Bug#602908: linux-image-2.6.32-5-xen-amd64: Xen dom0 crashes with unable to handle kernel NULL pointer dereference

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#602908: linux-image-2.6.32-5-xen-amd64: Xen dom0 crashes with unable to handle kernel NULL pointer dereference
From: Maciej Galkiewicz <maciej.galkiewicz@gmail.com>
Date: Tue, 09 Nov 2010 11:05:25 +0100
Message-id: <[🔎] 20101109100525.6359.24747.reportbug@msi.krimisek.net>
Reply-to: Maciej Galkiewicz <maciej.galkiewicz@gmail.com>, 602908@bugs.debian.org
Package: linux-image-2.6.32-5-xen-amd64
Version: 2.6.32-5-xen-amd64 (2.6.32-26)
Severity: critical
Tags: squeeze
Justification: breaks the whole system

My dom0 crashed unexpectedly with the following error:

Nov  9 08:20:06 n2c1 kernel: [544983.843772] BUG: unable to handle kernel NULL pointer dereference at 000000000000001d
Nov  9 08:20:06 n2c1 kernel: [544983.843835] IP: [<ffffffffa051a718>] disk_execute_cmnd+0x7b/0x233 [iscsi_trgt]
Nov  9 08:20:06 n2c1 kernel: [544983.843892] PGD 1ee60c067 PUD 1ee081067 PMD 0 
Nov  9 08:20:06 n2c1 kernel: [544983.843931] Oops: 0000 [#1] SMP 
Nov  9 08:20:06 n2c1 kernel: [544983.843964] last sysfs file: /sys/module/drbd/parameters/cn_idx
Nov  9 08:20:06 n2c1 kernel: [544983.843995] CPU 2 
Nov  9 08:20:06 n2c1 kernel: [544983.844021] Modules linked in: crc32c xfrm_user ah6 ah4 esp6 xfrm4_mode_beet xfrm4_tunnel xfrm4_mode_transport xfrm6_mode_transport xfrm6_mode_ro xfrm6_mode_beet ipcomp ipcomp6 xfrm6_tunnel af_key iscsi_trgt drbd lru_cache cn act_police cls_flow cls_fw cls_u32 sch_htb sch_hfsc sch_ingress sch_sfq xt_time xt_connlimit xt_realm iptable_raw xt_comment xt_recent xt_policy ipt_ULOG ipt_REJECT ipt_REDIRECT ipt_NETMAP ipt_MASQUERADE ipt_ECN ipt_ecn ipt_CLUSTERIP ipt_ah ipt_addrtype nf_nat_tftp nf_nat_snmp_basic nf_nat_sip nf_nat_pptp nf_nat_proto_gre nf_nat_irc nf_nat_h323 nf_nat_ftp nf_nat_amanda ts_kmp nf_conntrack_amanda nf_conntrack_sane nf_conntrack_tftp nf_conntrack_sip nf_conntrack_proto_sctp nf_conntrack_pptp nf_conntrack_proto_gre nf_conntrack_netlink nf_conntrack_netbios_ns nf_conntrack_irc nf_conntrack_h323 nf_conntrack_ftp xt_TPROXY nf_tproxy_core xt_tcpmss xt_pkttype xt_owner xt_NFQUEUE xt_NFLOG nfnetlink_log xt_multiport xt_MARK xt_mark
  xt_mac xt_limit xt_length xt_ipran
Nov  9 08:20:06 n2c1 kernel: ge xt_helper xt_hashlimit xt_DSCP xt_dscp xt_dccp xt_conntrack xt_CONNMARK xt_connmark xt_CLASSIFY iptable_nat nf_nat iptable_mangle nfnetlink ipt_LOG xt_tcpudp aoe nf_conntrack_ipv4 nf_defrag_ipv4 xt_state nf_conntrack xt_physdev authenc deflate zlib_deflate ctr camellia cast5 rmd160 sha1_generic hmac crypto_null ccm serpent blowfish twofish twofish_common ecb xcbc cbc sha256_generic sha512_generic des_generic aes_x86_64 ip6table_filter