lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date:	Sat, 8 Mar 2014 08:37:09 +0800
From:	Fengguang Wu <fengguang.wu@...el.com>
To:	netdev@...r.kernel.org
Cc:	Sean Hefty <sean.hefty@...el.com>,
	Andy Grover <andy.grover@...cle.com>,
	LKML <linux-kernel@...r.kernel.org>,
	Dave Jones <davej@...hat.com>
Subject: [RDMA/RDS] BUG: unable to handle kernel NULL pointer dereference at
 0000032c

Hi All,

This is a very old BUG. It's relatively easy to be triggered by
trinity inside kvm. Kernel config and full dmesg are attached.

[   17.063712] init: Failed to create pty - disabling logging for job
[   17.077654] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   26.381712] BUG: unable to handle kernel NULL pointer dereference at 0000032c
[   26.383571] IP: [<c1e6bfa5>] rds_iw_laddr_check+0x62/0xbd
[   26.383571] *pde = 00000000 
[   26.383571] Oops: 0000 [#1] PREEMPT 
[   26.383571] CPU: 0 PID: 437 Comm: trinity-main Not tainted 3.14.0-rc5-03765-gd478a96 #2
[   26.383571] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[   26.383571] task: ce892db0 ti: ce8f8000 task.ti: ce8f8000
[   26.383571] EIP: 0060:[<c1e6bfa5>] EFLAGS: 00010246 CPU: 0
[   26.383571] EIP is at rds_iw_laddr_check+0x62/0xbd
[   26.383571] EAX: 00000000 EBX: cef2d000 ECX: 00000000 EDX: 00000100
[   26.383571] ESI: 00000000 EDI: ce8f9d48 EBP: ce8f9d58 ESP: ce8f9d34
[   26.383571]  DS: 007b ES: 007b FS: 0000 GS: 0033 SS: 0068
[   26.383571] CR0: 8005003b CR2: 0000032c CR3: 0e8e1000 CR4: 00000690
[   26.383571] Stack:
[   26.383571]  9bb97600 00000002 9bb97600 00000000 00000000 c2653674 c2653abc 00000001
[   26.383571]  ce8f9d68 ce8f9d74 c1e64bb9 9bb97600 c1e64bb9 00000000 cef7da80 ce8f9db0
[   26.383571]  ce8f9d98 c1e60390 00000206 0f62ab60 9bb97600 ce8f9db0 c8dbc200 00000010
[   26.383571] Call Trace:
[   26.383571]  [<c1e64bb9>] rds_trans_get_preferred+0x41/0x5d
[   26.383571]  [<c1e64bb9>] ? rds_trans_get_preferred+0x41/0x5d
[   26.383571]  [<c1e60390>] rds_bind+0x115/0x170
[   26.383571]  [<c1cd962f>] SYSC_bind+0x54/0x79
[   26.383571]  [<c1cd962f>] ? SYSC_bind+0x54/0x79
[   26.383571]  [<c107e087>] ? __might_sleep+0x45/0x12c
[   26.383571]  [<c10c56fc>] ? lock_page+0x17/0x29
[   26.383571]  [<c10d6e52>] ? page_mapping+0x8/0x3e
[   26.383571]  [<c10cca51>] ? wait_for_stable_page+0x10/0x23
[   26.383571]  [<c10828df>] ? __wake_up_bit+0xb/0x2b
[   26.383571]  [<c107e087>] ? __might_sleep+0x45/0x12c
[   26.383571]  [<c13273f5>] ? __copy_from_user_ll+0xb/0xe2
[   26.383571]  [<c1327793>] ? _copy_from_user+0x38/0x4c
[   26.383571]  [<c1cdabbf>] SYSC_socketcall+0x9b/0x34e
[   26.383571]  [<c10c6efe>] ? generic_file_buffered_write+0x171/0x1c5
[   26.383571]  [<c1061f00>] ? timespec_trunc+0xa/0x32
[   26.383571]  [<c10c70f9>] ? __generic_file_aio_write+0x1a7/0x1d3
[   26.383571]  [<c1eec4f1>] ? mutex_unlock+0x8/0x13
[   26.383571]  [<c10c717e>] ? generic_file_aio_write+0x59/0xc7
[   26.383571]  [<c107c0ff>] ? preempt_count_add+0x9/0x77
[   26.383571]  [<c107c1a3>] ? preempt_count_sub+0x8/0x89
[   26.383571]  [<c1093498>] ? __srcu_read_lock+0x40/0x54
[   26.383571]  [<c10934b4>] ? __srcu_read_unlock+0x8/0x10
[   26.383571]  [<c1120928>] ? fsnotify+0x1c2/0x1d8
[   26.383571]  [<c107c0ff>] ? preempt_count_add+0x9/0x77
[   26.383571]  [<c107c1a3>] ? preempt_count_sub+0x8/0x89
[   26.383571]  [<c10fa580>] ? __sb_end_write+0x2e/0x63
[   26.383571]  [<c10f7a8c>] ? file_end_write+0x1f/0x21
[   26.383571]  [<c10f8665>] ? vfs_write+0xe0/0xfb
[   26.383571]  [<c10f8733>] ? SyS_write+0x43/0x70
[   26.383571]  [<c10f874f>] ? SyS_write+0x5f/0x70
[   26.383571]  [<c1cdaea3>] SyS_socketcall+0x13/0x15
[   26.383571]  [<c1eedd16>] sysenter_do_call+0x12/0x2c
[   26.383571] Code: 77 78 8d 55 e0 31 c0 89 d7 b9 04 00 00 00 f3 ab 8b 45 dc 66 c7 45 e0 02 00 89 45 e4 89 d8 e8 1a b2 ce ff 85 c0 89 c6 75 0b 8b 03 <80> b8 2c 03 00 00 04 74 05 be 9d ff ff ff f6 05 0a 2f 69 c2 04
[   26.383571] EIP: [<c1e6bfa5>] rds_iw_laddr_check+0x62/0xbd SS:ESP 0068:ce8f9d34
[   26.383571] CR2: 000000000000032c
[   26.547175] ---[ end trace e0804b06daa1a8c2 ]---
[   26.567278] caif:caif_disconnect_client(): nothing to disconnect

