+0x65c/0x20e0 # [ 63.937389] softirqs last enabled at (0): [] copy_process+0x65c/0x20e0 # [ 63.945822] softirqs last disabled at (0): [<0000000000000000>] 0x0 # [ 63.952346] ---[ end trace 8fa2a604a62aa056 ]--- # [ 63.957225] lkdtm: Saturation detected: still saturated # REFCOUNT_SUB_AND_TEST_SATURATED: saw 'Saturation detected: still saturated': ok ok 58 selftests: lkdtm: REFCOUNT_SUB_AND_TEST_SATURATED.sh # selftests: lkdtm: REFCOUNT_TIMING.sh # Skipping REFCOUNT_TIMING: timing only ok 59 selftests: lkdtm: REFCOUNT_TIMING.sh # SKIP # selftests: lkdtm: ATOMIC_TIMING.sh # Skipping ATOMIC_TIMING: timing only ok 60 selftests: lkdtm: ATOMIC_TIMING.sh # SKIP # selftests: lkdtm: USERCOPY_HEAP_SIZE_TO.sh # [ 64.295309] lkdtm: Performing direct entry USERCOPY_HEAP_SIZE_TO # [ 64.306160] lkdtm: attempting good copy_to_user of correct size # [ 64.334564] lkdtm: attempting bad copy_to_user of too large size # USERCOPY_HEAP_SIZE_TO: missing 'call trace:': [FAIL] not ok 61 selftests: lkdtm: USERCOPY_HEAP_SIZE_TO.sh # exit=1 # selftests: lkdtm: USERCOPY_HEAP_SIZE_FROM.sh <6>[ 64.543257] lkdtm: Performing direct entry USERCOPY_HEAP_SIZE_FROM <6>[ 64.549711] lkdtm: attempting good copy_from_user of correct size <6>[ 64.556121] lkdtm: attempting bad copy_from_user of too large size # [ 64.543257] lkdtm: Performing direct entry USERCOPY_HEAP_SIZE_FROM # [ 64.549711] lkdtm: attempting good copy_from_user of correct size # [ 64.556121] lkdtm: attempting bad copy_from_user of too large size # USERCOPY_HEAP_SIZE_FROM: missing 'call trace:': [FAIL] not ok 62 selftests: lkdtm: USERCOPY_HEAP_SIZE_FROM.sh # exit=1 # selftests: lkdtm: USERCOPY_HEAP_WHITELIST_TO.sh <6>[ 64.758149] lkdtm: Performing direct entry USERCOPY_HEAP_WHITELIST_TO <6>[ 64.764863] lkdtm: attempting good copy_to_user inside whitelist <6>[ 64.771147] lkdtm: attempting bad copy_to_user outside whitelist # [ 64.758149] lkdtm: Performing direct entry USERCOPY_HEAP_WHITELIST_TO # [ 64.764863] lkdtm: attempting good copy_to_user inside whitelist # [ 64.771147] lkdtm: attempting bad copy_to_user outside whitelist # USERCOPY_HEAP_WHITELIST_TO: missing 'call trace:': [FAIL] not ok 63 selftests: lkdtm: USERCOPY_HEAP_WHITELIST_TO.sh # exit=1 # selftests: lkdtm: USERCOPY_HEAP_WHITELIST_FROM.sh <6>[ 64.951090] lkdtm: Performing direct entry USERCOPY_HEAP_WHITELIST_FROM <6>[ 64.957996] lkdtm: attempting good copy_from_user inside whitelist <6>[ 64.964477] lkdtm: attempting bad copy_from_user outside whitelist # [ 64.951090] lkdtm: Performing direct entry USERCOPY_HEAP_WHITELIST_FROM # [ 64.957996] lkdtm: attempting good copy_from_user inside whitelist # [ 64.964477] lkdtm: attempting bad copy_from_user outside whitelist # USERCOPY_HEAP_WHITELIST_FROM: missing 'call trace:': [FAIL] not ok 64 selftests: lkdtm: USERCOPY_HEAP_WHITELIST_FROM.sh # exit=1 # selftests: lkdtm: USERCOPY_STACK_FRAME_TO.sh <6>[ 65.139771] lkdtm: Performing direct entry USERCOPY_STACK_FRAME_TO <6>[ 65.146242] lkdtm: good_stack: ffffa6b684c7fe20-ffffa6b684c7fe40 <6>[ 65.152539] lkdtm: bad_stack : ffffa6b684c7fda8-ffffa6b684c7fdc8 <6>[ 65.158956] lkdtm: attempting good copy_to_user of local stack <6>[ 65.165221] lkdtm: attempting bad copy_to_user of distant stack # [ 65.139771] lkdtm: Performing direct entry USERCOPY_STACK_FRAME_TO # [ 65.146242] lkdtm: good_stack: ffffa6b684c7fe20-ffffa6b684c7fe40 # [ 65.152539] lkdtm: bad_stack : ffffa6b684c7fda8-ffffa6b684c7fdc8 # [ 65.158956] lkdtm: attempting good copy_to_user of local stack # [ 65.165221] lkdtm: attempting bad copy_to_user of distant stack # USERCOPY_STACK_FRAME_TO: missing 'call trace:': [FAIL] not ok 65 selftests: lkdtm: USERCOPY_STACK_FRAME_TO.sh # exit=1 # selftests: lkdtm: USERCOPY_STACK_FRAME_FROM.sh <6>[ 65.352007] lkdtm: Performing direct entry USERCOPY_STACK_FRAME_FROM <6>[ 65.358652] lkdtm: good_stack: ffffa6b684d0fe20-ffffa6b684d0fe40 <6>[ 65.364948] lkdtm: bad_stack : ffffa6b684d0fda8-ffffa6b684d0fdc8 <6>[ 65.373775] lkdtm: attempting good copy_from_user of local stack <6>[ 65.380055] lkdtm: attempting bad copy_from_user of distant stack # [ 65.352007] lkdtm: Performing direct entry USERCOPY_STACK_FRAME_FROM # [ 65.358652] lkdtm: good_stack: ffffa6b684d0fe20-ffffa6b684d0fe40 # [ 65.364948] lkdtm: bad_stack : ffffa6b684d0fda8-ffffa6b684d0fdc8 # [ 65.373775] lkdtm: attempting good copy_from_user of local stack # [ 65.380055] lkdtm: attempting bad copy_from_user of distant stack # USERCOPY_STACK_FRAME_FROM: missing 'call trace:': [FAIL] not ok 66 selftests: lkdtm: USERCOPY_STACK_FRAME_FROM.sh # exit=1 # selftests: lkdtm: USERCOPY_STACK_BEYOND.sh <6>[ 65.579468] lkdtm: Performing direct entry USERCOPY_STACK_BEYOND <6>[ 65.585738] lkdtm: good_stack: ffffa6b684d97e20-ffffa6b684d97e40 <6>[ 65.592037] lkdtm: bad_stack : ffffa6b684d97ff8-ffffa6b684d98018 <6>[ 65.598318] lkdtm: attempting good copy_to_user of local stack <6>[ 65.604425] lkdtm: attempting bad copy_to_user of distant stack <4>[ 65.610633] lkdtm: copy_to_user failed, but lacked Oops # [ 65.579468] lkdtm: Performing direct entry USERCOPY_STACK_BEYOND # [ 65.585738] lkdtm: good_stack: ffffa6b684d97e20-ffffa6b684d97e40 # [ 65.592037] lkdtm: bad_stack : ffffa6b684d97ff8-ffffa6b684d98018 # [ 65.598318] lkdtm: attempting good copy_to_user of local stack # [ 65.604425] lkdtm: attempting bad copy_to_user of distant stack # [ 65.610633] lkdtm: copy_to_user failed, but lacked Oops # USERCOPY_STACK_BEYOND: missing 'call trace:': [FAIL] not ok 67 selftests: lkdtm: USERCOPY_STACK_BEYOND.sh # exit=1 # selftests: lkdtm: USERCOPY_KERNEL.sh <6>[ 65.793365] lkdtm: Performing direct entry USERCOPY_KERNEL <6>[ 65.799128] lkdtm: attempting good copy_to_user from kernel rodata: ffffffffbc440b70 <6>[ 65.807185] lkdtm: attempting bad copy_to_user from kernel text: ffffffffb9ce41c0 <3>[ 65.814929] lkdtm: FAIL: survived bad copy_to_user() # [ 65.793365] lkdtm: Performing direct entry USERCOPY_KERNEL # [ 65.799128] lkdtm: attempting good copy_to_user from kernel rodata: ffffffffbc440b70 # [ 65.807185] lkdtm: attempting bad copy_to_user from kernel text: ffffffffb9ce41c0 # [ 65.814929] lkdtm: FAIL: survived bad copy_to_user() # USERCOPY_KERNEL: missing 'call