http://bugzilla.suse.com/show_bug.cgi?id=1006472 Bug ID: 1006472 Summary: UBSAN: Undefined behaviour in ../drivers/gpu/drm/drm_modes.c:325:49 Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Kernel Assignee: kernel-maintainers@forge.provo.novell.com Reporter: jslaby@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- reported by mliska: https://bugs.freedesktop.org/show_bug.cgi?id=98372 UBSAN: Undefined behaviour in ../drivers/gpu/drm/drm_modes.c:325:49 signed integer overflow: 2240 * 1000000 cannot be represented in type 'int' Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.9.1-0-gb3ef39f-prebuilt.qemu-project.org 04/01/2014 ffff88005cb3edb8 ffffffff83f982ea 0000000041b58ab3 ffffffff853754ab ffffffff83f981de ffff88005cb3ede0 ffff88005cb3ed80 0000000000000000 ffffffffc12855e0 ffff88005cb3eeb8 00000000000f4240 ffff88005cb30001 Call Trace: [<ffffffff83f982ea>] dump_stack+0x10c/0x192 [<ffffffff83f981de>] ? _atomic_dec_and_lock+0x12e/0x12e [<ffffffff8407262a>] ubsan_epilogue+0x12/0x8f [<ffffffff84074165>] handle_overflow+0x23d/0x297 [<ffffffff84073f28>] ? __ubsan_handle_negate_overflow+0x1bd/0x1bd [<ffffffff84d666ce>] ? mutex_unlock+0xe/0x10 [<ffffffffc11e34f8>] ? drm_mode_object_get_reg+0x1b8/0x240 [drm] [<ffffffffc11e3340>] ? drm_mode_object_unreference+0x1a0/0x1a0 [drm] [<ffffffff83832ff9>] ? kmem_cache_alloc_trace+0x149/0x4b0 [<ffffffff8407424b>] __ubsan_handle_mul_overflow+0x2a/0x3f [<ffffffffc11a22c0>] drm_cvt_mode+0xa50/0x1090 [drm] [<ffffffffc15ed8b3>] qxl_conn_get_modes+0x343/0xce0 [qxl] [<ffffffffc15ed570>] ? qxl_crtc_cursor_move+0x5d0/0x5d0 [qxl] [<ffffffff844e2116>] ? driver_register+0x1d6/0x410 [<ffffffffc110808d>] ? qxl_init+0x8d/0x1000 [qxl] [<ffffffff83002327>] ? do_one_initcall+0xc7/0x2d0 [<ffffffffc151a89a>] ? drm_kms_helper_poll_enable_locked+0x28a/0x450 [drm_kms_helper] [<ffffffffc151b791>] drm_helper_probe_single_connector_modes+0xa71/0x1560 [drm_kms_helper] [<ffffffffc155c6f3>] drm_fb_helper_initial_config+0x2e3/0x1700 [drm_kms_helper] [<ffffffff84d664d0>] ? __mutex_unlock_slowpath+0x240/0x430 [<ffffffffc155c410>] ? drm_fb_helper_set_par+0x160/0x160 [drm_kms_helper] [<ffffffffc1557f87>] ? drm_fb_helper_add_one_connector+0x237/0x4b0 [drm_kms_helper] [<ffffffffc155826f>] ? drm_fb_helper_single_add_all_connectors+0x6f/0x4c0 [drm_kms_helper] [<ffffffffc15fc523>] qxl_fbdev_init+0x273/0x320 [qxl] [<ffffffffc15fc2b0>] ? qxl_get_handle_for_primary_fb+0xf0/0xf0 [qxl] [<ffffffff84d666ce>] ? mutex_unlock+0xe/0x10 [<ffffffffc11dcbc2>] ? drm_connector_register+0x72/0x220 [drm] [<ffffffffc15f718a>] qxl_modeset_init+0x66a/0x970 [qxl] [<ffffffffc15ebcf0>] ? qxl_driver_unload+0x440/0x440 [qxl] [<ffffffffc15ebdfe>] qxl_driver_load+0x10e/0x1b0 [qxl] [<ffffffffc118033d>] drm_dev_register+0x12d/0x230 [drm] [<ffffffffc1189485>] drm_get_pci_dev+0x235/0x9d0 [drm] [<ffffffffc1189250>] ? drm_pci_agp_destroy+0x120/0x120 [drm] [<ffffffff833558ea>] ? trace_hardirqs_on_caller+0x3da/0x6c0 [<ffffffff83355bdd>] ? trace_hardirqs_on+0xd/0x10 [<ffffffffc15e8860>] ? qxl_pm_suspend+0x90/0x90 [qxl] [<ffffffffc15e88ba>] qxl_pci_probe+0x5a/0xb0 [qxl] [<ffffffff840e59cc>] local_pci_probe+0xfc/0x1f0 [<ffffffff840ea8e5>] pci_device_probe+0x215/0x3a0 [<ffffffff840ea6d0>] ? pci_device_remove+0x2f0/0x2f0 [<ffffffff844dce13>] ? driver_sysfs_add+0x133/0x310 [<ffffffff840ea6d0>] ? pci_device_remove+0x2f0/0x2f0 [<ffffffff844dea08>] driver_probe_device+0x288/0xfa0 [<ffffffff844df720>] ? driver_probe_device+0xfa0/0xfa0 [<ffffffff844df893>] __driver_attach+0x173/0x280 [<ffffffff844d757a>] bus_for_each_dev+0x15a/0x1f0 [<ffffffff844d7420>] ? subsys_dev_iter_init+0x110/0x110 [<ffffffff844dd347>] driver_attach+0x47/0x70 [<ffffffff844dbeb7>] bus_add_driver+0x547/0x890 [<ffffffff844e2116>] driver_register+0x1d6/0x410 [<ffffffff83366092>] ? __raw_spin_lock_init+0x32/0x120 [<ffffffff840e4576>] __pci_register_driver+0x1a6/0x250 [<ffffffff840e43d0>] ? pci_pm_runtime_idle+0x1b0/0x1b0 [<ffffffff830021de>] ? initcall_blacklisted+0x14e/0x1d0 [<ffffffff83002090>] ? try_to_run_init_process+0x50/0x50 [<ffffffffc1108000>] ? 0xffffffffc1108000 [<ffffffffc118a07e>] drm_pci_init+0x45e/0x5d0 [drm] [<ffffffff84d6fb39>] ? retint_kernel+0x2d/0x2d [<ffffffffc1189c20>] ? drm_get_pci_dev+0x9d0/0x9d0 [drm] [<ffffffff8300501a>] ? trace_hardirqs_on_thunk+0x1a/0x1c [<ffffffffc1108000>] ? 0xffffffffc1108000 [<ffffffffc110808d>] qxl_init+0x8d/0x1000 [qxl] [<ffffffff83002327>] do_one_initcall+0xc7/0x2d0 [<ffffffff83002260>] ? initcall_blacklisted+0x1d0/0x1d0 [<ffffffff83fdce8b>] ? memset_erms+0xb/0x10 [<ffffffff8383ba05>] ? kasan_unpoison_shadow+0x35/0x50 [<ffffffff8383ba9f>] ? __asan_register_globals+0x7f/0xa0 [<ffffffff836a54f3>] do_init_module+0x272/0x64d [<ffffffff836a5281>] ? kzalloc.constprop.34+0x10/0x10 [<ffffffff83457848>] load_module+0x3528/0x5ae0 [<ffffffff83449820>] ? m_show+0x540/0x540 [<ffffffff83454320>] ? layout_and_allocate+0x48e0/0x48e0 [<ffffffff838da9e0>] ? read_code+0x50/0x50 [<ffffffff8393be3c>] ? __fget_light+0x18c/0x270 [<ffffffff838db436>] ? kernel_read_file_from_fd+0x76/0x90 [<ffffffff8345a18b>] SYSC_finit_module+0x18b/0x1b0 [<ffffffff8345a000>] ? SYSC_init_module+0x200/0x200 [<ffffffff834dc1ce>] ? __audit_syscall_entry+0x34e/0x5d0 [<ffffffff83009e76>] ? do_syscall_64+0x56/0x520 [<ffffffff8345a1c0>] ? SyS_init_module+0x10/0x10 [<ffffffff8345a1ce>] SyS_finit_module+0xe/0x10 [<ffffffff83009fce>] do_syscall_64+0x1ae/0x520 [<ffffffff84d6f1cd>] entry_SYSCALL64_slow_path+0x25/0x25 -- You are receiving this mail because: You are on the CC list for the bug.