From: Edward Shishkin <edward.shishkin@gmail.com>
To: "Dušan Čolić" <dusanc@gmail.com>,
reiserfs-devel <reiserfs-devel@vger.kernel.org>
Subject: Re: [BUG] on mount with reiser4-for-4.8
Date: Sat, 17 Dec 2016 22:45:49 +0100 [thread overview]
Message-ID: <5855B20D.6020304@gmail.com> (raw)
In-Reply-To: <CADW=+3=UA1ugAVzrLMw-R8T5dWXjWnwwfUJHYfDp-VFMPyE5jg@mail.gmail.com>
[-- Attachment #1: Type: text/plain, Size: 22779 bytes --]
Please, check if this help.
Apply from reiser4 directory.
Thanks,
Edward.
On 12/17/2016 10:08 PM, Dušan Čolić wrote:
> When mounting reiser4 partitions I get the following bug, but the
> system keeps working, even as reiser4 remounted partition as read
> only.
>
> All R4 partitions are ccreg40.
>
> Thanks
>
> Dushan
>
> cat /etc/fstab | grep -v "#"
>
>
> /dev/sda1 /boot ext2 noauto,noatime 1 2
> /dev/md123 none swap sw 0 0
> /dev/sda2 / reiser4 noatime,onerror=remount-ro 0 0
> /dev/md125 /mnt/backup reiser4
> noatime,noauto,onerror=remount-ro 0 0
> /dev/md126 /mnt/media reiser4
> noatime,users,onerror=remount-ro 0 0
> /dev/md127 /usr/portage reiser4
> noatime,onerror=remount-ro 0 0
> /dev/dvdrom /mnt/cdrom auto noauto,ro 0 0
> shm /dev/shm tmpfs nodev,nosuid,noexec 0 0
>
>
> cat /proc/mdstat
> Personalities : [raid1]
> md122 : active raid1 sdc1[1] sdb1[0]
> 104320 blocks [2/2] [UU]
>
> md123 : active raid1 sdc2[1] sdb2[0]
> 594304 blocks [2/2] [UU]
>
> md124 : active raid1 sdc5[1] sdb5[0]
> 9775424 blocks [2/2] [UU]
>
> md125 : active raid1 sdc6[1] sdb6[0]
> 68364480 blocks [2/2] [UU]
>
> md126 : active raid1 sdc7[1] sdb7[0]
> 403110912 blocks [2/2] [UU]
>
> md127 : active raid1 sdc8[1] sdb8[0]
> 6433920 blocks [2/2] [UU]
>
> df
>
> Filesystem 1K-blocks Used Available Use% Mounted on
> /dev/sda2 37017728 30413152 6604576 83% /
> tmpfs 680644 1012 679632 1% /run
> dev 10240 0 10240 0% /dev
> shm 3403212 1284 3401928 1% /dev/shm
> cgroup_root 10240 0 10240 0% /sys/fs/cgroup
> /dev/md126 383034100 350741596 32292504 92% /mnt/media
> /dev/md127 6113484 5605344 508140 92% /usr/portage
> none 3403212 12 3403200 1% /run/user/1001
> none 3403212 0 3403212 0% /run/user/1000
> /dev/md125 64959612 52568760 12390852 81% /mnt/backup
>
>
> dmesg
>
> [ 2.057469] reiser4[swapper/0(1)]: try_init_format40
> (fs/reiser4/plugin/disk_format/disk_format40.c:303)[vpf-1364]:
> NOTICE: Warning: mounting sda2 with fatal errors,
> forcing read-only mount.
> [ 2.060544] reiser4: sda2: found disk format 4.0.1.
