OOPS report: quota subsystem in 2.1.131 (ac4)

Ciro Cattuto (ciro@stud.pg.infn.it)
Wed, 16 Dec 1998 11:19:36 +0100 (MET)


Hello, I just experienced a nice oops while trying to sync my filesystem.
Kernel version is Linux 2.1.131 (with Alan Cox's patch #4), SMP enabled.

Oops message and ksymoops output follow.

Looks like write_dquot is passed an invalid dquot structure,
so that the evaluation of

struct file *filp = dquot->dq_mnt->mnt_dquot.files[type];

(in fs/dquot.c, write_dquot() function) produces a null pointer dereference.

Hope this helps.

Ciro

==============================================================================
cattuto-ws:~$ sync
Unable to handle kernel NULL pointer dereference at virtual address 00000024
current->tss.cr3 = 079bd000, %cr3 = 079bd000
*pde = 00000000
Oops: 0000
CPU: 1
EIP: 0010:[<c0137cd6>]
EFLAGS: 00010286
eax: c2b50004 ebx: c2761bc0 ecx: 00000000 edx: 00000000
esi: c2761b60 edi: 0804ffff ebp: bfff0000 esp: c3b11f6c
ds: 0018 es: 0018 ss: 0018
Process sync (pid: 25221, process nr: 26, stackpage=c3b11000)
Stack: 0804ffff bfff0000 c2b5010c c03dae00 c0137f66 c2761bc0 00000000 00000001
08048680 bffffc28 c0127b9e 00000000 ffffffff 00000000 00000000 00000000
00000000 c3b10000 c0127bcf 00000000 c3b10000 c0108c04 bffffc44 40098d4b
Call Trace: [<c0137f66>] [<c0127b9e>] [<c0127bcf>] [<c0108c04>]
Code: 8b 74 91 24 f6 43 2c 01 74 09 53 e8 02 ff ff ff 83 c4 04 80
Segmentation fault

==============================================================================
Using `/usr/src/kernel-source-2.1.131/System.map' to map addresses to symbols.

>>EIP: c0137cd6 <write_dquot+12/cc>
Trace: c0137f66 <sync_dquots+52/74>
Trace: c0127b9e <fsync_dev+22/30>
Trace: c0127bcf <sys_sync+23/38>
Trace: c0108c04 <system_call+34/38>
Code: c0137cd6 <write_dquot+12/cc>
Code: c0137cd6 <write_dquot+12/cc> 8b 74 91 24 movl 0x24(%ecx,%edx,4),%esi
Code: c0137cda <write_dquot+16/cc> f6 43 2c 01 testb $0x1,0x2c(%ebx)
Code: c0137cde <write_dquot+1a/cc> 74 09 je c0137ce9 <write_dquot+25/cc>
Code: c0137ce0 <write_dquot+1c/cc> 53 pushl %ebx
Code: c0137ce1 <write_dquot+1d/cc> e8 02 ff ff ff call ffffff12 <_EIP+0xffffff12>
Code: c0137ce6 <write_dquot+22/cc> 83 c4 04 addl $0x4,%esp
Code: c0137ce9 <write_dquot+25/cc> 80 00 90 addb $0x90,(%eax)
Code: c0137cec <write_dquot+28/cc> 90 nop
Code: c0137ced <write_dquot+29/cc> 90 nop
==============================================================================

--
Ciro Cattuto                                e-mail: ciro.cattuto@pg.infn.it     
                                                    cattuto@virgo.infn.it
University of Perugia - Physics Department          ciro@pluto.linux.it
INFN - VIRGO Project                         voice: +39 075 585 3060
PLUTO Linux Users Group                        fax: +39 075 44666

--
Ciro Cattuto                                  e-mail: ciro.cattuto@pg.infn.it
                                                      ciro@stud.pg.infn.it
University of Perugia - Physics Department            ciro@pluto.linux.it
INFN - VIRGO Project                           voice: +39-75-585-3060
PLUTO Linux Users Group                          fax: +39-75-44666

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/