Double free in slab cache 'size-64' result in kernel BUG at mm/slab.c:2787!
Issue
- Kernel BUG at mm/slab.c:2787! on untainted kernel "2.6.32-504.12.2.el6"
CIFS VFS: cifs_mount failed w/return code = -13
CIFS VFS: Autodisabling the use of server inode numbers on \\172.20.10.172\FTPCENTR. This server doesn't seem to support them properly. Hardlinks will not be recognized on this mount. Consider mounting with the "noserverino" option to silence this message.
slab error in verify_redzone_free(): cache `size-64': double free detected
Pid: 6362, comm: umount Not tainted 2.6.32-504.12.2.el6.x86_64.debug #1
Call Trace:
[<ffffffff8118bdb9>] ? __slab_error+0x29/0x30
[<ffffffff8118d049>] ? cache_free_debugcheck+0x249/0x270
[<ffffffff8119049b>] ? kfree+0xeb/0x310
[<ffffffffa0380a60>] ? cifs_put_tcp_session+0xa0/0xe0 [cifs]
[<ffffffffa0380b4a>] ? cifs_put_smb_ses+0xaa/0x150 [cifs]
[<ffffffffa03854a5>] ? cifs_put_tcon+0xb5/0x120 [cifs]
[<ffffffffa0385552>] ? cifs_put_tlink+0x42/0x70 [cifs]
[<ffffffffa03855df>] ? cifs_umount+0x5f/0xd0 [cifs]
[<ffffffffa03732c2>] ? cifs_kill_sb+0x22/0x30 [cifs]
[<ffffffff811aeb87>] ? deactivate_super+0x57/0x80
[<ffffffff811cee9f>] ? mntput_no_expire+0xbf/0x110
[<ffffffff811cfa0b>] ? sys_umount+0x7b/0x3a0
[<ffffffff8100b072>] ? system_call_fastpath+0x16/0x1b
ffff8801b92e7c90: redzone 1:0x9f911029d74e35b, redzone 2:0x9f911029d74e35b.
slab: double free detected in cache 'size-64', objp ffff8801b92e7c90
------------[ cut here ]------------
kernel BUG at mm/slab.c:2787!
invalid opcode: 0000 [#1] SMP
last sysfs file: /sys/devices/pci0000:00/0000:00:11.0/0000:02:00.0/local_cpus
CPU 3
Modules linked in: des_generic ecb md4 nls_utf8 cifs autofs4 nfs lockd fscache auth_rpcgss nfs_acl sunrpc ipv6 ppdev parport_pc parport microcode e1000 vmware_balloon sg i2c_piix4 i2c_core shpchp ext4 jbd2 mbcache sd_mod crc_t10dif sr_mod cdrom mptspi mptscsih mptbase scsi_transport_spi pata_acpi ata_generic ata_piix dm_mirror dm_region_hash dm_log dm_mod [last unloaded: speedstep_lib]
Pid: 22, comm: events/3 Not tainted 2.6.32-504.12.2.el6.x86_64.debug #1 VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform
RIP: 0010:[<ffffffff8118d692>] [<ffffffff8118d692>] free_block+0x1f2/0x230
RSP: 0018:ffff8801bd75dca0 EFLAGS: 00010082
RAX: 000000000000004b RBX: ffff8801bfc50140 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000046
RBP: ffff8801bd75dcf0 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff818a98f8 R11: 0000000000000001 R12: ffff8801b92e7000
R13: ffff8801bfe9a118 R14: 0000000000000000 R15: 000000000000101a
FS: 0000000000000000(0000) GS:ffff88002e000000(0000) knlGS:0000000000000000
CS: 0010 DS: 0018 ES: 0018 CR0: 000000008005003b
CR2: 00007f7c5488e000 CR3: 00000001b9cff000 CR4: 00000000000007e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process events/3 (pid: 22, threadinfo ffff8801bd75c000, task ffff8801bd758640)
Stack:
ffff8801bfc21288 0000001a00000000 ffff8801b92e7c90 ffff8801bfc21230
<d> ffff8801bd75dcf0 ffff8801bfe9a0c8 ffff8801bfc50140 000000000000001a
<d> ffff8801bfc21270 ffff8801bfe9a118 ffff8801bd75dd40 ffffffff8118d901
Call Trace:
[<ffffffff8118d901>] drain_array+0xc1/0xf0
[<ffffffff81191bcf>] ? cache_reap+0x2f/0x2e0
[<ffffffff81191c89>] cache_reap+0xe9/0x2e0
[<ffffffff81191ba0>] ? cache_reap+0x0/0x2e0
[<ffffffff8109d9cc>] worker_thread+0x21c/0x3d0
[<ffffffff8109d97b>] ? worker_thread+0x1cb/0x3d0
[<ffffffff810a4d50>] ? autoremove_wake_function+0x0/0x40
[<ffffffff8109d7b0>] ? worker_thread+0x0/0x3d0
[<ffffffff810a48ce>] kthread+0x9e/0xc0
[<ffffffff8100c30a>] child_rip+0xa/0x20
[<ffffffff8100bb10>] ? restore_args+0x0/0x30
[<ffffffff810a4830>] ? kthread+0x0/0xc0
[<ffffffff8100c300>] ? child_rip+0x0/0x20
Code: 00 e9 8f fe ff ff 48 8b 40 10 48 8b 10 e9 d1 fe ff ff 48 8b b3 50 80 00 00 48 8b 55 c0 48 c7 c7 38 fe 74 81 31 c0 e8 1a f1 3c 00 <0f> 0b eb fe be de 0a 00 00 48 c7 c7 78 cb 74 81 89 45 b0 e8 76
RIP [<ffffffff8118d692>] free_block+0x1f2/0x230
RSP <ffff8801bd75dca0>
- Exactly same panic with older versions of kernel.
- kernel-2.6.32-431.20.3.el6.x86_64
- kernel-2.6.32-504.12.2.el6.x86_64
Environment
- Red Hat Enterprise Linux 6.6
- kernel-2.6.32-504.12.2.el6.x86_64
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