aes_generic ip6_tables xen_evtchn xenfs iptable_filter ip_tables x_tables esp4 tunnel4 xfrm4_mode_tunnel xfrm6_mode_tunnel xfrm_ipcomp tunnel6 rng_core acpi_cpufreq cpufreq_userspace cpufreq_stats cpufreq_powersave cpufreq_conservative openvswitch_mod ib_iser rdma_cm ib_cm iw_cm ib_sa ib_mad ib_core ib_addr iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi ext3 jbd mbcache loop snd_pcm snd_timer snd soundcore snd_page_alloc pcspkr psmouse evdev i2c_i801 serio_raw i2c_core xfs exportfs dm_mod processor thermal_s
 ys acpi_processor aacraid 3w_9xxx 3w_x
Nov  9 08:20:06 n2c1 kernel: xxx raid10 raid456 async_raid6_recov async_pq raid6_pq async_xor xor async_memcpy async_tx raid1 raid0 md_mod sata_nv sata_sil sata_via sd_mod crc_t10dif ahci libata r8169 scsi_mod uhci_hcd mii ehci_hcd usbcore nls_base [last unloaded: crc32c]
Nov  9 08:20:06 n2c1 kernel: [544983.845577] Pid: 15411, comm: istiod5 Not tainted 2.6.32-5-xen-amd64 #1 MS-7522
Nov  9 08:20:06 n2c1 kernel: [544983.845625] RIP: e030:[<ffffffffa051a718>]  [<ffffffffa051a718>] disk_execute_cmnd+0x7b/0x233 [iscsi_trgt]
Nov  9 08:20:06 n2c1 kernel: [544983.845686] RSP: e02b:ffff8801529cfe50  EFLAGS: 00010246
Nov  9 08:20:06 n2c1 kernel: [544983.845715] RAX: 0000000000000000 RBX: ffff8800422893b8 RCX: ffff88012c3730b8
Nov  9 08:20:06 n2c1 kernel: [544983.845764] RDX: ffff88012c3730b8 RSI: 0000000000000000 RDI: ffff88012c3730b0
Nov  9 08:20:06 n2c1 kernel: [544983.845812] RBP: ffff880042289380 R08: ffff8801529ce000 R09: ffff88000ab36780
Nov  9 08:20:06 n2c1 kernel: [544983.845860] R10: ffff8801529cfcb0 R11: ffff880139f64000 R12: ffff88012c370000
Nov  9 08:20:06 n2c1 kernel: [544983.845908] R13: ffff8801ec472a60 R14: ffff8801ecc5d8b8 R15: ffff8801ec472a60
Nov  9 08:20:06 n2c1 kernel: [544983.845960] FS:  00007fd72737f700(0000) GS:ffff88000ab21000(0000) knlGS:0000000000000000
Nov  9 08:20:06 n2c1 kernel: [544983.846010] CS:  e033 DS: 0000 ES: 0000 CR0: 000000008005003b
Nov  9 08:20:06 n2c1 kernel: [544983.846041] CR2: 000000000000001d CR3: 00000001ee744000 CR4: 0000000000002660
Nov  9 08:20:06 n2c1 kernel: [544983.849785] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
Nov  9 08:20:06 n2c1 kernel: [544983.849833] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Nov  9 08:20:06 n2c1 kernel: [544983.849882] Process istiod5 (pid: 15411, threadinfo ffff8801529ce000, task ffff8801ec472a60)
Nov  9 08:20:06 n2c1 kernel: [544983.849932] Stack:
Nov  9 08:20:06 n2c1 kernel: [544983.849955]  ffff8801ec472a60 ffff8801ec472a60 ffff8801ecc5d8a0 ffffffffa0517065
Nov  9 08:20:06 n2c1 kernel: [544983.849999] <0> 00000004ed373f00 ffff8801ecc5d8c8 0000000000000000 ffff8801ec472a60
Nov  9 08:20:06 n2c1 kernel: [544983.850065] <0> ffffffff8104b172 ffff88011a60de98 ffff88012af55e98 ffff8801ec472a98
