Bug in CIFS / 2.6.9 / i386
From: Björn Schmidt
Date: Sun Nov 07 2004 - 13:32:38 EST
Unable to handle kernel paging request at virtual address 01380002
printing eip:
c011b063
*pde = 00000000
Oops: 0000 [#1]
PREEMPT
Modules linked in: iptable_nat ipt_REJECT ipt_pkttype ipt_ULOG ipt_state
ip_conntrack iptable_filter ip_tables vmnet parport_pc parport vmmon usbhid
uhci_hcd usbcore
CPU: 0
EIP: 0060:[<c011b063>] Tainted: P VLI
EFLAGS: 00010086 (2.6.9-ts3000-514)
EIP is at __wake_up_common+0x13/0x70
eax: 01380002 ebx: cf34e000 ecx: 00000001 edx: 00000003
esi: 00000000 edi: dfc28cb8 ebp: cf34ecbc esp: cf34eca0
ds: 007b es: 007b ss: 0068
Process mount.cifs (pid: 26249, threadinfo=cf34e000 task=c7ec6aa0)
Stack: ffffffdf c011e99f 00000001 00000003 cf34e000 00000000 00000282 cf34ecd8
c011b0ef 00000000 00000000 00000001 00000000 cf34ed3c dfc28a60 c01bf8cb
00000000 00010ecf dfc28a60 00000000 dfc2a4e0 ffffff90 00000000 cf41a960
Call Trace:
[<c011e99f>] release_console_sem+0xbf/0xd0
[<c011b0ef>] __wake_up+0x2f/0x60
[<c01bf8cb>] SendReceive+0x3eb/0x7c1
[<c011c200>] autoremove_wake_function+0x0/0x50
[<c011c200>] autoremove_wake_function+0x0/0x50
[<c01a963a>] CIFSSMBNegotiate+0xfa/0x320
[<c010235a>] kernel_thread+0x8a/0xa0
[<c01b54fb>] cifs_setup_session+0x26b/0x2df
[<c01b27ea>] cifs_mount+0x76a/0xb70
[<c0146aac>] do_no_page+0x5c/0x300
[<c01dde26>] idr_get_new_above_int+0x76/0x110
[<c01ddefa>] idr_get_new+0xa/0x30
[<c01a87e9>] cifs_read_super+0x59/0x160
[<c01a8c32>] cifs_get_sb+0x52/0xb0
[<c015b1b1>] do_kern_mount+0x51/0xe0
[<c016fe0a>] do_new_mount+0x8a/0xc0
[<c01704ac>] do_mount+0x13c/0x180
[<c0170282>] exact_copy_from_user+0x32/0x60
[<c0170309>] copy_mount_options+0x59/0xc0
[<c0170840>] sys_mount+0x90/0x100
[<c0104089>] sysenter_past_esp+0x52/0x71
Code: ff ff 8d b6 00 00 00 00 55 89 e5 8b 40 04 5d e9 d4 f6 ff ff 8d 74 26 00
55 89 e5 57 89 c7 56 53 83 ec 10 89 55 f0 89 4d ec 8b 00 <8b> 10 39 f8 89 55 e8
74 40 8d 74 26 00 8d 58 f4 8b 70 f4 8b 45
<6>note: mount.cifs[26249] exited with preempt_count 2
bad: scheduling while atomic!
[<c052d9dc>] schedule+0x4cc/0x4e0
[<c01454ab>] zap_pmd_range+0x4b/0x70
[<c011a7c7>] try_to_wake_up+0xa7/0xc0
[<c014550d>] unmap_page_range+0x3d/0x70
[<c01456eb>] unmap_vmas+0x1ab/0x1c0
[<c0149884>] exit_mmap+0x74/0x150
[<c011c485>] mmput+0x55/0x90
[<c012057a>] do_exit+0x14a/0x400
[<c010532d>] die+0x16d/0x170
[<c0116510>] do_page_fault+0x0/0x56e
[<c0116510>] do_page_fault+0x0/0x56e
[<c011672f>] do_page_fault+0x21f/0x56e
[<c013c8cb>] __alloc_pages+0x1cb/0x340
[<c011a587>] recalc_task_prio+0x97/0x190
[<c011a6da>] activate_task+0x5a/0x70
[<c011a7c7>] try_to_wake_up+0xa7/0xc0
[<c0116510>] do_page_fault+0x0/0x56e
[<c0104b5d>] error_code+0x2d/0x38
[<c011b063>] __wake_up_common+0x13/0x70
[<c011e99f>] release_console_sem+0xbf/0xd0
[<c011b0ef>] __wake_up+0x2f/0x60
[<c01bf8cb>] SendReceive+0x3eb/0x7c1
[<c011c200>] autoremove_wake_function+0x0/0x50
[<c011c200>] autoremove_wake_function+0x0/0x50
[<c01a963a>] CIFSSMBNegotiate+0xfa/0x320
[<c010235a>] kernel_thread+0x8a/0xa0
[<c01b54fb>] cifs_setup_session+0x26b/0x2df
[<c01b27ea>] cifs_mount+0x76a/0xb70
[<c0146aac>] do_no_page+0x5c/0x300
[<c01dde26>] idr_get_new_above_int+0x76/0x110
[<c01ddefa>] idr_get_new+0xa/0x30
[<c01a87e9>] cifs_read_super+0x59/0x160
[<c01a8c32>] cifs_get_sb+0x52/0xb0
[<c015b1b1>] do_kern_mount+0x51/0xe0
[<c016fe0a>] do_new_mount+0x8a/0xc0
[<c01704ac>] do_mount+0x13c/0x180
[<c0170282>] exact_copy_from_user+0x32/0x60
[<c0170309>] copy_mount_options+0x59/0xc0
[<c0170840>] sys_mount+0x90/0x100
[<c0104089>] sysenter_past_esp+0x52/0x71
--
Greetings
Bjoern Schmidt
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/