====================================== | [ 386.694219] #PF: supervisor read access in kernel mode | [ 386.694475] #PF: error_code(0x0000) - not-present page | [ 386.694700] PGD 0 P4D 0 | [ 386.694764] Oops: 0000 [#1] PREEMPT SMP NOPTI [ 386.695143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014 [ 386.695352] RIP: 0010:skb_queue_purge_reason (./include/linux/skbuff.h:1846 net/core/skbuff.c:3821) [ 386.695547] Code: f3 0f 1e fa 0f 1f 44 00 00 55 48 89 e5 41 56 41 55 41 54 53 48 83 e4 f0 48 83 ec 20 65 48 8b 04 25 28 00 00 00 48 89 44 24 18 <48> 8b 07 48 39 c7 0f 84 b2 00 00 00 4c 8d 77 14 48 89 e3 49 89 fd All code ======== 0: f3 0f 1e fa endbr64 4: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) 9: 55 push %rbp a: 48 89 e5 mov %rsp,%rbp d: 41 56 push %r14 f: 41 55 push %r13 11: 41 54 push %r12 13: 53 push %rbx 14: 48 83 e4 f0 and $0xfffffffffffffff0,%rsp 18: 48 83 ec 20 sub $0x20,%rsp 1c: 65 48 8b 04 25 28 00 mov %gs:0x28,%rax 23: 00 00 25: 48 89 44 24 18 mov %rax,0x18(%rsp) 2a:* 48 8b 07 mov (%rdi),%rax <-- trapping instruction 2d: 48 39 c7 cmp %rax,%rdi 30: 0f 84 b2 00 00 00 je 0xe8 36: 4c 8d 77 14 lea 0x14(%rdi),%r14 3a: 48 89 e3 mov %rsp,%rbx 3d: 49 89 fd mov %rdi,%r13 Code starting with the faulting instruction =========================================== 0: 48 8b 07 mov (%rdi),%rax 3: 48 39 c7 cmp %rax,%rdi 6: 0f 84 b2 00 00 00 je 0xbe c: 4c 8d 77 14 lea 0x14(%rdi),%r14 10: 48 89 e3 mov %rsp,%rbx 13: 49 89 fd mov %rdi,%r13 [ 386.696157] RSP: 0018:ffffb160c15ebc70 EFLAGS: 00010282 [ 386.696321] RAX: 3376a29ef063af00 RBX: ffff8ce5424c0920 RCX: 0000000000000001 [ 386.696627] RDX: 0000000000000001 RSI: 0000000000000055 RDI: 0000000000000190 [ 386.696851] RBP: ffffb160c15ebcb0 R08: ffffffffa47574e0 R09: ffffffffa47574e0 [ 386.697466] R10: 0000000000000002 R11: 0000000000000002 R12: ffff8ce5424c0000 [ 386.697748] R13: 0000000000000001 R14: 0000000000000080 R15: ffff8ce5424f09e0 [ 386.698044] FS: 00007f4d2ca0a740(0000) GS:ffff8ce57ec80000(0000) knlGS:0000000000000000 [ 386.698208] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 386.698315] CR2: 0000000000000190 CR3: 0000000002626005 CR4: 0000000000770ef0 [ 386.698565] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 386.698779] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 386.698938] PKRU: 55555554 [ 386.699062] Call Trace: [ 386.699262] [ 386.699375] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434) [ 386.699487] ? page_fault_oops (arch/x86/mm/fault.c:713) [ 386.699616] ? finish_wait (./include/linux/list.h:218 ./include/linux/list.h:287 kernel/sched/wait.c:376) [ 386.699722] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:37 ./arch/x86/include/asm/irqflags.h:72 arch/x86/mm/fault.c:1513 arch/x86/mm/fault.c:1563) [ 386.699793] ? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623) [ 386.699924] ? skb_queue_purge_reason (./include/linux/skbuff.h:1846 net/core/skbuff.c:3821) [ 386.700163] nsim_destroy (drivers/net/netdevsim/netdev.c:653 drivers/net/netdevsim/netdev.c:784) netdevsim [ 386.700266] __nsim_dev_port_del (drivers/net/netdevsim/dev.c:426 drivers/net/netdevsim/dev.c:1426) netdevsim [ 386.700425] nsim_dev_reload_destroy (drivers/net/netdevsim/dev.c:591 drivers/net/netdevsim/dev.c:1655) netdevsim [ 386.700617] nsim_drv_remove (drivers/net/netdevsim/dev.c:1675) netdevsim [ 386.700733] device_release_driver_internal (drivers/base/dd.c:1272 drivers/base/dd.c:1293) [ 386.700839] bus_remove_device (./include/linux/kobject.h:193 (discriminator 3) drivers/base/base.h:73 (discriminator 3) drivers/base/bus.c:581 (discriminator 3)) [ 386.700922] device_del (drivers/base/core.c:3910) [ 386.701049] device_unregister (drivers/base/core.c:3827 drivers/base/core.c:3951) [ 386.701701] del_device_store (drivers/net/netdevsim/bus.c:230) netdevsim [ 386.702579] kernfs_fop_write_iter (fs/kernfs/file.c:334) [ 386.702769] vfs_write (./include/linux/fs.h:2110 fs/read_write.c:497 fs/read_write.c:590) [ 386.702858] ksys_write (fs/read_write.c:643) [ 386.702949] do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83) [ 386.703051] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 386.703155] RIP: 0033:0x7f4d2cb4b957 [ 386.703233] Code: 0b 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24 All code ======== 0: 0b 00 or (%rax),%eax 2: f7 d8 neg %eax 4: 64 89 02 mov %eax,%fs:(%rdx) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b7 jmp 0xffffffffffffffc7 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 01 00 00 00 mov $0x1,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 48 89 54 24 18 mov %rdx,0x18(%rsp) 3c: 48 rex.W 3d: 89 .byte 0x89 3e: 74 24 je 0x64 Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 48 89 54 24 18 mov %rdx,0x18(%rsp) 12: 48 rex.W 13: 89 .byte 0x89 14: 74 24 je 0x3a [ 386.703536] RSP: 002b:00007ffc7d0820f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 386.703662] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f4d2cb4b957 [ 386.703788] RDX: 0000000000000003 RSI: 000055dbb64dce20 RDI: 0000000000000001 [ 386.703911] RBP: 000055dbb64dce20 R08: 0000000000000000 R09: 00007f4d2cbbe4e0 [ 386.704041] R10: 00007f4d2cbbe3e0 R11: 0000000000000246 R12: 0000000000000003 Finger prints: skb_queue_purge_reason:nsim_destroy:__nsim_dev_port_del:nsim_dev_reload_destroy