Bug 7156
| Summary: | Oops when running 'unusual' command against scsi tape device | ||
|---|---|---|---|
| Product: | IO/Storage | Reporter: | Martin Hardcastle (m.j.hardcastle) |
| Component: | SCSI | Assignee: | io_scsi |
| Status: | CLOSED CODE_FIX | ||
| Severity: | low | CC: | protasnb |
| Priority: | P2 | ||
| Hardware: | i386 | ||
| OS: | Linux | ||
| Kernel Version: | 2.6.17.11 AMD64 | Subsystem: | |
| Regression: | --- | Bisected commit-id: | |
I have a very similar problem with Linux Kernel 2.6.18 on a AMD64 and the tar command. Distribution: Debian Etch (testing) Hardware Environment: HP DAT-40 tape drive, Adaptec 2940UW controller syslog output and other information can be found here: http://lists.debian.org/debian-kernel/2007/02/msg00208.html Here is my syslog information about the oops: Feb 8 20:15:35 hal9000 kernel: st0: Block limits 1 - 16777215 bytes. Feb 8 20:15:56 hal9000 kernel: Unable to handle kernel paging request at ffff82bc8057b000 RIP: Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: PGD 0 Feb 8 20:15:56 hal9000 kernel: Oops: 0000 [13] SMP Feb 8 20:15:56 hal9000 kernel: CPU 0 Feb 8 20:15:56 hal9000 kernel: Modules linked in: usb_storage cdc_acm ipv6 dm_snapshot dm_mirror dm_mod loop snd_hda_intel snd_hda_codec serio_raw snd_pcm snd_timer snd soundcore snd_page_alloc pcspkr psmouse shpchp pci_hotplug st joydev evdev ext3 jbd mbcache raid1 md_mod ide_generic sd_mod ide_cd cdrom usbhid aic7xxx scsi_transport_spi via_rhine mii ehci_hcd sata_via via82cxxx uhci_hcd libata scsi_mod generic ide_core processor Feb 8 20:15:56 hal9000 kernel: Pid: 16448, comm: tar Not tainted 2.6.18-3-vserver-amd64 #1 Feb 8 20:15:56 hal9000 kernel: RIP: 0010:[<ffffffff8020748b>] [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: RSP: 0018:ffff8100155a5ca8 EFLAGS: 00010286 Feb 8 20:15:56 hal9000 kernel: RAX: ffff82bc8057b000 RBX: ffff81001a4ae1c0 RCX: 000000000000003f Feb 8 20:15:56 hal9000 kernel: RDX: ffff82bc8057b000 RSI: 0000000000000000 RDI: 00000007f0000000 Feb 8 20:15:56 hal9000 kernel: RBP: ffff8100010fae00 R08: 0000000000000000 R09: 0000000000000400 Feb 8 20:15:56 hal9000 kernel: R10: ffff810016b96748 R11: ffffffff80242899 R12: 0000000000000000 Feb 8 20:15:56 hal9000 kernel: R13: ffff81001bed71c0 R14: 0000000000001000 R15: ffff810016b96748 Feb 8 20:15:56 hal9000 kernel: FS: 00002b7bfb7f46d0(0000) GS:ffffffff8052f000(0000) knlGS:0000000000000000 Feb 8 20:15:56 hal9000 kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b Feb 8 20:15:56 hal9000 kernel: CR2: ffff82bc8057b000 CR3: 0000000010c2a000 CR4: 00000000000006e0 Feb 8 20:15:56 hal9000 kernel: Process tar (pid: 16448[#0], threadinfo ffff8100155a4000, task ffff810005696880) Feb 8 20:15:56 hal9000 kernel: Stack: ffff810003a64d28 0000000000000000 ffff81001a4ae1c0 ffff8100010fae00 Feb 8 20:15:56 hal9000 kernel: 0000000000000000 ffff81001a4ae1c0 0000000000001000 ffffffff8023fd8d Feb 8 20:15:56 hal9000 kernel: ffff81001a4ae1c0 0000000000001000 ffff810003a64d28 ffffffff8803a3e9 Feb 8 20:15:56 hal9000 kernel: Call Trace: Feb 8 20:15:56 hal9000 kernel: [<ffffffff8023fd8d>] bio_free+0x33/0x43 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8803a3e9>] :scsi_mod:scsi_execute_async+0x18a/0x3ac Feb 8 20:15:56 hal9000 kernel: [<ffffffff802b5f20>] get_user_pages+0x2f1/0x34f Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816fbba>] :st:st_do_scsi+0x1ca/0x225 