trace:': [FAIL] not ok 68 selftests: lkdtm: USERCOPY_KERNEL.sh # exit=1 # selftests: lkdtm: STACKLEAK_ERASING.sh <6>[ 66.011637] lkdtm: Performing direct entry STACKLEAK_ERASING <6>[ 66.017566] lkdtm: checking unused part of the thread stack (15928 bytes)... <3>[ 66.024924] lkdtm: FAIL: the erased part is not found (checked 15928 bytes) <3>[ 66.032156] lkdtm: FAIL: the thread stack is NOT properly erased <4>[ 66.038428] CPU: 1 PID: 2963 Comm: cat Tainted: G D W 5.10.218-cip49 #1 <4>[ 66.046418] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 <4>[ 66.052588] Call Trace: <4>[ 66.055300] dump_stack+0x77/0x9b <4>[ 66.058872] lkdtm_STACKLEAK_ERASING+0x116/0x144 <4>[ 66.063745] direct_entry.cold+0x2c/0x38 <4>[ 66.067938] full_proxy_write+0x56/0x80 <4>[ 66.072030] vfs_write+0xea/0x3b0 <4>[ 66.075600] ksys_write+0x68/0xf0 <4>[ 66.079172] do_syscall_64+0x33/0x40 <4>[ 66.083003] entry_SYSCALL_64_after_hwframe+0x67/0xd1 <4>[ 66.088307] RIP: 0033:0x7fdad791d240 <4>[ 66.092137] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 <4>[ 66.111132] RSP: 002b:00007ffe18192838 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 <4>[ 66.118949] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007fdad791d240 <4>[ 66.126331] RDX: 0000000000000012 RSI: 00007fdad7804000 RDI: 0000000000000001 <4>[ 66.133713] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 <4>[ 66.141094] R10: 00007fdad783e4d0 R11: 0000000000000202 R12: 00007fdad7804000 <4>[ 66.148475] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # [ 66.011637] lkdtm: Performing direct entry STACKLEAK_ERASING # [ 66.017566] lkdtm: checking unused part of the thread stack (15928 bytes)... # [ 66.024924] lkdtm: FAIL: the erased part is not found (checked 15928 bytes) # [ 66.032156] lkdtm: FAIL: the thread stack is NOT properly erased # [ 66.038428] CPU: 1 PID: 2963 Comm: cat Tainted: G D W 5.10.218-cip49 #1 # [ 66.046418] Hardware name: Google Grunt/Grunt, BIOS 09/05/2019 # [ 66.052588] Call Trace: # [ 66.055300] dump_stack+0x77/0x9b # [ 66.058872] lkdtm_STACKLEAK_ERASING+0x116/0x144 # [ 66.063745] direct_entry.cold+0x2c/0x38 # [ 66.067938] full_proxy_write+0x56/0x80 # [ 66.072030] vfs_write+0xea/0x3b0 # [ 66.075600] ksys_write+0x68/0xf0 # [ 66.079172] do_syscall_64+0x33/0x40 # [ 66.083003] entry_SYSCALL_64_after_hwframe+0x67/0xd1 # [ 66.088307] RIP: 0033:0x7fdad791d240 # [ 66.092137] Code: 40 00 48 8b 15 c1 9b 0d 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 80 3d a1 23 0e 00 00 74 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 48 83 ec 28 48 89 # [ 66.111132] RSP: 002b:00007ffe18192838 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 # [ 66.118949] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007fdad791d240 # [ 66.126331] RDX: 0000000000000012 RSI: 00007fdad7804000 RDI: 0000000000000001 # [ 66.133713] RBP: 0000000000000012 R08: 00000000ffffffff R09: 0000000000000000 # [ 66.141094] R10: 00007fdad783e4d0 R11: 0000000000000202 R12: 00007fdad7804000 # [ 66.148475] R13: 0000000000000001 R14: 0000000000020000 R15: 0000000000000000 # STACKLEAK_ERASING: missing 