664706 – =sys-kernel/gentoo-sources-4.18.5 crash when mounting UDF filesystem

Bug 664706 - =sys-kernel/gentoo-sources-4.18.5 crash when mounting UDF filesystem

Summary: =sys-kernel/gentoo-sources-4.18.5 crash when mounting UDF filesystem

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Kernel Bug Wranglers and Kernel Maintainers

URL:	https://bugzilla.kernel.org/show_bug....
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2018-08-27 19:20 UTC by Viacheslav Gagara
Modified:	2018-12-14 00:32 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
emerge --info (emerge.info,6.47 KB, text/plain) 2018-08-27 19:20 UTC, Viacheslav Gagara	Details
.config (config,128.69 KB, text/x-mpsub) 2018-08-27 19:21 UTC, Viacheslav Gagara	Details
.config 4.18.5 vanilla (config,128.45 KB, text/x-mpsub) 2018-08-29 19:03 UTC, Viacheslav Gagara	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Viacheslav Gagara 2018-08-27 19:20:14 UTC

Created attachment 545228 [details]
emerge --info

When trying to mount UDF fs I got following in dmesg:

[ 1915.948196] BUG: unable to handle kernel paging request at ffffffffffffffa4
[ 1915.948200] PGD 360c067 P4D 360c067 PUD 360e067 PMD 0 
[ 1915.948204] Oops: 0000 [#1] SMP PTI
[ 1915.948207] CPU: 0 PID: 14511 Comm: mount Not tainted 4.18.5-gentoo #1
[ 1915.948208] Hardware name: FUJITSU LIFEBOOK E544/FJNB281, BIOS Version 1.04 07/30/2014
[ 1915.948214] RIP: 0010:udf_get_pblock_virt15+0x3f/0x120
[ 1915.948215] Code: 01 4e 8d 04 c0 41 39 70 1c 0f 82 f3 00 00 00 41 56 41 55 41 54 55 49 89 fc 53 4d 8b b1 80 00 00 00 89 d3 41 0f b7 50 20 89 cd <45> 0f b6 46 a4 48 89 d0 41 83 e0 07 41 80 f8 03 0f 84 87 00 00 00 
[ 1915.948239] RSP: 0018:ffffc900022c3cd8 EFLAGS: 00010246
[ 1915.948241] RAX: ffff880367152540 RBX: 0000000000000001 RCX: 0000000000000000
[ 1915.948242] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88035afa4000
[ 1915.948244] RBP: 0000000000000000 R08: ffff880367152598 R09: ffff880367152a80
[ 1915.948245] R10: ffff88033974e800 R11: 0000000000004000 R12: ffff88035afa4000
[ 1915.948246] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff82218308
[ 1915.948248] FS:  00007f2c31558780(0000) GS:ffff88041f200000(0000) knlGS:0000000000000000
[ 1915.948250] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1915.948251] CR2: ffffffffffffffa4 CR3: 0000000344ef8006 CR4: 00000000001606f0
[ 1915.948252] Call Trace:
[ 1915.948257]  udf_read_ptagged+0x21/0x40
[ 1915.948259]  udf_fill_super+0x3e9/0x6b0
[ 1915.948262]  ? udf_load_vrs+0x1d1/0x3c0
[ 1915.948265]  ? udf_load_vrs+0x3c0/0x3c0
[ 1915.948268]  mount_bdev+0x16e/0x1a0
