Bug 947985

Summary: [abrt] BUG: unable to handle kernel NULL pointer dereference at (null)
Product: [Fedora] Fedora Reporter: Dan Dragomir <dragomir.dan>
Component: kernelAssignee: Kernel Maintainer List <kernel-maint>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 17CC: aarcange, gansalmon, itamar, jonathan, kernel-maint, madhu.chinakonda
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
Whiteboard: abrt_hash:cbb1cb9c6f884986cce2abf88b7ec7df6ac995d7
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-06-03 20:13:25 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
File: dmesg
none
Same issue on fedora 18 none

Description Dan Dragomir 2013-04-03 17:18:06 UTC 
Additional info:
BUG: unable to handle kernel NULL pointer dereference at           (null)
IP: [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
PGD 106b69067 PUD 120f55067 PMD 0 
Oops: 0000 [#1] SMP 
Modules linked in: snd_usb_audio snd_usbmidi_lib snd_rawmidi usblp vfat fat usb_storage fuse ebtable_nat ebtables xt_CHECKSUM iptable_mangle bridge stp llc be2iscsi iscsi_boot_sysfs bnx2i cnic uio cxgb4i cxgb4 cxgb3i cxgb3 mdio libcxgbi ib_iser lockd rdma_cm sunrpc ib_addr iw_cm ib_cm ib_sa ib_mad ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi rfcomm bnep btusb bluetooth nf_conntrack_ftp nf_conntrack_netbios_ns nf_conntrack_broadcast ip6t_REJECT nf_conntrack_ipv6 nf_defrag_ipv6 ipt_MASQUERADE xt_state iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack ip6table_filter ip6_tables iTCO_wdt iTCO_vendor_support acer_wmi sparse_keymap coretemp arc4 snd_hda_codec_realtek uvcvideo snd_hda_intel snd_hda_codec snd_hwdep videobuf2_vmalloc snd_seq microcode videobuf2_memops videobuf2_core snd_seq_device videodev iwl3945 snd_pcm media serio_raw iwlegacy mac80211 i2c_i801 snd_page_alloc tifm_7xx1 snd_timer tifm_core snd lpc_ich mfd_core soun
dcore cfg80211 tg3 rfkill ptp pps_core nsc_ircc irda crc_ccitt binfmt_misc vhost_net tun macvtap macvlan kvm_intel kvm uinput firewire_ohci sdhci_pci sdhci mmc_core firewire_core yenta_socket crc_itu_t wmi i915 video i2c_algo_bit drm_kms_helper drm i2c_core
CPU 1 
Pid: 10566, comm: java Not tainted 3.8.4-102.fc17.x86_64 #1 Acer            TravelMate 5720                /Columbia                       
RIP: 0010:[<ffffffff8118ee84>]  [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
RSP: 0018:ffff8800aa13dcf8  EFLAGS: 00010246
RAX: ffff880138338000 RBX: ffff88007fcedf80 RCX: 0000000000c85398
RDX: 0000000000c85397 RSI: 00000000000000d0 RDI: ffff880138338000
RBP: ffff8800aa13dd88 R08: 0000000000016c20 R09: 00007f4f20bd9378
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8800a53dc508
R13: ffff880138338000 R14: 0000000000000000 R15: 0000000000000000
FS:  00007f4f291a4700(0000) GS:ffff88013fd00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 000000010ee9f000 CR4: 00000000000007e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process java (pid: 10566, threadinfo ffff8800aa13c000, task ffff88007ff42ec0)
Stack:
 ffff8800aa13dd28 00007f4f20bd9378 ffff880135f53828 ffff880138338000
 ffff880135f53828 ffff880138338000 00007f4f20bd9378 ffffffff8118f8bd
 8000000103e000a5 00007f4f20a00000 ffff88007fff3cf8 ffffea00029470c0
Call Trace:
 [<ffffffff8118f8bd>] ? do_huge_pmd_anonymous_page+0x34d/0x450
 [<ffffffff8115eb9e>] handle_mm_fault+0x17e/0x650
 [<ffffffff810ba676>] ? futex_wake+0x106/0x130
 [<ffffffff816505a1>] __do_page_fault+0x171/0x4d0
 [<ffffffff8109798f>] ? __dequeue_entity+0x2f/0x50
 [<ffffffff810135d1>] ? __switch_to+0x181/0x4a0
 [<ffffffff8165090e>] do_page_fault+0xe/0x10
 [<ffffffff8164cf58>] page_fault+0x28/0x30
Code: c0 48 89 45 98 4c 8b 8d 78 ff ff ff 0f 84 f7 04 00 00 48 8b 7d 98 45 31 d2 4c 89 75 90 4c 89 4d a0 45 89 d6 48 89 7d 88 49 89 fd <4d> 8b 07 48 8b 4d a0 31 f6 4c 89 e2 bf da 00 82 00 49 c1 e8 37 
RIP  [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
 RSP <ffff8800aa13dcf8>
CR2: 0000000000000000
Comment 1 Dan Dragomir 2013-04-03 17:18:30 UTC 
Created attachment 731254 [details]
File: dmesg
Comment 2 Richard Opalka 2013-04-09 13:10:30 UTC 
Created attachment 733211 [details]
Same issue on fedora 18

Reproduced on Thinkpad Lenovo T410 laptop.