Nov  9 08:20:06 n2c1 kernel: [544983.850150] Call Trace:
Nov  9 08:20:06 n2c1 kernel: [544983.850179]  [<ffffffffa0517065>] ? worker_thread+0x12c/0x254 [iscsi_trgt]
Nov  9 08:20:06 n2c1 kernel: [544983.850215]  [<ffffffff8104b172>] ? default_wake_function+0x0/0x9
Nov  9 08:20:06 n2c1 kernel: [544983.850248]  [<ffffffffa0516f39>] ? worker_thread+0x0/0x254 [iscsi_trgt]
Nov  9 08:20:06 n2c1 kernel: [544983.850282]  [<ffffffff81065831>] ? kthread+0x79/0x81
Nov  9 08:20:06 n2c1 kernel: [544983.850313]  [<ffffffff81012baa>] ? child_rip+0xa/0x20
Nov  9 08:20:06 n2c1 kernel: [544983.850344]  [<ffffffff81011d61>] ? int_ret_from_sys_call+0x7/0x1b
Nov  9 08:20:06 n2c1 kernel: [544983.850376]  [<ffffffff8101251d>] ? retint_restore_args+0x5/0x6
Nov  9 08:20:06 n2c1 kernel: [544983.850408]  [<ffffffff81012ba0>] ? child_rip+0x0/0x20
Nov  9 08:20:06 n2c1 kernel: [544983.850437] Code: 00 00 00 48 8b 78 10 8b 36 e8 1f 21 00 00 48 89 c7 e8 a9 20 00 00 eb 38 48 8b 55 30 48 8b 45 28 8b 32 48 8b 78 10 e8 db 21 00 00 <0f> b6 48 1d 0f b6 50 1c 48 89 c3 48 89 ef be 06 00 00 00 e8 ac 
Nov  9 08:20:06 n2c1 kernel: [544983.850751] RIP  [<ffffffffa051a718>] disk_execute_cmnd+0x7b/0x233 [iscsi_trgt]
Nov  9 08:20:06 n2c1 kernel: [544983.850806]  RSP <ffff8801529cfe50>
Nov  9 08:20:06 n2c1 kernel: [544983.850832] CR2: 000000000000001d
Nov  9 08:20:06 n2c1 kernel: [544983.851050] ---[ end trace 5b3baaf466820235 ]---
Nov  9 08:20:07 n2c1 kernel: [544985.110388] BUG: unable to handle kernel NULL pointer dereference at (null)
Nov  9 08:20:07 n2c1 kernel: [544985.110512] IP: [<(null)>] (null)
Nov  9 08:20:07 n2c1 kernel: [544985.110593] PGD 1ee60c067 PUD 1ee081067 PMD 0 
Nov  9 08:20:07 n2c1 kernel: [544985.110733] Oops: 0010 [#2] SMP
Nov  9 08:20:07 n2c1 kernel: [544985.110842] last sysfs file: /sys/module/drbd/parameters/cn_idx
Nov  9 08:20:07 n2c1 kernel: [544985.110898] CPU 0 
Nov  9 08:20:07 n2c1 kernel: [544985.110975] Modules linked in: crc32c xfrm_user ah6 ah4 esp6 xfrm4_mode_beet xfrm4_tunnel xfrm4_mode_transport xfrm6_mode_transport xfrm6_mode_ro xfrm6_mode_beet ipcomp ipcomp6 xfrm6_tunnel af_key iscsi_trgt drbd lru_cache cn act_police cls_flow cls_fw cls_u32 sch_htb sch_hfsc sch_ingress sch_sfq xt_time xt_connlimit xt_realm iptable_raw xt_comment xt_recent xt_policy ipt_ULOG ipt_REJECT ipt_REDIRECT ipt_NETMAP ipt_MASQUERADE ipt_ECN ipt_ecn ipt_CLUSTERIP ipt_ah ipt_addrtype nf_nat_tftp nf_nat_snmp_basic nf_nat_sip nf_nat_pptp nf_nat_proto_gre nf_nat_irc nf_nat_h323 nf_nat_ftp nf_nat_amanda ts_kmp nf_conntrack_amanda nf_conntrack_sane nf_conntrack_tftp nf_conntrack_sip nf_conntrack_proto_sctp nf_conntrack_pptp nf_conntrack_proto_gre nf_conntrack_netlink nf_conntrack_netbios_ns nf_conntrack_irc nf_conntrack_h323 nf_conntrack_ftp xt_TPROXY nf_tproxy_core xt_tcpmss xt_pkttype xt_owner xt_NFQUEUE xt_NFLOG nfnetlink_log xt_multiport xt_MARK xt_mark