[ 1915.948271]  mount_fs+0x30/0x150
[ 1915.948275]  vfs_kern_mount.part.25+0x4f/0xf0
[ 1915.948277]  do_mount+0x5d0/0xc70
[ 1915.948281]  ? _copy_from_user+0x37/0x60
[ 1915.948285]  ? memdup_user+0x39/0x60
[ 1915.948287]  ksys_mount+0x7b/0xd0
[ 1915.948289]  __x64_sys_mount+0x1c/0x20
[ 1915.948292]  do_syscall_64+0x43/0xf0
[ 1915.948297]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1915.948299] RIP: 0033:0x7f2c30e5ef5a
[ 1915.948300] Code: 48 8b 0d 31 cf 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d fe ce 2b 00 f7 d8 64 89 01 48 
[ 1915.948324] RSP: 002b:00007ffec7e28958 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1915.948326] RAX: ffffffffffffffda RBX: 000055854dce44b0 RCX: 00007f2c30e5ef5a
[ 1915.948328] RDX: 000055854dceada0 RSI: 000055854dce73a0 RDI: 000055854dce4690
[ 1915.948329] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f2c3111d390
[ 1915.948330] R10: 00000000c0ed0001 R11: 0000000000000246 R12: 000055854dce4690
[ 1915.948331] R13: 000055854dceada0 R14: 0000000000000000 R15: 00007f2c31378ec4
[ 1915.948333] Modules linked in: ipt_MASQUERADE nf_conntrack_netlink iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 xt_addrtype xt_conntrack nf_nat nf_conntrack br_netfilter bnep uvcvideo videobuf2_vmalloc videobuf2_memops videobuf2_v4l2 videobuf2_common snd_hda_codec_realtek snd_hda_codec_hdmi snd_hda_codec_generic xhci_pci snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer x86_pkg_temp_thermal iwlmvm xhci_hcd iwlwifi psmouse fujitsu_laptop snd soundcore r8169 coretemp efivarfs
[ 1915.948355] CR2: ffffffffffffffa4
[ 1915.948358] ---[ end trace c33d9a1c88adcc0a ]---
[ 1915.948360] RIP: 0010:udf_get_pblock_virt15+0x3f/0x120
[ 1915.948361] Code: 01 4e 8d 04 c0 41 39 70 1c 0f 82 f3 00 00 00 41 56 41 55 41 54 55 49 89 fc 53 4d 8b b1 80 00 00 00 89 d3 41 0f b7 50 20 89 cd <45> 0f b6 46 a4 48 89 d0 41 83 e0 07 41 80 f8 03 0f 84 87 00 00 00 
[ 1915.948385] RSP: 0018:ffffc900022c3cd8 EFLAGS: 00010246
[ 1915.948386] RAX: ffff880367152540 RBX: 0000000000000001 RCX: 0000000000000000
[ 1915.948387] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88035afa4000
[ 1915.948389] RBP: 0000000000000000 R08: ffff880367152598 R09: ffff880367152a80
[ 1915.948390] R10: ffff88033974e800 R11: 0000000000004000 R12: ffff88035afa4000
[ 1915.948391] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff82218308
[ 1915.948393] FS:  00007f2c31558780(0000) GS:ffff88041f200000(0000) knlGS:0000000000000000
[ 1915.948394] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1915.948395] CR2: ffffffffffffffa4 CR3: 0000000344ef8006 CR4: 00000000001606f0


