kernel BUG at /build/buildd/linux-2.6.28/mm/slub.c:2743!

Bug #367744 reported by arturj on 2009-04-27
30
This bug affects 2 people
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned

Bug Description

Binary package hint: linux-image

My System: Ubuntu Jaunty for AMD64platform, 4 GByte RAM
Packages: linux-backports-modules-jaunty are installed due to a buggy rt2500pci driver in the default linux-image package

My Problem: since upgrade to ubuntu jaunty (fresh installation) I encounter the following kernel warning AND bug after resuming from suspend. This did not happen with ubuntu 8.10.

[27328.677213] ------------[ cut here ]------------
[27328.677214] WARNING: at /build/buildd/linux-2.6.28/kernel/power/main.c:177 suspend_test_finish+0x7c/0x80()
[27328.677215] Component: resume devices
[27328.677216] Modules linked in: aes_x86_64 aes_generic xts gf128mul dm_crypt nls_iso8859_1 nls_cp437 vfat fat usb_storage binfmt_misc bridge stp bnep vmnet vmblock vmci vmmon video output lp snd_usb_audio snd_usb_lib snd_hwdep snd_hda_intel snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss snd_seq_midi snd_rawmidi arc4 snd_seq_midi_event ecb snd_seq snd_timer snd_seq_device gspca_ov519 gspca_main rt2500pci rt2x00pci rt2x00lib led_class snd compat_ioctl32 input_polldev soundcore videodev ppdev lbm_cw_mac80211 pcspkr i2c_piix4 snd_page_alloc v4l1_compat usblp k8temp usbhid parport_pc parport lbm_cw_cfg80211 eeprom_93cx6 nvidia(P) ohci1394 r8169 mii ieee1394 floppy fbcon tileblit font bitblit softcursor
[27328.677239] Pid: 31935, comm: pm-suspend Tainted: P 2.6.28-11-generic #42-Ubuntu
[27328.677241] Call Trace:
[27328.677244] [<ffffffff80250927>] warn_slowpath+0xb7/0xf0
[27328.677247] [<ffffffff8026d478>] ? down_trylock+0x38/0x50
[27328.677249] [<ffffffff80251040>] ? try_acquire_console_sem+0x10/0x40
[27328.677251] [<ffffffff8025c676>] ? lock_timer_base+0x36/0x70
[27328.677254] [<ffffffff8069bf36>] ? printk+0x67/0x69
[27328.677256] [<ffffffff80418877>] ? kobject_put+0x27/0x60
[27328.677259] [<ffffffff804b6045>] ? put_device+0x15/0x20
[27328.677262] [<ffffffff804be06a>] ? dpm_complete+0x18a/0x1a0
[27328.677263] [<ffffffff8028003c>] suspend_test_finish+0x7c/0x80
[27328.677265] [<ffffffff80280124>] suspend_devices_and_enter+0xe4/0x180
[27328.677267] [<ffffffff802803d9>] enter_state+0xe9/0x120
[27328.677269] [<ffffffff802804ca>] state_store+0xba/0x100
[27328.677270] [<ffffffff80418717>] kobj_attr_store+0x17/0x20
[27328.677272] [<ffffffff80347675>] sysfs_write_file+0xc5/0x140
[27328.677275] [<ffffffff802e7eeb>] vfs_write+0xcb/0x130
[27328.677276] [<ffffffff802e8040>] sys_write+0x50/0x90
[27328.677278] [<ffffffff8021253a>] system_call_fastpath+0x16/0x1b
[27328.677279] ---[ end trace 8941dacd4defb7fc ]---

