Bug#593760: linux-image-2.6.32-5-amd64: gdb /bin/true crashes the system if oprofile is in use under xen
On Fri, Aug 20, 2010 at 10:16:02PM +0300, Timo Juhani Lindfors wrote:
> 1) boot debian under xen
check
> 2) sudo aptitude install oprofile gdb
check
> 3) sudo opcontrol --init --no-vmlinux
| Option "--setup" not valid with "--init".
opcontrol --no-vmlinux works
> 4) sudo opcontrol --start
| Using 2.6+ OProfile kernel interface.
| Using log file /var/lib/oprofile/samples/oprofiled.log
| Daemon started.
| Profiler running.
> 5) gdb /bin/true
> 6) type "break main" and enter
> 7) type "y" and enter
> 8) type "run" and enter
I see this also on a Xen 3.2 from Lenny:
| oprofile: using timer interrupt.
| alignment check: 0000 [#1] SMP
| last sysfs file: /sys/module/dm_mod/initstate
| CPU 1
| Modules linked in: oprofile evdev snd_pcm snd_timer snd soundcore snd_page_alloc pcspkr ext3 jbd mbcache dm_mod raid10 raid456 async_raid6_recov async_pq raid6_pq async_xor xor async_memcpy async_tx raid1 raid0 multipath linear md_mod btrfs zlib_deflate crc32c libcrc32c xen_netfront xen_blkfront
| Pid: 10000, comm: gdb Not tainted 2.6.35-trunk-amd64 #1 /
| RIP: e030:[<ffffffffa0165c42>] [<ffffffffa0165c42>] sync_buffer+0xa3/0x405 [oprofile]
| RSP: e02b:ffff880060321be8 EFLAGS: 00250286
| RAX: ffff8800937b4c9c RBX: ffff8800937b4c9c RCX: 0000000000000006
| RDX: ffffffff8100603f RSI: 0000000000000000 RDI: ffff8800937b4c98
| RBP: 0000000000000000 R08: 0000000000000000 R09: ffff8800fd914af0
| R10: ffffffff8100603f R11: ffff8800fd914af0 R12: 00000000ffffffff
| R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
| FS: 00007f101e69b700(0000) GS:ffff880003d64000(0000) knlGS:0000000000000000
| CS: e033 DS: 0000 ES: 0000 CR0: 000000008005003b
| CR2: 00007f101e69b9d0 CR3: 000000006020f000 CR4: 0000000000000660
| DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
| DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
| Process gdb (pid: 10000, threadinfo ffff880060320000, task ffff8800fd912210)
| Stack:
| 0000000000000006 ffff880003d6f1e0 0000000100000000 0000000000000015
| <0> ffff8800937b4c98 ffff8800937b4c9c 0000000000000001 ffff8800937b4cac
| <0> ffff8800fd912210 ffff8800fd914af0 0000000000000000 ffff8800fd912210
| Call Trace:
| [<ffffffffa0165fb5>] ? task_exit_notify+0x11/0x16 [oprofile]
| [<ffffffff81303b5d>] ? notifier_call_chain+0x2e/0x5b
| [<ffffffff8105f5e3>] ? __blocking_notifier_call_chain+0x4c/0x63
| [<ffffffff810476f9>] ? do_exit+0x22/0x70d
| [<ffffffff81047e5e>] ? do_group_exit+0x7a/0xa4
| [<ffffffff813007c5>] ? _raw_spin_lock_irq+0x7/0x22
| [<ffffffff810546ce>] ? get_signal_to_deliver+0x357/0x379
| [<ffffffff81007f03>] ? do_signal+0x6c/0x68b
| [<ffffffff8100603f>] ? xen_restore_fl_direct_end+0x0/0x1
| [<ffffffff81300eb5>] ? page_fault+0x25/0x30
| [<ffffffff813010ea>] ? error_exit+0x2a/0x60
| [<ffffffff81300c1d>] ? retint_restore_args+0x5/0x6
| [<ffffffff81008547>] ? do_notify_resume+0x25/0x67
| [<ffffffff810407e3>] ? schedule_tail+0x57/0x59
| [<ffffffff81008c90>] ? int_signal+0x12/0x17
| Code: c7 44 24 14 01 00 00 00 48 89 44 24 18 e9 e8 02 00 00 48 8d 7c 24 20 44 89 f6 e8 54 f6 ff ff 48 85 c0 48 89 c3 0f 84 dd 02 00 00 <48> 8b 38 48 83 ff ff 0f 85 2c 02 00 00 48 8b 58 08 f6 c3 04 74
| RIP [<ffffffffa0165c42>] sync_buffer+0xa3/0x405 [oprofile]
| RSP <ffff880060321be8>
| ---[ end trace db6fd061b9be07d3 ]---
Which register shows the address of the unalligned access?
Bastian
--
You! What PLANET is this!
-- McCoy, "The City on the Edge of Forever", stardate 3134.0
Reply to: