lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <55250D27.9090903@thax.hardliners.org>
Date:	Wed, 08 Apr 2015 13:12:39 +0200
From:	Tobias Hoffmann <lkernel-list@...x.hardliners.org>
To:	linux-kernel@...r.kernel.org
Subject: Oops in 4.0.0-rc6: __destroy_inode

Hi,

after updating from 3.19.0-rc4 to 4.0.0-rc6 I've experienced the 
appended two similar oopses.
In both cases they occurred without obvious cause after less than 2 days 
uptime, and caused Xorg to hang - requiring a manual reboot (init 6 via 
ssh did not run to completion).
The only other thing I updated was userspace libdrm + 
xorg-video-nouveau, but that should not cause  oopses, right?

With 3.19.0-rc4 I had uptime > 40 days -- and then a general protection 
fault at __d_lookup (also appended) which seems unrelated to the 
__destroy_inode oopses.
I'm now back at 3.19.

   Tobias

PS: please CC.

---
BUG: unable to handle kernel paging request at ffffffffff3cffff
IP: [<ffffffff8115a1c7>] __destroy_inode+0x77/0xd0
PGD 16b8067 PUD 16ba067 PMD 17f0067 PTE 0
Oops: 0002 [#1] PREEMPT SMP
Modules linked in: snd_hrtimer snd_usb_audio snd_usbmidi_lib ipt_REJECT 
nf_reject_ipv4 iptable_filter xt_REDIRECT nf_nat_redirect xt_tcpudp 
iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat 
nf_conntrack ip_tables x_tables nfsd auth_rpcgss oid_registry exportfs 
nfs_acl nfs lockd grace sunrpc ppdev lp snd_hda_codec_realtek 
snd_hda_codec_generic hid_multitouch snd_hda_intel snd_hda_controller 
snd_hda_codec snd_hwdep snd_pcm_oss snd_mixer_oss snd_pcm snd_mpu401 
snd_seq_dummy snd_mpu401_uart snd_seq_oss snd_seq_midi snd_rawmidi 
nouveau wmi video ttm drm_kms_helper drm snd_seq_midi_event snd_seq 
cfbfillrect cfbimgblt snd_seq_device snd_timer cfbcopyarea evdev snd 
psmouse i2c_algo_bit parport_pc soundcore ns558 button parport 
i2c_nforce2 gameport acpi_cpufreq
CPU: 1 PID: 472 Comm: kswapd0 Not tainted 4.0.0-rc6-00188-gf8b3d8a-dirty #32
Hardware name: To Be Filled By O.E.M. To Be Filled By 
