current.stp causes NX protection fault on 2.6.14-1.1656_FC4smp i686

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

current.stp causes NX protection fault on 2.6.14-1.1656_FC4smp i686

Stone, Joshua I
I'm seeing an NX protection fault when running the current.stp test.
This is on i686 2.6.14-1.1656_FC4smp.  Other platforms/kernels I've
tried work fine.

Runs reliably on:
i686    2.6.14-1.1656_FC4
i686    2.6.9-27.ELsmp
i686    2.6.9-27.EL
x86_64  2.6.14-1.1656_FC4smp
x86_64  2.6.14-1.1656_FC4
x86_64  2.6.9-27.ELsmp
x86_64  2.6.9-27.EL

Crashes reliably on:
i686    2.6.14-1.1656_FC4smp

This may be related to Bug 2071, though the crash symptom is different.
http://sourceware.org/bugzilla/show_bug.cgi?id=2071

I've included the dump below.

Josh


kernel tried to execute NX-protected page - exploit attempt? (uid: 0)
Unable to handle kernel paging request at virtual address f4022169
 printing eip:
c011b145
*pde = ffffffff
Oops: 0011 [#1]
SMP
Modules linked in: stap_3327(U) fglrx(U) ipv6 parport_pc lp parport
autofs4 smbfs rfcomm l2cap bluetooth sunrpc ipt_REJECT ipt_state
ip_conntrack nfnetlink iptable_filter ip_tables yealink dm_mod video
button battery joydev ac uhci_hcd ehci_hcd hw_random i2c_i801 i2c_core
snd_hda_intel snd_hda_codec snd_seq_dummy snd_seq_oss snd_seq_midi_event
snd_seq snd_seq_device snd_pcm_oss snd_mixer_oss snd_pcm snd_timer snd
soundcore snd_page_alloc tg3 ext3 jbd raid1 ahci libata sd_mod scsi_mod
CPU:    0
EIP:    0060:[<c011b145>]    Tainted: P      VLI
EFLAGS: 00010012   (2.6.14-1.1656_FC4smp)
EIP is at nr_uninterruptible+0x0/0x6c
eax: 00000000   ebx: 00000000   ecx: 00000002   edx: 00000020
esi: 00000000   edi: c03eaf80   ebp: 00000000   esp: c0448fa8
ds: 007b   es: 007b   ss: 0068
Process swapper (pid: 0, threadinfo=c0448000 task=c0376c60)
Stack: badc0ded c0117a0c 00000001 c012949c c03eaf80 00000000 c010823a
c0379f20
       c0117a0c 00000000 00000000 c03e0d80 00000000 c03e0d9c c01435a4
c03eaf80
       c03eaf80 c0379f20 c03eaf68 c03eaf80 00000000 f7f2e000 c0105ade
Call Trace:
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c012949c>] do_timer+0x62/0xea
 [<c010823a>] timer_interrupt+0x2d/0x75
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c01435a4>] __do_IRQ+0x8b/0xe7
 [<c0105ade>] do_IRQ+0x4e/0x86
 =======================
 [<c011007b>] speedstep_activate+0x7b/0x87
 [<c01043da>] common_interrupt+0x1a/0x20
 [<c0101b81>] mwait_idle+0x25/0x43
 [<c0214867>] acpi_processor_idle+0xf0/0x291
 [<c0101a14>] cpu_idle+0x4e/0x63
 [<c03eb885>] start_kernel+0x175/0x1cc
 [<c03eb309>] unknown_bootoption+0x0/0x1b6
Code: 8b 04 95 20 50 42 c0 03 5c 06 10 8d 4a 01 ba 20 00 00 00 b8 00 92
3e c0 e8 e9 18 0c 00 89 c2 83 f8 20 7f d1 83 f8 1f 76 d7 eb ca <cc> 89
e5 56 53 cc 80 a7 46 c0 ba 20 00 00 00 85 c0 74 0e 0f bc
 <0>Kernel panic - not syncing: Fatal exception in interrupt
 [<c01201b8>] panic+0x45/0x1c4
 [<c0104c6f>] die+0x17b/0x185
 [<c031c490>] do_page_fault+0x0/0x6f0
 [<c031c699>] do_page_fault+0x209/0x6f0
 [<c031c490>] do_page_fault+0x0/0x6f0
 [<c0104533>] error_code+0x4f/0x54
 [<c031007b>] km_state_expired+0x12/0x44
 [<c011b145>] nr_uninterruptible+0x0/0x6c
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c012949c>] do_timer+0x62/0xea
 [<c010823a>] timer_interrupt+0x2d/0x75
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c01435a4>] __do_IRQ+0x8b/0xe7
 [<c0105ade>] do_IRQ+0x4e/0x86
 =======================
 [<c011007b>] speedstep_activate+0x7b/0x87
 [<c01043da>] common_interrupt+0x1a/0x20
 [<c0101b81>] mwait_idle+0x25/0x43
 [<c0214867>] acpi_processor_idle+0xf0/0x291
 [<c0101a14>] cpu_idle+0x4e/0x63
 [<c03eb885>] start_kernel+0x175/0x1cc
 [<c03eb309>] unknown_bootoption+0x0/0x1b6
 Badness in panic at kernel/panic.c:139 (Tainted: P     )
 [<c0120335>] panic+0x1c2/0x1c4
 [<c0104c6f>] die+0x17b/0x185
 [<c031c490>] do_page_fault+0x0/0x6f0
 [<c031c699>] do_page_fault+0x209/0x6f0
 [<c031c490>] do_page_fault+0x0/0x6f0
 [<c0104533>] error_code+0x4f/0x54
 [<c031007b>] km_state_expired+0x12/0x44
 [<c011b145>] nr_uninterruptible+0x0/0x6c
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c012949c>] do_timer+0x62/0xea
 [<c010823a>] timer_interrupt+0x2d/0x75
 [<c0117a0c>] kretprobe_trampoline+0x0/0x4
 [<c01435a4>] __do_IRQ+0x8b/0xe7
 [<c0105ade>] do_IRQ+0x4e/0x86
 =======================
 [<c011007b>] speedstep_activate+0x7b/0x87
 [<c01043da>] common_interrupt+0x1a/0x20
 [<c0101b81>] mwait_idle+0x25/0x43
 [<c0214867>] acpi_processor_idle+0xf0/0x291
 [<c0101a14>] cpu_idle+0x4e/0x63
 [<c03eb885>] start_kernel+0x175/0x1cc
 [<c03eb309>] unknown_bootoption+0x0/0x1b6