[27390.423939] ------------[ cut here ]------------
[27390.423950] kernel BUG at /build/buildd/linux-2.6.28/mm/slub.c:2743!
[27390.423955] invalid opcode: 0000 [#1] SMP
[27390.423962] last sysfs file: /sys/devices/pci0000:00/0000:00:18.3/temp3_input
[27390.423968] Dumping ftrace buffer:
[27390.423973] (ftrace buffer empty)
[27390.423977] CPU 1
[27390.423981] Modules linked in: aes_x86_64 aes_generic xts gf128mul dm_crypt nls_iso8859_1 nls_cp437 vfat fat usb_storage binfmt_misc bridge stp bnep vmnet vmblock vmci vmmon video output lp snd_usb_audio snd_usb_lib snd_hwdep snd_hda_intel snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss snd_seq_midi snd_rawmidi arc4 snd_seq_midi_event ecb snd_seq snd_timer snd_seq_device gspca_ov519 gspca_main rt2500pci rt2x00pci rt2x00lib led_class snd compat_ioctl32 input_polldev soundcore videodev ppdev lbm_cw_mac80211 pcspkr i2c_piix4 snd_page_alloc v4l1_compat usblp k8temp usbhid parport_pc parport lbm_cw_cfg80211 eeprom_93cx6 nvidia(P) ohci1394 r8169 mii ieee1394 floppy fbcon tileblit font bitblit softcursor
[27390.424087] Pid: 4135, comm: gconfd-2 Tainted: P W 2.6.28-11-generic #42-Ubuntu
[27390.424092] RIP: 0010:[<ffffffff802e271a>] [<ffffffff802e271a>] kfree+0xfa/0x100
[27390.424106] RSP: 0018:ffff880121885d28 EFLAGS: 00010246
[27390.424111] RAX: 0000000000000000 RBX: ffffe20000000000 RCX: 0000000000000000
[27390.424115] RDX: ffffe20000000000 RSI: ffff88009dd2f0d0 RDI: ffff880000000a1b
[27390.424120] RBP: ffff880121885d58 R08: 0000000000000000 R09: 0000000000000000
[27390.424124] R10: ffff88012d040000 R11: 0000000000000000 R12: 0000000000000000
[27390.424128] R13: ffff880000000a1b R14: ffff88010f77b3c8 R15: 0000000000000000
[27390.424134] FS: 00007fa7ead206f0(0000) GS:ffff88012f802b80(0000) knlGS:0000000000000000
[27390.424138] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[27390.424142] CR2: 00007fa7ead2b000 CR3: 0000000122851000 CR4: 00000000000006a0
[27390.424147] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[27390.424152] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[27390.424157] Process gconfd-2 (pid: 4135, threadinfo ffff880121884000, task ffff88012371d980)
[27390.424162] Stack:
[27390.424165] ffff880006925ab8 0000000000000080 0000000000000000 ffff88009dd2f0d0
[27390.424173] ffff88010f77b3c8 0000000000000000 ffff880121885dd8 ffffffff802f1d68
[27390.424182] ffff880121885e18 ffff88012c864800 ffff88010f77b3c8 ffff88012c864800
[27390.424191] Call Trace:
[27390.424196] [<ffffffff802f1d68>] vfs_rename+0x128/0x270
[27390.424205] [<ffffffff802f3f2e>] sys_renameat+0x20e/0x250
[27390.424213] [<ffffffff802fe1f2>] ? fnotify_change+0x2b2/0x410
[27390.424221] [<ffffffff80300fe1>] ? mntput_no_expire+0x31/0x150
[27390.424229] [<ffffffff802e61a7>] ? sys_fchmodat+0x77/0x100
[27390.424237] [<ffffffff80300fe1>] ? mntput_no_expire+0x31/0x150
[27390.424244] [<ffffffff802f15fc>] ? path_put+0x2c/0x40
[27390.424251] [<ffffffff802f3f86>] sys_rename+0x16/0x20
[27390.424258] [<ffffffff8021253a>] system_call_fastpath+0x16/0x1b
[27390.424266] Code: 90 8b 41 10 85 c0 78 c2 8b 51 14 48 8b 01 49 89 44 d5 00 4c 89 29 eb c7 f6 c4 60 74 0e 48 89 df e8 ac 7c fd ff 0f 1f 40 00 eb bf <0f> 0b eb fe 66 90 55 48 81 ef a8 00 00 00 48 89 e5 e8 f0 fe ff
[27390.424336] RIP [<ffffffff802e271a>] kfree+0xfa/0x100
[27390.424342] RSP <ffff880121885d28>
[27390.424347] ---[ end trace 8941dacd4defb7fc ]---

arturj (arturj-freenet) on 2009-04-27
description: updated
Andy Whitcroft (apw) wrote :

as this is a real oops from the kernel, this should be against linux-ports itself. moving to that package.

affects: linux-ports-meta (Ubuntu) → linux-ports (Ubuntu)
Andy Whitcroft (apw) wrote :

