Bug 14911

Summary: kernel BUG at fs/ext4/inode.c
Product: File System Reporter: Nicolas Reinecke (pl4nkton)
Component: ext4Assignee: fs_ext4 (fs_ext4)
Status: RESOLVED DUPLICATE    
Severity: normal CC: aanisimov, mikhail.vorozhtsov
Priority: P1    
Hardware: All   
OS: Linux   
Kernel Version: 2.6.33-rc2 Subsystem:
Regression: No Bisected commit-id:

Description Nicolas Reinecke 2009-12-28 00:56:50 UTC 
[ 5518.650885] ------------[ cut here ]------------
[ 5518.650893] kernel BUG at fs/ext4/inode.c:1063!
[ 5518.650897] invalid opcode: 0000 [#1] SMP 
[ 5518.650904] last sysfs file: /sys/devices/pci0000:00/0000:00:0a.0/0000:04:00.0/class
[ 5518.650909] CPU 0 
[ 5518.650915] Pid: 1065, comm: flush-8:0 Tainted: G        W  2.6.33-rc2 #1 M3A78-T/System Product Name
[ 5518.650921] RIP: 0010:[<ffffffffa00a8b46>]  [<ffffffffa00a8b46>] ext4_get_blocks+0x426/0x430 [ext4]
[ 5518.650939] RSP: 0018:ffff88011998b920  EFLAGS: 00010297
[ 5518.650946] RAX: 00000000000000ca RBX: ffff88011998b9d0 RCX: 0000000000000002
[ 5518.650953] RDX: 0000000000000001 RSI: 00000000000000ca RDI: 0000000000000153
[ 5518.650959] RBP: ffff8800b428c0a0 R08: 0000000000000002 R09: ffffffff81486450
[ 5518.650966] R10: 0000000000000102 R11: 0000000000000001 R12: 0000000000000201
[ 5518.650973] R13: ffff8800b428c000 R14: ffff8800b428c088 R15: 00000000000109db
[ 5518.650980] FS:  00007f1ed7a016f0(0000) GS:ffff880028200000(0000) knlGS:0000000000000000
[ 5518.650990] CS:  0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[ 5518.650996] CR2: 00007fec025b6230 CR3: 00000000b030f000 CR4: 00000000000006f0
[ 5518.651003] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 5518.651010] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 5518.651017] Process flush-8:0 (pid: 1065, threadinfo ffff88011998a000, task ffff88011bbc9470)
[ 5518.651027] Stack:
[ 5518.651031]  ffffea0000506e10 ffffffff810eb4d8 ffff8800b428c0a0 0000000000001000
[ 5518.651042] <0> ffff880100000001 000000000003a346 ffff88011937fc00 000000041998b9c0
[ 5518.651059] <0> 0000000000000000 ffff88011998bc30 000000000003a346 ffff88011998bd90
[ 5518.651080] Call Trace:
[ 5518.651089]  [<ffffffff810eb4d8>] ? __block_write_full_page+0x1f8/0x390
[ 5518.651099]  [<ffffffffa00a9cfb>] ? mpage_da_map_blocks+0xbb/0x450 [ext4]
[ 5518.651107]  [<ffffffff8115f933>] ? radix_tree_gang_lookup_tag_slot+0x93/0xf0
[ 5518.651117]  [<ffffffff810895b3>] ? find_get_pages_tag+0x33/0x140
[ 5518.651126]  [<ffffffffa00aa6da>] ? __mpage_da_writepage+0x3a/0x190 [ext4]
[ 5518.651134]  [<ffffffff8108f697>] ? write_cache_pages+0x197/0x380
[ 5518.651143]  [<ffffffffa00aa6a0>] ? __mpage_da_writepage+0x0/0x190 [ext4]
[ 5518.651153]  [<ffffffffa00aa351>] ? ext4_da_writepages+0x2c1/0x550 [ext4]
[ 5518.651161]  [<ffffffff81054734>] ? bit_waitqueue+0x14/0xc0
[ 5518.651168]  [<ffffffff810e4171>] ? writeback_single_inode+0xe1/0x3b0
[ 5518.651175]  [<ffffffff810e487d>] ? writeback_inodes_wb+0x32d/0x4d0
[ 5518.651182]  [<ffffffff810e4b2d>] ? wb_writeback+0x10d/0x1d0
[ 5518.651189]  [<ffffffff810e4e61>] ? wb_do_writeback+0x191/0x1a0
[ 5518.651196]  [<ffffffff810492a0>] ? process_timeout+0x0/0x10
[ 5518.651203]  [<ffffffff810e4ed2>] ? bdi_writeback_task+0x62/0xa0
[ 5518.651210]  [<ffffffff8109b3f0>] ? bdi_start_fn+0x0/0xc0
[ 5518.651217]  [<ffffffff8109b453>] ? bdi_start_fn+0x63/0xc0
[ 5518.651223]  [<ffffffff8109b3f0>] ? bdi_start_fn+0x0/0xc0
[ 5518.651230]  [<ffffffff810543be>] ? kthread+0x8e/0xa0
[ 5518.651237]  [<ffffffff81003c24>] ? kernel_thread_helper+0x4/0x10
[ 5518.651244]  [<ffffffff81054330>] ? kthread+0x0/0xa0
[ 5518.651251]  [<ffffffff81003c20>] ? kernel_thread_helper+0x0/0x10
[ 5518.651256] Code: ff ff 0f 1f 00 a8 08 66 0f 1f 44 00 00 0f 84 00 ff ff ff a8 20 0f 85 f8 fe ff ff 66 90 eb b9 0f 0b 0f 1f 40 00 eb fa 0f 0b eb fe <0f> 0b eb fe 66 0f 1f 44 00 00 48 83 ec 28 48 89 1c 24 48 89 6c 
[ 5518.651399] RIP  [<ffffffffa00a8b46>] ext4_get_blocks+0x426/0x430 [ext4]
[ 5518.651409]  RSP <ffff88011998b920>
[ 5518.651636] ---[ end trace 0e4167af3a1b2fd2 ]---
Comment 1 Artem Anisimov 2009-12-29 07:46:56 UTC 
I am experiencing a similar problem with ext4 (BUG at inode.c:1063) and I'd like to provide some more information on it.

