Bug#793169: Null pointer dereference in dentry_lru_prune

To: submit@bugs.debian.org
Cc: "Dr. Nagy" Elemér Kár oly <eknagy@omikk.bme.hu>
Subject: Bug#793169: Null pointer dereference in dentry_lru_prune
From: Ben Hutchings <ben@decadent.org.uk>
Date: Wed, 22 Jul 2015 00:10:28 +0100
Message-id: <[🔎] 1437520228.29812.25.camel@decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 793169@bugs.debian.org
In-reply-to: <[🔎] 20150721100153.M32286@omikk.bme.hu>
References: <[🔎] 20150721100153.M32286@omikk.bme.hu>

Package: src:linux
Version: 3.2.68-1+deb7u2
Severity: important
Control: submitter -1 "Dr. Nagy Elemér Kár oly" <eknagy@omikk.bme.hu>

On Tue, 2015-07-21 at 12:07 +0200, Dr. Nagy Elemér Kár oly wrote:
> Dear Debian Kernel Team!
> 
> A Sun X4200M2 locked up running linux-image-3.2.0-4-amd64 (3.2.68
> -1+deb7u2) running Debian 7.8. Blank screen, no SSH
> access, no HDD activity.
> 
> I attached the relevant part of syslog - maybe you can trace some 
> rare-to-occur bug with it.
> 
> In not, sorry for wasting your time.

I'm afraid the initial BUG message is too garbled... actually, after
puzzling over it for a while I can see that every second character has
been lost from the garbled part.  (I've seen this happen before on
Linux 3.0 but never worked out how it happens.)

As some details are printed more than once, and I have a list of
function names I can fill in a lot of the missing characters to get a
somewhat useful log:

