Re: BUG_ON(nd->inode != parent->d_inode);

From: Linus Torvalds
Date: Fri Mar 08 2013 - 23:31:56 EST

Next message: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Previous message: HATAYAMA Daisuke: "Re: [RFC PATCH 0/5] crash dump bitmap: scan memory pages in kernelto speedup kernel dump process"
In reply to: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Next in thread: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Mar 8, 2013 at 7:50 PM, Dave Jones <davej@xxxxxxxxxx> wrote:
> > >
> > > I have a feeling there were some sysfs ones that may still be unfixed.
>
> I was right..
>
> [ 425.836722] general protection fault: 0000 [#1] PREEMPT SMP

You forgot to enable DEBUG_PAGE_ALLOC again, but I don't think it much
matters. It's another slab free poison thing.

The faulting instruction is

mov 0x28(%rbx),%ecx

with %rbx having the value 6b6b6b6b6b6b6b6b.

> [ 425.847859] RIP: 0010:[<ffffffff8123f657>] [<ffffffff8123f657>] sysfs_find_dirent+0x47/0xf0

That seems to be

if (hash != sd->s_hash)

from sysfs_name_compare() that has been inlined into
sysfs_find_dirent(). And where "sd" is the corrupted value. If I read
things right.

So it looks like the sysfs rbtree is corrupted or something. Adding
Greg to the cc.

Linus
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Previous message: HATAYAMA Daisuke: "Re: [RFC PATCH 0/5] crash dump bitmap: scan memory pages in kernelto speedup kernel dump process"
In reply to: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Next in thread: Dave Jones: "Re: BUG_ON(nd->inode != parent->d_inode);"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]