In my setup /boot partition is mounted read-only at startup. The error occurs when I remount it rw and try to copy a file to that partition.

Stack trace that I get is, however, a bit different, so it's necessary to note that I use UP implementation of RCU (in my case mpage_da_map_blocks() is called from rcu_read_unlock()).

Here is my stack trace and error message:

kernel BUG at fs/ext4/inode.c:1063!
invalid opcode: 0000 [#1] PREEMPT
last sysfs file: /sys/devices/pci0000:00/0000:00:1e.0/0000:01:05.0/resource
Modules linked in: ipw2200 libipw

Pid: 2415, comm: flush-8:0 Not tainted 2.6.33-rc2 #2 M5A       /M5A
EIP: 0060:[<c10a704c>] EFLAGS: 00010297 CPU: 0
EIP is at ext4_get_blocks+0x19f/0x297
EAX: 00000001 EBX: 00000002 ECX: 00000009 EDX: 00000006
ESI: 00000009 EDI: d71e5d5c EBP: f6d20648 ESP: d71e5d18
 DS: 007b ES: 007b FS: 0000 GS: 0000 SS: 0068
Process flush-8:0 (pid: 2415, ti=d71e4000 task=e5bfd130 task.ti=d71e4000)
Stack:
 f6d206c8 00000040 000006fe 0000010c f6d206bc f69cf200 d71e5d5c e5bfd130
<0> d71e5e88 f6e73000 c10a7236 00000040 d71e5d5c 0000000d 0000010c e234fa68
<0> 00000000 00000060 0000000e d71e5d70 0000110d 00000400 0000005f f6d011c0
Call Trace:
 [<c10a7236>] ? mpage_da_map_blocks+0x74/0x2ab
 [<c1044e59>] ? rcu_read_unlock+0x14/0x1e
 [<c10456c5>] ? find_get_pages_tag+0x9b/0xb7
 [<c10a78d1>] ? mpage_add_bh_to_extent+0x6f/0x86
 [<c10a79b7>] ? __mpage_da_writepage+0xcf/0x10a
 [<c104aa56>] ? write_cache_pages+0x16e/0x232
 [<c10a78e8>] ? __mpage_da_writepage+0x0/0x10a
 [<c10a76e1>] ? ext4_da_writepages+0x274/0x3f5
 [<c104ab4b>] ? do_writepages+0x14/0x20
 [<c107e5d2>] ? writeback_single_inode+0xca/0x260
 [<c107ee39>] ? writeback_inodes_wb+0x337/0x3f1
 [<c107efe2>] ? wb_writeback+0xef/0x14c
 [<c1310827>] ? schedule+0x2af/0x2bf
 [<c107f122>] ? wb_do_writeback+0x68/0x132
 [<c107f20c>] ? bdi_writeback_task+0x20/0x7b
 [<c10522a9>] ? bdi_start_fn+0x51/0xa0
 [<c1052258>] ? bdi_start_fn+0x0/0xa0
 [<c102a879>] ? kthread+0x5e/0x63
 [<c102a81b>] ? kthread+0x0/0x63
 [<c1002af6>] ? kernel_thread_helper+0x6/0x10
Code: 08 89 c2 8b 04 24 e8 09 ed ff ff 89 c6 8b 85 f0 01 00 00 39 c6 76 04 0f 0b eb fe 31 db 29 f0 74 35 8b 9d f4 01 00 00 39 d8 7d 04 <0f> 0b eb fe 89 c2 8b 44 24 14 29 da 89 d1 c1 f9 1f 05 a8 00 00
EIP: [<c10a704c>] ext4_get_blocks+0x19f/0x297 SS:ESP 0068:d71e5d18
---[ end trace 5e36b9d9dd2f2ce5 ]---
note: flush-8:0[2415] exited with preempt_count 1
Comment 2 Nicolas Reinecke 2009-12-29 17:00:18 UTC 

*** This bug has been marked as a duplicate of bug 14936 ***