Bug#649534: Kernel panic while doing nothing much in particular, after hibernating twice and suspending once

[Jonathan Nieder <jrnieder@gmail.com>]

Sam Morris wrote:

> The backtrace definitely didn't make it to syslog. It did appear on the
> screen however; photo attached.

Thanks.  Here's the call chain:

 system_call_fastpath -> sys_pipe2 -> do_pipe_flags ->
  create_write_pipe -> recalc_sigpending ->
  new_inode_pseudo -> alloc_inode -> kmem_cache_alloc ->
  ____cache_alloc

The NULL pointer dereference is at list_del+0x1b/0x2a.

 Code: 24 e8 df ff ff ff 48 8b 04 24 5a c3 0f 18 0f c3 48 0b 17 48 8b 47 08 48 b9 00 01 10 00 00 00 ad de 48 be 00 02 20 00 00 00 ad dc
  89 42 08 48 89 10 40 89 0f 48 89 77 08 c3 48 8b 07 40 89 c2

Some of the 8s might be 0s and vice versa, etc.  RIP doesn't seem to
be marked.

Is this reproducible?