Actually this appears to be an amd64 and running on the generic kernel (2.6.28-11-generic #42-Ubuntu) so this is really the linux package. Reassigning there.

affects: linux-ports (Ubuntu) → linux (Ubuntu)
Andy Whitcroft (apw) wrote :

@arturj -- The symptom implies that slub went to return some memory to the main allocator that does not appear (at least at the time the free occured) to have belonged to slub. Either slub freed it earlier or someone who should not have (outside slub) has freed it without slub's knowledge. Bad. is this reproducible? ie. does it occur often on resume from suspend or is this a one off? if it is not reproducible we are very unlikely to be able to find it via debug.

Changed in linux (Ubuntu):
assignee: nobody → Andy Whitcroft (apw)
status: New → Incomplete
arturj (arturj-freenet) wrote :

Yes, this happened already 3 times, always within some minutes after resume from suspend. I will try to reproduce it again and write the result down here.

arturj (arturj-freenet) wrote :
Download full text (28.0 KiB)

OK, the BUG shows up every time after resume within seconds (see kern.log below), but the system does not always freeze due to this bug. Something is strage with CPU1 as kern.log states that the CPU is offline/down after resume. Note again: the system works fine with ubuntu 8.10.

Apr 28 16:59:54 firebird kernel: [ 30.161574] ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
Apr 28 16:59:54 firebird kernel: [ 30.196939] /dev/vmnet: open called by PID 2642 (vmnet-bridge)
Apr 28 16:59:54 firebird kernel: [ 30.196949] /dev/vmnet: hub 0 does not exist, allocating memory.
Apr 28 16:59:54 firebird kernel: [ 30.196955] /dev/vmnet: port on hub 0 successfully opened
Apr 28 16:59:54 firebird kernel: [ 30.196962] bridge-wlan0: is a Wireless Adapter
Apr 28 16:59:54 firebird kernel: [ 30.196965] bridge-wlan0: up
Apr 28 16:59:54 firebird kernel: [ 30.196969] bridge-wlan0: attached
Apr 28 17:00:09 firebird kernel: [ 40.852544] wlan0: no IPv6 routers present
Apr 28 17:00:14 firebird kernel: [ 48.760547] /dev/vmmon[0]: HostIF_ReadUptime: detected settimeofday: fixed uptimeBase old 18445503142929779318 new 18445503142928057608 attempts 1
Apr 28 17:00:48 firebird kernel: [ 83.000556] Clocksource tsc unstable (delta = -220684603 ns)
Apr 28 17:06:29 firebird kernel: [ 424.231986] CPU0 attaching NULL sched-domain.
Apr 28 17:06:29 firebird kernel: [ 424.231996] CPU1 attaching NULL sched-domain.
Apr 28 17:06:29 firebird kernel: [ 424.248155] CPU0 attaching sched-domain:
Apr 28 17:06:29 firebird kernel: [ 424.248161] domain 0: span 0-1 level CPU
Apr 28 17:06:29 firebird kernel: [ 424.248166] groups: 0 1
Apr 28 17:06:29 firebird kernel: [ 424.248174] CPU1 attaching sched-domain:
Apr 28 17:06:29 firebird kernel: [ 424.248177] domain 0: span 0-1 level CPU
Apr 28 17:06:29 firebird kernel: [ 424.248181] groups: 1 0
Apr 28 17:06:30 firebird kernel: [ 424.575058] bridge-wlan0: disabling the bridge
Apr 28 17:06:30 firebird kernel: [ 424.592158] bridge-wlan0: down
Apr 28 17:06:30 firebird kernel: [ 424.602228] bridge-wlan0: enabling the bridge
Apr 28 17:06:30 firebird kernel: [ 424.602242] bridge-wlan0: is a Wireless Adapter
Apr 28 17:06:30 firebird kernel: [ 424.602253] bridge-wlan0: up
Apr 28 17:06:30 firebird kernel: [ 424.602548] bridge-wlan0: disabling the bridge
Apr 28 17:06:30 firebird kernel: [ 424.612153] bridge-wlan0: down
Apr 28 17:06:30 firebird kernel: [ 424.612172] bridge-wlan0: detached
Apr 28 17:06:30 firebird kernel: [ 424.620576] wlan0: deauthenticating by local choice (reason=3)
Apr 28 17:06:52 firebird kernel: [ 425.514940] PM: Syncing filesystems ... done.
Apr 28 17:06:52 firebird kernel: [ 425.534448] PM: Preparing system for mem sleep
Apr 28 17:06:52 firebird kernel: [ 425.534451] Freezing user space processes ... (elapsed 0.00 seconds) done.
Apr 28 17:06:52 firebird kernel: [ 425.535136] Freezing remaining freezable tasks ... (elapsed 0.00 seconds) done.
Apr 28 17:06:52 firebird kernel: [ 425.535182] PM: Entering mem sleep
Apr 28 17:06:52 firebird kernel: [ 425.535193] Suspending console(s) (use no_console_suspend to debug)
Apr 28 17:06:52 firebird kernel: [ 426.128712] sd 1:0:0:0: [sdb] Synchronizing ...