  xt_mac xt_limit xt_length xt_ipran
Nov  9 08:20:07 n2c1 kernel: ge xt_helper xt_hashlimit xt_DSCP xt_dscp xt_dccp xt_conntrack xt_CONNMARK xt_connmark xt_CLASSIFY iptable_nat nf_nat iptable_mangle nfnetlink ipt_LOG xt_tcpudp aoe nf_conntrack_ipv4 nf_defrag_ipv4 xt_state nf_conntrack xt_physdev authenc deflate zlib_deflate ctr camellia cast5 rmd160 sha1_generic hmac crypto_null ccm serpent blowfish twofish twofish_common ecb xcbc cbc sha256_generic sha512_generic des_generic aes_x86_64 ip6table_filter aes_generic ip6_tables xen_evtchn xenfs iptable_filter ip_tables x_tables esp4 tunnel4 xfrm4_mode_tunnel xfrm6_mode_tunnel xfrm_ipcomp tunnel6 rng_core acpi_cpufreq cpufreq_userspace cpufreq_stats cpufreq_powersave cpufreq_conservative openvswitch_mod ib_iser rdma_cm ib_cm iw_cm ib_sa ib_mad ib_core ib_addr iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi ext3 jbd mbcache loop snd_pcm snd_timer snd soundcore snd_page_alloc pcspkr psmouse evdev i2c_i801 serio_raw i2c_core xfs exportfs dm_mod processor thermal_s
 ys acpi_processor aacraid 3w_9xxx 3w_x
Nov  9 08:20:07 n2c1 kernel: xxx raid10 raid456 async_raid6_recov async_pq raid6_pq async_xor xor async_memcpy async_tx raid1 raid0 md_mod sata_nv sata_sil sata_via sd_mod crc_t10dif ahci libata r8169 scsi_mod uhci_hcd mii ehci_hcd usbcore nls_base [last unloaded: crc32c]
Nov  9 08:20:07 n2c1 kernel: [544985.117866] Pid: 15407, comm: istd5 Tainted: G      D    2.6.32-5-xen-amd64 #1 MS-7522
Nov  9 08:20:07 n2c1 kernel: [544985.117942] RIP: e030:[<0000000000000000>]  [<(null)>] (null)
Nov  9 08:20:07 n2c1 kernel: [544985.118027] RSP: e02b:ffff8801529cdc58  EFLAGS: 00010012
Nov  9 08:20:07 n2c1 kernel: [544985.118082] RAX: ffff8801529cfe98 RBX: ffffffffffffffe8 RCX: 0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.118155] RDX: 0000000000000000 RSI: 0000000000000003 RDI: ffff8801529cfe80
Nov  9 08:20:07 n2c1 kernel: [544985.118229] RBP: 0000000000000001 R08: ffff8801529cfe80 R09: ffff8801529cdbf0
Nov  9 08:20:07 n2c1 kernel: [544985.118302] R10: 0000000000000000 R11: ffffffff8100f03c R12: 0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.118376] R13: ffff8801ecc5d8d0 R14: 0000000000000000 R15: 0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.118452] FS:  00007fd72737f700(0000) GS:ffff88000aae5000(0000) knlGS:0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.118527] CS:  e033 DS: 0000 ES: 0000 CR0: 000000008005003b
Nov  9 08:20:07 n2c1 kernel: [544985.118583] CR2: 0000000000000000 CR3: 00000001ee744000 CR4: 0000000000002660
