Bug#1109171: linux-image-6.12.35+deb13-amd64: Unable to handle page fault/supervisior read access in kernel mode (not-present-page)

To: Johannes Krottmayer <krotti83@proton.me>, 1109171@bugs.debian.org
Subject: Bug#1109171: linux-image-6.12.35+deb13-amd64: Unable to handle page fault/supervisior read access in kernel mode (not-present-page)
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 29 Jul 2025 21:29:21 +0200
Message-id: <[🔎] aIkhEUfFp5-zZvpz@eldamar.lan>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 1109171@bugs.debian.org
In-reply-to: <[🔎] 175238614203.5209.324739887199686649.reportbug@workstation>
References: <[🔎] 175238614203.5209.324739887199686649.reportbug@workstation> <[🔎] 175238614203.5209.324739887199686649.reportbug@workstation>

Control: tags -1 + moreinfo

Hi Johannes,

On Sun, Jul 13, 2025 at 05:56:09AM +0000, Johannes Krottmayer wrote:
> Package: src:linux
> Version: 6.12.35-1
> Severity: normal
> X-Debbugs-Cc: debian-amd64@lists.debian.org
> User: debian-amd64@lists.debian.org
> Usertags: amd64
> 
> Dear Maintainer,
> 
> *** Reporter, please consider answering these questions, where appropriate ***
> 
>    * What exactly did you do (or not do) that was effective (or
>      ineffective)?
> 
> The issue exists randomly. In the kernel bug/oops message (which I have attached) with firefox-esr. But I noticed
> the issue also with other applications. The system I still partially usable, but some of the applications no 
> longer working. As example send a SIGKILL to the crashed process doesn't work.
> 
>    * What was the outcome of this action?
> 
> The issue results in a kernel bug/oops message with the folowing output:
> 
> ++
> Jul 13 06:48:13 workstation systemd[1791]: app-firefox\x2desr@1fbc091ef5b44647943c40c979114f9f.service: Consumed 31.377s CPU time, 854.2M memory peak.
> Jul 13 06:48:18 workstation systemd[1791]: Started app-firefox\x2de
> sr@c6aee4a2abe849eca2e410fcc0263765.service - Firefox ESR - Web Browser.
> Jul 13 06:48:19 workstation kernel: BUG: unable to handle page fault for address: 00007f089d349008
> Jul 13 06:48:19 workstation kernel: #PF: supervisor read access in kernel mode
> Jul 13 06:48:19 workstation kernel: #PF: error_code(0x0000) - not-present page
> Jul 13 06:48:19 workstation kernel: PGD 800000019c36c067 P4D 800000019c36c067 PUD 1cda1c067 PMD 2252f7067 PTE 0
> Jul 13 06:48:19 workstation kernel: Oops: Oops: 0000 [#1] PREEMPT SMP PTI
> Jul 13 06:48:19 workstation kernel: CPU: 1 UID: 1000 PID: 8488 Comm: firefox-esr Not tainted 6.12.35+deb13-amd64 #1  Debian 6.12.35-1
> Jul 13 06:48:19 workstation kernel: Hardware name: System manufacturer System Product Name/P5QL/EPU, BIOS 0408    07/20/2009
> Jul 13 06:48:19 workstation kernel: RIP: 0010:mas_leaf_max_gap+0x62/0x240
> Jul 13 06:48:19 workstation kernel: Code: 84 00 00 00 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 39 d1 48 0f 42 ca 48 83 c
> 0 08 31 d2 48 39 c6 74 13 <48> 83 38 00 75 e8 48 83 c0 08 48 83 c2 01 48 39 c6 75 ed 48 39 d1
> Jul 13 06:48:19 workstation kernel: RSP: 0018:ffffb828c9ec3720 EFLAGS: 00010246