> [ 2.062410] ==================================================================
> [ 2.063993] BUG: KASAN: use-after-free in
> init_format_format40+0x401/0x750 at addr ffff8801d0fc0850
> [ 2.065616] Read of size 4 by task swapper/0/1
> [ 2.067228] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 4.8.11-gentoo #3
> [ 2.068857] Hardware name: Gigabyte Technology Co., Ltd. To be
> filled by O.E.M./B75-D3V, BIOS F5 07/04/2012
> [ 2.070566] ffff8801d08f4580 ffff8801d6327a20 ffffffff81424185
> ffff8801d6000600
> [ 2.072316] ffff8801d0fc0800 ffff8801d6327a48 ffffffff811ff90c
> ffff8801d6327ad8
> [ 2.074078] ffff8801d0fc0800 ffff8801d0fc0800 ffff8801d6327ac8
> ffffffff811ffb79
> [ 2.075861] Call Trace:
> [ 2.077616] [<ffffffff81424185>] dump_stack+0x4d/0x68
> [ 2.079402] [<ffffffff811ff90c>] kasan_object_err+0x1c/0x70
> [ 2.081216] [<ffffffff811ffb79>] kasan_report_error+0x1c9/0x4b0
> [ 2.083049] [<ffffffff812a10cf>] ? zget+0xdf/0x3c0
> [ 2.084876] [<ffffffff811ffef4>] kasan_report+0x34/0x40
> [ 2.086717] [<ffffffff81304b11>] ? init_format_format40+0x401/0x750
> [ 2.088594] [<ffffffff811ff601>] __asan_load4+0x61/0x80
> [ 2.090471] [<ffffffff81304b11>] init_format_format40+0x401/0x750
> [ 2.092356] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 2.094224] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 2.096073] [<ffffffff812c4df0>] ? reiser4_mount+0x20/0x20
> [ 2.097930] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 2.099785] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 2.101654] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 2.103528] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 2.105397] [<ffffffff811fe944>] ? kasan_check_write+0x14/0x20
> [ 2.107295] [<ffffffff811c4624>] ? strndup_user+0x54/0x70
> [ 2.109187] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 2.111089] [<ffffffff820a8759>] mount_block_root+0x171/0x3ac
> [ 2.113023] [<ffffffff820a8a0b>] mount_root+0x77/0xd8
> [ 2.114955] [<ffffffff820a8ba1>] prepare_namespace+0x135/0x16d
> [ 2.116887] [<ffffffff820a84ec>] kernel_init_freeable+0x237/0x24b
> [ 2.118811] [<ffffffff81a50e9e>] kernel_init+0xe/0x120
> [ 2.120713] [<ffffffff81a5780f>] ret_from_fork+0x1f/0x40
> [ 2.122618] [<ffffffff81a50e90>] ? rest_init+0x80/0x80
> [ 2.124522] Object at ffff8801d0fc0800, in cache kmalloc-512 size: 512
> [ 2.126453] Allocated:
> [ 2.128364] PID = 1
> [ 2.130261] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 2.132219] [<ffffffff811fe802>] kasan_kmalloc.part.5+0x62/0xf0
> [ 2.134206] [<ffffffff811ff018>] kasan_kmalloc+0x78/0xa0
> [ 2.136188] [<ffffffff813048bc>] init_format_format40+0x1ac/0x750
> [ 2.138174] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 2.140144] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 2.142096] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 2.144055] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 2.146028] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 2.148016] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 2.150014] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 2.152026] [<ffffffff820a8759>] mount_block_root+0x171/0x3ac
> [ 2.154055] [<ffffffff820a8a0b>] mount_root+0x77/0xd8
> [ 2.156066] [<ffffffff820a8ba1>] prepare_namespace+0x135/0x16d
> [ 2.158074] [<ffffffff820a84ec>] kernel_init_freeable+0x237/0x24b
> [ 2.160079] [<ffffffff81a50e9e>] kernel_init+0xe/0x120
> [ 2.162020] [<ffffffff81a5780f>] ret_from_fork+0x1f/0x40
> [ 2.163918] Freed:
> [ 2.165760] PID = 1
> [ 2.167562] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 2.169376] [<ffffffff811feed7>] kasan_slab_free+0xb7/0x180
> [ 2.171150] [<ffffffff811fd67b>] kfree+0x6b/0x90
> [ 2.172895] [<ffffffff81304b09>] init_format_format40+0x3f9/0x750
> [ 2.174616] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 2.176290] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 2.177962] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 2.179633] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 2.181273] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 2.182910] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 2.184541] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 2.186171] [<ffffffff820a8759>] mount_block_root+0x171/0x3ac
> [ 2.187804] [<ffffffff820a8a0b>] mount_root+0x77/0xd8
> [ 2.189430] [<ffffffff820a8ba1>] prepare_namespace+0x135/0x16d
> [ 2.191056] [<ffffffff820a84ec>] kernel_init_freeable+0x237/0x24b
> [ 2.192683] [<ffffffff81a50e9e>] kernel_init+0xe/0x120
> [ 2.194296] [<ffffffff81a5780f>] ret_from_fork+0x1f/0x40
> [ 2.195902] Memory state around the buggy address:
> [ 2.197517] ffff8801d0fc0700: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [ 2.199178] ffff8801d0fc0780: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [ 2.200818] >ffff8801d0fc0800: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 2.202460] ^
> [ 2.204114] ffff8801d0fc0880: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 2.205804] ffff8801d0fc0900: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 2.207471] ==================================================================
> [ 2.209162] Disabling lock debugging due to kernel taint
> [ 2.210933] reiser4: sda2: use 'fsck.reiser4 --fix' to complete
> disk format upgrade.
