Re: rb tree hrtimer lockup bug (found by perf_fuzzer)

From: Vince Weaver
Date: Thu Mar 27 2014 - 09:38:55 EST

Next message: Benjamin LaHaise: "git pull -- [PATCH] aio: v2 ensure access to ctx->ring_pages is correctly serialised"
Previous message: Boaz Harrosh: "Re: Thoughts on credential switching"
In reply to: Thomas Gleixner: "Re: rb tree hrtimer lockup bug (found by perf_fuzzer)"
Next in thread: Thomas Gleixner: "Re: rb tree hrtimer lockup bug (found by perf_fuzzer)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 26 Mar 2014, Thomas Gleixner wrote:

> Ok. So we know now what we are looking for.
>
> [ 1.579996] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled
> ÿ[ 1.607279] 00:09: ttyS0 at I/O 0x3f8 (irq = 4, base_baud = 115200) is a 16550A
> [ 1.615032] kobject: 'ttyS1' (ffff88011772ac10): kobject_release, parent (null) (delayed 250)
> [ 1.624534] kobject: '(null)' (ffff8801177400f0): kobject_release, parent (null) (delayed 500)
> [ 1.654213] 0000:00:16.3: ttyS1 at I/O 0xf0e0 (irq = 19, base_baud = 115200) is a 16550A
>
> [ 3.294047] Invalid timer base: tmr ffff880117740150 tmr->base (null) base ffff880118898000
>
> 1634110us : obj: ffff880117740130 initialized kobject_delayed_cleanup+0x0/0x90
>
> So that happens in the context of the 8250 serial driver.
>
> ...
>
> Below is a patch which gives us the call path of the unnamed object
> which causes the crash.

I've attached the boot log with that patch applied.

Vince

Attachment: hrtimer_boot6.log.bz2
Description: Binary data

Next message: Benjamin LaHaise: "git pull -- [PATCH] aio: v2 ensure access to ctx->ring_pages is correctly serialised"
Previous message: Boaz Harrosh: "Re: Thoughts on credential switching"
In reply to: Thomas Gleixner: "Re: rb tree hrtimer lockup bug (found by perf_fuzzer)"
Next in thread: Thomas Gleixner: "Re: rb tree hrtimer lockup bug (found by perf_fuzzer)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]