From: JerryJun <jerryjun123@163.com>
Cc: xenomai <xenomai@lists.linux.dev>
Subject: NX-protected page
Date: Mon, 22 Jan 2024 11:10:54 +0800 (GMT+08:00) [thread overview]
Message-ID: <3ce13f2b.183be.18d2f264758.Coremail.jerryjun123@163.com> (raw)
[-- Attachment #1.1: Type: text/plain, Size: 6131 bytes --]
hi, xenomai:
we use a small xenomai application reproduct NX-protected page question , it will appear within 12 hours. please give me a hint;
the application is implemented to create multiple RT task which set affinity of the 2 cpu, prio 90 and manual bootstrap , perform FFT only occuiped CPU with rt_sleep, which be killed a few seconds later.
the kernel oops appear when kill the application.
kernel version: linux: 5.10.199 xenomai:3.2.4
hardware: Supermicro Super Server/C422-SF
(the litte project and kernel-config by attached this email)
backtrace as follow , producted it by decode_stacktrace tool :
[41358.701739] kernel tried to execute NX-protected page - exploit attempt? (uid: 0)
[41358.701740] BUG: unable to handle page fault for address: ffff88810cec6000
[41358.701740] #PF: supervisor instruction fetch in kernel mode
[41358.701740] #PF: error_code(0x0011) - permissions violation
[41358.701741] PGD 2801067 P4D 2801067 PUD 100f6a063 PMD 10dd59063 PTE 800000010cec6063
[41358.701742] Oops: 0011 [#1] PREEMPT SMP NOPTI IRQ_PIPELINE
[41358.701742] CPU: 0 PID: 13323 Comm: oop-test Kdump: loaded Not tainted 5.10.199-dovetail-xenomai-3.2.4-20231214 #1
[41358.701743] Hardware name: Supermicro Super Server/C422-SF, BIOS E906.1 04/27/2021
[41358.701743] IRQ stage: Linux
[41358.701743] RIP: 0010:0xffff88810cec6000
[41358.701744] RSP: 0018:ffffc90000003eb8 EFLAGS: 00010202
[41358.701745] RAX: 0000000000000023 RBX: ffffc90007bbfe20 RCX: 00000000410f42d9
[41358.701745] RDX: ffffc90007bbfe28 RSI: ffffffff81e956a5 RDI: ffffc90007bbfe20
[41358.701745] RBP: 0000000000000022 R08: ffffc90000003f64 R09: 0000000000000038
[41358.701745] R10: 0000259d90f3f400 R11: 00000000000020fd R12: 0000000000000020
[41358.701746] R13: 0000000000000038 R14: ffffffff810cb2e0 R15: 0000000000000000
[41358.701746] FS: 00007f30b1ced780(0000) GS:ffff888860000000(0000) knlGS:0000000000000000
[41358.701746] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[41358.701747] CR2: ffff88810cec6000 CR3: 0000000102f64002 CR4: 00000000001706f0
[41358.701747] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[41358.701747] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[41358.701747] Call Trace:
[41358.701748] <IRQ>
[41358.701748] ? __die_body.cold (arch/x86/kernel/dumpstack.c:482 arch/x86/kernel/dumpstack.c:469 arch/x86/kernel/dumpstack.c:424)
[41358.701748] ? no_context (arch/x86/mm/fault.c:761)
[41358.701748] ? exc_page_fault (arch/x86/mm/fault.c:1512 arch/x86/mm/fault.c:1570)
[41358.701749] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:626)
[41358.701749] ? handle_oob_irq (kernel/irq/pipeline.c:204)
[41358.701749] ? irq_work_single (./arch/x86/include/asm/atomic.h:196 ./include/asm-generic/atomic-instrumented.h:655 kernel/irq_work.c:160)
[41358.701749] ? irq_work_run_list (kernel/irq_work.c:174 (discriminator 6))
[41358.701750] ? irq_work_run (kernel/irq_work.c:185)
[41358.701750] ? inband_work_interrupt (kernel/irq/pipeline.c:1680)
[41358.701750] ? handle_synthetic_irq (./arch/x86/include/asm/atomic.h:29 ./include/linux/jump_label.h:254 ./include/linux/jump_label.h:264 ./include/trace/events/irq.h:83 kernel/irq/pipeline.c:234)
[41358.701750] ? arch_do_IRQ_pipelined (arch/x86/kernel/irq_pipeline.c:187)