Nov  9 08:20:07 n2c1 kernel: [544985.118657] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.118731] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Nov  9 08:20:07 n2c1 kernel: [544985.118804] Process istd5 (pid: 15407, threadinfo ffff8801529cc000, task ffff8801ec473f90)
Nov  9 08:20:07 n2c1 kernel: [544985.118880] Stack:
Nov  9 08:20:07 n2c1 kernel: [544985.118928]  ffffffff8103b8bd 00000003ecea8e00 ffff8801ecc5d8c8 ffff88012c372000
Nov  9 08:20:07 n2c1 kernel: [544985.119073] <0> 0000000000000000 0000000000000001 ffff88012c370260 0000000000000003
Nov  9 08:20:07 n2c1 kernel: [544985.119291] <0> ffffffff810408c9 ffff88001060e888 0000000000010fee ffff88012c372098
Nov  9 08:20:07 n2c1 kernel: [544985.119553] Call Trace:
Nov  9 08:20:07 n2c1 kernel: [544985.119607]  [<ffffffff8103b8bd>] ? __wake_up_common+0x44/0x72
Nov  9 08:20:07 n2c1 kernel: [544985.119664]  [<ffffffff810408c9>] ? __wake_up+0x30/0x44
Nov  9 08:20:07 n2c1 kernel: [544985.119723]  [<ffffffffa051453f>] ? iscsi_session_push_cmnd+0x1e7/0x29b [iscsi_trgt]
Nov  9 08:20:07 n2c1 kernel: [544985.119823]  [<ffffffff8100e5b5>] ? xen_force_evtchn_callback+0x9/0xa
Nov  9 08:20:07 n2c1 kernel: [544985.119882]  [<ffffffff8100ec72>] ? check_events+0x12/0x20
Nov  9 08:20:07 n2c1 kernel: [544985.119940]  [<ffffffffa051485e>] ? cmnd_rx_end+0x26b/0x2ca [iscsi_trgt]
Nov  9 08:20:07 n2c1 kernel: [544985.120000]  [<ffffffffa05160ab>] ? istd+0x534/0x1159 [iscsi_trgt]
Nov  9 08:20:07 n2c1 kernel: [544985.120059]  [<ffffffff8128ec26>] ? tcp_sendpage+0x0/0x458
Nov  9 08:20:07 n2c1 kernel: [544985.120116]  [<ffffffff8100f03c>] ? xen_smp_send_reschedule+0x0/0x7
Nov  9 08:20:07 n2c1 kernel: [544985.120175]  [<ffffffffa0515b77>] ? istd+0x0/0x1159 [iscsi_trgt]
Nov  9 08:20:07 n2c1 kernel: [544985.120233]  [<ffffffff81065831>] ? kthread+0x79/0x81
Nov  9 08:20:07 n2c1 kernel: [544985.120289]  [<ffffffff81012baa>] ? child_rip+0xa/0x20
Nov  9 08:20:07 n2c1 kernel: [544985.120345]  [<ffffffff81011d61>] ? int_ret_from_sys_call+0x7/0x1b
Nov  9 08:20:07 n2c1 kernel: [544985.120402]  [<ffffffff8101251d>] ? retint_restore_args+0x5/0x6
Nov  9 08:20:07 n2c1 kernel: [544985.120459]  [<ffffffff81012ba0>] ? child_rip+0x0/0x20
Nov  9 08:20:07 n2c1 kernel: [544985.120514] Code:  Bad RIP value.
Nov  9 08:20:07 n2c1 kernel: [544985.120626] RIP  [<(null)>] (null)
Nov  9 08:20:07 n2c1 kernel: [544985.120706]  RSP <ffff8801529cdc58>
Nov  9 08:20:07 n2c1 kernel: [544985.120757] CR2: 0000000000000000
Nov  9 08:20:07 n2c1 kernel: [544985.120810] ---[ end trace 5b3baaf466820236 ]---
Reply to:
Prev by Date: Bug#601727: alsa-base: No sound through speakers on newer kernels
Next by Date: Processed: severity of 602908 is normal
Previous by thread: Re: persistent naming of network interfaces
Next by thread: Processed: severity of 602908 is normal
Index(es):
- Date
- Thread