'OK: the rest of the thread stack is properly erased': [FAIL] not ok 69 selftests: lkdtm: STACKLEAK_ERASING.sh # exit=1 # selftests: lkdtm: CFI_FORWARD_PROTO.sh <6>[ 66.346363] lkdtm: Performing direct entry CFI_FORWARD_PROTO <6>[ 66.356939] lkdtm: Calling matched prototype ... <6>[ 66.361858] lkdtm: Calling mismatched prototype ... <6>[ 66.367027] lkdtm: Fail: survived mismatched prototype function call! # [ 66.346363] lkdtm: Performing direct entry CFI_FORWARD_PROTO # [ 66.356939] lkdtm: Calling matched prototype ... # [ 66.361858] lkdtm: Calling mismatched prototype ... # [ 66.367027] lkdtm: Fail: survived mismatched prototype function call! # CFI_FORWARD_PROTO: missing 'call trace:': [FAIL] not ok 70 selftests: lkdtm: CFI_FORWARD_PROTO.sh # exit=1 lkdtm_PANIC_sh skip lkdtm_BUG_sh pass lkdtm_WARNING_sh pass lkdtm_WARNING_MESSAGE_sh pass lkdtm_EXCEPTION_sh pass lkdtm_LOOP_sh skip lkdtm_EXHAUST_STACK_sh skip lkdtm_CORRUPT_STACK_sh skip lkdtm_CORRUPT_STACK_STRONG_sh skip lkdtm_CORRUPT_LIST_ADD_sh fail lkdtm_CORRUPT_LIST_DEL_sh fail lkdtm_STACK_GUARD_PAGE_LEADING_sh pass lkdtm_STACK_GUARD_PAGE_TRAILING_sh pass lkdtm_UNSET_SMEP_sh pass lkdtm_DOUBLE_FAULT_sh skip lkdtm_CORRUPT_PAC_sh skip lkdtm_UNALIGNED_LOAD_STORE_WRITE_sh skip lkdtm_OVERWRITE_ALLOCATION_sh skip lkdtm_WRITE_AFTER_FREE_sh skip lkdtm_READ_AFTER_FREE_sh fail lkdtm_WRITE_BUDDY_AFTER_FREE_sh skip lkdtm_READ_BUDDY_AFTER_FREE_sh fail lkdtm_SLAB_FREE_DOUBLE_sh fail lkdtm_SLAB_FREE_CROSS_sh fail lkdtm_SLAB_FREE_PAGE_sh fail lkdtm_SOFTLOCKUP_sh skip lkdtm_HARDLOCKUP_sh skip lkdtm_SPINLOCKUP_sh skip lkdtm_HUNG_TASK_sh skip lkdtm_EXEC_DATA_sh pass lkdtm_EXEC_STACK_sh pass lkdtm_EXEC_KMALLOC_sh pass lkdtm_EXEC_VMALLOC_sh pass lkdtm_EXEC_RODATA_sh pass lkdtm_EXEC_USERSPACE_sh pass lkdtm_EXEC_NULL_sh pass lkdtm_ACCESS_USERSPACE_sh fail lkdtm_ACCESS_NULL_sh pass lkdtm_WRITE_RO_sh pass lkdtm_WRITE_RO_AFTER_INIT_sh pass lkdtm_WRITE_KERN_sh pass lkdtm_REFCOUNT_INC_OVERFLOW_sh pass lkdtm_REFCOUNT_ADD_OVERFLOW_sh pass lkdtm_REFCOUNT_INC_NOT_ZERO_OVERFLOW_sh pass lkdtm_REFCOUNT_ADD_NOT_ZERO_OVERFLOW_sh pass lkdtm_REFCOUNT_DEC_ZERO_sh pass lkdtm_REFCOUNT_DEC_NEGATIVE_sh pass lkdtm_REFCOUNT_DEC_AND_TEST_NEGATIVE_sh pass lkdtm_REFCOUNT_SUB_AND_TEST_NEGATIVE_sh pass lkdtm_REFCOUNT_INC_ZERO_sh pass lkdtm_REFCOUNT_ADD_ZERO_sh pass lkdtm_REFCOUNT_INC_SATURATED_sh pass lkdtm_REFCOUNT_DEC_SATURATED_sh pass lkdtm_REFCOUNT_ADD_SATURATED_sh pass lkdtm_REFCOUNT_INC_NOT_ZERO_SATURATED_sh pass lkdtm_REFCOUNT_ADD_NOT_ZERO_SATURATED_sh pass lkdtm_REFCOUNT_DEC_AND_TEST_SATURATED_sh pass lkdtm_REFCOUNT_SUB_AND_TEST_SATURATED_sh pass lkdtm_REFCOUNT_TIMING_sh skip lkdtm_ATOMIC_TIMING_sh skip lkdtm_USERCOPY_HEAP_SIZE_TO_sh fail lkdtm_USERCOPY_HEAP_SIZE_FROM_sh fail lkdtm_USERCOPY_HEAP_WHITELIST_TO_sh fail lkdtm_USERCOPY_HEAP_WHITELIST_FROM_sh fail lkdtm_USERCOPY_STACK_FRAME_TO_sh fail lkdtm_USERCOPY_STACK_FRAME_FROM_sh fail lkdtm_USERCOPY_STACK_BEYOND_sh fail lkdtm_USERCOPY_KERNEL_sh fail lkdtm_STACKLEAK_ERASING_sh fail lkdtm_CFI_FORWARD_PROTO_sh fail + ../../utils/send-to-lava.sh ./output/result.txt + set +x