> [ 2.212696] usb 1-1.4: new high-speed USB device number 3 using ehci-pci
> [ 2.214507] usb 2-1.5: new full-speed USB device number 3 using ehci-pci
> [ 2.234910] hid-generic 0003:051D:0002.0002: device has no
> listeners, quitting
> [ 2.312037] reiser4: sda2: using Hybrid Transaction Model.
> [ 2.313880] VFS: Mounted root (reiser4 filesystem) readonly on device 8:2.
> [ 2.315949] Freeing unused kernel memory: 968K (ffffffff82086000 -
> ffffffff82178000)
> [ 2.317823] Write protecting the kernel read-only data: 16384k
> [ 2.320900] Freeing unused kernel memory: 1636K (ffff880001a67000 -
> ffff880001c00000)
> [ 2.331114] Freeing unused kernel memory: 1848K (ffff880001e32000 -
> ffff880002000000)
> [ 2.334644] hub 1-1.4:1.0: USB hub found
> [ 2.336766] hub 1-1.4:1.0: 2 ports detected
> [ 2.624398] usb 1-1.4.2: new full-speed USB device number 4 using ehci-pci
> [ 5.221431] random: crng init done
> [ 7.579186] Adding 594300k swap on /dev/md123. Priority:-1
> extents:1 across:594300k
> [ 7.661464] reiser4: md126: found disk format 4.0.1.
> [ 7.661541] ==================================================================
> [ 7.661546] BUG: KASAN: use-after-free in
> init_format_format40+0x401/0x750 at addr ffff8801cfaf1350
> [ 7.661548] Read of size 4 by task mount/1662
> [ 7.661551] CPU: 0 PID: 1662 Comm: mount Tainted: G B
> 4.8.11-gentoo #3
> [ 7.661552] Hardware name: Gigabyte Technology Co., Ltd. To be
> filled by O.E.M./B75-D3V, BIOS F5 07/04/2012
> [ 7.661553] ffff8801ceef3580 ffff8801cf087b28 ffffffff81424185
> ffff8801d6000600
> [ 7.661556] ffff8801cfaf1300 ffff8801cf087b50 ffffffff811ff90c
> ffff8801cf087be0
> [ 7.661559] ffff8801cfaf1300 ffff8801cfaf1300 ffff8801cf087bd0
> ffffffff811ffb79
> [ 7.661561] Call Trace:
> [ 7.661565] [<ffffffff81424185>] dump_stack+0x4d/0x68
> [ 7.661569] [<ffffffff811ff90c>] kasan_object_err+0x1c/0x70
> [ 7.661571] [<ffffffff811ffb79>] kasan_report_error+0x1c9/0x4b0
> [ 7.661574] [<ffffffff812a10cf>] ? zget+0xdf/0x3c0
> [ 7.661577] [<ffffffff811ffef4>] kasan_report+0x34/0x40
> [ 7.661580] [<ffffffff81304b11>] ? init_format_format40+0x401/0x750
> [ 7.661582] [<ffffffff811ff601>] __asan_load4+0x61/0x80
> [ 7.661585] [<ffffffff81304b11>] init_format_format40+0x401/0x750
> [ 7.661588] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 7.661591] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 7.661593] [<ffffffff812c4df0>] ? reiser4_mount+0x20/0x20
> [ 7.661594] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 7.661597] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 7.661600] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 7.661602] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 7.661604] [<ffffffff812337f1>] ? copy_mount_options+0x111/0x220
> [ 7.661606] [<ffffffff812337da>] ? copy_mount_options+0xfa/0x220
> [ 7.661608] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 7.661613] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 7.661614] Object at ffff8801cfaf1300, in cache kmalloc-512 size: 512
> [ 7.661615] Allocated:
> [ 7.661615] PID = 1662
> [ 7.661616] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 7.661620] [<ffffffff811fe802>] kasan_kmalloc.part.5+0x62/0xf0
> [ 7.661622] [<ffffffff811ff018>] kasan_kmalloc+0x78/0xa0
> [ 7.661625] [<ffffffff813048bc>] init_format_format40+0x1ac/0x750
> [ 7.661628] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 7.661630] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 7.661632] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 7.661634] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 7.661637] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 7.661639] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 7.661641] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 7.661643] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 7.661646] Freed:
> [ 7.661646] PID = 1662
> [ 7.661647] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 7.661649] [<ffffffff811feed7>] kasan_slab_free+0xb7/0x180
> [ 7.661652] [<ffffffff811fd67b>] kfree+0x6b/0x90
> [ 7.661654] [<ffffffff81304b09>] init_format_format40+0x3f9/0x750
> [ 7.661657] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 7.661659] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 7.661662] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 7.661664] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 7.661666] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 7.661668] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 7.661670] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 7.661672] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 7.661675] Memory state around the buggy address:
