NULL pointer dereference in function vol_rp_per_conn_info+() of the unsigned kernel module vxio .

Solution In Progress - Updated -

Issue

Kernel is found to be panicked at this instruction pointervol_rp_per_conn_info+() :

BUG: unable to handle kernel NULL pointer dereference at (null)
IP: [<ffffffffa0fc794e>] vol_rp_per_conn_info+0xae/0x1b0 [vxio]
Kernel PGD 8000002023e78067 PUD 200598b067 PMD 0 
User   PGD 2023e78067 PUD 200598b067 PMD 0 
Oops: 0000 [#1] SMP 
last sysfs file: /sys/module/ata_piix/version
CPU 10 
Modules linked in: nfnetlink_queue nfnetlink_log nfnetlink bluetooth rfkill iptable_filter ip_tables tcp_diag inet_diag nfs lockd fscache auth_rpcgss nfs_acl xfs ext2 mptctl
 mptbase vxodm(P)(U) vxgms(P)(U) amf(P)(U) vxglm(P)(U) vxfen(P)(U) gab(P)(U) llt(P)(U) rdma_cm ib_cm iw_cm ib_sa ib_mad ib_core ib_addr autofs4 joydev sunrpc dmpaa(P)(U) vxs
pec(P)(U) vxio(P)(U) vxdmp(P)(U) pcc_cpufreq bonding ipv6 vxcafs(P)(U) vxportal(P)(U) fdd(P)(U) vxfs(P)(U) exportfs ext3 jbd iTCO_wdt iTCO_vendor_support microcode serio_raw
 hpilo hpwdt power_meter acpi_ipmi ipmi_si ipmi_msghandler sg tg3 lpc_ich mfd_core ixgbe ptp pps_core mdio ioatdma dca shpchp ext4 jbd2 mbcache dm_snapshot dm_bufio sd_mod l
pfc scsi_transport_fc scsi_tgt crc_t10dif hpsa pata_acpi ata_generic ata_piix dm_mirror dm_region_hash dm_log dm_mod [last unloaded: vxfs]

Pid: 22450, comm: vradmind Tainted: P           -- ------------    2.6.32-754.12.1.el6.x86_64 #1 HP ProLiant DL380p Gen8
RIP: 0010:[<ffffffffa0fc794e>]  [<ffffffffa0fc794e>] vol_rp_per_conn_info+0xae/0x1b0 [vxio]
RSP: 0018:ffff8820077ef958  EFLAGS: 00010046
RAX: 0000000000000286 RBX: ffff881d11ef6c00 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff881649bde800
RBP: ffff8820077ef988 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 00007fff917c5ff0
R13: ffff8820077efdb8 R14: ffff881649bde000 R15: ffff881649bde800
FS:  00007fd1ec36f740(0000) GS:ffff881078880000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 00000020262fc000 CR4: 00000000000607e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Process vradmind (pid: 22450, threadinfo ffff8820077ec000, task ffff8820252e2040)
Stack:
 ffff8820077efdb8 ffff8815d8e98000 ffff881649bde000 00007fff917c5ff0
<d> ffff8820077efdb8 ffff8820077efdb8 ffff8820077efa58 ffffffffa0fcbc9f
<d> ffff8820077ef9a8 ffffffff81070882 ffff8820077ef9e8 ffffffff00000000
Call Trace:
 [<ffffffffa0fcbc9f>] vol_rp_ioctl+0x6af/0xc10 [vxio]
 [<ffffffff81070882>] ? default_wake_function+0x12/0x20
 [<ffffffff81070870>] ? default_wake_function+0x0/0x20
 [<ffffffff8106251c>] ? __wake_up_common+0x5c/0x90
 [<ffffffffa0e7e443>] vol_objioctl+0x73/0x460 [vxio]
 [<ffffffff81066c30>] ? __wake_up_sync+0x10/0x20
 [<ffffffff81524f60>] ? unix_write_space+0x50/0x80
 [<ffffffff81479119>] ? sock_wfree+0x59/0x60
 [<ffffffffa0efb76f>] ? vol_free+0xef/0x100 [vxio]
 [<ffffffffa0e8099b>] ? vol_objas_next_depth+0xfb/0x110 [vxio]
 [<ffffffffa0e80c68>] ? vol_open_object+0x78/0x380 [vxio]
 [<ffffffffa0e7ea2a>] vol_object_ioctl+0x1fa/0x380 [vxio]
 [<ffffffffa0e7ec33>] voliod_ioctl+0x83/0xe0 [vxio]
 [<ffffffffa0efc7af>] volsioctl_real+0x40f/0x4f0 [vxio]
 [<ffffffff8124cf84>] ? inode_has_perm+0x54/0xa0
 [<ffffffff811a1500>] ? do_sync_read+0x100/0x140
 [<ffffffffa004313c>] vols_ioctl+0x5c/0x80 [vxspec]
 [<ffffffffa0043181>] vols_unlocked_ioctl+0x21/0x30 [vxspec]
 [<ffffffff811b72b9>] vfs_ioctl+0x29/0xc0
 [<ffffffff811b7474>] do_vfs_ioctl+0x84/0x590
 [<ffffffff811b7a01>] sys_ioctl+0x81/0xa0
 [<ffffffff81564357>] system_call_fastpath+0x35/0x3a
Code: 74 0a 00 00 49 89 86 08 08 00 00 45 85 d2 0f 85 f1 00 00 00 45 8b 8e e4 09 00 00 45 85 c9 0f 85 e1 00 00 00 49 8b 96 b8 08 00 00 <48> 8b 0a 48 85 c9 0f 84 ce 00 00 00 44 8b 81 90 01 00 00 45 85 
RIP  [<ffffffffa0fc794e>] vol_rp_per_conn_info+0xae/0x1b0 [vxio]
 RSP <ffff8820077ef958>
CR2: 0000000000000000

Environment

  • Red Hat Enterprise Linux 6
  • Unsigned kernel module (vxio)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content