O.E.M./ALiveNF5-eSATA2+., BIOS P2.10 04/09/2008
task: ffff8801aa0f3250 ti: ffff8801aaa64000 task.ti: ffff8801aaa64000
RIP: 0010:[<ffffffff8115a1c7>]  [<ffffffff8115a1c7>] 
__destroy_inode+0x77/0xd0
RSP: 0000:ffff8801aaa67bd8  EFLAGS: 00210286
RAX: ffffffffff3cfffe RBX: ffff88010238d978 RCX: 00000000000024c0
RDX: 0000000000000001 RSI: ffff88010238da08 RDI: ffffffffff3cffff
RBP: ffff8801aaa67be8 R08: ffffffff8115b3d0 R09: ffff8801aaa67d40
R10: 0000000000000400 R11: 0000000000000000 R12: ffff88010238d9f8
R13: ffffffff815210e0 R14: 0000000000000000 R15: 00000000000000a9
FS:  0000000000000000(0000) GS:ffff8801b1c80000(0000) knlGS:00000000f1604b40
CS:  0010 DS: 0000 ES: 0000 CR0: 000000008005003b
CR2: ffffffffff3cffff CR3: 00000000c0e95000 CR4: 00000000000006e0
Stack:
0000000000000003 ffff88010238d978 ffff8801aaa67c08 ffffffff8115a7d1
ffff88010238d978 ffff88010238d978 ffff8801aaa67c38 ffffffff8115a922
ffff8801aaa67c38 ffff8801aaa67c78 ffff8800cda4e800 ffff8800cda4eb40
Call Trace:
[<ffffffff8115a7d1>] destroy_inode+0x21/0x60
[<ffffffff8115a922>] evict+0x112/0x180
[<ffffffff8115a9c9>] dispose_list+0x39/0x50
[<ffffffff8115b825>] prune_icache_sb+0x45/0x50
[<ffffffff811447e3>] super_cache_scan+0x153/0x1a0
[<ffffffff811105a3>] shrink_slab.part.55.constprop.60+0x1a3/0x250
[<ffffffff811129c1>] shrink_zone+0xa1/0xb0
[<ffffffff81112dbf>] kswapd+0x3ef/0x700
[<ffffffff811129d0>] ? shrink_zone+0xb0/0xb0
[<ffffffff810aaf04>] kthread+0xc4/0xe0
[<ffffffff810aae40>] ? kthread_freezable_should_stop+0x60/0x60
[<ffffffff814f6588>] ret_from_fork+0x58/0x90
[<ffffffff810aae40>] ? kthread_freezable_should_stop+0x60/0x60
Code: 48 8b 7b 10 48 8d 47 ff 48 83 f8 fd 77 0a 48 85 ff 74 05 f0 ff 0f 
74 3c 48 8b 7b 18 48 8d 47 ff 48 83 f8 fd 77 0a 48 85 ff 74 05 <f0> ff 
0f 74 14 65 48 ff 0d c4 3d eb 7e 48 83 c4 08 5b 5d c3 0f
RIP  [<ffffffff8115a1c7>] __destroy_inode+0x77/0xd0
RSP <ffff8801aaa67bd8>
CR2: ffffffffff3cffff
---[ end trace 25a3306aa6be3c47 ]---

