From: Balbir Singh <balbir@linux.vnet.ibm.com>
To: Valdis.Kletnieks@vt.edu
Cc: Andrew Morton <akpm@linux-foundation.org>,
linux-kernel@vger.kernel.org, Dave Hansen <haveblue@us.ibm.com>
Subject: Re: 2.6.23-rc7-mm1 - 'touch' command causes Oops.
Date: Mon, 24 Sep 2007 16:38:52 +0530 [thread overview]
Message-ID: <46F79AC4.9010308@linux.vnet.ibm.com> (raw)
In-Reply-To: <3339.1190630150@turing-police.cc.vt.edu>
Valdis.Kletnieks@vt.edu wrote:
> On Mon, 24 Sep 2007 02:17:16 PDT, Andrew Morton said:
>
>> ftp://ftp.kernel.org/pub/linux/kernel/people/akpm/patches/2.6/2.6.23-rc7/2.6.23-rc7-mm1/
>
> It lived fast, it died young, it didn't leave a pretty corpse...
>
> Something in the startup scripts did a 'touch', and ker-blam.
>
> [ 15.668000] Unable to handle kernel NULL pointer dereference at 0000000000000252 RIP:
> [ 15.668000] [<ffffffff802a1dd1>] __mnt_is_readonly+0x9/0x1e
> [ 15.668000] PGD 52be067 PUD 5645067 PMD 0
> [ 15.668000] Oops: 0000 [1] PREEMPT SMP
> [ 15.668000] last sysfs file: /block/dm-13/dev
> [ 15.668000] CPU 0
> [ 15.668000] Modules linked in: rtc
> [ 15.668000] Pid: 528, comm: touch Not tainted 2.6.23-rc7-mm1 #1
> [ 15.668000] RIP: 0010:[<ffffffff802a1dd1>] [<ffffffff802a1dd1>] __mnt_is_readonly+0x9/0x1e
> [ 15.668000] RSP: 0018:ffff8100045fddd8 EFLAGS: 00010202
> [ 15.668000] RAX: 0000000000000001 RBX: ffff810002c10680 RCX: 0000000000000001
> [ 15.668000] RDX: ffff810082504000 RSI: ffff810005243168 RDI: 0000000000000202
> [ 15.668000] RBP: ffff8100045fddd8 R08: 0000000000000001 R09: 0000000000000002
> [ 15.668000] R10: 0000000000000000 R11: ffff8100045fde68 R12: 0000000000000202
> [ 15.668000] R13: 00000000ffffffe2 R14: ffff8100052c1d80 R15: ffff8100039aa8a0
> [ 15.668000] FS: 00007f9527f596f0(0000) GS:ffffffff806b6000(0000) knlGS:0000000000000000
> [ 15.668000] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
> [ 15.668000] CR2: 0000000000000252 CR3: 00000000052cb000 CR4: 00000000000006e0
> [ 15.668000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
> [ 15.668000] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
> [ 15.668000] Process touch (pid: 528, threadinfo ffff8100045fc000, task ffff8100047517e0)
> [ 15.668000] last branch before last exception/interrupt
> [ 15.668000] from [<ffffffff802a4d1b>] mnt_want_write+0x44/0xb5
> [ 15.668000] to [<ffffffff802a1dc8>] __mnt_is_readonly+0x0/0x1e
> [ 15.668000] Stack: ffff8100045fde08 ffffffff802a4d20 ffff8100045fddf8 0000000000000000
> [ 15.668000] 00000000fffffff7 ffff810005243140 ffff8100045fdf28 ffffffff802ad288
> [ 15.668000] ffff8100045fde58 0000000000000202 ffff8100045fde58 ffffffff8035437b
> [ 15.668000] Call Trace:
> [ 15.668000] [<ffffffff802a4d20>] mnt_want_write+0x49/0xb5
> [ 15.668000] [<ffffffff802ad288>] do_utimes+0xd0/0x220
> [ 15.668000] [<ffffffff8035437b>] __up_read+0x7a/0x83
> [ 15.668000] [<ffffffff8024b1af>] up_read+0x9/0xb
> [ 15.668000] [<ffffffff8051977c>] do_page_fault+0x421/0x7d0
> [ 15.668000] [<ffffffff8028b370>] do_filp_open+0x36/0x46
> [ 15.668000] [<ffffffff802ad519>] sys_utimensat+0x8b/0xa5
> [ 15.668000] [<ffffffff80517a4d>] error_exit+0x0/0x84
> [ 15.668000] [<ffffffff8020c10e>] system_call+0x7e/0x83
> [ 15.668000]
> [ 15.668000]
