lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <50768765.8040406@ti.com>
Date:	Thu, 11 Oct 2012 10:46:29 +0200
From:	Clement Gallin-Douathe <c-gallin-douathe@...com>
To:	<tytso@....edu>, <adilger.kernel@...ger.ca>,
	<linux-ext4@...r.kernel.org>
Subject: kernel oops in jbd2_journal_get_descriptor_buffer

Hi,

I am working on ARMv7 dual-core board with android (ICS + kernel 3.4.9).
I am randomly facing a kernel oops in fs/jbd2/journal.c: In the function 
jbd2_journal_get_descriptor_buffer, memset is called without checking 
bh->b_data which is NULL in my case.

It seems to be a problem with the journal device block.
It seems that the current memory zone is high memory zone, so the 
current buffer head referred to the used page is not correctly set 
(b_data is NULL).

I could not find why the buffer cache tries to allocate and use a block 
in high memory zone.
Any ideas, or tips/tricks for debugging ?

Regards,

Clement Gallin-Douathe
Texas Instruments (France)


Environment description :
- kernel :
     version 3.4.9
     CONFIG_HIGHMEM enabled
     CONFIG_HIGHPTE is not set
- memory :
     POP LPDDR2, 8Gb (256Mx32) + 8Gb (256Mx32), 1066Mbps (Samsung 
K3PE0E00B-XGC2)
     eMMC, 32GByte, V4.5 Features, 80MBps Read (Sandisk SDIN5C4-32G)
     EEROM, 1Mb (256Kx8), I2C (System Configuration Info)


Backtrace :