Andres Mujica (andres.mujica) wrote :

Added duplicate bug #364428

@arturj is possible for you to execute this command on a terminal?

apport-collect -p linux-image-2.6.28-11-generic 367744

also, would it be possible for you to test with upstream kernel https://wiki.ubuntu.com/KernelMainlineBuild ?

thanks

tags: added: needs-kernel-logs
tags: added: needs-upstream-testing
arturj (arturj-freenet) wrote :

@Andres your link seems broken:

    * KernelMainlineBuild

This page does not exist yet. You can create a new empty page, or use one of the page templates.

Hi arturj,

I think Andres meant https://wiki.ubuntu.com/KernelMainlineBuilds .

heckheck (jinfo) wrote :

I can confirm that a kernel BUG involving memory allocation happens on every boot of my Inspiron 5000e when booting from the Jaunty LiveCD. I can install Intrepid fine, and found that if I update to Jaunty, the kernel BUGs on reboot after the update. It seems to occur right around the time the hardware is being probed. Anyway it is absolutely reproducible on my system with the LiveCD every time.

-Jim

Craig (candrews-integralblue) wrote :
Download full text (3.9 KiB)

I'm getting this problem on my Jaunty laptop too:

[ 1569.661826] general protection fault: 0000 [#11] SMP
[ 1569.661837] last sysfs file: /sys/devices/LNXSYSTM:00/device:00/PNP0A08:00/device:01/PNP0C09:00/PNP0C0A:00/power_supply/BAT0/present
[ 1569.661844] CPU 1
[ 1569.661848] Modules linked in: cdc_acm isofs udf crc_itu_t bnep ipt_MASQUERADE iptable_nat nf_nat nf_conntrack_ipv4 nf_defrag_ipv4 xt_state nf_conntrack ipt_REJECT xt_tcpudp iptable_filter ip_tables x_tables bridge stp kvm_intel kvm input_polldev sbp2 lp joydev snd_hda_intel snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss arc4 snd_seq_midi snd_rawmidi ecb snd_seq_midi_event snd_seq snd_timer snd_seq_device pcmcia iwlagn iwlcore thinkpad_acpi psmouse ppdev led_class mac80211 snd yenta_socket rsrc_nonstatic sdhci_pci parport_pc soundcore ricoh_mmc sdhci nvram btusb serio_raw pcspkr parport pcmcia_core cfg80211 video iTCO_wdt iTCO_vendor_support output snd_page_alloc nvidia(P) usbhid ohci1394 ieee1394 e1000e fbcon tileblit font bitblit softcursor i915 drm intel_agp
[ 1569.661971] Pid: 3830, comm: hald Tainted: P D 2.6.28-15-generic #49-Ubuntu
[ 1569.661976] RIP: 0010:[<ffffffff802e34f4>] [<ffffffff802e34f4>] __kmalloc+0x74/0x110
[ 1569.661991] RSP: 0018:ffff880127c1fbd8 EFLAGS: 00010086
[ 1569.661995] RAX: 0000000000000000 RBX: ffff080067000000 RCX: 0000000000000004
[ 1569.662000] RDX: ffff88002803dfe0 RSI: 00000000000080d0 RDI: 0000000000000008
[ 1569.662005] RBP: ffff880127c1fc08 R08: 0000000000000000 R09: ffff8801011d7880
[ 1569.662009] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffff809abcb8
[ 1569.662014] R13: 0000000000000282 R14: 00000000000080d0 R15: ffffffff804601d2
[ 1569.662019] FS: 00007f3c334ed6f0(0000) GS:ffff88013b803c80(0000) knlGS:0000000000000000
[ 1569.662025] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[ 1569.662029] CR2: 00007f37f6623000 CR3: 0000000127c38000 CR4: 00000000000026a0
[ 1569.662034] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1569.662039] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1569.662044] Process hald (pid: 3830, threadinfo ffff880127c1e000, task ffff88012a884320)
[ 1569.662048] Stack:
[ 1569.662051] 0000000827c1fbe8 0000000000000008 0000000000000004 ffff880127c1fc38
[ 1569.662060] ffff880127c1fd00 ffffffff80819eec ffff880127c1fc28 ffffffff804601d2
[ 1569.662069] ffff8800bbc30060 ffff8801011d78a0 ffff880127c1fc88 ffffffff804603c8
[ 1569.662079] Call Trace:
[ 1569.662083] [<ffffffff804601d2>] acpi_os_allocate_zeroed+0x37/0x3b
[ 1569.662095] [<ffffffff804603c8>] acpi_ns_internalize_name+0x3f/0x7f
[ 1569.662104] [<ffffffff80460449>] acpi_ns_get_node+0x41/0xa1
[ 1569.662112] [<ffffffff802f190c>] ? path_put+0x2c/0x40
[ 1569.662120] [<ffffffff802b6511>] ? prep_new_page+0xf1/0x1a0
[ 1569.662129] [<ffffffff8045fb13>] acpi_ns_evaluate+0x3f/0x230
[ 1569.662137] [<ffffffff8045f6e7>] acpi_evaluate_object+0xfc/0x205
[ 1569.662144] [<ffffffff802b6976>] ? get_page_from_freelist+0xd6/0x190
[ 1569.662152] [<ffffffff8046dd1f>] acpi_battery_get_state+0x80/0xf4
[ 1569.662161] [<ffffffff8046e035>] acpi_battery_get_property+0x2c/0x1aa
[ 1569.662169] [<ffffffff80562c...