[41358.701750] ? handle_oob_irq (kernel/irq/pipeline.c:204)
[41358.701751] ? sync_current_irq_stage (./arch/x86/include/asm/irqflags.h:54 kernel/irq/pipeline.c:1360)
[41358.701751] ? inband_irq_enable (./arch/x86/include/asm/irqflags.h:46 ./arch/x86/include/asm/irqflags.h:80 kernel/irq/pipeline.c:309 kernel/irq/pipeline.c:338)
[41358.701751] ? __do_softirq (./arch/x86/include/asm/bitops.h:297 kernel/softirq.c:286)
[41358.701751] ? handle_oob_irq (kernel/irq/pipeline.c:204)
[41358.701752] ? asm_call_irq_on_stack (arch/x86/entry/entry_64.S:811)
[41358.701752] </IRQ>
[41358.701752] ? do_softirq_own_stack (./arch/x86/include/asm/irq_stack.h:34 ./arch/x86/include/asm/irq_stack.h:84 arch/x86/kernel/irq_64.c:77)
[41358.701752] ? irq_exit_rcu (kernel/softirq.c:393 kernel/softirq.c:423 kernel/softirq.c:435)
[41358.701752] ? arch_do_IRQ_pipelined (arch/x86/kernel/irq_pipeline.c:168 arch/x86/kernel/irq_pipeline.c:188)
[41358.701753] ? sync_current_irq_stage (./arch/x86/include/asm/irqflags.h:54 kernel/irq/pipeline.c:1360)
[41358.701753] ? inband_irq_restore (./arch/x86/include/asm/irqflags.h:46 ./arch/x86/include/asm/irqflags.h:80 kernel/irq/pipeline.c:309 kernel/irq/pipeline.c:400)
[41358.701753] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:161 kernel/locking/spinlock.c:191)
[41358.701753] ? __set_cpus_allowed_ptr (kernel/sched/core.c:1961)
[41358.701754] ? sched_setaffinity (kernel/sched/core.c:6047)
[41358.701754] ? __x64_sys_sched_setaffinity (kernel/sched/core.c:6098 kernel/sched/core.c:6087 kernel/sched/core.c:6087)
[41358.701754] ? do_syscall_64 (arch/x86/entry/common.c:55)
[41358.701754] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:132)
[41358.701755] Modules linked in: fuse md4 sha512_ssse3 sha512_generic cmac nls_utf8 cifs libarc4 dns_resolver fscache libdes intel_rapl_msr intel_rapl_common skx_edac x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel kvm irqbypass crct10dif_pclmul crc32_pclmul ghash_clmulni_intel aesni_intel crypto_simd cryptd glue_helper rapl intel_cstate snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio ast drm_vram_helper drm_ttm_helper ttm snd_hda_intel snd_intel_dspcfg snd_hda_codec drm_kms_helper snd_hda_core snd_pcsp drm snd_hwdep snd_pcm fb_sys_fops intel_uncore syscopyarea sysfillrect snd_timer ipmi_si snd sysimgblt soundcore mei_me iTCO_wdt joydev iTCO_vendor_support sg ipmi_devintf ioatdma mei ipmi_msghandler evdev button parport_pc ppdev lp parport ip_tables x_tables autofs4 ext4 crc32c_generic crc16 mbcache jbd2 hid_generic usbhid hid sd_mod t10_pi crc32c_intel i40e ahci xhci_pci libahci xhci_hcd libata atlantic igb i2c_i801 i2c_algo_bit i2c_smbus macsec dca usbcore scsi_mod
[41358.701771] usb_common wmi
[41358.701771] CR2: ffff88810cec6000
[-- Attachment #1.2: Type: text/html, Size: 104986 bytes --]
[-- Attachment #2: oop-test.tar.gz --]
[-- Type: application/x-gzip, Size: 59082 bytes --]
next reply other threads:[~2024-01-22 3:15 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-01-22 3:10 JerryJun [this message]
2024-01-25 9:50 ` NX-protected page Jan Kiszka
2024-01-31 7:25 ` JerryJun
2024-02-01 7:09 ` Jan Kiszka
2024-02-02 6:49 ` Jan Kiszka
2024-02-02 7:49 ` JerryJun
2024-02-02 8:37 ` Jan Kiszka
2024-02-02 10:03 ` JerryJun
2024-02-26 14:34 ` JerryJun
2024-04-10 7:46 ` Kowalsky, Clara
2024-04-15 23:37 ` JerryJun
2024-05-20 15:01 ` Florian Bezdeka
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3ce13f2b.183be.18d2f264758.Coremail.jerryjun123@163.com \
--to=jerryjun123@163.com \
--cc=xenomai@lists.linux.dev \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.