Received: by 2002:a25:1985:0:0:0:0:0 with SMTP id 127csp19247ybz; Thu, 16 Apr 2020 18:23:14 -0700 (PDT) X-Google-Smtp-Source: APiQypJIkM08GteSEl18GuzTFoypLBqbzO62RQWVs0UELGk8wjuO0wb4wh32hzQf5I1nMIwtwy22 X-Received: by 2002:a17:906:ad9a:: with SMTP id la26mr773320ejb.128.1587086593731; Thu, 16 Apr 2020 18:23:13 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1587086593; cv=none; d=google.com; s=arc-20160816; b=iBCgqouueo/nOqszKvxFfbkLmG2Q9GTowVREH4/njWvcILJV9x2GCDxEjmVWs075SR ZugvcrHvEKOKVc+fLFVz4Gl0UePoW2J8sYjaEPat+vKtfUwpvJCkK2Fab/CHmNdUxOmf oQlhHsXHiI4JlmbJhhU5x6raBJ3eMoko0Re3XLxkKIkMsgyQdzJkUtIuTAnJBFI3a9ro HM5if9IsbyLz4y1+WEWwoD6IUJselgaefwVQiBUtWRf2TqiIAkKAznRYUXHx4y9n6aL/ UeLisXi8FpQPcT3Ll8J/x4jyrIujTFMLATN60yBYa44uCGBF8M5Na7riK9u1GvTnJc3u zbrA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:to:references:message-id :content-transfer-encoding:cc:date:in-reply-to:from:subject :mime-version:dkim-signature; bh=pCwqpfgs7LGSQlluiA82lBftlzkWpGiJUBmelFG0C34=; b=DEZTSKAJ/MOaZf1f7pm7+qWiDP2TdbxE73RlJyq4W0V0cdrr8KmPKVXmv6359Bf8KZ +2KyDzd7Ggzqo+15nK9MDAMatxFoWEsRAZ+NsLfWnMi9SgKD530YCrrOF/09Wh2bJABt aMm59OnK5tTIgxy2uTD2mLeS4XXKSnuOW1MYm2WWuH60Iun8osBdJoSeanlSPEF7GXhC HBpAN0kv7QDC7soLWxEQlp+s7B3Z3OQsba6qmop/wXJN5KoBP3Dhb0iq3wK8SNG2teds XpvAcVbGlIasNFjkr77Y4tt+ZswZtSX++85i7s0NgUENYXB155DmPpd799D/IT0yPfpZ q8Ag== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@lca.pw header.s=google header.b=Aj9G5jYC; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id dh5si2998534edb.577.2020.04.16.18.22.46; Thu, 16 Apr 2020 18:23:13 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@lca.pw header.s=google header.b=Aj9G5jYC; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727857AbgDQBTO (ORCPT + 99 others); Thu, 16 Apr 2020 21:19:14 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53870 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-FAIL-OK-FAIL) by vger.kernel.org with ESMTP id S1725858AbgDQBTN (ORCPT ); Thu, 16 Apr 2020 21:19:13 -0400 Received: from mail-qt1-x844.google.com (mail-qt1-x844.google.com [IPv6:2607:f8b0:4864:20::844]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7CD1AC061A0C for ; Thu, 16 Apr 2020 18:19:13 -0700 (PDT) Received: by mail-qt1-x844.google.com with SMTP id l13so729458qtr.7 for ; Thu, 16 Apr 2020 18:19:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lca.pw; s=google; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=pCwqpfgs7LGSQlluiA82lBftlzkWpGiJUBmelFG0C34=; b=Aj9G5jYCoXCP4ueVnwSoIx17tBbEhdmn7F9xroe69R8jZb8w9GI7WUfC9U7KAlHAOb AI+ZHQbNofg08analrNy3EtbTdsr2oSg7/6sOxx40Ve8L1WuSQ5hO05hte0zITOLw/Mn GNrRD+EyWZjjjYDaqhyXueBe9qhJoYuILVb2Czzdkx6/s2gfSX5BNbhvXFlWQcan6Z8h LbZa4TKGNTpYNonJU+JnhoKNCsJXiNwWC9BcmHfTGGYZzqjkXw0b9mKakMiyroWUk3vR KGN6z7SLIxfIetuDas8v9I2Pxxx/xBw31dX8gkL0B9cvplgAC81/5iVeYJ21YCaBZC9i rLwg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=pCwqpfgs7LGSQlluiA82lBftlzkWpGiJUBmelFG0C34=; b=X/FZ7P8vhMieHn7cQa5Qd8IMZdln8+i1ef+Ck0nlchf+86OuTjGuCFQmrkDLE47pxQ f11PGO56KeVEvzaxDRvFFZmJPCsvMXUGVdPvyoiW9ym2Bs7fm4JVRE0iiLy0lRt3TqCa XOY/i6qKN7Z+wMLQ2FJjHT4tteaJjfQDSMFZCne5AIZkynkdH1URNbfRX401Nk1gpow3 hZViB3ZfZrHMlhI9X5gSWdj22bycebQiplZomN/dE3v4pS7uNBF8a/bkM4DjRlI3WLSw AoFqVJzEWuWGwnkuxEsZmJrxP7A7I3aaCO5pYMRp5/eetursBjMYP0gzQ0hFqvHmdNjP WQ4w== X-Gm-Message-State: AGi0PuYfRCOhvuZvM8UAfIS/4BSmNqPo61sEV+SGSn7rRYHJsdZQI2R6 0EMaLWfNXihkEAi5YL8TUI6aDg== X-Received: by 2002:ac8:7c96:: with SMTP id y22mr610880qtv.17.1587086352500; Thu, 16 Apr 2020 18:19:12 -0700 (PDT) Received: from [192.168.1.153] (pool-71-184-117-43.bstnma.fios.verizon.net. [71.184.117.43]) by smtp.gmail.com with ESMTPSA id a5sm15743797qkn.83.2020.04.16.18.19.11 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 16 Apr 2020 18:19:11 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\)) Subject: POWER9 crash due to STRICT_KERNEL_RWX (WAS: Re: Linux-next POWER9 NULL pointer NIP...) From: Qian Cai In-Reply-To: <161662E3-5D9C-4C15-919C-CFEFE4CC35CB@lca.pw> Date: Thu, 16 Apr 2020 21:19:10 -0400 Cc: Nicholas Piggin , linuxppc-dev , LKML , Steven Rostedt Content-Transfer-Encoding: quoted-printable Message-Id: <69F0448F-CA5B-497D-B8AF-2848175B9477@lca.pw> References: <15AC5B0E-A221-4B8C-9039-FA96B8EF7C88@lca.pw> <87eeszlb6u.fsf@mpe.ellerman.id.au> <0675B22E-8F32-432C-9378-FDE159DD1729@lca.pw> <20200407093054.3eb23e45@gandalf.local.home> <20200409101413.35d9c72d@gandalf.local.home> <06A2EA93-B730-4DB1-819F-D27E7032F0B3@lca.pw> <161662E3-5D9C-4C15-919C-CFEFE4CC35CB@lca.pw> To: Michael Ellerman , Russell Currey X-Mailer: Apple Mail (2.3608.80.23.2.2) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org OK, reverted the commit, c55d7b5e6426 (=E2=80=9Cpowerpc: Remove STRICT_KERNEL_RWX incompatibility = with RELOCATABLE=E2=80=9D) or set STRICT_KERNEL_RWX=3Dn fixed the crash below and also mentioned in = this thread, = https://lore.kernel.org/lkml/15AC5B0E-A221-4B8C-9039-FA96B8EF7C88@lca.pw/ [ 148.110969][T13115] LTP: starting chown04_16 [ 148.255048][T13380] kernel tried to execute exec-protected page = (c0000000016804ac) - exploit attempt? (uid: 0) [ 148.255099][T13380] BUG: Unable to handle kernel instruction fetch [ 148.255122][T13380] Faulting instruction address: 0xc0000000016804ac [ 148.255136][T13380] Oops: Kernel access of bad area, sig: 