Linux blackhole 3.8.5-201.fc18.x86_64 #1 SMP Thu Mar 28 21:01:19 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
Comment 3 Dan Dragomir 2013-04-17 15:53:56 UTC 
Description of problem:
I was doing some Java development in Eclipse.

Version-Release number of selected component:
kernel

Additional info:
cmdline:        BOOT_IMAGE=/boot/vmlinuz-3.8.4-102.fc17.x86_64 root=UUID=e565e9ce-d2fc-4d0b-8562-a65e9f35550a ro rd.md=0 rd.lvm=0 rd.dm=0 SYSFONT=True KEYTABLE=us rd.luks=0 LANG=en_US.UTF-8 rhgb quiet i8042.reset=1
kernel:         3.8.4-102.fc17.x86_64
type:           Kerneloops
ureports_counter: 1

Truncated backtrace:
BUG: unable to handle kernel NULL pointer dereference at           (null)
IP: [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
PGD 36aa9067 PUD b241067 PMD 0 
Oops: 0000 [#1] SMP 
Modules linked in: nfnetlink_log nfnetlink vfat fat usb_storage fuse ebtable_nat ebtables xt_CHECKSUM iptable_mangle bridge stp llc be2iscsi iscsi_boot_sysfs lockd sunrpc rfcomm bnx2i cnic uio cxgb4i cxgb4 cxgb3i cxgb3 mdio libcxgbi ib_iser bnep rdma_cm btusb ib_addr iw_cm ib_cm ib_sa ib_mad ib_core iscsi_tcp bluetooth libiscsi_tcp libiscsi scsi_transport_iscsi nf_conntrack_ftp ip6t_REJECT nf_conntrack_netbios_ns nf_conntrack_broadcast nf_conntrack_ipv6 nf_defrag_ipv6 ipt_MASQUERADE xt_state iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat ip6table_filter nf_conntrack ip6_tables acer_wmi sparse_keymap iTCO_wdt iTCO_vendor_support coretemp microcode uvcvideo videobuf2_vmalloc videobuf2_memops videobuf2_core videodev snd_hda_codec_realtek media serio_raw snd_hda_intel snd_hda_codec snd_hwdep snd_seq snd_seq_device i2c_i801 snd_pcm arc4 iwl3945 lpc_ich mfd_core tifm_7xx1 iwlegacy tifm_core mac80211 tg3 ptp pps_core cfg80211 rfkill snd_page_alloc snd_time
r snd soundcore nsc_ircc irda crc_ccitt binfmt_misc vhost_net tun macvtap macvlan kvm_intel kvm uinput firewire_ohci sdhci_pci sdhci mmc_core firewire_core crc_itu_t yenta_socket wmi i915 video i2c_algo_bit drm_kms_helper drm i2c_core
CPU 1 
Pid: 9911, comm: java Not tainted 3.8.4-102.fc17.x86_64 #1 Acer            TravelMate 5720                /Columbia                       
RIP: 0010:[<ffffffff8118ee84>]  [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
RSP: 0000:ffff8800a8fd3cf8  EFLAGS: 00010246
RAX: ffff88012d546000 RBX: ffff8800aff95880 RCX: 000000000972fdce
RDX: 000000000972fdcd RSI: 00000000000000d0 RDI: ffff88012d546000
RBP: ffff8800a8fd3d88 R08: 0000000000016c20 R09: 00007f1532c0ca70
R10: 0000000000000000 R11: 0000000000000000 R12: ffff88008821fcf0
R13: ffff88012d546000 R14: 0000000000000000 R15: 0000000000000000
FS:  00007f153e242700(0000) GS:ffff88013fd00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 00000000368ff000 CR4: 00000000000007e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process java (pid: 9911, threadinfo ffff8800a8fd2000, task ffff8801027b9760)
Stack:
 ffff8800b3d98008 00007f1532c0ca70 ffffea00018095c0 ffff88012d546000
 ffff88000b37bcb0 ffff88012d546000 00007f1532c0ca70 00007f1534000000
 80000001058000a5 00007f1532c00000 0000000000000000 00000000b3d98067
Call Trace:
 [<ffffffff8115eb9e>] handle_mm_fault+0x17e/0x650
 [<ffffffff810ba676>] ? futex_wake+0x106/0x130
 [<ffffffff816505a1>] __do_page_fault+0x171/0x4d0
 [<ffffffff810bd22d>] ? sys_futex+0x8d/0x190
 [<ffffffff8165090e>] do_page_fault+0xe/0x10
 [<ffffffff8164cf58>] page_fault+0x28/0x30
Code: c0 48 89 45 98 4c 8b 8d 78 ff ff ff 0f 84 f7 04 00 00 48 8b 7d 98 45 31 d2 4c 89 75 90 4c 89 4d a0 45 89 d6 48 89 7d 88 49 89 fd <4d> 8b 07 48 8b 4d a0 31 f6 4c 89 e2 bf da 00 82 00 49 c1 e8 37 
RIP  [<ffffffff8118ee84>] do_huge_pmd_wp_page+0x684/0xc20
 RSP <ffff8800a8fd3cf8>
CR2: 0000000000000000
Comment 4 Josh Boyer 2013-06-03 18:57:03 UTC 
Are you still seeing this with the 3.9.4 kernel in updates-testing?
Comment 5 Dan Dragomir 2013-06-03 19:50:50 UTC 
I haven't seen this bug in a while. I'm currently on 3.8.13.
Comment 6 Josh Boyer 2013-06-03 20:13:25 UTC 
Thanks for letting us know.