Read more...

MAKAPOH (makapoh) wrote :

same problem on 2.6.28-11-server..

Architecture: i386
CurrentDmesg:

DistroRelease: Ubuntu 9.04
HibernationDevice: RESUME=UUID=1c0ec8c0-3a40-487f-83cc-171970a5fe42
Lsusb:
 Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
 Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
 Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
 Bus 003 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
 Bus 002 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
MachineType:

NonfreeKernelModules: nvidia
Package: linux-image-2.6.28-11-server 2.6.28-11.42
PackageArchitecture: i386
ProcCmdLine: root=/dev/sda4 ro quiet splash
ProcEnviron:
 SHELL=/bin/bash
 LANG=en_US.UTF-8
ProcVersionSignature: Ubuntu 2.6.28-11.42-server
Uname: Linux 2.6.28-11-server i686
UserGroups:

MAKAPOH (makapoh) wrote :

root@faces:~# apport-collect -p linux-image-2.6.28-11-server 367744
Logging into Launchpad...
Downloading bug...
Bug title: kernel BUG at /build/buildd/linux-2.6.28/mm/slub.c:2743!
Collecting apport information for source package linux-image-2.6.28-11-server...
Uploading additional information to Launchpad bug...
   short text data...
   attachment: BootDmesg.txt...
Error connecting to Launchpad: HTTP Error 500: Internal Server Error

Andy Whitcroft (apw) on 2010-06-18
Changed in linux (Ubuntu):
assignee: Andy Whitcroft (apw) → nobody
Jeremy Foshee (jeremyfoshee) wrote :

This bug report was marked as Incomplete and has not had any updated comments for quite some time. As a result this bug is being closed. Please reopen if this is still an issue in the current Ubuntu release http://www.ubuntu.com/getubuntu/download . Also, please be sure to provide any requested information that may have been missing. To reopen the bug, click on the current status under the Status column and change the status back to "New". Thanks.

[This is an automated message. Apologies if it has reached you inappropriately; please just reply to this message indicating so.]

tags: added: kj-expired
Changed in linux (Ubuntu):
status: Incomplete → Expired
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Duplicates of this bug

Other bug subscribers