Project

General

Profile

Bug #6100

NULL pointer dereference in ohci after resume in VirtualBox

Added by Piotr Jasiukajtis over 4 years ago.

Status:
New
Priority:
Low
Assignee:
-
Category:
kernel
Start date:
2015-08-05
Due date:
% Done:

0%

Estimated time:
Difficulty:
Medium
Tags:
needs-triage

Description

> ::status
debugging crash dump vmcore.0 (64-bit) from openindiana
operating system: 5.11 illumos-a6490d0 (i86pc)
image uuid: 23ebd986-490a-6083-eca7-95887e2f2c92
panic message: BAD TRAP: type=e (#pf Page fault) rp=ffffff000f860a00 addr=8 occurred in module "ohci" due to a NULL pointer dereference
dump content: kernel pages only

> $C
ffffff000f860b30 ohci_traverse_done_list+0x9b(ffffff02d864ca80, 483d040)
ffffff000f860b70 ohci_intr+0x28d(ffffff02d864ca80, 0)
ffffff000f860be0 av_dispatch_autovect+0x91(16)
ffffff000f860c20 dispatch_hardint+0x36(16, 0)
ffffff001198c3f0 switch_sp_and_call+0x13()
ffffff001198c450 do_interrupt+0xa8(ffffff001198c460, ffffff001198c7a0)
ffffff001198c460 _interrupt+0xba()
ffffff001198c5b0 dnlc_lookup+0xdf(ffffff02db07ec40, ffffff001198c7a0)
ffffff001198c650 zfs_lookup+0xc9(ffffff02db07ec40, ffffff001198c7a0, ffffff001198c8e8, ffffff001198ca70, 0, ffffff02d594a740, ffffff02d58187f0, 0, 0, 0)
ffffff001198c700 fop_lookup+0xa2(ffffff02db07ec40, ffffff001198c7a0, ffffff001198c8e8, ffffff001198ca70, 0, ffffff02d594a740, ffffff02d58187f0, 0, 0, 0)
ffffff001198c950 lookuppnvp+0x1fe(ffffff001198ca70, 0, 1, 0, ffffff001198cc88, ffffff02d594a740, ffffff02d594a740, ffffff02d58187f0)
ffffff001198c9f0 lookuppnatcred+0x15e(ffffff001198ca70, 0, 1, 0, ffffff001198cc88, 0, ffffff02d58187f0)
ffffff001198caf0 lookupnameatcred+0xad(fe751464, 0, 1, 0, ffffff001198cc88, 0, ffffff02d58187f0)
ffffff001198cb40 lookupnameat+0x39(fe751464, 0, 1, 0, ffffff001198cc88, 0)
ffffff001198ccf0 vn_openat+0x315(fe751464, 0, 1, 1b6, ffffff001198ce00, 0, ffffffff00000012, 0, 1)
ffffff001198ce60 copen+0x20c(ffd19553, fe751464, 1, 1b6)
ffffff001198ce90 openat32+0x27(ffd19553, fe751464, 0, 1b6)
ffffff001198cec0 open32+0x25(fe751464, 0, 1b6)
ffffff001198cf10 sys_syscall32+0xff()

> ::panicinfo
             cpu                1
          thread ffffff000f860c40
         message BAD TRAP: type=e (#pf Page fault) rp=ffffff000f860a00 addr=8 occurred in module "ohci" due to a NULL pointer dereference
             rdi             2000
             rsi                9
             rdx                0
             rcx                9
              r8 ffffff02d818b080
              r9                0
             rax                0
             rbx ffffff02d864ca80
             rbp ffffff000f860b30
             r10                1
             r11 ffffff000f860620
             r12 ffffff02da56b040
             r13                0
             r14          483d040
             r15         fffffffe
          fsbase                0
          gsbase ffffff02d891b000
              ds               4b
              es               4b
              fs                0
              gs              1c3
          trapno                e
             err                0
             rip fffffffff7cfed7b
              cs               30
          rflags            10282
             rsp ffffff000f860af0
              ss                0
          gdt_hi                0
          gdt_lo         900001ef
          idt_hi                0
          idt_lo         90000fff
             ldt                0
            task               70
             cr0         8005003b
             cr2                8
             cr3        21ffa4000
             cr4              6b8

Also available in: Atom PDF