11 [#1] [ 148.255157][T13380] LE PAGE_SIZE=3D64K MMU=3DRadix SMP NR_CPUS=3D256 = DEBUG_PAGEALLOC NUMA PowerNV [ 148.255171][T13380] Modules linked in: loop kvm_hv kvm xfs sd_mod = bnx2x mdio ahci tg3 libahci libphy libata firmware_class dm_mirror = dm_region_hash dm_log dm_mod [ 148.255213][T13380] CPU: 45 PID: 13380 Comm: chown04_16 Tainted: G = W 5.6.0+ #7 [ 148.255236][T13380] NIP: c0000000016804ac LR: c00800000fa60408 CTR: = c0000000016804ac [ 148.255250][T13380] REGS: c0000010a6fafa00 TRAP: 0400 Tainted: G = W (5.6.0+) [ 148.255281][T13380] MSR: 9000000010009033 = CR: 84000248 XER: 20040000 [ 148.255310][T13380] CFAR: c00800000fa66534 IRQMASK: 0=20 [ 148.255310][T13380] GPR00: c000000000973268 c0000010a6fafc90 = c000000001648200 0000000000000000=20 [ 148.255310][T13380] GPR04: c000000d8a22dc00 c0000010a6fafd30 = 00000000b5e98331 ffffffff00012c9f=20 [ 148.255310][T13380] GPR08: c000000d8a22dc00 0000000000000000 = 0000000000000000 c00000000163c520=20 [ 148.255310][T13380] GPR12: c0000000016804ac c000001ffffdad80 = 0000000000000000 0000000000000000=20 [ 148.255310][T13380] GPR16: 0000000000000000 0000000000000000 = 0000000000000000 0000000000000000=20 [ 148.255310][T13380] GPR20: 0000000000000000 0000000000000000 = 0000000000000000 0000000000000000=20 [ 148.255310][T13380] GPR24: 00007fff8f5e2e48 0000000000000000 = c00800000fa6a488 c0000010a6fafd30=20 [ 148.255310][T13380] GPR28: 0000000000000000 000000007fffffff = c00800000fa60400 c000000efd0c6780=20 [ 148.255494][T13380] NIP [c0000000016804ac] = sysctl_net_busy_read+0x0/0x4 [ 148.255516][T13380] LR [c00800000fa60408] find_free_cb+0x8/0x30 = [loop] [ 148.255528][T13380] Call Trace: [ 148.255538][T13380] [c0000010a6fafc90] [c0000000009732c0] = idr_for_each+0xf0/0x170 (unreliable) [ 148.255572][T13380] [c0000010a6fafd10] [c00800000fa626c4] = loop_lookup.part.1+0x4c/0xb0 [loop] [ 148.255597][T13380] [c0000010a6fafd50] [c00800000fa634d8] = loop_control_ioctl+0x120/0x1d0 [loop] [ 148.255623][T13380] [c0000010a6fafdb0] [c0000000004ddc08] = ksys_ioctl+0xd8/0x130 [ 148.255636][T13380] [c0000010a6fafe00] [c0000000004ddc88] = sys_ioctl+0x28/0x40 [ 148.255669][T13380] [c0000010a6fafe20] [c00000000000b378] = system_call+0x5c/0x68 [ 148.255699][T13380] Instruction dump: [ 148.255718][T13380] XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX = XXXXXXXX XXXXXXXX XXXXXXXX=20 [ 148.255744][T13380] XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX = XXXXXXXX XXXXXXXX XXXXXXXX=20 [ 148.255772][T13380] ---[ end trace a5894a74208c22ec ]--- [ 148.576663][T13380]=20 [ 149.576765][T13380] Kernel panic - not syncing: Fatal exception