Project

General

Profile

Bug #4685

BUG: unable to handle kernel NULL pointer dereference at

Added by Andras Elso over 6 years ago. Updated almost 6 years ago.

Status:
Can't reproduce
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
04/08/2013
Due date:
% Done:

0%

Source:
Development
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Component(FS):
Labels (FS):
Pull request ID:
Crash signature:

Description

0.56.4 ceph, 3.8 kernel

[  243.454805] BUG: unable to handle kernel NULL pointer dereference at           (null)
[  243.455040] IP: [<ffffffffa019e4af>] ceph_con_open+0x9f/0x1a0 [libceph]
[  243.455197] PGD 0
[  243.455330] Oops: 0000 [#1] SMP
[  243.455516] Modules linked in: ceph libceph libcrc32c xt_multiport xt_tcpudp iptable_filter ip_tables coretemp x_tables gpi
o_ich i7core_edac kvm_intel qlcnic kvm edac_core mptctl mptbase lpc_ich mac_hid serio_raw lp parport microcode raid10 raid456
async_pq async_xor xor async_memcpy async_raid6_recov igb raid6_pq ahci async_tx dca libahci ptp raid1 pps_core raid0 multipat
h linear
[  243.457929] CPU 0
[  243.457988] Pid: 38, comm: kworker/0:1 Not tainted 3.8.0-17-hst #27 HP ProLiant DL160 G6
[  243.458193] RIP: 0010:[<ffffffffa019e4af>]  [<ffffffffa019e4af>] ceph_con_open+0x9f/0x1a0 [libceph]
[  243.458379] RSP: 0018:ffff880428eada88  EFLAGS: 00010246
[  243.458473] RAX: 0000000000000088 RBX: ffff880425abf040 RCX: 0000000000000011
[  243.458572] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff880425abf068
[  243.458672] RBP: ffff880428eadab8 R08: ffff88042f216c00 R09: ffffea0010966400
[  243.458771] R10: ffffffffa0277812 R11: 000000000000000d R12: ffff880425abf1c0
[  243.458871] R13: 0000000000000001 R14: 0000000000000002 R15: 0000000000000000
[  243.458971] FS:  0000000000000000(0000) GS:ffff88042f200000(0000) knlGS:0000000000000000
[  243.459100] CS:  0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[  243.459195] CR2: 0000000000000000 CR3: 0000000001c0d000 CR4: 00000000000007f0
[  243.459294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  243.459394] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  243.459494] Process kworker/0:1 (pid: 38, threadinfo ffff880428eac000, task ffff880428ea1740)
[  243.459624] Stack:
[  243.459706]  ffff880428eadab8 ffff880425abf000 ffff88042224a400 0000000000000001
[  243.460030]  ffff880425abf040 0000000000000002 ffff880428eadb08 ffffffffa027773d
[  243.460353]  ffff880428321f50 ffff88042771ef30 ffff880428eadb18 0000000000000000
[  243.460676] Call Trace:
[  243.460773]  [<ffffffffa027773d>] register_session+0x20d/0x340 [ceph]
[  243.460879]  [<ffffffffa0278293>] __open_export_target_sessions+0xd3/0x150 [ceph]
[  243.461014]  [<ffffffffa0278416>] ceph_mdsc_open_export_target_sessions+0x36/0x50 [ceph]
[  243.461150]  [<ffffffffa0271526>] ceph_handle_caps+0x216/0x410 [ceph]
[  243.461256]  [<ffffffffa027c8ed>] dispatch+0xcd/0x180 [ceph]
[  243.461355]  [<ffffffffa019c58f>] process_message+0x8f/0x180 [libceph]
[  243.461458]  [<ffffffffa01a0f9c>] ? read_partial_message+0x1fc/0x510 [libceph]
[  243.461588]  [<ffffffff815da0d6>] ? kernel_recvmsg+0x46/0x60
[  243.461688]  [<ffffffffa01a1579>] try_read+0x2c9/0x570 [libceph]
[  243.461789]  [<ffffffffa01a18c0>] con_work+0xa0/0x230 [libceph]
[  243.461887]  [<ffffffff81078ea1>] process_one_work+0x141/0x490
[  243.461983]  [<ffffffff81079d78>] worker_thread+0x168/0x400
[  243.462079]  [<ffffffff81079c10>] ? manage_workers+0x120/0x120
[  243.462176]  [<ffffffff8107f3a0>] kthread+0xc0/0xd0
[  243.462270]  [<ffffffff8107f2e0>] ? flush_kthread_worker+0xb0/0xb0
[  243.462369]  [<ffffffff8170d4ac>] ret_from_fork+0x7c/0xb0
[  243.462464]  [<ffffffff8107f2e0>] ? flush_kthread_worker+0xb0/0xb0
[  243.462560] Code: 4c 89 fe b8 88 00 00 00 40 f6 c7 01 75 7e 40 f6 c7 02 0f 85 94 00 00 00 40 f6 c7 04 0f 85 aa 00 00 00 89
c1 31 d2 c1 e9 03 a8 04 <f3> 48 a5 74 09 8b 16 89 17 ba 04 00 00 00 a8 02 74 0c 0f b7 0c
[  243.465951] RIP  [<ffffffffa019e4af>] ceph_con_open+0x9f/0x1a0 [libceph]
[  243.466102]  RSP <ffff880428eada88>

History

#1 Updated by Ian Colle over 6 years ago

  • Assignee set to Greg Farnum

#2 Updated by Greg Farnum over 6 years ago

  • Assignee deleted (Greg Farnum)

#3 Updated by Sage Weil over 6 years ago

  • Status changed from New to Testing

proposed fix in testing branch, 'ceph: fix null pointer dereference'

#4 Updated by Sage Weil almost 6 years ago

  • Status changed from Testing to Can't reproduce

Also available in: Atom PDF