However it works fine on one of my older Gentoo installations with kernel 4.8.x.

Comment 1 Viacheslav Gagara 2018-08-27 19:21:23 UTC

Created attachment 545230 [details]
.config

Comment 2 Tomáš Mózes 2018-08-28 10:04:56 UTC

Does it also happen on latest vanilla-sources?

Comment 3 Viacheslav Gagara 2018-08-29 19:00:47 UTC

Same behavior with 4.18.5 vanilla sources.

Here is dmesg:

[  332.944741] BUG: unable to handle kernel paging request at ffffffffffffffa4
[  332.944744] PGD 360c067 P4D 360c067 PUD 360e067 PMD 0 
[  332.944747] Oops: 0000 [#1] SMP PTI
[  332.944750] CPU: 3 PID: 6840 Comm: mount Not tainted 4.18.5 #1
[  332.944751] Hardware name: FUJITSU LIFEBOOK E544/FJNB281, BIOS Version 1.04 07/30/2014
[  332.944757] RIP: 0010:udf_get_pblock_virt15+0x3f/0x120
[  332.944758] Code: 01 4e 8d 04 c0 41 39 70 1c 0f 82 f3 00 00 00 41 56 41 55 41 54 55 49 89 fc 53 4d 8b b1 80 00 00 00 89 d3 41 0f b7 50 20 89 cd <45> 0f b6 46 a4 48 89 d0 41 83 e0 07 41 80 f8 03 0f 84 87 00 00 00 
[  332.944778] RSP: 0018:ffffc90002a83cd8 EFLAGS: 00010246
[  332.944780] RAX: ffff880364d47180 RBX: 0000000000000001 RCX: 0000000000000000
[  332.944781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88038d23f000
[  332.944782] RBP: 0000000000000000 R08: ffff880364d471d8 R09: ffff880364d473c0
[  332.944783] R10: ffff8803a5877800 R11: 0000000000000000 R12: ffff88038d23f000
[  332.944784] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff822181f8
[  332.944786] FS:  00007f8bf1774780(0000) GS:ffff88041f2c0000(0000) knlGS:0000000000000000
[  332.944787] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  332.944788] CR2: ffffffffffffffa4 CR3: 000000039b39e001 CR4: 00000000001606e0
[  332.944789] Call Trace:
[  332.944793]  udf_read_ptagged+0x21/0x40
[  332.944795]  udf_fill_super+0x3e9/0x6b0
[  332.944797]  ? udf_load_vrs+0x211/0x3c0
[  332.944799]  ? udf_load_vrs+0x3c0/0x3c0
[  332.944803]  mount_bdev+0x16e/0x1a0
[  332.944805]  mount_fs+0x30/0x150
[  332.944808]  vfs_kern_mount.part.25+0x4f/0xf0
[  332.944811]  do_mount+0x5d0/0xc70
[  332.944814]  ? _copy_from_user+0x37/0x60
[  332.944818]  ? memdup_user+0x39/0x60
[  332.944820]  ksys_mount+0x7b/0xd0
[  332.944822]  __x64_sys_mount+0x1c/0x20
[  332.944824]  do_syscall_64+0x43/0xf0
[  332.944829]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  332.944831] RIP: 0033:0x7f8bf107af5a
[  332.944831] Code: 48 8b 0d 31 cf 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d fe ce 2b 00 f7 d8 64 89 01 48 
[  332.944852] RSP: 002b:00007ffc48badd98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  332.944853] RAX: ffffffffffffffda RBX: 0000560e75d884b0 RCX: 00007f8bf107af5a
[  332.944854] RDX: 0000560e75d8eda0 RSI: 0000560e75d8b3a0 RDI: 0000560e75d88690
[  332.944855] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f8bf1339390
[  332.944856] R10: 00000000c0ed0001 R11: 0000000000000246 R12: 0000560e75d88690
[  332.944857] R13: 0000560e75d8eda0 R14: 0000000000000000 R15: 00007f8bf1594ec4
[  332.944859] Modules linked in: ipt_MASQUERADE nf_conntrack_netlink iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 xt_addrtype xt_conntrack nf_nat nf_conntrack br_netfilter bnep uvcvideo videobuf2_vmalloc videobuf2_memops videobuf2_v4l2 videobuf2_common snd_hda_codec_realtek snd_hda_codec_generic snd_hda_codec_hdmi snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core iwlmvm iwlwifi snd_pcm x86_pkg_temp_thermal r8169 xhci_pci xhci_hcd psmouse coretemp snd_timer snd soundcore fujitsu_laptop efivarfs
[  332.944878] CR2: ffffffffffffffa4
[  332.944880] ---[ end trace b1020a583e75a165 ]---
[  332.944882] RIP: 0010:udf_get_pblock_virt15+0x3f/0x120
[  332.944883] Code: 01 4e 8d 04 c0 41 39 70 1c 0f 82 f3 00 00 00 41 56 41 55 41 54 55 49 89 fc 53 4d 8b b1 80 00 00 00 89 d3 41 0f b7 50 20 89 cd <45> 0f b6 46 a4 48 89 d0 41 83 e0 07 41 80 f8 03 0f 84 87 00 00 00 
[  332.944903] RSP: 0018:ffffc90002a83cd8 EFLAGS: 00010246
[  332.944904] RAX: ffff880364d47180 RBX: 0000000000000001 RCX: 0000000000000000
[  332.944905] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88038d23f000
[  332.944906] RBP: 0000000000000000 R08: ffff880364d471d8 R09: ffff880364d473c0
[  332.944907] R10: ffff8803a5877800 R11: 0000000000000000 R12: ffff88038d23f000
[  332.944908] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff822181f8
[  332.944909] FS:  00007f8bf1774780(0000) GS:ffff88041f2c0000(0000) knlGS:0000000000000000
[  332.944911] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  332.944912] CR2: ffffffffffffffa4 CR3: 000000039b39e001 CR4: 00000000001606e0

Comment 4 Viacheslav Gagara 2018-08-29 19:03:52 UTC

Created attachment 545474 [details]
.config 4.18.5 vanilla

Comment 5 Tomáš Mózes 2018-08-30 15:06:40 UTC

Probably best would be to report upstream as it happens on the recent stable version. Maybe they will ask to test on 4.19-rc1, but it should work on the latest stable version nevertheless.

Comment 6 Viacheslav Gagara 2018-08-31 19:45:17 UTC

reported bug to upstream: https://bugzilla.kernel.org/show_bug.cgi?id=200987

Comment 7 Arfrever Frehtes Taifersar Arahesis 2018-12-14 00:32:17 UTC

According to upstream bug, problem was fixed in 4.19-rc2.