Public bug reported:
On Ubuntu 14.04.5 LTS running linux-image-generic-lts-xenial
4.4.0.113.97 ping hangs with kernel oops at csum_and_copy_from_iter.
Hangs on all addresses tested, local or not.
Ver 4.4.0-112 runs fine.
[ 1769.668233] BUG: unable to handle kernel NULL pointer dereference at
0000000000000020
[ 1769.668320] IP: [<ffffffff813f6d54>] csum_and_copy_from_iter+0x14/0x4a0
[ 1769.668403] PGD 80000001d5e0c067 PUD 1d5e23067 PMD 0
[ 1769.668460] Oops: 0000 [#1] SMP
[ 1769.668499] Modules linked in: drbg ansi_cprng cuse rfcomm bnep binfmt_misc
dm_crypt btusb btrtl btbcm btintel bluetooth intel_rapl x86_pkg_temp_thermal
intel_powerclamp arc4 snd_hda_codec_hdmi iwldvm kvm_intel
snd_hda_codec_conexant snd_hda_codec_generic kvm snd_hda_intel mac80211
snd_hda_codec snd_hda_core irqbypass snd_hwdep thinkpad_acpi crct10dif_pclmul
snd_pcm crc32_pclmul ghash_clmulni_intel nvram aesni_intel snd_seq_midi
snd_seq_midi_event snd_rawmidi aes_x86_64 input_leds lrw iwlwifi gf128mul
serio_raw snd_seq glue_helper ablk_helper cryptd snd_seq_device snd_timer
cfg80211 parport_pc ppdev visor snd coretemp mei_me shpchp soundcore mei
usbserial mac_hid lpc_ich lp parport btrfs xor raid6_pq i915 i2c_algo_bit
drm_kms_helper psmouse syscopyarea sysfillrect sysimgblt fb_sys_fops e1000e drm
pata_acpi sdhci_pci sdhci ptp pps_core wmi fjes video
[ 1769.669442] CPU: 1 PID: 6459 Comm: ping Not tainted 4.4.0-113-generic
#136~14.04.1-Ubuntu
[ 1769.669522] Hardware name: LENOVO 4236MBU/4236MBU, BIOS 83ET79WW (1.49 )
09/05/2016
[ 1769.669597] task: ffff8801ebfa5400 ti: ffff880214024000 task.ti:
ffff880214024000
[ 1769.669675] RIP: 0010:[<ffffffff813f6d54>] [<ffffffff813f6d54>]
csum_and_copy_from_iter+0x14/0x4a0
[ 1769.669768] RSP: 0018:ffff880214027980 EFLAGS: 00010282
[ 1769.669821] RAX: 0000000000000000 RBX: 0000000000000010 RCX: 0000000000000010
[ 1769.669890] RDX: ffff8802140279f4 RSI: 0000000000000040 RDI: ffff880212040a24
[ 1769.669959] RBP: ffff8802140279e0 R08: 0000000000000000 R09: ffff8801c2349e00
[ 1769.670028] R10: ffff880212040a24 R11: 0000000000000040 R12: 0000000000000040
[ 1769.670096] R13: 0000000000000000 R14: ffff8801ebfa5d20 R15: ffff880212040a24
[ 1769.670166] FS: 00007f0b9247e740(0000) GS:ffff88021e240000(0000)
knlGS:0000000000000000
[ 1769.670245] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1769.670301] CR2: 0000000000000020 CR3: 00000001d5e5a000 CR4: 0000000000060670
[ 1769.670369] Stack:
[ 1769.670391] ffffffff816ff48e ffff8801c2349e00 ffff880214027a0f
00000000024000c0
[ 1769.670470] 00000000000001c0 00000000ffffffff ffff8802140279f0
ffff8801c2349e00
[ 1769.670548] 0000000000000040 0000000000000000 ffff8801ebfa5d20
ffff880212040a24
[ 1769.670625] Call Trace:
[ 1769.670657] [<ffffffff816ff48e>] ? __alloc_skb+0x7e/0x280
[ 1769.670718] [<ffffffff81752f17>] ip_generic_getfrag+0x47/0xd0
[ 1769.670779] [<ffffffff8177aecd>] raw_getfrag+0xad/0x100
[ 1769.670835] [<ffffffff817547a2>] __ip_append_data.isra.46+0x832/0xa30
[ 1769.670901] [<ffffffff8177ae20>] ? raw_recvmsg+0x1b0/0x1b0
[ 1769.670959] [<ffffffff81752e17>] ? ip_setup_cork+0xc7/0x120
[ 1769.671016] [<ffffffff8177ae20>] ? raw_recvmsg+0x1b0/0x1b0
[ 1769.671073] [<ffffffff817553f3>] ip_append_data+0x83/0xf0
[ 1769.671130] [<ffffffff8177bb4e>] raw_sendmsg+0x71e/0xb60
[ 1769.671190] [<ffffffff8138a528>] ? aa_sk_perm+0x78/0x230
[ 1769.671247] [<ffffffff8138aded>] ? aa_sock_msg_perm+0x5d/0x140
[ 1769.671308] [<ffffffff8178b01d>] inet_sendmsg+0x6d/0xa0
[ 1769.671364] [<ffffffff816f6b8e>] sock_sendmsg+0x3e/0x50
[ 1769.671418] [<ffffffff816f74c6>] ___sys_sendmsg+0x276/0x290
[ 1769.671480] [<ffffffff814e3fc7>] ? n_tty_ioctl_helper+0x27/0x110
[ 1769.671541] [<ffffffff814df760>] ? n_tty_ioctl+0x70/0xe0
[ 1769.671600] [<ffffffff81817e52>] ? mutex_lock+0x12/0x2f
[ 1769.671655] [<ffffffff814dd670>] ? tty_ioctl+0x220/0xc30
[ 1769.671711] [<ffffffff818195ae>] ? _raw_spin_unlock_bh+0x1e/0x20
[ 1769.671773] [<ffffffff816f7e22>] __sys_sendmsg+0x42/0x80
[ 1769.671829] [<ffffffff816f7e72>] SyS_sendmsg+0x12/0x20
[ 1769.671883] [<ffffffff81819b5f>] entry_SYSCALL_64_fastpath+0x1c/0x97
[ 1769.671945] Code: e7 e8 04 ec 01 00 48 89 d8 e9 5d fe ff ff 66 0f 1f 84 00
00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 89 cb 48 83 ec 38 <4c> 8b
61 10 48 89 55 c0 4c 39 e6 4c 0f 46 e6 4d 85 e4 0f 84 f2
[ 1769.680296] RIP [<ffffffff813f6d54>] csum_and_copy_from_iter+0x14/0x4a0
[ 1769.684329] RSP <ffff880214027980>
[ 1769.688213] CR2: 0000000000000020
[ 1769.709667] ---[ end trace d749d4b42b565302 ]---
** Affects: linux-meta-lts-xenial (Ubuntu)
Importance: Undecided
Status: New
** Project changed: launchpad => linux-meta-lts-xenial (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1748708
Title:
Ping hangs with kernel oops
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-meta-lts-xenial/+bug/1748708/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