> [ 7.661677] ffff8801cfaf1200: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 7.661679] ffff8801cfaf1280: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [ 7.661681] >ffff8801cfaf1300: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 7.661681] ^
> [ 7.661683] ffff8801cfaf1380: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 7.661684] ffff8801cfaf1400: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 7.661685] ==================================================================
> [ 10.972840] rcu-perf:rcu_perf_writer 0 has 100 measurements
> [ 11.016722] rcu-perf:Test complete
> [ 26.835385] reiser4: md126: using Hybrid Transaction Model.
> [ 26.857910] reiser4: md127: found disk format 4.0.1.
> [ 26.857995] ==================================================================
> [ 26.858002] BUG: KASAN: use-after-free in
> init_format_format40+0x401/0x750 at addr ffff8801cbf560d0
> [ 26.858003] Read of size 4 by task mount/1662
> [ 26.858006] CPU: 0 PID: 1662 Comm: mount Tainted: G B
> 4.8.11-gentoo #3
> [ 26.858007] Hardware name: Gigabyte Technology Co., Ltd. To be
> filled by O.E.M./B75-D3V, BIOS F5 07/04/2012
> [ 26.858009] ffff8801b9ded5c0 ffff8801cf087b28 ffffffff81424185
> ffff8801d6000600
> [ 26.858012] ffff8801cbf56080 ffff8801cf087b50 ffffffff811ff90c
> ffff8801cf087be0
> [ 26.858014] ffff8801cbf56080 ffff8801cbf56080 ffff8801cf087bd0
> ffffffff811ffb79
> [ 26.858017] Call Trace:
> [ 26.858020] [<ffffffff81424185>] dump_stack+0x4d/0x68
> [ 26.858024] [<ffffffff811ff90c>] kasan_object_err+0x1c/0x70
> [ 26.858027] [<ffffffff811ffb79>] kasan_report_error+0x1c9/0x4b0
> [ 26.858029] [<ffffffff812a10cf>] ? zget+0xdf/0x3c0
> [ 26.858032] [<ffffffff811ffef4>] kasan_report+0x34/0x40
> [ 26.858035] [<ffffffff81304b11>] ? init_format_format40+0x401/0x750
> [ 26.858038] [<ffffffff811ff601>] __asan_load4+0x61/0x80
> [ 26.858040] [<ffffffff81304b11>] init_format_format40+0x401/0x750
> [ 26.858043] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 26.858046] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 26.858048] [<ffffffff812c4df0>] ? reiser4_mount+0x20/0x20
> [ 26.858050] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 26.858052] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 26.858055] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 26.858057] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 26.858059] [<ffffffff812337da>] ? copy_mount_options+0xfa/0x220
> [ 26.858061] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 26.858065] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 26.858067] Object at ffff8801cbf56080, in cache kmalloc-512 size: 512
> [ 26.858067] Allocated:
> [ 26.858068] PID = 1662
> [ 26.858069] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 26.858072] [<ffffffff811fe802>] kasan_kmalloc.part.5+0x62/0xf0
> [ 26.858075] [<ffffffff811ff018>] kasan_kmalloc+0x78/0xa0
> [ 26.858077] [<ffffffff813048bc>] init_format_format40+0x1ac/0x750
> [ 26.858080] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 26.858082] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 26.858085] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 26.858087] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 26.858089] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 26.858091] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 26.858093] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 26.858095] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 26.858098] Freed:
> [ 26.858099] PID = 1662
> [ 26.858099] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [ 26.858102] [<ffffffff811feed7>] kasan_slab_free+0xb7/0x180
> [ 26.858104] [<ffffffff811fd67b>] kfree+0x6b/0x90
> [ 26.858107] [<ffffffff81304b09>] init_format_format40+0x3f9/0x750
> [ 26.858109] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [ 26.858111] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [ 26.858114] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [ 26.858116] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [ 26.858118] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [ 26.858120] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [ 26.858122] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [ 26.858124] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [ 26.858128] Memory state around the buggy address:
> [ 26.858130] ffff8801cbf55f80: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [ 26.858131] ffff8801cbf56000: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [ 26.858133] >ffff8801cbf56080: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 26.858134] ^
> [ 26.858135] ffff8801cbf56100: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 26.858137] ffff8801cbf56180: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [ 26.858137] ==================================================================
> [ 27.199941] reiser4: md127: using Hybrid Transaction Model.