> [ 15.668000] Code: f6 47 50 40 75 0d 48 8b 47 28 8a 40 58 83 e0 01 0f b6 c0 c9
> [ 15.668000] RIP [<ffffffff802a1dd1>] __mnt_is_readonly+0x9/0x1e
> [ 15.668000] RSP <ffff8100045fddd8>
> [ 15.668000] CR2: 0000000000000252
>
CC'ing Dave, he might be interested in looking into this. Do you know
which file was touched. I suspect either mnt or mnt_sb is NULL in
__mnt_is_readonly(). mnt is extracted from the nameidata structure.
It's interesting to see utimenstat in the stack, I suspect that
the filename was probably NULL and dfd was something other than
AT_FDCWD (Just a wild guess). I'll try to reproduce your problem.
--
Warm Regards,
Balbir Singh
Linux Technology Center
IBM, ISTL
next prev parent reply other threads:[~2007-09-24 11:09 UTC|newest]
Thread overview: 84+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-09-24 9:17 2.6.23-rc7-mm1 Andrew Morton
2007-09-24 10:07 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 21:02 ` 2.6.23-rc7-mm1 Sam Ravnborg
2007-09-24 21:36 ` 2.6.23-rc7-mm1 Sam Ravnborg
2007-09-24 23:27 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 10:35 ` 2.6.23-rc7-mm1 - 'touch' command causes Oops Valdis.Kletnieks
2007-09-24 11:08 ` Balbir Singh [this message]
2007-09-24 12:05 ` Christoph Hellwig
2007-09-24 12:58 ` Valdis.Kletnieks
2007-09-24 15:45 ` Dave Hansen
2007-09-24 16:08 ` Valdis.Kletnieks
2007-09-24 11:30 ` [-mm Patch] net/bluetooth/hidp/core.c: Make hidp_setup_input() return int WANG Cong
2007-09-24 22:18 ` [Bluez-devel] " Marcel Holtmann
2007-09-24 22:18 ` Marcel Holtmann
2007-09-26 5:57 ` David Miller
2007-09-24 11:42 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 12:32 ` 2.6.23-rc7-mm1 -- s390 compile failures Andy Whitcroft
2007-09-24 12:49 ` Cedric Le Goater
2007-09-24 12:33 ` 2.6.23-rc7-mm1 Jiri Slaby
2007-09-24 14:41 ` [linux-usb-devel] 2.6.23-rc7-mm1 Alan Stern
2007-09-24 18:45 ` Jiri Slaby
2007-09-24 19:06 ` Alan Stern
2007-09-24 19:18 ` Jiri Slaby
2007-09-24 19:41 ` Alan Stern
2007-09-30 8:26 ` Jiri Slaby
2007-09-24 12:35 ` 2.6.23-rc7-mm1 -- powerpc rtas panic Andy Whitcroft
2007-09-24 12:35 ` Andy Whitcroft
2007-10-02 23:28 ` Linas Vepstas
2007-10-02 23:28 ` Linas Vepstas
2007-10-03 0:26 ` Tony Breeds
2007-10-03 0:26 ` Tony Breeds
2007-10-03 0:30 ` Michael Ellerman
2007-10-03 0:30 ` Michael Ellerman
2007-10-03 1:19 ` Tony Breeds
2007-10-03 1:19 ` Tony Breeds
2007-10-03 4:09 ` Michael Ellerman
2007-10-03 4:09 ` Michael Ellerman
2007-10-03 18:50 ` Linas Vepstas
2007-10-03 18:50 ` Linas Vepstas
