Re: 2.6.13-rc6 Oops with Software RAID, LVM, JFS, NFS

From: Zwane Mwaikambo
Date: Sun Aug 14 2005 - 21:37:07 EST

Next message: James Cleverdon: "Re: [RFC][2.6.12.3] IRQ compression/sharing patch"
Previous message: Zwane Mwaikambo: "Re: 2.6.13-rc5-mm1: BUG: rwlock recursion on CPU#0"
In reply to: Phil Dier: "Re: 2.6.13-rc6 Oops with Software RAID, LVM, JFS, NFS"
Next in thread: Robert Love: "Re: 2.6.13-rc6 Oops with Software RAID, LVM, JFS, NFS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 14 Aug 2005, Phil Dier wrote:

> I just got this:
>
> Unable to handle kernel paging request at virtual address eeafefc0
> printing eip:
> c0188487
> *pde = 00681067
> *pte = 2eafe000
> Oops: 0000 [#1]
> SMP DEBUG_PAGEALLOC
> Modules linked in:
> CPU: 1
> EIP: 0060:[<c0188487>] Not tainted VLI
> EFLAGS: 00010296 (2.6.13-rc6)
> EIP is at inotify_inode_queue_event+0x17/0x130
> eax: eeafefc0 ebx: 00000000 ecx: 00000200 edx: eeafee9c
> esi: 00000000 edi: ef4cbe9c ebp: f66e1eac esp: f66e1e84
> ds: 007b es: 007b ss: 0068
> Process nfsd (pid: 6259, threadinfo=f66e0000 task=f6307b00)
> Stack: eeafee9c c0536a34 ee900f6c f66e1eac c0179949 eeafefc0 23644d80 00000000
> 00000000 ef4cbe9c f66e1ed4 c01713ad eeafee9c 00000400 00000000 00000000
> eeafee9c ee900f6c f0940f6c f6f0adf8 f66e1f00 c020caa1 ef4cbe9c ee900f6c
> Call Trace:
> [<c0103e7f>] show_stack+0x7f/0xa0
> [<c0104030>] show_registers+0x160/0x1d0
> [<c0104260>] die+0x100/0x180
> [<c0116199>] do_page_fault+0x369/0x6ed
> [<c0103aa3>] error_code+0x4f/0x54
> [<c01713ad>] vfs_unlink+0x17d/0x210
> [<c020caa1>] nfsd_unlink+0x161/0x240
> [<c0207c64>] nfsd_proc_remove+0x44/0x90
> [<c0206747>] nfsd_dispatch+0xd7/0x200
> [<c0491b13>] svc_process+0x533/0x670
> [<c02064dd>] nfsd+0x1bd/0x350
> [<c01011e5>] kernel_thread_helper+0x5/0x10
> Code: ff ff ff 8b 5d f8 8b 75 fc 89 ec 5d c3 8d b4 26 00 00 00 00 55 89 e5 57 56 53 83 ec 1c 8b 45 08 8b 55 08 05 24 01 00 00 89 45 ec <39> 82 24 01 00 00 74 5d f0 ff 8a 2c 01 00 00 0f 88 d1 0b 00 00

int vfs_unlink(struct inode *dir, struct dentry *dentry)
{
<snipped>
/* We don't d_delete() NFS sillyrenamed files--they still exist.
*/
if (!error && !(dentry->d_flags & DCACHE_NFSFS_RENAMED)) {
struct inode *inode = dentry->d_inode;
d_delete(dentry);
<==========
fsnotify_unlink(dentry, inode, dir);
}

return error;
}

static inline void fsnotify_unlink(struct dentry *dentry, struct inode *inode, struct inode *dir)
{
<snipped>
inotify_inode_queue_event(inode, IN_DELETE_SELF, 0, NULL); <=====
<snipped>
}

void inotify_inode_queue_event(struct inode *inode, u32 mask, u32 cookie,
const char *name)
{
struct inotify_watch *watch, *next;

if (!inotify_inode_watched(inode)) <======
return;
<snipped>
}

static inline int inotify_inode_watched(struct inode *inode)
{
return !list_empty(&inode->inotify_watches); <===
}

I'm new here, if the inode isn't being watched, what's to stop d_delete
from removing the inode before fsnotify_unlink proceeds to use it?

Thanks,
Zwane
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: James Cleverdon: "Re: [RFC][2.6.12.3] IRQ compression/sharing patch"
Previous message: Zwane Mwaikambo: "Re: 2.6.13-rc5-mm1: BUG: rwlock recursion on CPU#0"
In reply to: Phil Dier: "Re: 2.6.13-rc6 Oops with Software RAID, LVM, JFS, NFS"
Next in thread: Robert Love: "Re: 2.6.13-rc6 Oops with Software RAID, LVM, JFS, NFS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]