> Jul 13 06:48:19 workstation kernel: RAX: 00007f089d349008 RBX: ffff8b4680dada0e RCX: 0000000000000000
> Jul 13 06:48:19 workstation kernel: RDX: 0000000000000000 RSI: 00007f089d349100 RDI: ffffb828c9ec3940
> Jul 13 06:48:19 workstation kernel: RBP: ffffb828c9ec3940 R08: ffff8b47af856d10 R09: ffffb828c9ec3940
> Jul 13 06:48:19 workstation kernel: R10: ffff8b4668633ca0 R11: 0000000000000009 R12: 0000000000000000
> Jul 13 06:48:19 workstation kernel: R13: ffffb828c9ec37c8 R14: 0000000000000001 R15: 0000000000000000
> Jul 13 06:48:19 workstation kernel: FS:  00007f08948be6c0(0000) GS:ffff8b492fc80000(0000) knlGS:0000000000000000
> Jul 13 06:48:19 workstation kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> Jul 13 06:48:19 workstation kernel: CR2: 00007f089d349008 CR3: 00000001df494000 CR4: 00000000000426f0
> Jul 1
> 3 06:48:19 workstation kernel: Call Trace:
> Jul 13 06:48:19 workstation kernel:  <TASK>
> Jul 13 06:48:19 workstation kernel:  mas_update_gap.part.0+0xc1/0x200
> Jul 13 06:48:19 workstation kernel:  mas_store_prealloc+0x1b6/0x3b0
> Jul 13 06:48:19 workstation kernel:  commit_merge+0x229/0x290
> Jul 13 06:48:19 workstation kernel:  vma_expand+0x96/0x160
> Jul 13 06:48:19 workstation kernel:  vma_merge_new_range+0x1c4/0x340
> Jul 13 06:48:19 workstation kernel:  __mmap_region+0x2db/0xb10
> Jul 13 06:48:19 workstation kernel:  do_mmap+0x499/0x690
> Jul 13 06:48:19 workstation kernel:  vm_mmap_pgoff+0xec/0x1c0
> Jul 13 06:48:19 workstation kernel:  do_syscall_64+0x82/0x190
> Jul 13 06:48:19 workstation kernel:  ? __rseq_handle_notify_resume+0xa2/0x4a0
> Jul 13 06:48:19 workstation kernel:  ? _copy_from_user+0x29/0x70
> Jul 13 06:48:19 workstation kernel:  ? __x64_sys_rt_sigprocmask+0xdb/0x150
> Jul 13 06:48:19 workstation kernel:  ? syscall_exit_to_user_mode+0x4d/0x210
> Jul 13 06:48:19 workstation kern
> el:  ? do_syscall_64+0x8e/0x190
> Jul 13 06:48:19 workstation kernel:  ? do_syscall_64+0x8e/0x190
> Jul 13 06:48:19 workstation kernel:  ? __mod_memcg_lruvec_state+0x9c/0x140
> Jul 13 06:48:19 workstation kernel:  ? __lruvec_stat_mod_folio+0x83/0xd0
> Jul 13 06:48:19 workstation kernel:  ? __folio_mod_stat+0x26/0x80
> Jul 13 06:48:19 workstation kernel:  ? set_ptes.isra.0+0x36/0x80
> Jul 13 06:48:19 workstation kernel:  ? do_anonymous_page+0xfe/0x870
> Jul 13 06:48:19 workstation kernel:  ? __pte_offset_map+0x1b/0x180
> Jul 13 06:48:19 workstation kernel:  ? __handle_mm_fault+0xb14/0xf70
> Jul 13 06:48:19 workstation kernel:  ? __count_memcg_events+0x53/0xf0
> Jul 13 06:48:19 workstation kernel:  ? count_memcg_events.constprop.0+0x1a/0x30
> Jul 13 06:48:19 workstation kernel:  ? syscall_exit_to_user_mode+0x4d/0x210
> Jul 13 06:48:19 workstation kernel:  ? do_syscall_64+0x8e/0x190
> Jul 13 06:48:19 workstation kernel:  ? do_user_addr_fault+0x36c/0x620
> Jul 13 06:48:19 workstation kernel:  ? exc_page
> _fault+0x7e/0x180
> Jul 13 06:48:19 workstation kernel:  entry_SYSCALL_64_after_hwframe+0x76/0x7e
> Jul 13 06:48:19 workstation kernel: RIP: 0033:0x7f08a9ae9de2
> Jul 13 06:48:19 workstation kernel: Code: 00 00 00 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 89 cd 53 48 89 fb 48 85 ff 74 3b 41 89 ea 48 89 df b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 76 5b 5d c3 0f 1f 00 48 8b 05 e1 9f 0d 00 64