[  337.047882] Unable to handle kernel NULL pointer dereference at 
virtual address 00000000
[  337.056823] pgd = c0004000
[  337.059661] [00000000] *pgd=00000000
[  337.063415] Internal error: Oops: 817 [#1] PREEMPT SMP ARM
[  337.069213] Modules linked in: hsi_omap caif_hsi gps_drv wl18xx(O) 
wl12xx(O) wlcore(O) mac80211(O) pvrsrvkm_sgx544_105(O) cfg80211(O) 
compat(O) btwilink(O) bnep(O) hidp(O) rfcomm(O) bluetooth(O) [last 
unloaded: hsi_char]
[  337.089813] CPU: 0    Tainted: G        W  O  (3.4.9 #1)
[  337.095397] PC is at __memzero+0x24/0x80
[  337.099487] LR is at 0x0
[  337.102142] pc : [<c023b2a4>]    lr : [<00000000>] psr: 20000013
[  337.102142] sp : d2781e24  ip : 00000000  fp : d2781e4c
[  337.114166] r10: c01c032c  r9 : d2780000  r8 : 00000000
[  337.119628] r7 : d2721c00  r6 : d2afae88  r5 : d1d74f88  r4 : d2721c00
[  337.126464] r3 : 00000000  r2 : 00000000  r1 : 00000fc0  r0 : 00000000
[  337.133300] Flags: nzCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM 
Segment kernel
[  337.140960] Control: 10c5387d  Table: 824d006a  DAC: 00000015
[  337.146972]
[  337.147003] PC: 0xc023b224:
[  337.151458] b224  e3120004 14801004 e3120002 14c01001 14c01001 
e3120001 14c01001 e1a0f00e
[  337.160095] b244  e320f000 e320f000 e320f000 e320f000 e320f000 
e320f000 e320f000 00000000
[  337.168731] b264  e2511004 ba00001d e3530002 b4c02001 d4c02001 
e4c02001 e0811003 e3a02000
[  337.177337] b284  e2103003 1afffff5 e3510010 ba00000f e52de004 
e1a0c002 e1a0e002 e2511040
[  337.185974] b2a4  a8a0500c a8a0500c a8a0500c a8a0500c cafffff9 
08bd8000 e3110020 18a0500c
[  337.194610] b2c4  18a0500c e3110010 18a0500c e49de004 e3110008 
18a0000c e3110004 14802004
[  337.203247] b2e4  e3110002 14c02001 14c02001 e3110001 14c02001 
e1a0f00e e320f000 e0010192
[  337.211853] b304  e0211390 e1a0c820 e1a03822 e1c0080c e1c22803 
e0211c93 e0030390 e0000092
[  337.220489]
[  337.220489] SP: 0xd2781da4:
[  337.224945] 1da4  00000000 d29c3910 00000000 d2781e24 d2781dc0 
c023b2a4 20000013 ffffffff
[  337.233581] 1dc4  d2781e0c d2781e4c d2781dd8 c05ff9d8 c00083f0 
00000000 00000fc0 00000000
[  337.242218] 1de4  00000000 d2721c00 d1d74f88 d2afae88 d2721c00 
00000000 d2780000 c01c032c
[  337.250854] 1e04  d2781e4c 00000000 d2781e24 00000000 c023b2a4 
20000013 ffffffff c01c6af8
[  337.259460] 1e24  c01c6b48 00001000 d2721e20 000006e7 00000000 
d2780000 d2721e20 d2781f64
[  337.268096] 1e44  d2781e50 c01bf648 c01c6ac0 00000000 00000000 
d259c01c d2769a00 c2038bc0
[  337.276702] 1e64  d2721e20 d2af96b4 00000018 78962df3 0000004e 
d2721e3c 98393bc0 d2722000
[  337.285339] 1e84  00000008 00000000 d2af96e0 00000000 d2721c14 
ffffffff 00000000 00000000
[  337.293975]
[  337.293975] FP: 0xd2781dcc:
[  337.298461] 1dcc  d2781dd8 c05ff9d8 c00083f0 00000000 00000fc0 
00000000 00000000 d2721c00
[  337.307067] 1dec  d1d74f88 d2afae88 d2721c00 00000000 d2780000 
c01c032c d2781e4c 00000000
[  337.315704] 1e0c  d2781e24 00000000 c023b2a4 20000013 ffffffff 
c01c6af8 c01c6b48 00001000
[  337.324340] 1e2c  d2721e20 000006e7 00000000 d2780000 d2721e20 
d2781f64 d2781e50 c01bf648
[  337.332946] 1e4c  c01c6ac0 00000000 00000000 d259c01c d2769a00 
c2038bc0 d2721e20 d2af96b4
[  337.341583] 1e6c  00000018 78962df3 0000004e d2721e3c 98393bc0 
d2722000 00000008 00000000
[  337.350219] 1e8c  d2af96e0 00000000 d2721c14 ffffffff 00000000 
00000000 00000000 d2721c00
[  337.358856] 1eac  d2af9680 78962df3 0000004e c0895bc0 c0895bc0 
