Whamcloud Community JIRA https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 [LU-2186] seq_server_alloc_meta() NULL deref https://jira.whamcloud.com/browse/LU-2186 Lustre <p>Observed running a current version of master, 2.3.53.</p> <div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent"> <pre>BUG: unable to handle kernel NULL pointer dereference at 0000000000000010 IP: [&lt;ffffffffa06ad93e&gt;] seq_server_alloc_meta+0x51e/0x700 [fid] PGD 0 Oops: 0000 [#1] SMP last sysfs file: /sys/devices/pci0000:80/0000:80:02.2/0000:83:00.0/host7/port-7:0/expander-7:0/port-7:0:13/end_device-7:0:13/target7:0:17/7:0:17:0/timeout CPU 9 Pid: 33477, comm: mdt_mdss_0003 Tainted: P W ---------------- 2.6.32-220.23.1.1chaos.ch5.x86_64 #1 appro 2620x-in/S2600GZ RIP: 0010:[&lt;ffffffffa06ad93e&gt;] [&lt;ffffffffa06ad93e&gt;] seq_server_alloc_meta+0x51e/0x700 [fid] RSP: 0018:ffff881fa8007ca0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 0000000200003e98 RCX: 0000000200004280 RDX: 00000000000003e8 RSI: ffff881faadb40c0 RDI: ffff880fcc9e9500 RBP: ffff881fa8007ce0 R08: 0000000000000000 R09: ffff881e0ee63e00 R10: 0000000000000009 R11: ffffffffa09e2090 R12: ffff881e0ee63fe8 R13: ffff881faadb4130 R14: ffff881faadb40c0 R15: ffff880fcc9e9500 FS: 00007ffff7fdc700(0000) GS:ffff881078820000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b CR2: 0000000000000010 CR3: 0000000001a85000 CR4: 00000000000406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 Process mdt_mdss_0003 (pid: 33477, threadinfo ffff881fa8006000, task ffff8820150b8080) Stack: ffff881fa8007cb0 ffff881a5019a400 ffff880fcc9e9b40 ffff881a5019a400 &lt;0&gt; ffff880fcc9e9b40 ffff880fcc9e9500 ffff881e0ee63fe8 00000000ffffffea &lt;0&gt; ffff881fa8007d30 ffffffffa06ade9f ffff881fa8007d10 ffffc900c2888988 Call Trace: [&lt;ffffffffa06ade9f&gt;] seq_query+0x37f/0x6d0 [fid] [&lt;ffffffffa0f39322&gt;] mdt_handle_common+0x932/0x1760 [mdt] [&lt;ffffffffa0f3a1c5&gt;] mdt_mdss_handle+0x15/0x20 [mdt] [&lt;ffffffffa0948bfc&gt;] ptlrpc_server_handle_request+0x41c/0xe00 [ptlrpc] [&lt;ffffffffa05b26be&gt;] ? cfs_timer_arm+0xe/0x10 [libcfs] [&lt;ffffffffa05c414f&gt;] ? lc_watchdog_touch+0x6f/0x180 [libcfs] [&lt;ffffffffa093ffb9&gt;] ? ptlrpc_wait_event+0xa9/0x2a0 [ptlrpc] [&lt;ffffffff81051ba3&gt;] ? __wake_up+0x53/0x70 [&lt;ffffffffa094a1ec&gt;] ptlrpc_main+0xc0c/0x19f0 [ptlrpc] [&lt;ffffffffa09495e0&gt;] ? ptlrpc_main+0x0/0x19f0 [ptlrpc] [&lt;ffffffff8100c14a&gt;] child_rip+0xa/0x20 [&lt;ffffffffa09495e0&gt;] ? ptlrpc_main+0x0/0x19f0 [ptlrpc] [&lt;ffffffffa09495e0&gt;] ? ptlrpc_main+0x0/0x19f0 [ptlrpc] [&lt;ffffffff8100c140&gt;] ? child_rip+0x0/0x20 </pre> </div></div> RHEL6.2 the Sequoia MDS LU-2186 seq_server_alloc_meta() NULL deref Bug Blocker Resolved Fixed Alex Zhuravlev Brian Behlendorf Mon, 15 Oct 2012 18:43:04 +0000 Wed, 2 Jan 2013 18:04:59 +0000 Thu, 8 Nov 2012 11:29:09 +0000 Lustre 2.4.0 Lustre 2.4.0 0 5 <p>Alex</p> <p>Could you please assign someone to look into this one?</p> <p>Thanks</p> <p>Peter</p> <div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent"> <pre>(gdb) list *(seq_server_alloc_meta+0x51e) 0x196e is in seq_server_alloc_meta (/builddir/build/BUILD/lustre-2.3.53/lustre/fid/fid_handler.c:211). 206 /builddir/build/BUILD/lustre-2.3.53/lustre/fid/fid_handler.c: No such file or directory. in /builddir/build/BUILD/lustre-2.3.53/lustre/fid/fid_handler.c if (range_is_exhausted(loset)) { /* reached high water mark. */ &gt;&gt;&gt; struct lu_device *dev = seq-&gt;lss_site-&gt;ms_lu-&gt;ls_top_dev; int obd_num_clients = dev-&gt;ld_obd-&gt;obd_num_exports; __u64 set_sz; } </pre> </div></div> <p>It looks like seq-&gt;lss_site-&gt;ms_lu = NULL. At least that's consistent with what offset in the NULL deref and is roughly where gdb pointed me. How that can happen I'm not sure.</p> <p>please try with <a href="http://review.whamcloud.com/4280" class="external-link" target="_blank" rel="nofollow noopener">http://review.whamcloud.com/4280</a></p> <p>I added patch <a href="http://review.whamcloud.com/4280" class="external-link" target="_blank" rel="nofollow noopener">4280</a> to our <a href="https://github.com/chaos/lustre/tree/2.3.54-llnl" class="external-link" target="_blank" rel="nofollow noopener">2.3.54-llnl</a> branch.</p> <p>landed on master</p> Duplicate LU-2256 Development Epic Project Rank 1|hzvag7: Rank (Obsolete) 5228 Severity