2.6.38-rc5 tcp_connect oops: EIP = 0x0

From: George Spelvin
Date: Fri Feb 18 2011 - 00:03:31 EST


But wonder of wonders, kernel mode switching worked so I got to see the
oops on the text-mode console. It happened just as I tried to ssh out.

It's a Core 2 duo laptop (Dell E1405), 2 GB RAM, running a 32-bit kernel.
It's worth noting that I was using wired internet (b44 driver) and
not wireless.

I've been having a lot of weird lockups with 2.6.38-rcX, quite a change
from the very stable 2.6.36, but this is the first time I booted -rc5.
Also, the symptoms are very different; before the lockup did not seen
correlated with any particular activity, but the "lockup" was more like
something getting wedged in the kernel that more and more tasks would
get stuck on until everything stopped responding.

I should mention that this is transcribed by hand from the screen.
Oh, and also, it is far from the first time I ran ssh this boot.
(I re-tested it ater rebooting, just to be sure. Not a consistent
crash.)

Anyway, jumping to address 0 looks "interesting", so it seems worth reporting.

BUG: unable to handle kernel NULL pointer dereference at (null)
IP: [< (null)>] (null)
*pde = 00000000
Oops: 0000 [#1] SMP
last sysfs file: /sys/devices/pci0000:00/0000:00:1f.2/host0/target0:0:0/0:0:0:0/block/sda/uevent
Modules linked in: rfcomm btusb sco l2cap crc16 bluetooth b43 mac80211 cfg80211 [last unloaded: sha256_generic]

Pid: 12178, comm: ssh Not tainted 2.6.38-rc5 #227 Dell Inc. MXC061 /0MG532
EIP: 0060:[<00000000>] EFLAGS: 0021246 CPU: 0
EIP is at 0x0
EAX: f5947e00 EBX: f5982f80 ECX: 00000024 EDX: c148fe00
ESI: f5947e00 EDI: ebf29e54 EBP: ebf29ee0 ESP: ebf29dd0
DS: 007b ES: 007b FS: 00d8 GS: 0033 SS: 0068
Process ssh (pid: 12178, ti=ebf28000 task=ebefc6c0 task.ti = ebef28000)
Stack:
c12c83ea 07e2427d 02000000 7b018f79 c117b827 0b996609 7b018f79 5f5f6644
f5982f80 00000000 ebf29e58 ebf29ee0 c12cc0e0 00001600 00000000 00000001
03641600 00000000 00000000 00000000 00000000 036423c0 3e6423c0 00000000
Call Trace:
[<c12c83ea>] ? tcp_connect+0xdd/0x3fd
[<c117b827>] ? secure_tcp_sequence_number+0x4f/0x65
[<c12cc0e0>] ? tcp_v4_connect+0x3c1/0x417
[<c12d6726>] ? inet_stream_connect+0x88/0x1fc
[<c1110705>] ? _copy_from_user+0x2b/0x10e
[<c129307d>] ? sys_connect+0x70/0x98
[<c108df0f>] ? get_empty_filp+0x9f/0x121
[<c108dfa0>] ? alloc_file+0xf/0x85
[<c1293287>] ? sock_alloc_file+0x97/0xeb
[<c108b758>] ? fd_install+0x1b/0x38
[<c12932f6>] ? sock_map_fd+0x1b/0x20
[<c1293bdf>] ? sys_socketcall+0x9d/0x291
[<c1002750>] ? sysenter_do_call+0x12/0x26
Code: Bad EIP value
EIP: [<00000000>] 0x0 SS:ESP 0068:ebf29dd0
CR2: 0000000000000000
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/