c0895bc0 c0895bc0 79547f18
[  337.367462]
[  337.367462] R4: 0xd2721b80:
[  337.371948] 1b80  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.380584] 1ba0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.389190] 1bc0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.397827] 1be0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.406463] 1c00  00000030 00000000 d29c9c48 c20c4000 00000002 
00000000 00000000 00000000
[  337.415100] 1c20  00000001 00000000 00000000 d2721c2c d2721c2c 
00000000 00000000 d2af9680
[  337.423736] 1c40  d1d78780 00000000 00000000 d2721c4c d2721c4c 
00000000 00000000 d2721c5c
[  337.432342] 1c60  d2721c5c 00000000 00000000 d1bf9de0 d1bf9de0 
00000000 00000000 d2721c7c
[  337.440979]
[  337.440979] R5: 0xd1d74f08:
[  337.445465] 4f08  00000029 00000000 c12a9560 00000000 000006e2 
00000000 00001000 d402b000
[  337.454101] 4f28  d29c3880 c01c032c 00000000 d1d74f34 d1d74f34 
00000000 00000000 00000000
[  337.462707] 4f48  00000029 00000000 c1049040 00000000 000006e1 
00000000 00001000 c1002000
[  337.471343] 4f68  d29c3880 c01c032c 00000000 d1d74f74 d1d74f74 
00000000 00000000 00000000
[  337.479980] 4f88  00000024 d1d74f88 c1c5de00 00000000 000006e7 
00000000 00001000 00000000
[  337.488616] 4fa8  d29c3880 00000000 00000000 d1d74fb4 d1d74fb4 
00000000 00000002 00000000
[  337.497222] 4fc8  a1615e1e a19e5e61 a1615e1e a19ede61 a1615e9e 
a19e5e61 a1615e9e a19e5e61
[  337.505859] 4fe8  a1615e9e a19e5e61 a1615e9e a1965e61 a1615e9e 
a19e5e61 d2fe8840 d2fe8840
[  337.514495]
[  337.514495] R6: 0xd2afae08:
[  337.518981] ae08  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.527587] ae28  00000000 d1cb4988 d2afa208 00000000 00000000 
00000000 00000000 00000000
[  337.536224] ae48  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.544860] ae68  00000000 d2afa6c8 d2afa6c8 00000000 00000000 
00000000 00000000 00000000
[  337.553497] ae88  d2af48c8 00000002 00000001 00000001 00000000 
00000000 00000000 d2af9680
[  337.562103] aea8  00000000 d2afae88 d2afae88 d1d62080 d2afae88 
d2afae88 00000000 00000000
[  337.570739] aec8  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.579376] aee8  00000000 d2afaa48 d2afa248 00000000 00000000 
00000000 00000000 00000000
[  337.588012]
[  337.588012] R7: 0xd2721b80:
[  337.592468] 1b80  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.601104] 1ba0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.609741] 1bc0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.618377] 1be0  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.626983] 1c00  00000030 00000000 d29c9c48 c20c4000 00000002 
00000000 00000000 00000000
[  337.635620] 1c20  00000001 00000000 00000000 d2721c2c d2721c2c 
00000000 00000000 d2af9680
[  337.644256] 1c40  d1d78780 00000000 00000000 d2721c4c d2721c4c 
00000000 00000000 d2721c5c
[  337.652893] 1c60  d2721c5c 00000000 00000000 d1bf9de0 d1bf9de0 
00000000 00000000 d2721c7c
[  337.661499]
[  337.661529] R9: 0xd277ff80:
[  337.665985] ff80  d26be140 d26be188 c005f2b8 d2c31c90 d277ffc4 
d26be140 c005f2b8 00000000
[  337.674621] ffa0  00000000 00000000 d277fff4 d277ffb8 c0064278 
c005f2c4 00000000 00000000
[  337.683258] ffc0  d26be140 00000000 00000000 00000000 d277ffd0 
d277ffd0 d2c31c90 c00641e4
[  337.691864] ffe0  c0047d54 00000013 00000000 d277fff8 c0047d54 
c00641f0 d7cb2834 173428cb
[  337.700500] 0000  00000000 00000002 00000000 d2769a00 c08f3b40 