>
>
> [33530.203469] reiser4[mount(11677)]: try_init_format40
> (fs/reiser4/plugin/disk_format/disk_format40.c:303)[vpf-1364]:
> NOTICE: Warning: mounting md125 with fatal errors,
> forcing read-only mount.
> [33530.203480] reiser4: md125: found disk format 4.0.1.
> [33530.203564] ==================================================================
> [33530.203570] BUG: KASAN: use-after-free in
> init_format_format40+0x401/0x750 at addr ffff88013164d810
> [33530.203571] Read of size 4 by task mount/11677
> [33530.203574] CPU: 0 PID: 11677 Comm: mount Tainted: G B
> 4.8.11-gentoo #3
> [33530.203575] Hardware name: Gigabyte Technology Co., Ltd. To be
> filled by O.E.M./B75-D3V, BIOS F5 07/04/2012
> [33530.203577] ffff88000e65ce80 ffff88000da87b28 ffffffff81424185
> ffff8801d6000600
> [33530.203580] ffff88013164d7c0 ffff88000da87b50 ffffffff811ff90c
> ffff88000da87be0
> [33530.203582] ffff88013164d7c0 ffff88013164d7c0 ffff88000da87bd0
> ffffffff811ffb79
> [33530.203585] Call Trace:
> [33530.203588] [<ffffffff81424185>] dump_stack+0x4d/0x68
> [33530.203592] [<ffffffff811ff90c>] kasan_object_err+0x1c/0x70
> [33530.203595] [<ffffffff811ffb79>] kasan_report_error+0x1c9/0x4b0
> [33530.203597] [<ffffffff812a10cf>] ? zget+0xdf/0x3c0
> [33530.203600] [<ffffffff811ffef4>] kasan_report+0x34/0x40
> [33530.203603] [<ffffffff81304b11>] ? init_format_format40+0x401/0x750
> [33530.203605] [<ffffffff811ff601>] __asan_load4+0x61/0x80
> [33530.203608] [<ffffffff81304b11>] init_format_format40+0x401/0x750
> [33530.203610] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [33530.203613] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [33530.203615] [<ffffffff812c4df0>] ? reiser4_mount+0x20/0x20
> [33530.203617] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [33530.203620] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [33530.203622] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [33530.203625] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [33530.203627] [<ffffffff812337f1>] ? copy_mount_options+0x111/0x220
> [33530.203629] [<ffffffff812337da>] ? copy_mount_options+0xfa/0x220
> [33530.203631] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [33530.203635] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [33530.203637] Object at ffff88013164d7c0, in cache kmalloc-512 size: 512
> [33530.203637] Allocated:
> [33530.203638] PID = 11677
> [33530.203639] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [33530.203642] [<ffffffff811fe802>] kasan_kmalloc.part.5+0x62/0xf0
> [33530.203645] [<ffffffff811ff018>] kasan_kmalloc+0x78/0xa0
> [33530.203647] [<ffffffff813048bc>] init_format_format40+0x1ac/0x750
> [33530.203650] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [33530.203652] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [33530.203654] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [33530.203656] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [33530.203659] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [33530.203661] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [33530.203663] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [33530.203665] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [33530.203668] Freed:
> [33530.203669] PID = 11677
> [33530.203669] [<ffffffff8109f536>] save_stack_trace+0x26/0x50