BUG: unable to handle kernel paging request at fffffffffffcffff
IP: [<ffffffff8115a1c7>] __destroy_inode+0x77/0xd0
PGD 16b8067 PUD 16ba067 PMD 0
Oops: 0002 [#1] PREEMPT SMP
Modules linked in: snd_hrtimer snd_usb_audio snd_usbmidi_lib ipt_REJECT 
nf_reject_ipv4 iptable_filter xt_REDIRECT nf_nat_redirect xt_tcpudp 
iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat 
nf_conntrack ip_tables x_tables nfsd auth_rpcgss oid_registry exportfs 
nfs_acl nfs lockd grace sunrpc ppdev lp snd_hda_codec_realtek 
snd_hda_codec_generic snd_hda_intel snd_hda_controller snd_hda_codec 
snd_hwdep hid_multitouch snd_mpu401 snd_mpu401_uart snd_pcm_oss 
snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss snd_seq_midi snd_rawmidi 
snd_seq_midi_event nouveau snd_seq snd_seq_device evdev wmi video ttm 
drm_kms_helper drm cfbfillrect cfbimgblt snd_timer psmouse cfbcopyarea 
i2c_algo_bit parport_pc snd ns558 parport gameport i2c_nforce2 soundcore 
acpi_cpufreq button
CPU: 0 PID: 6563 Comm: pulseaudio Not tainted 
4.0.0-rc6-00188-gf8b3d8a-dirty #32
Hardware name: To Be Filled By O.E.M. To Be Filled By 
O.E.M./ALiveNF5-eSATA2+., BIOS P2.10 04/09/2008
task: ffff8800b9f40e60 ti: ffff88019c608000 task.ti: ffff88019c608000
RIP: 0010:[<ffffffff8115a1c7>]  [<ffffffff8115a1c7>] 
__destroy_inode+0x77/0xd0
RSP: 0000:ffff88019c60b7b8  EFLAGS: 00210286
RAX: fffffffffffcfffe RBX: ffff88010238d978 RCX: 00000000000024c0
RDX: 0000000000000001 RSI: ffff88010238da08 RDI: fffffffffffcffff
RBP: ffff88019c60b7c8 R08: ffffffff8115b3d0 R09: ffff88019c60b920
R10: 0000000000000400 R11: 0000000000000000 R12: ffff88010238d9f8
R13: ffffffff815210e0 R14: 0000000000000000 R15: 000000000000016a
FS:  0000000000000000(0000) GS:ffff8801b1c00000(0063) knlGS:00000000f6c5ca00
CS:  0010 DS: 002b ES: 002b CR0: 000000008005003b
CR2: fffffffffffcffff CR3: 000000019cb9b000 CR4: 00000000000006f0
Stack:
0000000000000003 ffff88010238d978 ffff88019c60b7e8 ffffffff8115a7d1
ffff88010238d978 ffff88010238d978 ffff88019c60b818 ffffffff8115a922
ffff88019c60b818 ffff88019c60b858 ffff8800cd99c000 ffff8800cd99c340
Call Trace:
[<ffffffff8115a7d1>] destroy_inode+0x21/0x60
[<ffffffff8115a922>] evict+0x112/0x180
[<ffffffff8115a9c9>] dispose_list+0x39/0x50
[<ffffffff8115b825>] prune_icache_sb+0x45/0x50
[<ffffffff811447e3>] super_cache_scan+0x153/0x1a0
[<ffffffff811105a3>] shrink_slab.part.55.constprop.60+0x1a3/0x250
[<ffffffff811129c1>] shrink_zone+0xa1/0xb0
[<ffffffff81113286>] try_to_free_pages+0x1b6/0x2c0
[<ffffffff8110a0c2>] __alloc_pages_nodemask+0x302/0x670
[<ffffffff81115ec3>] shmem_getpage_gfp+0x4b3/0x7a0
[<ffffffff811162bf>] shmem_fault+0x5f/0x190
[<ffffffff810b69c0>] ? __enqueue_entity+0x70/0x80
[<ffffffff8111f9f8>] __do_fault+0x38/0x80
[<ffffffff81123b07>] handle_mm_fault+0x877/0xe90
[<ffffffff81110cf1>] ? page_evictable+0x11/0x40
[<ffffffff81110d70>] ? putback_lru_page+0x50/0xb0
[<ffffffff8111ecd8>] ? follow_page_mask+0x248/0x2d0
[<ffffffff8111ee5b>] __get_user_pages+0xfb/0x560
[<ffffffff81128516>] ? mmap_region+0x156/0x5a0
[<ffffffff81124fd3>] __mlock_vma_pages_range+0x63/0x70
[<ffffffff81125609>] __mm_populate+0x69/0x130
[<ffffffff81118763>] vm_mmap_pgoff+0x83/0x90
[<ffffffff811272ba>] SyS_mmap_pgoff+0xaa/0xe0
[<ffffffff814f8319>] ia32_do_call+0x13/0x13
Code: 48 8b 7b 10 48 8d 47 ff 48 83 f8 fd 77 0a 48 85 ff 74 05 f0 ff 0f 
74 3c 48 8b 7b 18 48 8d 47 ff 48 83 f8 fd 77 0a 48 85 ff 74 05 <f0> ff 
0f 74 14 65 48 ff 0d c4 3d eb 7e 48 83 c4 08 5b 5d c3 0f
RIP  [<ffffffff8115a1c7>] __destroy_inode+0x77/0xd0
RSP <ffff88019c60b7b8>
CR2: fffffffffffcffff
---[ end trace 816f802320d95ef1 ]---