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816f52d>] :st:st_sleep_done+0x0/0x45 Feb 8 20:15:56 hal9000 kernel: [<ffffffff88171c01>] :st:st_read+0x338/0x818 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020b1c9>] vfs_read+0xcb/0x171 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020fff8>] sys_read+0x45/0x6e Feb 8 20:15:56 hal9000 kernel: [<ffffffff8025ab0e>] system_call+0x7e/0x83 Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Code: 8b 00 f6 c4 40 74 04 48 8b 52 10 8b 02 84 c0 78 0a 0f 0b 68 Feb 8 20:15:56 hal9000 kernel: RIP [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: RSP <ffff8100155a5ca8> Feb 8 20:15:56 hal9000 kernel: CR2: ffff82bc8057b000 Feb 8 20:15:56 hal9000 kernel: BUG: warning at drivers/scsi/st.c:2513/st_int_ioctl() Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Call Trace: Feb 8 20:15:56 hal9000 kernel: [<ffffffff8817016c>] :st:st_int_ioctl+0x52/0x98c Feb 8 20:15:56 hal9000 kernel: [<ffffffff881725b4>] :st:st_flush+0x245/0x25e Feb 8 20:15:56 hal9000 kernel: [<ffffffff80222685>] filp_close+0x36/0x64 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80237ed4>] put_files_struct+0x6c/0xe4 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80213ad9>] do_exit+0x259/0x948 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80365fc8>] set_palette+0x9/0x5b Feb 8 20:15:56 hal9000 kernel: [<ffffffff8032dd7e>] vgacon_set_cursor_size+0x36/0xdb Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020abbb>] do_page_fault+0x68b/0x706 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80221c7d>] mempool_alloc+0x24/0xda Feb 8 20:15:56 hal9000 kernel: [<ffffffff8025b7dd>] error_exit+0x0/0x84 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80242899>] mempool_free_slab+0x0/0xe Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: [<ffffffff80207488>] kmem_cache_free+0x3f/0x1bb Feb 8 20:15:56 hal9000 kernel: [<ffffffff8023fd8d>] bio_free+0x33/0x43 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8803a3e9>] :scsi_mod:scsi_execute_async+0x18a/0x3ac Feb 8 20:15:56 hal9000 kernel: [<ffffffff802b5f20>] get_user_pages+0x2f1/0x34f Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816fbba>] :st:st_do_scsi+0x1ca/0x225 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816f52d>] :st:st_sleep_done+0x0/0x45 Feb 8 20:15:56 hal9000 kernel: [<ffffffff88171c01>] :st:st_read+0x338/0x818 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020b1c9>] vfs_read+0xcb/0x171 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020fff8>] sys_read+0x45/0x6e Feb 8 20:15:56 hal9000 kernel: [<ffffffff8025ab0e>] system_call+0x7e/0x83 Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Unable to handle kernel paging request at ffff82bc8057b000 RIP: Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: PGD 0 Feb 8 20:15:56 hal9000 kernel: Oops: 0000 [14] SMP Feb 8 20:15:56 hal9000 kernel: CPU 0 Feb 8 20:15:56 hal9000 kernel: Modules linked in: usb_storage cdc_acm ipv6 dm_snapshot dm_mirror dm_mod loop snd_hda_intel snd_hda_codec serio_raw snd_pcm snd_timer snd soundcore snd_page_alloc pcspkr psmouse shpchp pci_hotplug st joydev evdev ext3 jbd mbcache raid1 md_mod ide_generic sd_mod ide_cd cdrom usbhid aic7xxx scsi_transport_spi via_rhine mii ehci_hcd sata_via via82cxxx uhci_hcd libata scsi_mod generic ide_core processor Feb 8 20:15:56 hal9000 kernel: Pid: 16448, comm: tar Not tainted 2.6.18-3-vserver-amd64 #1 Feb 8 20:15:56 hal9000 kernel: RIP: 0010:[<ffffffff8020748b>] [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: RSP: 0018:ffff8100155a5818 EFLAGS: 00010286 Feb 8 20:15:56 hal9000 kernel: RAX: ffff82bc8057b000 RBX: ffff81001a4ae540 RCX: 000000000000003f Feb 8 20:15:56 hal9000 kernel: RDX: ffff82bc8057b000 RSI: 0000000000000000 RDI: 00000007f0000000 Feb 8 20:15:56 hal9000 kernel: RBP: ffff8100010fae00 R08: 0000000000000000 R09: 0000000000000400 Feb 8 20:15:56 hal9000 kernel: R10: ffff810016b96f28 R11: ffffffff80242899 R12: 0000000000000000 Feb 8 20:15:56 hal9000 kernel: R13: ffff81001bed71c0 R14: 0000000000001000 R15: ffff810016b96f28 Feb 8 20:15:56 hal9000 kernel: FS: 00002b7bfb7f46d0(0000) GS:ffffffff8052f000(0000) knlGS:0000000000000000 Feb 8 20:15:56 hal9000 kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b Feb 8 20:15:56 hal9000 kernel: CR2: ffff82bc8057b000 CR3: 000000001b8fe000 CR4: 00000000000006e0 Feb 8 20:15:56 hal9000 kernel: Process tar (pid: 16448[#0], threadinfo ffff8100155a4000, task ffff810005696880) Feb 8 20:15:56 hal9000 kernel: Stack: ffff81001aff7068 0000000000000000 ffff81001a4ae540 ffff8100010fae00 Feb 8 20:15:56 hal9000 kernel: 0000000000000000 ffff81001a4ae540 0000000000001000 ffffffff8023fd8d Feb 8 20:15:56 hal9000 kernel: ffff81001a4ae540 0000000000001000 ffff81001aff7068 ffffffff8803a3e9 Feb 8 20:15:56 hal9000 kernel: Call Trace: Feb 8 20:15:56 hal9000 kernel: [<ffffffff8023fd8d>] bio_free+0x33/0x43 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8803a3e9>] :scsi_mod:scsi_execute_async+0x18a/0x3ac Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816fbba>] :st:st_do_scsi+0x1ca/0x225 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816f52d>] :st:st_sleep_done+0x0/0x45 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8817072c>] :st:st_int_ioctl+0x612/0x98c Feb 8 20:15:56 hal9000 kernel: [<ffffffff881725b4>] :st:st_flush+0x245/0x25e Feb 8 20:15:56 hal9000 kernel: [<ffffffff80222685>] filp_close+0x36/0x64 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80237ed4>] put_files_struct+0x6c/0xe4 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80213ad9>] do_exit+0x259/0x948 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80365fc8>] set_palette+0x9/0x5b Feb 8 20:15:56 hal9000 kernel: [<ffffffff8032dd7e>] vgacon_set_cursor_size+0x36/0xdb Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020abbb>] do_page_fault+0x68b/0x706 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80221c7d>] mempool_alloc+0x24/0xda Feb 8 20:15:56 hal9000 kernel: [<ffffffff8025b7dd>] error_exit+0x0/0x84 Feb 8 20:15:56 hal9000 kernel: [<ffffffff80242899>] mempool_free_slab+0x0/0xe Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: [<ffffffff80207488>] kmem_cache_free+0x3f/0x1bb Feb 8 20:15:56 hal9000 kernel: [<ffffffff8023fd8d>] bio_free+0x33/0x43 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8803a3e9>] :scsi_mod:scsi_execute_async+0x18a/0x3ac Feb 8 20:15:56 hal9000 kernel: [<ffffffff802b5f20>] get_user_pages+0x2f1/0x34f Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816fbba>] :st:st_do_scsi+0x1ca/0x225 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8816f52d>] :st:st_sleep_done+0x0/0x45 Feb 8 20:15:56 hal9000 kernel: [<ffffffff88171c01>] :st:st_read+0x338/0x818 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020b1c9>] vfs_read+0xcb/0x171 Feb 8 20:15:56 hal9000 kernel: [<ffffffff8020fff8>] sys_read+0x45/0x6e Feb 8 20:15:56 hal9000 kernel: [<ffffffff8025ab0e>] system_call+0x7e/0x83 Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Feb 8 20:15:56 hal9000 kernel: Code: 8b 00 f6 c4 40 74 04 48 8b 52 10 8b 02 84 c0 78 0a 0f 0b 68 Feb 8 20:15:56 hal9000 kernel: RIP [<ffffffff8020748b>] kmem_cache_free+0x42/0x1bb Feb 8 20:15:56 hal9000 kernel: RSP <ffff8100155a5818> Feb 8 20:15:56 hal9000 kernel: CR2: ffff82bc8057b000 Feb 8 20:15:56 hal9000 kernel: <1>Fixing recursive fault but reboot is needed! seems to be a copy of bug 7919. I have compiled a new 2.6.18-5 kernel with the patch provided in bug 7919 (with minimal changes). Everything is working now. Great, thanks. This bug can be closed as duplicate. |
Most recent kernel where this bug did not occur: Distribution: Debian sarge (up-to-date) IA32 Hardware Environment: Dual Opteron 250. Adaptec AIC-7892A U160 SCSI card, HP DAT-72 tape drive, other SCSI devices on bus. Software Environment: Problem Description: I inadvertently typed (as a user) mf -f /dev/st0 setblk 10240 This gives the following oops Sep 13 12:47:32 hercules kernel: Unable to handle kernel paging request at ffff82bcbf200000 RIP: Sep 13 12:47:32 hercules kernel: <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: PGD 0 Sep 13 12:47:32 hercules kernel: Oops: 0000 [1] SMP Sep 13 12:47:32 hercules kernel: CPU 0 Sep 13 12:47:32 hercules kernel: Modules linked in: nls_iso8859_1 nls_cp437 vfat fat sg nfs ipt_LOG xt_limit xt_tcpudp xt_state ip_conntrack iptable_filter nfsd exportfs lockd sunrpc af_packet autofs4 capability commoncap ipv6 snd_intel8x0 snd_ac97_codec snd_ac97_bus snd_pcm snd_timer snd snd_page_alloc generic i810_audio ac97_codec soundcore reiserfs ip_tables x_tables powernow_k8 freq_table processor ide_generic amd74xx ext3 jbd mbcache usb_storage cpufreq_userspace floppy pcspkr hw_random i2c_amd8111 tsdev mousedev shpchp pci_hotplug evdev usbhid eth1394 ohci_hcd usbcore tg3 e100 mii ohci1394 w83627hf i2c_isa eeprom lm85 hwmon_vid i2c_amd756 i2c_core sbp2 ieee1394 psmouse ide_disk ide_cd ide_core st sr_mod cdrom sd_mod sata_sil libata aic7xxx scsi_transport_spi scsi_mod unix Sep 13 12:47:32 hercules kernel: Pid: 22344, comm: mf Not tainted 2.6.17.11 #1 Sep 13 12:47:32 hercules kernel: RIP: 0010:[<ffffffff8010735a>] <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: RSP: 0000:ffff81005674bcd8 EFLAGS: 00010006 Sep 13 12:47:32 hercules kernel: RAX: ffff82bcbf200000 RBX: ffff81003ec8ec00 RCX: 000000000000001e Sep 13 12:47:32 hercules kernel: RDX: ffff82bcbf200000 RSI: 0000000000000000 RDI: 00000007f0000000 Sep 13 12:47:32 hercules kernel: RBP: ffff81007ffc6300 R08: 0000000000000000 R09: 0000000000000400 Sep 13 12:47:32 hercules kernel: R10: 0000000000008000 R11: ffffffff80148950 R12: 0000000000001000 Sep 13 12:47:32 hercules kernel: R13: ffff810038139be8 R14: ffff8100490170c0 R15: ffff81003f77deb8 Sep 13 12:47:32 hercules kernel: FS: 00000000f793f000(0000) GS:ffffffff803e4000(0063) knlGS:00000000f7c662a0 Sep 13 12:47:32 hercules kernel: CS: 0010 DS: 002b ES: 002b CR0: 000000008005003b Sep 13 12:47:32 hercules kernel: CR2: ffff82bcbf200000 CR3: 000000001b634000 CR4: 00000000000006e0 Sep 13 12:47:32 hercules kernel: Process mf (pid: 22344, threadinfo ffff81005674a000, task ffff81007c69a400) Sep 13 12:47:32 hercules kernel: Stack: 00000000000000d0 0000000000000000 