Ubuntu
linux package

Bug #251223
Comment #7

Comment 7 for bug 251223

Revision history for this message

Matt Zimmerman (mdz) wrote on 2008-07-24:

I've reduced my test case down to this:

1. kvm -m 256 -hda hda.img -cdrom intrepid-desktop-amd64.iso -boot d
2. boot with 'single' and select root shell
3. mkdir /target
4. mount /dev/sda1 /target # ext3 filesystem containing a copy of the contents of /rofs
5. chroot /target /bin/true

this simple case crashes, but with a different trace:

[ 110.376037] double fault: 0000 [1] SMP
[ 110.376037] CPU 0
[ 110.376037] Modules linked in: iptable_filter ip_tables x_tables snd_pcsp snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss snd_seq_midi snd_rawmidi psmouse snd_seq_midi_event serio_raw snd_seq snd_timer snd_seq_device snd soundcore snd_page_alloc i2c_piix4 i2c_core button evdev battery squashfs loop nls_cp437 isofs ext3 jbd mbcache sg sr_mod cdrom sd_mod 8139too ata_piix pata_acpi ata_generic 8139cp mii libata scsi_mod dock thermal processor fan fbcon tileblit font bitblit softcursor uvesafb cn fuse
[ 110.376037] Pid: 5639, comm: true Not tainted 2.6.26-4-generic #1
[ 110.376037] RIP: 0010:[<000000008022a2c0>] [<000000008022a2c0>]
[ 110.376037] RSP: 0018:0000000000000000 EFLAGS: 00010092
[ 110.376037] RAX: 000000000000002d RBX: 0000000000000000 RCX: 00000000f7fceff4
[ 110.376037] RDX: 0000000000000000 RSI: 00000000f7fd0b10 RDI: 0000000000021000
[ 110.376037] RBP: 00000000ffafc898 R08: 0000000000000000 R09: 0000000000000000
[ 110.376037] R10: 0000000000000000 R11: 0000000000000200 R12: 0000000000000000
[ 110.376037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 110.376037] FS: 0000000000000000(0000) GS:ffffffff8063d000(0063) knlGS:00000000f7e748c0
[ 110.376037] CS: 0010 DS: 002b ES: 002b CR0: 000000008005003b
[ 110.376037] CR2: 000000008022a2c0 CR3: 0000000009d49000 CR4: 00000000000006e0
[ 110.376037] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 110.376037] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 110.376037] Process true (pid: 5639, threadinfo ffff81000f5d2000, task ffff81000cd0e090)
[ 110.376037] Stack: ffffffff80714e68 000000008022a295 ffffffff80714f58 000000008022a2c0
[ 110.376037] 0000000000000000 0000000000000040 000000000000002b ffffffff8020e1b9
[ 110.376037] 0000000000000000 0000000000000000 ffffffff80714f58 ffffffff804db758
[ 110.376037] Call Trace:
[ 110.376037] <#DF> [<ffffffff8020e1b9>] ? show_registers+0xf9/0x270
[ 110.376037] [<ffffffff804c951f>] ? __die+0xaf/0x110
[ 110.376037] [<ffffffff8020e470>] ? die+0x40/0x90
[ 110.376037] [<ffffffff8020efa2>] ? do_double_fault+0x62/0x70
[ 110.376037] [<ffffffff8020d819>] ? double_fault+0x89/0xa0
[ 110.376037] <<EOE>>
[ 110.376037]
[ 110.376037] Code: Bad RIP value.
[ 110.376037] RIP [<000000008022a2c0>]
[ 110.376037] RSP <0000000000000000>
[ 110.376037] ---[ end trace f085c05b5bc36a73 ]---

I've reduced my test case down to this:

this simple case crashes, but with a different trace:

[  110.376037] double fault: 0000 [1] SMP 
[  110.376037] CPU 0 
[  110.376037] Modules linked in: iptable_filter ip_tables x_tables snd_pcsp snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_dummy snd_seq_oss snd_seq_midi snd_rawmidi psmouse snd_seq_midi_event serio_raw snd_seq snd_timer snd_seq_device snd soundcore snd_page_alloc i2c_piix4 i2c_core button evdev battery squashfs loop nls_cp437 isofs ext3 jbd mbcache sg sr_mod cdrom sd_mod 8139too ata_piix pata_acpi ata_generic 8139cp mii libata scsi_mod dock thermal processor fan fbcon tileblit font bitblit softcursor uvesafb cn fuse
[  110.376037] Pid: 5639, comm: true Not tainted 2.6.26-4-generic #1
[  110.376037] RIP: 0010:[<000000008022a2c0>]  [<000000008022a2c0>]
[  110.376037] RSP: 0018:0000000000000000  EFLAGS: 00010092
[  110.376037] RAX: 000000000000002d RBX: 0000000000000000 RCX: 00000000f7fceff4
[  110.376037] RDX: 0000000000000000 RSI: 00000000f7fd0b10 RDI: 0000000000021000
[  110.376037] RBP: 00000000ffafc898 R08: 0000000000000000 R09: 0000000000000000
[  110.376037] R10: 0000000000000000 R11: 0000000000000200 R12: 0000000000000000
[  110.376037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.376037] FS:  0000000000000000(0000) GS:ffffffff8063d000(0063) knlGS:00000000f7e748c0
[  110.376037] CS:  0010 DS: 002b ES: 002b CR0: 000000008005003b
[  110.376037] CR2: 000000008022a2c0 CR3: 0000000009d49000 CR4: 00000000000006e0
[  110.376037] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  110.376037] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  110.376037] Process true (pid: 5639, threadinfo ffff81000f5d2000, task ffff81000cd0e090)
[  110.376037] Stack:  ffffffff80714e68 000000008022a295 ffffffff80714f58 000000008022a2c0
[  110.376037]  0000000000000000 0000000000000040 000000000000002b ffffffff8020e1b9
[  110.376037]  0000000000000000 0000000000000000 ffffffff80714f58 ffffffff804db758
[  110.376037] Call Trace:
[  110.376037]  <#DF>  [<ffffffff8020e1b9>] ? show_registers+0xf9/0x270
[  110.376037]  [<ffffffff804c951f>] ? __die+0xaf/0x110
[  110.376037]  [<ffffffff8020e470>] ? die+0x40/0x90
[  110.376037]  [<ffffffff8020efa2>] ? do_double_fault+0x62/0x70
[  110.376037]  [<ffffffff8020d819>] ? double_fault+0x89/0xa0
[  110.376037]  <<EOE>> 
[  110.376037] 
[  110.376037] Code:  Bad RIP value.
[  110.376037] RIP  [<000000008022a2c0>]
[  110.376037]  RSP <0000000000000000>
[  110.376037] ---[ end trace f085c05b5bc36a73 ]---

Ubuntulinux package

Comment 7 for bug 251223

Ubuntu
linux package