Pétùr schreef op 2018-05-31 16:20:
I have a recurrent bug with the nvidia 340 driver.
Here is the trace. Any idea is welcomed.
Pétùr
[ 6.748358] ------------[ cut here ]------------
[ 6.748361] Bad or missing usercopy whitelist? Kernel memory
exposure attempt detected from SLUB object 'nvidia_stack_t' (offset
11864, size 3)!
[ 6.748371] WARNING: CPU: 6 PID: 702 at
/build/linux-43CEzF/linux-4.16.12/mm/usercopy.c:81
usercopy_warn+0x7e/0xa0
[ 6.748372] Modules linked in: snd_hda_codec_hdmi pktcdvd arc4
pcmcia dell_rbtn iwldvm dell_wmi wmi_bmof iTCO_wdt sparse_keymap
iTCO_vendor_support snd_hda_codec_idt uvcvideo dell_laptop
intel_powerclamp snd_hda_codec_generic mac80211 dell_smbios coretemp
videobuf2_vmalloc dell_wmi_descriptor videobuf2_memops kvm_intel
dcdbas videobuf2_v4l2 dell_smm_hwmon snd_hda_intel videobuf2_common
kvm videodev irqbypass snd_hda_codec iwlwifi intel_cstate media evdev
yenta_socket joydev snd_hda_core intel_uncore snd_hwdep serio_raw
snd_pcm pcspkr pcmcia_rsrc sg cfg80211 pcmcia_core snd_timer rfkill
snd mei_me soundcore i7core_edac mei lpc_ich shpchp nvidia(PO) wmi
battery binfmt_misc dell_smo8800 video ac acpi_cpufreq button drm
parport_pc ppdev lp parport sunrpc ip_tables x_tables autofs4 ext4
crc16 mbcache
[ 6.748407] jbd2 fscrypto ecb crypto_simd cryptd glue_helper
aes_x86_64 raid10 raid456 async_raid6_recov async_memcpy async_pq
async_xor async_tx xor hid_logitech_hidpp hid_logitech_dj hid_generic
usbhid hid raid6_pq libcrc32c crc32c_generic raid1 raid0 multipath
linear md_mod sr_mod cdrom sd_mod sdhci_pci ehci_pci cqhci ahci
libahci ehci_hcd libata crc32c_intel sdhci psmouse firewire_ohci
i2c_i801 scsi_mod firewire_core mmc_core crc_itu_t usbcore e1000e
usb_common
[ 6.748432] CPU: 6 PID: 702 Comm: Xorg Tainted: P O
4.16.0-2-amd64 #1 Debian 4.16.12-1
[ 6.748432] Hardware name: Dell Inc. Precision M4500/, BIOS A14
07/11/2013
[ 6.748434] RIP: 0010:usercopy_warn+0x7e/0xa0
[ 6.748435] RSP: 0018:ffffa77b01ef3bb8 EFLAGS: 00010286
[ 6.748436] RAX: 0000000000000000 RBX: ffff98d83805ae58 RCX:
0000000000000006
[ 6.748437] RDX: 0000000000000007 RSI: 0000000000000082 RDI:
ffff98d86fd96730
[ 6.748438] RBP: 0000000000000003 R08: 000000000000035b R09:
0000000000000004
[ 6.748438] R10: ffffffffa3a77220 R11: 0000000000000001 R12:
0000000000000001
[ 6.748439] R13: ffff98d83805ae5b R14: ffff98d83805ae58 R15:
ffff98d83805aea0
[ 6.748440] FS: 00007fb60fa256c0(0000) GS:ffff98d86fd80000(0000)
knlGS:0000000000000000
[ 6.748441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 6.748442] CR2: 00007fb6069ca000 CR3: 000000020e118000 CR4:
00000000000006e0
[ 6.748443] Call Trace:
[ 6.748448] __check_object_size+0x9c/0x1a0
[ 6.748540] os_memcpy_to_user+0x21/0x40 [nvidia]
[ 6.748618] _nv001372rm+0xa5/0x260 [nvidia]
[ 6.748696] ? _nv004784rm+0x4eba/0x5500 [nvidia]
[ 6.748773] ? _nv004331rm+0xec/0xf0 [nvidia]
[ 6.748849] ? _nv004326rm+0xca/0x650 [nvidia]
[ 6.748923] ? _nv015126rm+0x576/0x5c0 [nvidia]
[ 6.748999] ? _nv000694rm+0x2e/0x60 [nvidia]
[ 6.749068] ? _nv000789rm+0x5f5/0x8b0 [nvidia]
[ 6.749134] ? rm_ioctl+0x73/0x100 [nvidia]
[ 6.749182] ? nvidia_ioctl+0x221/0x460 [nvidia]
[ 6.749231] ? nvidia_frontend_ioctl+0x2d/0x60 [nvidia]
[ 6.749279] ? nvidia_frontend_unlocked_ioctl+0x19/0x20 [nvidia]
[ 6.749281] ? do_vfs_ioctl+0xa4/0x630
[ 6.749283] ? vfs_write+0x12f/0x1a0
[ 6.749284] ? SyS_ioctl+0x74/0x80
[ 6.749287] ? do_syscall_64+0x6c/0x130
[ 6.749290] ? entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[ 6.749291] Code: 48 c7 c0 f1 d2 a3 a3 48 0f 44 c2 41 50 51 41 51
48 89 f9 49 89 f1 4d 89 d8 4c 89 d2 48 89 c6 48 c7 c7 38 d3 a3 a3 e8
62 4c e4 ff <0f> 0b 48 83 c4 18 c3 48 c7 c6 3c d3 a4 a3 49 89 f1 49 89
f3 eb [ 6.749313] ---[ end trace dc2afdad83c552e7 ]---
This is a bug in the nvidia driver module. There is not much you can do
until it is fixed upstream.
https://devtalk.nvidia.com/default/topic/1031067/
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899201
---
Floris
