Bug 449294 - utrace: late ptrace_may_attach() check, dead_engine_ops race...
utrace: late ptrace_may_attach() check, dead_engine_ops race...
Status: CLOSED CURRENTRELEASE
Product: Fedora
Classification: Fedora
Component: kernel (Show other bugs)
9
All Linux
low Severity high
: ---
: ---
Assigned To: Roland McGrath
Fedora Extras Quality Assurance
: Regression, Security
Depends On:
Blocks: CVE-2008-2365
  Show dependency treegraph
 
Reported: 2008-06-01 17:38 EDT by Jan Kratochvil
Modified: 2008-10-24 09:05 EDT (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2008-10-24 09:05:48 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:


Attachments (Terms of Use)

  None (edit)
Description Jan Kratochvil 2008-06-01 17:38:13 EDT
+++ This bug was initially created as a clone of Bug #245735 +++

Testcase late-ptrace-may-attach-check:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/~checkout~/tests/ptrace-tests/tests/late-ptrace-may-attach-check.c?cvsroot=systemtap

still the process gets hung (unkillable) on F9 latest update
kernel-2.6.25.3-18.fc9.x86_64.
(not seen in later F9 or Rawhide a possible fix in the %changelog)

12:04:40: Linux version 2.6.25.3-18.fc9.x86_64 (mockbuild@) (gcc version 4.3.0
20080428 (Red Hat 4.3.0-8) (GCC) ) #1 SMP Tue May 13 04:54:47 EDT 2008
12:06:09: XXX ptrace_report_death leak
12:06:09: XXX ptrace_report_reap leak
12:06:12: XXX ptrace_report_death leak
12:06:12: XXX ptrace_report_reap leak
12:16:59: BUG: soft lockup - CPU#0 stuck for 61s! [late-ptrace-may:4978]
12:16:59: CPU 0:
12:16:59: Modules linked in: bridge bnep rfcomm l2cap bluetooth sunrpc ipv6
cpufreq_ondemand acpi_cpufreq freq_table loop dm_multipath snd_hda_intel
snd_seq_dummy snd_seq_oss snd_seq_midi_event snd_seq snd_seq_device snd_pcm_oss
snd_mixer_oss snd_pcm snd_timer snd_page_alloc snd_hwdep snd soundcore i2c_i801
pcspkr tg3 button i2c_core serio_raw usb_storage sg sr_mod cdrom dm_snapshot
dm_zero dm_mirror dm_mod pata_acpi ata_generic ata_piix libata sd_mod scsi_mod
ext3 jbd mbcache uhci_hcd ohci_hcd ehci_hcd [last unloaded: microcode]
12:16:59: Pid: 4978, comm: late-ptrace-may Not tainted 2.6.25.3-18.fc9.x86_64 #1
12:16:59: RIP: 0010:[_spin_lock+20/26]  [_spin_lock+20/26] _spin_lock+0x14/0x1a
12:16:59: RSP: 0018:ffff81002a439e28  EFLAGS: 00000297
12:16:59: RAX: 0000000000007300 RBX: ffff81002a439e28 RCX: ffff81002a9c080c
12:16:59: RDX: fffffffffffffffd RSI: ffff81002a83ac40 RDI: ffff81002a9472c0
12:16:59: RBP: ffff81002a439dc8 R08: ffffffff81032444 R09: ffffffffffffffa8
12:16:59: R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000202
12:16:59: R13: 0000000000000070 R14: ffff81003ad03a00 R15: 000000000060e290
12:16:59: FS:  00007f9cb02346f0(0000) GS:ffffffff813f6000(0000)
knlGS:0000000000000000
12:16:59: CS:  0010 DS: 0000 ES: 0000 CR0: 000000008005003b
12:16:59: CR2: 000000000060e290 CR3: 0000000039575000 CR4: 00000000000006e0
12:16:59: DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
12:16:59: DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
12:16:59: 
12:16:59: Call Trace:
12:16:59:  [get_utrace_lock_attached+49/96] ? get_utrace_lock_attached+0x31/0x60
12:16:59:  [__mmdrop+146/155] ? __mmdrop+0x92/0x9b
12:16:59:  [utrace_detach+22/168] ? utrace_detach+0x16/0xa8
12:16:59:  [ptrace_exit+110/337] ? ptrace_exit+0x6e/0x151
12:16:59:  [do_exit+256/1622] ? do_exit+0x100/0x656
12:16:59:  [do_group_exit+123/150] ? do_group_exit+0x7b/0x96
12:16:59:  [sys_exit_group+18/20] ? sys_exit_group+0x12/0x14
12:16:59:  [system_call_after_swapgs+123/128] ? system_call_after_swapgs+0x7b/0x80
12:16:59: 

12:18:18: Linux version 2.6.25.3-18.fc9.i686 (mockbuild@) (gcc version 4.3.0
20080428 (Red Hat 4.3.0-8) (GCC) ) #1 SMP Tue May 13 05:38:53 EDT 2008 
12:21:49: XXX ptrace_report_death leak
12:21:49: XXX ptrace_report_reap leak
12:30:48: BUG: soft lockup - CPU#0 stuck for 61s! [late-ptrace-may:4328]
12:30:48: 
12:30:48: Pid: 4328, comm: late-ptrace-may Not tainted (2.6.25.3-18.fc9.i686 #1)
12:30:48: EIP: 0060:[_spin_lock+13/25] EFLAGS: 00000292 CPU: 0
12:30:48: EIP is at _spin_lock+0xd/0x19
12:30:48: EAX: f6a7df20 EBX: f6a7df10 ECX: f6932638 EDX: 000001f0
12:30:48: ESI: f6a60000 EDI: f69460c0 EBP: f6a96f18 ESP: f6a96f18
12:30:48:  DS: 007b ES: 007b FS: 00d8 GS: 0033 SS: 0068 
12:30:48: CR0: 8005003b CR2: 0013b340 CR3: 36977000 CR4: 000006d0
12:30:48: DR0: 00000000 DR1: 00000000 DR2: 00000000 DR3: 00000000
12:30:48: DR6: ffff0ff0 DR7: 00000400
12:30:48:  [get_utrace_lock_attached+42/80] get_utrace_lock_attached+0x2a/0x50
12:30:48:  [utrace_detach+18/149] utrace_detach+0x12/0x95
12:30:48:  [ptrace_exit+102/295] ptrace_exit+0x66/0x127
12:30:48:  [do_exit+208/1364] do_exit+0xd0/0x554
12:30:48:  [ptrace_detach+234/274] ? ptrace_detach+0xea/0x112
12:30:48:  [do_group_exit+110/133] do_group_exit+0x6e/0x85
12:30:48:  [sys_exit_group+19/21] sys_exit_group+0x13/0x15
12:30:48:  [syscall_call+7/11] syscall_call+0x7/0xb
12:30:48:  [acpi_pci_root_add+75/672] ? acpi_pci_root_add+0x4b/0x2a0
12:30:48:  =======================
Comment 1 Chuck Ebbert 2008-10-24 00:47:13 EDT
Is this fixed?
Comment 2 Denys Vlasenko 2008-10-24 08:27:26 EDT
Yes, it is fixed in 2.6.26.6-79.fc9

Note You need to log in before you can comment on or make changes to this bug.