LinuxLists.cc - 5.3-rc1 panic in dma_direct_max_mapping

2019-07-22 17:46:18

Subject: 5.3-rc1 panic in dma_direct_max_mapping_size

only got a partial panic, but when I threw 5.3-rc1 on a linode vm,
it hit this:

bus_add_driver+0x1a9/0x1c0
? scsi_init_sysctl+0x22/0x22
driver_register+0x6b/0xa6
? scsi_init_sysctl+0x22/0x22
init+0x86/0xcc
do_one_initcall+0x69/0x334
kernel_init_freeable+0x367/0x3ff
? rest_init+0x247/0x247
kernel_init+0xa/0xf9
ret_from_fork+0x3a/0x50
CR2: 0000000000000000
---[ end trace 2967cd16f7b1a303 ]---
RIP: 0010:dma_direct_max_mapping_size+0x21/0x71
Code: 0f b6 c0 c3 0f 1f 44 00 00 0f 1f 44 00 00 55 53 48 89 fb e8 21 0e 00 00 84 c0 74 2c 48 8b 83 20 03 00 00 48 8b ab
30 03 00 00 <48> 8b 00 48 85 c0 75 20 48 89 df e8 ff f3 ff ff 48 39 e8 77 2c 83
RSP: 0018:ffffb58f00013ae8 EFLAGS: 00010202
RAX: 0000000000000000 RBX: ffffa35ff8914ac8 RCX: ffffb58f00013a1c
RDX: ffffa35ff81d4658 RSI: 000000000000007e RDI: ffffa35ff8914ac8
RBP: 0000000000000000 R08: ffffa35ff81d4cc0 R09: ffffa35ff82e3bc8
R10: 0000000000000000 R11: 0000000000000000 R12: ffffa35ff8914ac8
R13: 000000000000ffff R14: ffffa35ff826c160 R15: 0000000000000000
FS: 0000000000000000(0000) GS:ffffa35ffba00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 000000012d220001 CR4: 00000000003606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Kernel panic - not syncing: Attempted to kill init! exitcode=0x00000009
Kernel Offset: 0x1b000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)

Will try and get some more debug info this evening if it isn't obvious
from the above.

Dave

2019-07-22 23:13:19

by Adam Williamson

[permalink] [raw]

Subject: Re: 5.3-rc1 panic in dma_direct_max_mapping_size

Seeing something similar but not identical here. I updated a Fedora
Rawhide virt-manager/libvirt VM (installed with the previous Fedora
kernel build) to the Fedora rc1 kernel build, and it doesn't boot any
more, with this trace:

[ 3.018311] scsi host8: Virtio SCSI HBA
[ 3.019234] BUG: kernel NULL pointer dereference, address: 0000000000000000
[ 3.020321] #PF: supervisor read access in kernel mode
[ 3.021114] #PF: error_code(0x0000) - not-present page
[ 3.021898] PGD 0 P4D 0
[ 3.022299] Oops: 0000 [#1] SMP PTI
[ 3.022836] CPU: 1 PID: 164 Comm: kworker/u4:5 Not tainted 5.3.0-0.rc1.git0.1.fc31.x86_64 #1
[ 3.024120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190617_165236-buildvm-18.phx2.fedoraproject.org-1.fc31 04/01/2014
[ 3.025924] Workqueue: events_unbound async_run_entry_fn
[ 3.026727] RIP: 0010:dma_direct_max_mapping_size+0x2b/0x64
[ 3.027573] Code: 66 66 66 90 55 48 89 fd 53 e8 81 13 00 00 84 c0 75 0a 48 c7 c0 ff ff ff ff 5b 5d c3 48 8b 85 28 02 00 00 48 8b 9d 38 02 00 00 <48> 8b 00 48 85 c0 74 0c 48 85 db 74 27 48 39 c3 48 0f 47 d8 48 89
[ 3.030444] RSP: 0000:ffffb60d001ebc20 EFLAGS: 00010202
[ 3.031234] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3.032269] RDX: ffff8ef87b3dbe80 RSI: 000000000000007e RDI: ffff8ef87535c810
[ 3.033333] RBP: ffff8ef87535c810 R08: ffff8ef87bb2e0e0 R09: ffff8ef87b003340
[ 3.034403] R10: 000000000002f3a0 R11: 0000000000000011 R12: ffff8ef87535c810
[ 3.035469] R13: 000000000000ffff R14: ffff8ef87371c828 R15: 0000000000000000
[ 3.036540] FS: 0000000000000000(0000) GS:ffff8ef87bb00000(0000) knlGS:0000000000000000
[ 3.037748] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3.038612] CR2: 0000000000000000 CR3: 0000000134b24006 CR4: 0000000000060ee0
[ 3.039689] Call Trace:
[ 3.040073] __scsi_init_queue+0x75/0x140
[ 3.040685] scsi_mq_alloc_queue+0x34/0x50
[ 3.041307] scsi_alloc_sdev+0x1f9/0x2c0
[ 3.041902] scsi_probe_and_add_lun+0x9a2/0xd70
[ 3.042589] ? _cond_resched+0x15/0x30
[ 3.043148] ? mutex_lock+0xe/0x30
[ 3.043669] __scsi_scan_target+0xec/0x5c0
[ 3.044299] ? __switch_to_asm+0x34/0x70
[ 3.044896] ? __switch_to_asm+0x40/0x70
[ 3.045495] ? __switch_to_asm+0x34/0x70
[ 3.046092] ? __switch_to_asm+0x34/0x70
[ 3.046692] ? __switch_to_asm+0x40/0x70
[ 3.047292] scsi_scan_channel+0x57/0x90
[ 3.047890] scsi_scan_host_selected+0xdb/0x110
[ 3.048581] do_scan_async+0x18/0x150
[ 3.049140] async_run_entry_fn+0x39/0x160
[ 3.049765] process_one_work+0x19d/0x340
[ 3.050377] worker_thread+0x50/0x3b0
[ 3.050933] kthread+0xfb/0x130
[ 3.051418] ? process_one_work+0x340/0x340
[ 3.052052] ? kthread_park+0x80/0x80
[ 3.052613] ret_from_fork+0x35/0x40
[ 3.053157] Modules linked in: virtio_net ata_generic net_failover failover serio_raw virtio_scsi pata_acpi qemu_fw_cfg fuse
[ 3.054832] CR2: 0000000000000000
[ 3.055342] ---[ end trace c6389143c53d3973 ]---

Happens whether the disk image is attached to the VM as virtio or IDE.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net