2007-10-05 0:01 ` Nish Aravamudan
2007-10-05 0:01 ` Nish Aravamudan
2007-10-05 16:03 ` Linas Vepstas
2007-10-05 16:03 ` Linas Vepstas
2007-10-08 3:47 ` Nish Aravamudan
2007-10-08 3:47 ` Nish Aravamudan
2007-09-24 12:47 ` 2.6.23-rc7-mm1 Cedric Le Goater
2007-09-24 16:56 ` 2.6.23-rc7-mm1 Jens Axboe
2007-09-24 12:55 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 13:10 ` 2.6.23-rc7-mm1 Pavel Emelyanov
2007-09-24 13:21 ` 2.6.23-rc7-mm1 Balbir Singh
2007-09-24 15:34 ` 2.6.23-rc7-mm1 Pavel Emelyanov
2007-09-24 16:10 ` 2.6.23-rc7-mm1 Balbir Singh
2007-09-24 13:00 ` 2.6.23-rc7-mm1 Cedric Le Goater
2007-09-24 13:10 ` 2.6.23-rc7-mm1 Cedric Le Goater
2007-09-24 13:29 ` 2.6.23-rc7-mm1 Vlad Yasevich
2007-09-24 16:58 ` 2.6.23-rc7-mm1 Jens Axboe
2007-09-24 16:57 ` 2.6.23-rc7-mm1 Jens Axboe
2007-09-24 13:13 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 16:44 ` 2.6.23-rc7-mm1 Andrew Morton
2007-09-24 16:57 ` 2.6.23-rc7-mm1 Peter Zijlstra
2007-09-24 17:08 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 19:20 ` 2.6.23-rc7-mm1 Peter Zijlstra
2007-09-25 11:05 ` 2.6.23-rc7-mm1 Peter Zijlstra
2007-09-25 13:07 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-24 13:17 ` [PATCH rc7-mm1] fix BUG at mm/swap.c:405! Hugh Dickins
2007-09-24 14:52 ` 2.6.23-rc7-mm1 Reuben Farrelly
2007-09-24 16:59 ` 2.6.23-rc7-mm1 Andrew Morton
2007-09-24 17:12 ` 2.6.23-rc7-mm1 J. Bruce Fields
2007-09-24 21:31 ` 2.6.23-rc7-mm1 Reuben Farrelly
2007-09-24 15:18 ` 2.6.23-rc7-mm1 ia64 build issue in efi.c Bob Picco
2007-09-24 19:07 ` 2.6.23-rc7-mm1 Torsten Kaiser
2007-09-24 19:34 ` 2.6.23-rc7-mm1 Andrew Morton
2007-09-24 20:25 ` 2.6.23-rc7-mm1 Thomas Gleixner
2007-09-25 7:32 ` 2.6.23-rc7-mm1 Torsten Kaiser
2007-09-25 7:44 ` 2.6.23-rc7-mm1 Thomas Gleixner
2007-09-24 19:41 ` 2.6.23-rc7-mm1 Kamalesh Babulal
2007-09-25 10:23 ` 2.6.23-rc7-mm1 Mel Gorman
2007-09-25 10:31 ` 2.6.23-rc7-mm1 Jens Axboe
2007-09-25 11:15 ` 2.6.23-rc7-mm1 Mel Gorman
2007-09-25 11:23 ` 2.6.23-rc7-mm1 Jens Axboe
2007-09-24 20:10 ` 2.6.23-rc7-mm1: build error with CONFIG_KEXEC=y and CONFIG_NOHIGHMEM=y Laurent Riffard
2007-09-24 23:11 ` Randy Dunlap
2007-09-24 23:11 ` Randy Dunlap
2007-09-24 22:20 ` 2.6.23-rc7-mm1 Kamalesh Babulal
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=46F79AC4.9010308@linux.vnet.ibm.com \
--to=balbir@linux.vnet.ibm.com \
--cc=Valdis.Kletnieks@vt.edu \
--cc=akpm@linux-foundation.org \
--cc=haveblue@us.ibm.com \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.