> Jul 13 06:48:19 workstation kernel: RSP: 002b:00007f08948bddb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
> Jul 13 06:48:19 workstation kernel: RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f08a9ae9de2
> Jul 13 06:48:19 workstation kernel: RDX: 0000000000000003 RSI: 0000000000004000 RDI: 0000000000000000
> Jul 13 06:48:19 workstation kernel: RBP: 0000000000000022 R08: 00000000ffffffff R09: 0000000000000000
> Jul 13 06:48:19 workstation kernel: R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000020
> Jul 13 06:48:19 workstation kernel: R13: 00007f08a9996d30 R14: 0000000000004000 R15
> : 0000000000000000
> Jul 13 06:48:19 workstation kernel:  </TASK>
> Jul 13 06:48:19 workstation kernel: Modules linked in: snd_seq_dummy snd_hrtimer snd_seq snd_seq_device rfkill qrtr binfmt_misc uas usb_storage iTCO_wdt intel_pmc_bxt iTCO_vendor_support watchdog snd_hda_codec_hdmi coretemp kvm_intel kvm snd_hda_intel irqbypass sha512_ssse3 snd_intel_dspcfg sha256_ssse3 sr_mod cdrom sha1_ssse3 i2c_i801 acpi_cpufreq pcspkr snd_intel_sdw_acpi i2c_smbus serio_raw snd_h>
> Jul 13 06:48:19 workstation kernel:  drm_kms_helper ahci libahci uhci_hcd libata drm ehci_pci ehci_hcd scsi_mod usbcore cec psmouse rc_core scsi_common crc16 usb_common
> Jul 13 06:48:19 workstation kernel: CR2: 00007f089d349008
> Jul 13 06:48:19 workstation kernel: ---[ end trace 0000000000000000 ]---
> Jul 13 06:48:19 workstation kernel: RIP: 0010:mas_leaf_max_gap+0x62/0x240
> Jul 13 06:48:19 workstation kernel: Code: 84 00 00 00 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 39 d1 48 0f 42 ca 48 83 c0 08 31 d
> 2 48 39 c6 74 13 <48> 83 38 00 75 e8 48 83 c0 08 48 83 c2 01 48 39 c6 75 ed 48 39 d1
> Jul 13 06:48:19 workstation kernel: RSP: 0018:ffffb828c9ec3720 EFLAGS: 00010246
> Jul 13 06:48:19 workstation kernel: RAX: 00007f089d349008 RBX: ffff8b4680dada0e RCX: 0000000000000000
> Jul 13 06:48:19 workstation kernel: RDX: 0000000000000000 RSI: 00007f089d349100 RDI: ffffb828c9ec3940
> Jul 13 06:48:19 workstation kernel: RBP: ffffb828c9ec3940 R08: ffff8b47af856d10 R09: ffffb828c9ec3940
> Jul 13 06:48:19 workstation kernel: R10: ffff8b4668633ca0 R11: 0000000000000009 R12: 0000000000000000
> Jul 13 06:48:19 workstation kernel: R13: ffffb828c9ec37c8 R14: 0000000000000001 R15: 0000000000000000
> Jul 13 06:48:19 workstation kernel: FS:  00007f08948be6c0(0000) GS:ffff8b492fc80000(0000) knlGS:0000000000000000
> Jul 13 06:48:19 workstation kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> Jul 13 06:48:19 workstation kernel: CR2: 00007f089d349008 CR3: 00000001df494000 CR4: 00000000000426f0
> Jul 13 06:48:2
> 6 workstation systemd[1791]: Started app-firefox\x2desr@c4ee95694f0448ada130fc00eeff4a74.service - Firefox ESR - Web Browser.

Is this something which still reproduces with 6.12.38 in trixie?

Regards,
Salvatore

Reply to:

References:
- Bug#1109171: linux-image-6.12.35+deb13-amd64: Unable to handle page fault/supervisior read access in kernel mode (not-present-page)
  - From: Johannes Krottmayer <krotti83@proton.me>