Actions
Bug #1253
closednull point deref in __dentry_open
% Done:
0%
Source:
Tags:
Backport:
Regression:
Severity:
Reviewed:
Affected Versions:
ceph-qa-suite:
Crash signature (v1):
Crash signature (v2):
Description
commit:4f62174bf07425d9d815652e078bed73397a5f00
workunits/misc/trivial_sync.sh on sepia
doesn't trigger under uml
[ 334.461043] BUG: unable to handle kernel NULL pointer dereference at 0000000000000140 [ 334.461213] IP: [<ffffffff81159580>] __dentry_open+0xb0/0x310 [ 334.461320] PGD 37adc067 PUD 37ac2067 PMD 0 [ 334.461427] Oops: 0000 [#1] SMP [ 334.461506] last sysfs file: /sys/devices/system/cpu/cpu3/cache/index2/shared_cpu_map [ 334.461622] CPU 0 [ 334.461662] Modules linked in: cryptd aes_x86_64 aes_generic ceph libceph radeon ttm drm_kms_helper drm i3000_edac edac_core i2c_algo_bit serio_raw ppdev shpchp parport_pc lp parport btrfs ahci zlib_deflate libahci e1000e floppy crc32c libcrc32c [ 334.462427] [ 334.462465] Pid: 1149, comm: trivial_sync.sh Not tainted 2.6.39-ceph-00042-g4f62174 #1 Supermicro PDSMi/PDSMi+ [ 334.462655] RIP: 0010:[<ffffffff81159580>] [<ffffffff81159580>] __dentry_open+0xb0/0x310 [ 334.462801] RSP: 0018:ffff8801042bfb08 EFLAGS: 00010246 [ 334.462884] RAX: 000000000000001d RBX: ffff880104327480 RCX: 0000000000000001 [ 334.462989] RDX: 0000000000000000 RSI: ffff880037b2f300 RDI: ffff8800d9727c00 [ 334.463093] RBP: ffff8801042bfb58 R08: ffff88010347d780 R09: 0000000000000001 [ 334.463198] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8800d9727c00 [ 334.463302] R13: ffff880037b2f300 R14: ffffffffa0326d50 R15: 0000000000000000 [ 334.463407] FS: 0000000000000000(0000) GS:ffff88011fc00000(0000) knlGS:0000000000000000 [ 334.463530] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b [ 334.463615] CR2: 0000000000000140 CR3: 00000000cf83a000 CR4: 00000000000006f0 [ 334.463720] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 334.463824] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 334.463929] Process trivial_sync.sh (pid: 1149, threadinfo ffff8801042be000, task ffff880109fc16c0) [ 334.464070] Stack: [ 334.464111] 0000000000000001 ffff880109fc16c0 ffffffff81058d80 ffff88010347d780 [ 334.464272] dead000000200200 ffff8800d9727c00 ffff8800d9727c5c ffff880104327480 [ 334.464434] ffff8801042bfe38 ffff88010347d780 ffff8801042bfba8 ffffffff81159985 [ 334.464596] Call Trace: [ 334.464641] [<ffffffff81058d80>] ? try_to_wake_up+0x410/0x410 [ 334.464730] [<ffffffff81159985>] lookup_instantiate_filp+0x95/0xd0 [ 334.464842] [<ffffffffa0326d50>] ? ceph_init_file+0x190/0x190 [ceph] [ 334.464942] [<ffffffffa0326ac4>] ceph_lookup_open+0x114/0x210 [ceph] [ 334.465042] [<ffffffffa032498e>] ceph_lookup+0x1ee/0x360 [ceph] [ 334.465137] [<ffffffff81165c05>] d_alloc_and_lookup+0x45/0x90 [ 334.465226] [<ffffffff81171395>] ? d_lookup+0x35/0x60 [ 334.465304] [<ffffffff8116772f>] do_lookup+0xcf/0x2b0 [ 334.465382] [<ffffffff81168fe6>] ? link_path_walk+0x236/0x980 [ 334.465470] [<ffffffff8116862c>] do_last+0x10c/0x890 [ 334.465546] [<ffffffff811698bd>] path_openat+0xcd/0x3e0 [ 334.465630] [<ffffffff81169ce9>] do_filp_open+0x49/0xa0 [ 334.465715] [<ffffffff8117732a>] ? alloc_fd+0x10a/0x150 [ 334.465799] [<ffffffff8115aa24>] do_sys_open+0x104/0x1e0 [ 334.465886] [<ffffffff8115ab40>] sys_open+0x20/0x30 [ 334.465973] [<ffffffff815bdd42>] system_call_fastpath+0x16/0x1b [ 334.471033] Code: 45 c0 48 63 d8 48 89 d8 4c 8b 65 e0 48 8b 5d d8 4c 8b 6d e8 4c 8b 75 f0 4c 8b 7d f8 c9 c3 c7 43 3c 00 40 00 00 4c 8b 7f 30 66 90 [ 334.471033] 8b 87 40 01 00 00 4c 89 63 18 48 89 df 4c 89 6b 10 48 c7 43 [ 334.471033] RIP [<ffffffff81159580>] __dentry_open+0xb0/0x310 [ 334.471033] RSP <ffff8801042bfb08> [ 334.471033] CR2: 0000000000000140 [ 334.505753] ---[ end trace 90c7cfcc21ad8a19 ]---
Actions