[LU-12005] osc_key_fini NULL pointer dereference Created: 25/Feb/19  Updated: 25/Feb/19

Status: Open
Project: Lustre
Component/s: None
Affects Version/s: Lustre 2.13.0
Fix Version/s: None

Type: Bug Priority: Major
Reporter: Oleg Drokin Assignee: WC Triage
Resolution: Unresolved Votes: 0
Labels: None

Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

I am seeing this semi-regularly in racer in my master/master-next testing:

[19500.305052] BUG: unable to handle kernel NULL pointer dereference at 0000000000000b27
[19500.305052] IP: [<ffffffffa038b3c6>] lu_buf_free+0x16/0x1e0 [obdclass]
[19500.322306] PGD 8000000286845067 PUD 25fdff067 PMD 0 
[19500.331110] Oops: 0000 [#1] SMP DEBUG_PAGEALLOC
[19500.331110] Modules linked in: lustre(OE) ofd(OE) osp(OE) lod(OE) ost(OE) mdt(OE) mdd(OE) mgs(OE) osd_ldiskfs(OE) ldiskfs(OE) lquota(OE) lfsck(OE) obdecho(OE) mgc(OE) lov(OE) mdc(OE) osc(OE) lmv(OE) fid(OE) fld(OE) ptlrpc_gss(OE) ptlrpc(OE) obdclass(OE) ksocklnd(OE) lnet(OE) libcfs(OE) dm_flakey dm_mod loop zfs(PO) zunicode(PO) zavl(PO) icp(PO) zcommon(PO) znvpair(PO) spl(O) jbd2 mbcache crc_t10dif crct10dif_generic crct10dif_common i2c_piix4 virtio_balloon virtio_console pcspkr ip_tables rpcsec_gss_krb5 ata_generic pata_acpi drm_kms_helper ttm drm drm_panel_orientation_quirks ata_piix i2c_core serio_raw virtio_blk libata floppy [last unloaded: libcfs]
[19500.354248] CPU: 7 PID: 4383 Comm: osp_up2-1 Kdump: loaded Tainted: P           OE  ------------   3.10.0-7.6-debug #1
[19500.354248] Hardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011
[19500.354248] task: ffff88008a982bc0 ti: ffff88027d038000 task.ti: ffff88027d038000
[19500.354248] RIP: 0010:[<ffffffffa038b3c6>]  [<ffffffffa038b3c6>] lu_buf_free+0x16/0x1e0 [obdclass]
[19500.354248] RSP: 0018:ffff88027d03bbc8  EFLAGS: 00010206
[19500.354248] RAX: ffffffffa07eb530 RBX: 0000000000000b27 RCX: 000000000000017d
[19500.354248] RDX: ffffffffffffffff RSI: ffffffffa081bf00 RDI: 0000000000000b27
[19500.354248] RBP: ffff88027d03bbd0 R08: ffff88032c171098 R09: ffff880066acecc0
[19500.354248] R10: ffff8800000000b0 R11: 0000000000000000 R12: ffff88027d03bcf8
[19500.354248] R13: 000000000000000a R14: ffff88008a982bc0 R15: ffff88027d03bcf8
[19500.354248] FS:  0000000000000000(0000) GS:ffff88033dbc0000(0000) knlGS:0000000000000000
[19500.354248] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[19500.354248] CR2: 0000000000000b27 CR3: 00000002ce59c000 CR4: 00000000000006e0
[19500.354248] Call Trace:
[19500.354248]  [<ffffffffa07eb549>] osc_key_fini+0x19/0xf0 [osc]
[19500.354248]  [<ffffffffa03898b1>] key_fini+0x51/0x150 [obdclass]
[19500.354248]  [<ffffffffa038b9ed>] keys_fini+0x2d/0x120 [obdclass]
[19500.354248]  [<ffffffffa038bb0b>] lu_context_fini+0x2b/0xa0 [obdclass]
[19500.354248]  [<ffffffffa038bb9a>] lu_env_fini+0x1a/0x30 [obdclass]
[19500.405033]  [<ffffffffa05ffb8c>] ptlrpc_set_wait+0x80c/0x900 [ptlrpc]
[19500.405033]  [<ffffffff810caae0>] ? wake_up_state+0x20/0x20
[19500.405033]  [<ffffffffa05ffd03>] ptlrpc_queue_wait+0x83/0x230 [ptlrpc]
[19500.405033]  [<ffffffffa0e6385b>] osp_send_update_req+0x1bb/0x690 [osp]
[19500.405033]  [<ffffffffa0e645cb>] osp_send_update_thread+0x24b/0x580 [osp]
[19500.405033]  [<ffffffff810caae0>] ? wake_up_state+0x20/0x20
[19500.405033]  [<ffffffffa0e64380>] ? osp_invalidate_request+0x3a0/0x3a0 [osp]
[19500.426316]  [<ffffffff810b4ed4>] kthread+0xe4/0xf0
[19500.426316]  [<ffffffff810b4df0>] ? kthread_create_on_node+0x140/0x140
[19500.426316]  [<ffffffff817c4c77>] ret_from_fork_nospec_begin+0x21/0x21
[19500.434599]  [<ffffffff810b4df0>] ? kthread_create_on_node+0x140/0x140

Generated at Sat Feb 10 02:48:50 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.