git bisect  bad d478a960edf1ea61ca31a07a48a8771f043dba78  # 05:53      0-     23  0day head guard for 'devel-hourly-2014030618'
git bisect  bad 0414855fdc4a40da05221fc6062cccbc0c30f169  # 05:55      0-     19  Linux 3.14-rc5
git bisect  bad d8ec26d7f8287f5788a494f56e8814210f0e64be  # 05:55      0-     18  Linux 3.13
git bisect  bad 5e01dc7b26d9f24f39abace5da98ccbd6a5ceb52  # 05:55      0-     18  Linux 3.12
git bisect  bad 6e4664525b1db28f8c4e1130957f70a94c19213e  # 06:00      0-      3  Linux 3.11
git bisect  bad 8bb495e3f02401ee6f76d1b1d77f3ac9f079e376  # 06:19      0-     21  Linux 3.10
git bisect  bad c1be5a5b1b355d40e6cf79cc979eb66dafa24ad1  # 06:24      0-     17  Linux 3.9
git bisect  bad 19f949f52599ba7c3f67a5897ac6be14bfcb1200  # 06:28      0-      8  Linux 3.8
git bisect  bad 29594404d7fe73cd80eaa4ee8c43dcc53970c60e  # 06:33      1-      3  Linux 3.7
git bisect  bad a0d271cbfed1dd50278c6b06bead3d00ba0a88f9  # 06:37      0-      9  Linux 3.6
git bisect  bad 28a33cbc24e4256c143dce96c7d93bf423229f92  # 06:41      0-     10  Linux 3.5

Thanks,
Fengguang

View attachment "dmesg-quantal-snb-11:20140307185201:i386-randconfig-x0-03071132::" of type "text/plain" (272200 bytes)

Download attachment "i386-randconfig-x0-03071132-d478a960edf1ea61ca31a07a48a8771f043dba78-BUG:-unable-to-handle-kernel-73558.log" of type "application/octet-stream" (68107 bytes)

View attachment "config-3.14.0-rc5-03765-gd478a96" of type "text/plain" (105810 bytes)

_______________________________________________
LKP mailing list
LKP@...ux.intel.com

Powered by blists - more mailing lists