[703010.276487] BUG: unable to handle kernel NULL pointer dereference at 0000000000000028
[703010.2?6?0?] RIP: [<ffffffff8110a70a>] dentry_lru_prune+0x1d/0x3d
[703010.27?5?3] ?G? ?
[703010.275?1?] ?o?s? ?0?0?[?1? ?M?
[703010.275?3?] ? ?P? ?
[703010.275?6?] Modules linked in: dm_snapshot nls_utf8 ncpfs fuse veth ip6table_filter ip6_tables iptable_filter ip_tables ebtable_nat ebtables x_tables cpufreq_powersave cpufreq_conservative cpufreq_stats cpufreq_userspace bridge stp ext3 jbd kvm_amd kvm snd_pcm snd_page_alloc psmouse snd_timer snd soundcore pcspkr serio_raw joydev evdev shpchp powernow_k8 mperf amd64_edac_mod edac_mce_amd i2c_nforce2 edac_core i2c_core k8temp button processor thermal_sys ext4 crc16 jbd2 mbcache dm_mod raid456 async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 md_mod sd_mod crc_t10dif usbhid hid sg sr_mod cdrom ata_generic ohci_hcd mptsas scsi_transport_sas mptscsih mptbase e1000 pata_amd libata scsi_mod ehci_hcd forcedeth usbcore usb_common [last unloaded: scsi_wait_scan]
[703010.276?5?]
[703010.276?5?] Pid: ?3, comm: kswapd0 Not tainted 3.2.0-4-amd64 #1 Debian 3.2.68-1+deb7u2 Sun Microsystems Sun Fire X4200 M2/Sun Fire X4200 M2
[703010.27?7?8] RIP: 0010:[<ffffffff8110a70a>]  [<ffffffff8110a70a>] dentry_lru_prune+0x1d/0x3d
[703010.2?6?1?] RSP: 0018:ffff8?0?1?f?9?c?  EFLAGS: 0?0?0?0?
[703010.2?6?4?] RAX: ?0?0?0?0?0?0?0?0 RBX: ?f?f?8?2?0?0?2?0 RCX: ?0?0?0?0?8?0?8?f
[703010.27?8?6] RDX: 0?0?0?0?0?0?0?0? RSI: 0?0?0?0?0?0?0?0? RDI: f?f?8?0?0?0?0?0?
[703010.2?6?2?] RBP: ?f?f?8?1?6?3?3?0 R08: ?f?f?a?0?1?1?3?8 R09: ?f?f?a?0?1?1?3?8
[703010.27?9?0] R10: f?f?e?0?0?a?4?c? R11: 0?0?0?0?0?0?0?c? R12: f?f?8?0?0?0?4?5?
[703010.2?7?1?] R13: ?0?0?0?0?0?0?0?0 R14: ?f?f?8?1?b?e?c?0 R15: ?f?f?8?1?b?e?c?0
[703010.27?0?6] FS:  00007?f?2?f?9?0?(?0?0) GS:ffff8?0?2?c?0?0?(?0?0) knlGS:0000?0?0?0?0?0?0
[703010.27?1?0] CS:  0?1? DS: ?0?0 ES:?0?0? CR0: 0?0?0?0?8?0?0?3?
[703010.2?7?2?] CR2: 0000000000000028 CR3: ?0?0?0?1?d?2?0?0 CR4: ?0?0?0?0?0?0?6?0
[703010.27?1?9] DR0: 0?0?0?0?0?0?0?0? DR1: 0?0?0?0?0?0?0?0? DR2: 0?0?0?0?0?0?0?0?
[703010.2?7?1?] DR3: ?0?0?0?0?0?0?0?0 DR6: ?0?0?0?0?f?f?f?0 DR7: ?0?0?0?0?0?0?4?0
[703010.27?2?4] Process kswapd0 (pid: ?3, threadinfo ffff8?0?1?f?8?0?, task ffff?8?1?b?9?1?0)
[703010.2?7?9?] Stack:
[703010.2?7?1?]  ?f?f?8?2?0?0?2?0 f?f?f?f?8?1?b?0? ?f?f?8?2?0?0?2?0 f?f?8?0?0?0?0?0?
[703010.2?7?6?]  ?f?f?8?1?b?e?c?0 f?f?8?0?0?0?0?8? ?f?f?8?2?b?3?0?0 f?f?f?f?8?1?b?4?
[703010.2?7?0?]  ?f?f?a?0?3?d?4?8 f?f?8?0?3?0?6?4? ?0?0?0?0?0?0?0?0 f?f?8?0?0?0?0?8?
[703010.2?7?5?] Call Trace:
[703010.27?4?8]  [<ffffffff8110b209>] ? dentry_kill+0x73/0x137
[703010.27?5?6]  [<ffffffff8110b34?>] ? shrink_dentry_list+0x7?/0xc9
[703010.27?5?4]  [<ffffffff8110bfa?>] ? prune_dcache_sb+0x12?/0x134
[703010.2?7?6?]  [<ffffffff810fd9fd>] ? prune_super+0xd4/0x149
[703010.2?7?9?]  [<ffffffff81?c?a?5>] ? shrink_slab+0x1?f/0x2?d
[703010.27?6?9]  [<ffffffff810?5?5?>] ? balance_pgdat+0x?8?/0x?b?
[703010.2?7?4?]  [<ffffffff81?c?9?9>] ? kswapd+0x?e?/0x?1?
[703010.2?7?7?]  [<ffffffff81?5?e?7>] ? add_wait_queue+0x?c/0x3?
[703010.2?7?0?]  [<ffffffff81?c?6?9>] ? balance_pgdat+0x4?7/0x4?7
[703010.27?7?0]  [<ffffffff810?f?0?>] ? kthread+0x?6/0x7?
[703010.2?7?5?]  [<ffffffff81?5?2?4>] ? kernel_thread_helper+0x?/0x?0
[703010.27?7?6]  [<ffffffff810?f?8?>] ? kthread_worker_fn+0x?3?/0x?3?
[703010.2?7?1?]  [<ffffffff81?5?2?0>] ? gs_change+0x1?/0x?3
[703010.27?8?0]   Code: ?f 4? ?8 6? ?f 4? ?c 5? ?b 4? ?9 e? ?d c? ?3 4? ?d 8? ?0 0? ?0 0? ?8 3? ?7 8? ?0 0? ?0 4? ?9 f? ?4 2? ?6 0? ?0 7? ?7 4? ?b 4? ?0 <?f> ?0 2? ?8 c? ?7 0? ?4 6? ?1 e? ?2 6? ?4 0? ?8 8? ?f e? ?5 f?


-- 
Ben Hutchings
No political challenge can be met by shopping. - George Monbiot

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Processed: Null pointer dereference in dentry_lru_prune
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

References:
- Syslog dump before freeze
  - From: "Dr. Nagy Elemér Kár oly" <eknagy@omikk.bme.hu>

Prev by Date: Processed: Null pointer dereference in dentry_lru_prune
Next by Date: Bug#793185: linux-image-3.16.0-4-armmp: missing cpufreq on cubieboard (Allwinner A10 sun4i)
Previous by thread: Syslog dump before freeze
Next by thread: Processed: Null pointer dereference in dentry_lru_prune
Index(es):
- Date
- Thread