--- 3.19.0-rc4 (no reboot between the two faults):
general protection fault: 0000 [#1] PREEMPT SMP
Modules linked in: xt_nat xt_mark iptable_mangle ipheth snd_hrtimer 
snd_usb_audio snd_usbmidi_lib ipt_REJECT nf_reject_ipv4 iptable_filter 
xt_REDIRECT nf_nat_redirect xt_tcpudp iptable_nat nf_conntrack_ipv4 
nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack ip_tables x_tables nfsd 
auth_rpcgss oid_registry exportfs nfs_acl nfs lockd grace sunrpc ppdev 
lp snd_hda_codec_realtek snd_hda_codec_generic hid_multitouch 
snd_hda_intel snd_mpu401 snd_mpu401_uart snd_hda_controller 
snd_hda_codec snd_hwdep snd_pcm_oss snd_mixer_oss snd_seq_dummy snd_pcm 
snd_seq_oss snd_seq_midi snd_rawmidi snd_seq_midi_event snd_seq psmouse 
evdev snd_seq_device nouveau wmi video ttm drm_kms_helper drm 
cfbfillrect cfbimgblt cfbcopyarea i2c_algo_bit parport_pc snd_timer 
ns558 snd gameport parport soundcore button i2c_nforce2
CPU: 0 PID: 21922 Comm: Chrome_ProcessL Not tainted 3.19.0-rc4-dirty #31
Hardware name: To Be Filled By O.E.M. To Be Filled By 
O.E.M./ALiveNF5-eSATA2+., BIOS P2.10 04/09/2008
task: ffff8800bd438000 ti: ffff8800b5e30000 task.ti: ffff8800b5e30000
RIP: 0010:[<ffffffff81159f48>]  [<ffffffff81159f48>] __d_lookup+0x68/0x160
RSP: 0000:ffff8800b5e33d48  EFLAGS: 00210286
RAX: ffff8800bd438000 RBX: cccccccccccccccc RCX: 000000000000000c
RDX: ffff8801aac00000 RSI: ffff8800b5e33e08 RDI: ffff88017f617240
RBP: ffff8800b5e33d98 R08: ffffffff811a3350 R09: ffff8800bd438000
R10: 0000000000000000 R11: ffff88015b18c600 R12: ffff88017f617240
R13: ffff8800b5e33e08 R14: 0000000046efffff R15: ffffffff811a3350
FS:  0000000000000000(0000) GS:ffff8801b1c00000(0063) knlGS:00000000e4eb9b40
CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
CR2: 00000000f0725380 CR3: 000000015d8b0000 CR4: 00000000000007f0
Stack:
ffff8800b5e33e88 ffff8800b5e33e00 ffff8800b5e33e7b 000000028162e1dd
ffff8800b5e33de8 000000000004484c ffff8800b5e33e08 ffff88017f617240
ffff88017f617240 ffffffff811a3350 ffff8800b5e33dc8 ffffffff8115a070
Call Trace:
[<ffffffff811a3350>] ? proc_fdinfo_instantiate+0x90/0x90
[<ffffffff8115a070>] d_lookup+0x30/0x50
[<ffffffff8115a0cf>] d_hash_and_lookup+0x3f/0x50
[<ffffffff8119fecb>] proc_fill_cache+0x4b/0xf0
[<ffffffff811a2e38>] proc_readfd_common+0xd8/0x1e0
[<ffffffff811a3350>] ? proc_fdinfo_instantiate+0x90/0x90
[<ffffffff811a2f70>] proc_readfd+0x10/0x20
[<ffffffff8115486b>] iterate_dir+0x9b/0x130
[<ffffffff8118a4f2>] compat_SyS_getdents64+0x82/0xf0
[<ffffffff81188c10>] ? compat_filldir+0x120/0x120
[<ffffffff814f20a9>] ia32_do_call+0x13/0x13
Code: 48 c1 e8 06 44 01 f0 69 c0 01 00 37 9e d3 e8 48 8d 1c c2 e8 eb 24 
f7 ff 48 8b 1b 48 83 e3 fe 75 0a eb 30 48 8b 1b 48 85 db 74 28 <44> 39 
73 18 75 f2 4c 8d 7b 50 4c 89 ff e8 b6 5c 39 00 4c 39 63
RIP  [<ffffffff81159f48>] __d_lookup+0x68/0x160
RSP <ffff8800b5e33d48>
---[ end trace 53aa0b81852a1447 ]---
general protection fault: 0000 [#2] PREEMPT SMP
