Ubuntu
linux-hwe-6.5 package

mpt3sas causes kernel stack trace

Bug #2050032 reported by Mike Bernson
28
This bug affects 5 people
Affects Status Importance Assigned to Milestone
linux-hwe-6.5 (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

[ 22.989826] ================================================================================
[ 22.989831] UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:4667:12
[ 22.989838] index 1 is out of range for type 'MPI2_EVENT_SAS_TOPO_PHY_ENTRY [1]'
[ 22.989843] CPU: 23 PID: 0 Comm: swapper/23 Not tainted 6.5.0-14-generic #14~22.04.1-Ubuntu
[ 22.989850] Hardware name: Supermicro H8DG6/H8DGi/H8DG6/H8DGi, BIOS 2.0b 03/01/2012
[ 22.989854] Call Trace:
[ 22.989858] <IRQ>
[ 22.989862] dump_stack_lvl+0x48/0x70
[ 22.989877] dump_stack+0x10/0x20
[ 22.989883] __ubsan_handle_out_of_bounds+0xc6/0x110
[ 22.989895] _scsih_check_topo_delete_events+0x2dc/0x350 [mpt3sas]
[ 22.989962] mpt3sas_scsih_event_callback+0x21f/0x630 [mpt3sas]
[ 22.990022] _base_async_event.isra.0+0x73/0x190 [mpt3sas]
[ 22.990078] _base_process_reply_queue+0x3a0/0x720 [mpt3sas]
[ 22.990133] _base_interrupt+0x4e/0x70 [mpt3sas]
[ 22.990188] __handle_irq_event_percpu+0x4f/0x1c0
[ 22.990197] handle_irq_event+0x39/0x80
[ 22.990202] handle_edge_irq+0x8c/0x250
[ 22.990208] __common_interrupt+0x56/0x110
[ 22.990217] common_interrupt+0x9f/0xb0
[ 22.990224] </IRQ>
[ 22.990226] <TASK>
[ 22.990228] asm_common_interrupt+0x27/0x40
[ 22.990239] RIP: 0010:cpuidle_idle_call+0xa2/0x190
[ 22.990248] Code: 00 4c 89 e2 4c 89 ee 48 89 df e8 c9 98 c1 00 4c 89 ee 48 89 df 89 c2 e8 9c a7 ff ff 65 48 8b 04 25 80 28 03 00 f0 80 48 02 20 <9c> 58 0f 1f 40 00 f6 c4 02 0f 84 8b 00 00 00 48 8b 45 d8 65 48 2b
[ 22.990253] RSP: 0018:ffffb627443a7eb0 EFLAGS: 00000202
[ 22.990259] RAX: ffff9edde8178000 RBX: ffffffffa58e52e0 RCX: 0000000000000000
[ 22.990263] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 22.990266] RBP: ffffb627443a7ee0 R08: 0000000000000000 R09: 0000000000000000
[ 22.990269] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[ 22.990272] R13: ffff9ed9ea75cc00 R14: 0000000000000000 R15: 0000000000000000
[ 22.990279] do_idle+0x82/0xf0
[ 22.990285] cpu_startup_entry+0x1d/0x20
[ 22.990290] start_secondary+0x129/0x160
[ 22.990300] secondary_startup_64_no_verify+0x17e/0x18b
[ 22.990311] </TASK>
[ 22.99031

Revision history for this message
Mike Bernson (mike-mlb) wrote :
Revision history for this message
Mike Bernson (mike-mlb) wrote :

full dmesg output

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in linux-hwe-6.5 (Ubuntu):
status: New → Confirmed
Revision history for this message
Christian Rohmann (christian-rohmann) wrote :

We see the same issue with lots of references to arrays within mpt3sas_scsih.c:

```
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:4667:12
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:6810:36
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:4670:32
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:4023:12
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:4026:32
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:6598:38
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:6602:36
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:6619:7
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:6666:21
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:7649:32
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:7651:23
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:7655:12
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:7658:30
UBSAN: array-index-out-of-bounds in /build/linux-hwe-6.5-q7NZ0T/linux-hwe-6.5-6.5.0/drivers/scsi/mpt3sas/mpt3sas_scsih.c:7659:35
```

Revision history for this message
Qingyao Sun (nalzok) wrote :

I also have this issue on Ubuntu 22.04 with 6.5.0-18-generic. Sharing my dmesg.txt in case it's helpful.

Revision history for this message
GuoqingJiang (guoqingjiang) wrote :

Maybe the series (https://<email address hidden>/) is needed for linux-hwe-6.5.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.