> [33530.203671] [<ffffffff811feed7>] kasan_slab_free+0xb7/0x180
> [33530.203674] [<ffffffff811fd67b>] kfree+0x6b/0x90
> [33530.203676] [<ffffffff81304b09>] init_format_format40+0x3f9/0x750
> [33530.203679] [<ffffffff812c4f3a>] fill_super+0x14a/0x300
> [33530.203681] [<ffffffff81209b6f>] mount_bdev+0x1bf/0x200
> [33530.203683] [<ffffffff812c4de0>] reiser4_mount+0x10/0x20
> [33530.203685] [<ffffffff81209dfe>] mount_fs+0x2e/0xe0
> [33530.203688] [<ffffffff81231a96>] vfs_kern_mount+0x66/0x190
> [33530.203690] [<ffffffff81233af2>] do_mount+0x1d2/0x1080
> [33530.203692] [<ffffffff81234e46>] SyS_mount+0x66/0xb0
> [33530.203694] [<ffffffff81a5761b>] entry_SYSCALL_64_fastpath+0x13/0x8f
> [33530.203697] Memory state around the buggy address:
> [33530.203699] ffff88013164d700: fc fc fc fc fc fc fc fc fc fc fc fc
> fc fc fc fc
> [33530.203701] ffff88013164d780: fc fc fc fc fc fc fc fc fb fb fb fb
> fb fb fb fb
> [33530.203703] >ffff88013164d800: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [33530.203703] ^
> [33530.203705] ffff88013164d880: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [33530.203707] ffff88013164d900: fb fb fb fb fb fb fb fb fb fb fb fb
> fb fb fb fb
> [33530.203707] ==================================================================
> [33533.485380] reiser4: md125: using Hybrid Transaction Model.
> --
> To unsubscribe from this list: send the line "unsubscribe reiserfs-devel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
[-- Attachment #2: reiser4-fix-missed-readonly-flag.patch --]
[-- Type: text/x-patch, Size: 711 bytes --]
diff --git a/plugin/disk_format/disk_format40.c b/plugin/disk_format/disk_format40.c
index 41d7bbc..d9a0d49 100644
--- a/plugin/disk_format/disk_format40.c
+++ b/plugin/disk_format/disk_format40.c
@@ -298,9 +298,11 @@ static int try_init_format40(struct super_block *super,
if (result == REISER4_STATUS_MOUNT_WARN)
notice("vpf-1363", "Warning: mounting %s with errors.",
super->s_id);
- if (result == REISER4_STATUS_MOUNT_RO)
+ if (result == REISER4_STATUS_MOUNT_RO) {
notice("vpf-1364", "Warning: mounting %s with fatal errors,"
" forcing read-only mount.", super->s_id);
+ super->s_flags |= MS_RDONLY;
+ }
result = reiser4_journal_replay(super);
if (result)
return result;
next prev parent reply other threads:[~2016-12-17 21:45 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-12-17 21:08 [BUG] on mount with reiser4-for-4.8 Dušan Čolić
2016-12-17 21:45 ` Edward Shishkin [this message]
2016-12-18 12:17 ` Dušan Čolić
2016-12-18 12:44 ` Edward Shishkin
2016-12-18 13:46 ` Dušan Čolić
2016-12-24 8:48 ` Dušan Čolić
2016-12-25 15:32 ` Dušan Čolić
2017-01-06 15:37 ` Dušan Čolić
2017-01-07 22:51 ` Edward Shishkin
2017-01-08 7:25 ` Dušan Čolić
2017-01-08 13:09 ` Edward Shishkin
2017-01-08 21:26 ` Dušan Čolić
2017-01-11 10:10 ` Edward Shishkin
2017-01-11 10:30 ` Dušan Čolić
2017-01-11 10:37 ` Edward Shishkin
2017-01-11 11:48 ` Dušan Čolić
2017-01-31 12:14 ` Edward Shishkin
2017-02-13 6:47 ` Dušan Čolić
2017-02-13 12:48 ` Edward Shishkin
2017-02-13 13:12 ` Dušan Čolić
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=5855B20D.6020304@gmail.com \
--to=edward.shishkin@gmail.com \
--cc=dusanc@gmail.com \
--cc=reiserfs-devel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).