00000000 00000015 d2769a00
[  337.709136] 0020  c2461040 c2038bc0 d2780000 c2461ac0 00000000 
c08bed50 d2781b34 d2781a70
[  337.717773] 0040  c05fde8c 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.726409] 0060  00000000 00000000 00000000 00000000 00000000 
00000000 00000000 00000000
[  337.735046]
[  337.735046] R10: 0xc01c02ac:
[  337.739593] 02ac  e2433001 e5843004 e5943000 e3130002 0afffe4f 
eb10f82e eafffe4d e7f001f2
[  337.748229] 02cc  eafffffe e1a00007 ebfc800b e3500000 1afffe1b 
eafffe13 e7f001f2 eafffffe
[  337.756866] 02ec  e51be0bc e51f0b68 e28e1e1e eb10ef7e e51b00bc 
e5903000 e3130040 0afffb98
[  337.765502] 030c  e1a01008 eb00159d eafffb95 e1a00005 eb10fbb8 
eafffb92 e7f001f2 eafffffe
[  337.774108] 032c  e1a0c00d e92dd830 e24cb004 e3510000 e1a04000 
1a000005 e1a00001 e1a01004
[  337.782745] 034c  eb01e27c e1a00004 ebfe0129 e89da830 e3a00000 
e1a01004 eb01ec05 e1a00004
[  337.791381] 036c  ebfe0123 e89da830 e1a0c00d e92dd830 e24cb004 
e1a05001 e59041d4 eb000901
[  337.800018] 038c  e3a01000 e595301c e0635000 e283300c e0832005 
e1a0c003 e1540002 e0833000
[  337.808654] Process jbd2/mmcblk0p10 (pid: 89, stack limit = 0xd27802f8)
[  337.815582] Stack: (0xd2781e24 to 0xd2782000)
[  337.820129] 1e20:          c01c6b48 00001000 d2721e20 000006e7 
00000000 d2780000 d2721e20
[  337.828704] 1e40: d2781f64 d2781e50 c01bf648 c01c6ac0 00000000 
00000000 d259c01c d2769a00
[  337.837280] 1e60: c2038bc0 d2721e20 d2af96b4 00000018 78962df3 
0000004e d2721e3c 98393bc0
[  337.845855] 1e80: d2722000 00000008 00000000 d2af96e0 00000000 
d2721c14 ffffffff 00000000
[  337.854400] 1ea0: 00000000 00000000 d2721c00 d2af9680 78962df3 
0000004e c0895bc0 c0895bc0
[  337.862976] 1ec0: c0895bc0 c0895bc0 79547f18 0000004e 00000049 
c089342c 00007735 00000000
[  337.871551] 1ee0: 00000001 d2721e58 00000000 00000000 00000000 
00000000 00001283 d2781f08
[  337.880126] 1f00: 00000001 00000000 91827364 d2781f0c d2781f0c 
d2781f14 d2781f14 00000000
[  337.888671] 1f20: c00524c0 c05ff1c0 d2781f44 a0000013 00000000 
d2721c14 d2721e58 d2721c00
[  337.897247] 1f40: d2721c14 d2721e58 d2780000 d2721c64 d2781f74 
c0951bd8 d2781fb4 d2781f68
[  337.905822] 1f60: c01c60a4 c01bea30 d2c31cac d2721c84 d2781f8c 
00000000 d2769a00 c0064784
[  337.914398] 1f80: d2781f80 d2781f80 c01c5fec d2c31c98 d2781fc4 
d2721c00 c01c5fec 00000000
[  337.922943] 1fa0: 00000000 00000000 d2781ff4 d2781fb8 c0064278 
c01c5ff8 00000000 00000000
[  337.931518] 1fc0: d2721c00 00000000 00000000 00000000 d2781fd0 
d2781fd0 d2c31c98 c00641e4
[  337.940093] 1fe0: c0047d54 00000013 00000000 d2781ff8 c0047d54 
c00641f0 ca693596 ca963569
[  337.948638] Backtrace:
[  337.951202] [<c01c6ab4>] 
(jbd2_journal_get_descriptor_buffer+0x0/0xa4) from [<c01bf648>] 
(jbd2_journal_commit_transaction+0xc24/0x1908)
[  337.963958]  r5:d2721e20 r4:d2780000
[  337.967712] [<c01bea24>] (jbd2_journal_commit_transaction+0x0/0x1908) 
from [<c01c60a4>] (kjournald2+0xb8/0x254)
[  337.978302] [<c01c5fec>] (kjournald2+0x0/0x254) from [<c0064278>] 
(kthread+0x94/0xa0)
[  337.986511] [<c00641e4>] (kthread+0x0/0xa0) from [<c0047d54>] 
(do_exit+0x0/0x810)
[  337.994354]  r7:00000013 r6:c0047d54 r5:c00641e4 r4:d2c31c98
[  338.000305] Code: e52de004 e1a0c002 e1a0e002 e2511040 (a8a0500c)

--
To unsubscribe from this list: send the line "unsubscribe linux-ext4" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