Modules linked in: xt_nat xt_mark iptable_mangle ipheth snd_hrtimer 
snd_usb_audio snd_usbmidi_lib ipt_REJECT nf_reject_ipv4 iptable_filter 
xt_REDIRECT nf_nat_redirect xt_tcpudp iptable_nat nf_conntrack_ipv4 
nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack ip_tables x_tables nfsd 
auth_rpcgss oid_registry exportfs nfs_acl nfs lockd grace sunrpc ppdev 
lp snd_hda_codec_realtek snd_hda_codec_generic hid_multitouch 
snd_hda_intel snd_mpu401 snd_mpu401_uart snd_hda_controller 
snd_hda_codec snd_hwdep snd_pcm_oss snd_mixer_oss snd_seq_dummy snd_pcm 
snd_seq_oss snd_seq_midi snd_rawmidi snd_seq_midi_event snd_seq psmouse 
evdev snd_seq_device nouveau wmi video ttm drm_kms_helper drm 
cfbfillrect cfbimgblt cfbcopyarea i2c_algo_bit parport_pc snd_timer 
ns558 snd gameport parport soundcore button i2c_nforce2
CPU: 0 PID: 20588 Comm: Chrome_FileUser Tainted: G      D        
3.19.0-rc4-dirty #31
Hardware name: To Be Filled By O.E.M. To Be Filled By 
O.E.M./ALiveNF5-eSATA2+., BIOS P2.10 04/09/2008
task: ffff880151512300 ti: ffff8800b4cd8000 task.ti: ffff8800b4cd8000
RIP: 0010:[<ffffffff81159f48>]  [<ffffffff81159f48>] __d_lookup+0x68/0x160
RSP: 0000:ffff8800b4cdbbd8  EFLAGS: 00210286
RAX: ffff880151512300 RBX: cccccccccccccccc RCX: 000000000000000c
RDX: ffff8801aac00000 RSI: ffff8800b4cdbe48 RDI: ffff8800cd61fc00
RBP: ffff8800b4cdbc28 R08: ffff8800b4cdbdd4 R09: 8080808080808080
R10: fefefefefefefeff R11: 2f2f2f2f2f2f2f2f R12: ffff8800cd61fc00
R13: ffff8800b4cdbe48 R14: 000000001b47026f R15: 0000000000000701
FS:  0000000000000000(0000) GS:ffff8801b1c00000(0063) knlGS:00000000e56bab40
CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
CR2: 00000000f1673000 CR3: 0000000057c63000 CR4: 00000000000007f0
Stack:
0000000000008000 ffff8801a9562000 ffff880001ed3029 0000001900000000
ffff8800b4cdbc78 0000000000044aa4 ffff8800b4cdbe48 ffff8800cd61fc00
ffff8800b4cdbd2f 0000000000000701 ffff8800b4cdbc58 ffffffff8115a070
Call Trace:
[<ffffffff8115a070>] d_lookup+0x30/0x50
[<ffffffff8114c8d6>] lookup_dcache+0x36/0xc0
[<ffffffff81160968>] ? __mnt_want_write+0x48/0x80
[<ffffffff8114eb17>] do_last.isra.58+0x397/0xc80
[<ffffffff8114fdae>] ? path_init+0x18e/0x440
[<ffffffff81150aaf>] path_openat+0x8f/0x5f0
[<ffffffff810e5548>] ? do_futex+0xf8/0xa10
[<ffffffff81151e6e>] do_filp_open+0x3e/0xa0
[<ffffffff8115e531>] ? __alloc_fd+0xd1/0x120
[<ffffffff8114208c>] do_sys_open+0x13c/0x230
[<ffffffff810d6e29>] ? SyS_clock_gettime+0x49/0x70
[<ffffffff8118a576>] compat_SyS_open+0x16/0x20
[<ffffffff814f20a9>] ia32_do_call+0x13/0x13
Code: 48 c1 e8 06 44 01 f0 69 c0 01 00 37 9e d3 e8 48 8d 1c c2 e8 eb 24 
f7 ff 48 8b 1b 48 83 e3 fe 75 0a eb 30 48 8b 1b 48 85 db 74 28 <44> 39 
73 18 75 f2 4c 8d 7b 50 4c 89 ff e8 b6 5c 39 00 4c 39 63
RIP  [<ffffffff81159f48>] __d_lookup+0x68/0x160
RSP <ffff8800b4cdbbd8>
---[ end trace 53aa0b81852a1448 ]---

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