From owner-freebsd-current@freebsd.org Tue Dec 15 19:20:22 2015 Return-Path: Delivered-To: freebsd-current@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 74D7CA489B1 for ; Tue, 15 Dec 2015 19:20:22 +0000 (UTC) (envelope-from shawn.webb@hardenedbsd.org) Received: from mail-qg0-x236.google.com (mail-qg0-x236.google.com [IPv6:2607:f8b0:400d:c04::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 2C3DC17A1 for ; Tue, 15 Dec 2015 19:20:22 +0000 (UTC) (envelope-from shawn.webb@hardenedbsd.org) Received: by mail-qg0-x236.google.com with SMTP id 103so15733347qgi.3 for ; Tue, 15 Dec 2015 11:20:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hardenedbsd-org.20150623.gappssmtp.com; s=20150623; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=Mtow1EJsGLkDqR8M8l08eBOiStmzIcjDPPzATGbqOz8=; b=GhDBy50qn23Ig11JJISK6SnNpLlxonBp257Oe8skjqaCrrcdcOxoakjhlAED2d6jMS brhBQYUrkTtr8hX3qG7EGzmpExuYURRdq8R0gjBB2gG9Feg6FFnkExT1g4SxdvSFzsG+ 7rh4MjvhKLneCmTLmBILvx3hpWHfaM/q90PbrFWNT3m1OgUiTv15XL0HETJlG7TN+TMf Slmmvrnwo4hQ+xKHCyFIZgnTfdOVuZTFTn84Qx1VQSy27du5hwtcXbux6n+b5jNr21xX q3UB7njszbYXqwra4RV688ZG72gIsV8l3yvEL3flWdguU3xy6daVmVifdQGikL3GbX0g INpg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-type:content-disposition:in-reply-to :user-agent; bh=Mtow1EJsGLkDqR8M8l08eBOiStmzIcjDPPzATGbqOz8=; b=cb3DjNEs1Ps11XIfuAKDIOPg1eZDMYEnE5zMIoMM0rp6sRXXGlUiW67M7vJUxQnYam JT1OMQJn0I8WfIlsIeUErvQg6Up1QDCm96DuFsJ1UzBQWEJKLca/KLVTV1N9UKsepss5 CUCs6pGb92LOom0VTAf8osHbH2OEf0tJvACJMdlkFuxHekRHcPtWFIJf3NPlizRRkdln 7L9fm+mXmGpldbMZAud77O3/U2w3nglYG8C0BGV/M2XQ0eRFaBTwzCJpXDYgMDyOjNDu UeikroF60gQEsoNTP6Hg9C0xiYfVcYyqNJSiMsQ+OzvSXG+tCCNBN7vV+UezOkpPzJYC 3Z2g== X-Gm-Message-State: ALoCoQn/3ZBM3sInTe39U/m2p9wPsb567pvcUEkWZYFdQbAR3Gi+ZJ/cO0COwSyIw30kF0bk6pAGYlT2gQpLJ8jLaUyRrDqO1w== X-Received: by 10.140.95.111 with SMTP id h102mr9812339qge.2.1450207221212; Tue, 15 Dec 2015 11:20:21 -0800 (PST) Received: from mutt-hardenedbsd ([63.88.83.104]) by smtp.gmail.com with ESMTPSA id c2sm1070323qkb.41.2015.12.15.11.20.19 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 15 Dec 2015 11:20:19 -0800 (PST) Date: Tue, 15 Dec 2015 14:20:16 -0500 From: Shawn Webb To: Fabian Keil Cc: FreeBSD Current , Oliver Pinter Subject: Re: fork_findpid() - Fatal trap 12: page fault while in kernel mode Message-ID: <20151215192016.GC73098@mutt-hardenedbsd> References: <20151215174238.2d7cc3bb@fabiankeil.de> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="UPT3ojh+0CqEDtpF" Content-Disposition: inline In-Reply-To: <20151215174238.2d7cc3bb@fabiankeil.de> X-Operating-System: FreeBSD mutt-hardenedbsd 11.0-CURRENT-HBSD FreeBSD 11.0-CURRENT-HBSD X-PGP-Key: http://pgp.mit.edu/pks/lookup?op=vindex&search=0x6A84658F52456EEE User-Agent: Mutt/1.5.24 (2015-08-30) X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Dec 2015 19:20:22 -0000 --UPT3ojh+0CqEDtpF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Dec 15, 2015 at 05:42:38PM +0100, Fabian Keil wrote: > I've seen the following panic a couple of times in the last three > months, usually while poudriere was running and with sh being the > current process. >=20 > This one is from a system based on r290926 running with > kern.randompid=3D9001 and forking frequently (>1000 forks/second) > due to poudriere and afl-fuzz: >=20 > Fatal trap 12: page fault while in kernel mode > cpuid =3D 1; apic id =3D 04 > fault virtual address =3D 0x618b00a8 > fault code =3D supervisor read data, page not present > instruction pointer =3D 0x20:0xffffffff80909158 > stack pointer =3D 0x28:0xfffffe011e03b940 > frame pointer =3D 0x28:0xfffffe011e03b960 > code segment =3D base 0x0, limit 0xfffff, type 0x1b > =3D DPL 0, pres 1, long 1, def32 0, gran 1 > processor eflags =3D interrupt enabled, resume, IOPL =3D 0 > current process =3D 71325 (sh) > trap number =3D 12 > panic: page fault > cpuid =3D 1 > KDB: stack backtrace: > [...] > Uptime: 13d20h43m20s > [...] Hey Fabien, I'm glad you've seen this, too. We've observed this in HardenedBSD, especially when running Poudriere and Jenkins. I think Oliver Pinter might have a potential patch to fix this. I've CC'd him on this thread. Thanks, --=20 Shawn Webb HardenedBSD GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE --UPT3ojh+0CqEDtpF Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJWcGfuAAoJEGqEZY9SRW7uiK0QAJg8mym9cN4a+a4S5mZI///V 72UTg3v4gdJaRsSWPX2LjAu6rMgQ0KzL0FPlPdYTLhNzf0htsA59bFMf2mQ8Pu+h S/oi6EHN3dTZRQopTlus6dLkbTl1irQlgpOuWvVvOClSQbVEp/EOTJjnYvqnqjsI Q7wQnvmYqaOvthCg+YM6VzPndc01o8b8de0YLby3o+Spq0q1nhGbcOvoPNCbBqmp T634KDKRv3a4y1idrsDwS1CY4OR4ifnypuqZL5PBqdWpJdzUNwgslcJvOxG0/fPD JWnTIQMT0mGEZRKSM9K6iMj6Rq4U8Ylya4K1TpN1gVlCZihaO8OwMJG0brw4pYsK KMHQBMQMIXA2RvQBRHRRpfRjoxbfRNM0GA/L7v0p454f+8qgRGHcLFzSTRk3OD7L KxeJbGJ51Cf1VwUEiX/VZ4a1YkhPm6eaxQIeIeG+shFV5/zuCg09mwF7cT5gDtPG v+fNz/ConHToL7O2oWoZqDdAFOUHT9uZsop8UrejLeimdH29U/nz4HjSBZ2EPtCS +BHVfvB4itnTBQ0JQSVeTP1znj5r0zweR+vpTB5sSO64wk5azcyjhSu4EvaR4aRn BGnMs2J4Qzr87n1Dnj7F4658RABH4jXMt0Aim8I/2SXazZJZUUidn4kIJDeHEy0h Thf/P8XabBYNuPxpJUDV =o5YC -----END PGP SIGNATURE----- --UPT3ojh+0CqEDtpF--