0000000000000296 ffff8100490170c0 Sep 13 12:47:32 hercules kernel: ffff81007f493a40 0000000000001000 ffff810038139be8 ffffffff80145770 Sep 13 12:47:32 hercules kernel: ffff810038139be8 00000000ffffffea Sep 13 12:47:32 hercules kernel: Call Trace: <ffffffff80145770>{bio_free+64} <ffffffff8800f75d>{:scsi_mod:scsi_execute_async+653} Sep 13 12:47:32 hercules kernel: <ffffffff8809d55a>{:st:st_do_scsi+474} <ffffffff8809d2f0>{:st:st_sleep_done+0} Sep 13 12:47:32 hercules kernel: <ffffffff880a2e20>{:st:st_read+912} <ffffffff80116c04>{vma_merge+516} Sep 13 12:47:32 hercules kernel: <ffffffff8010b109>{vfs_read+233} <ffffffff80110743>{sys_read+83} Sep 13 12:47:32 hercules kernel: <ffffffff80162e66>{ia32_sysret+0} Sep 13 12:47:32 hercules kernel: Sep 13 12:47:32 hercules kernel: Code: 8b 00 f6 c4 40 74 04 48 8b 52 10 48 8b 4a 30 0f b7 51 28 65 Sep 13 12:47:32 hercules kernel: RIP <ffffffff8010735a>{kmem_cache_free+106} RSP <ffff81005674bcd8> Sep 13 12:47:32 hercules kernel: CR2: ffff82bcbf200000 Sep 13 12:47:32 hercules kernel: BUG: warning at drivers/scsi/st.c:2514/st_int_ioctl() Sep 13 12:47:32 hercules kernel: Sep 13 12:47:32 hercules kernel: Call Trace: <ffffffff8809e458>{:st:st_int_ioctl+136} Sep 13 12:47:32 hercules kernel: <ffffffff8809f202>{:st:st_flush+690} <ffffffff80123f26>{filp_close+70} Sep 13 12:47:32 hercules kernel: <ffffffff8013b1eb>{put_files_struct+107} <ffffffff80115145>{do_exit+597} Sep 13 12:47:32 hercules kernel: <ffffffff80249177>{do_unblank_screen+135} <ffffffff8010aa42>{do_page_fault+1922} Sep 13 12:47:32 hercules kernel: <ffffffff80123407>{mempool_alloc+71} <ffffffff80123407>{mempool_alloc+71} Sep 13 12:47:32 hercules kernel: <ffffffff801fbe7b>{as_set_request+59} <ffffffff80161df1>{error_exit+0} Sep 13 12:47:32 hercules kernel: <ffffffff80148950>{mempool_free_slab+0} <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: <ffffffff80107357>{kmem_cache_free+103} <ffffffff80145770>{bio_free+64} Sep 13 12:47:32 hercules kernel: <ffffffff8800f75d>{:scsi_mod:scsi_execute_async+653} Sep 13 12:47:32 hercules kernel: <ffffffff8809d55a>{:st:st_do_scsi+474} <ffffffff8809d2f0>{:st:st_sleep_done+0} Sep 13 12:47:32 hercules kernel: <ffffffff880a2e20>{:st:st_read+912} <ffffffff80116c04>{vma_merge+516} Sep 13 12:47:32 hercules kernel: <ffffffff8010b109>{vfs_read+233} <ffffffff80110743>{sys_read+83} Sep 13 12:47:32 hercules kernel: <ffffffff80162e66>{ia32_sysret+0} Sep 13 12:47:32 hercules kernel: Unable to handle kernel paging request at ffff82bcbf200000 RIP: Sep 13 12:47:32 hercules kernel: <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: PGD 0 Sep 13 12:47:32 hercules kernel: Oops: 0000 [2] SMP Sep 13 12:47:32 hercules kernel: CPU 0 Sep 13 12:47:32 hercules kernel: Modules linked in: nls_iso8859_1 nls_cp437 vfat fat sg nfs ipt_LOG xt_limit xt_tcpudp xt_state ip_conntrack iptable_filter nfsd exportfs lockd sunrpc af_packet autofs4 capability commoncap ipv6 snd_intel8x0 snd_ac97_codec snd_ac97_bus snd_pcm snd_timer snd snd_page_alloc generic i810_audio ac97_codec soundcore reiserfs ip_tables x_tables powernow_k8 freq_table processor ide_generic amd74xx ext3 jbd mbcache usb_storage cpufreq_userspace floppy pcspkr hw_random i2c_amd8111 tsdev mousedev shpchp pci_hotplug evdev usbhid eth1394 ohci_hcd usbcore tg3 e100 mii ohci1394 w83627hf i2c_isa eeprom lm85 hwmon_vid i2c_amd756 i2c_core sbp2 ieee1394 psmouse ide_disk ide_cd ide_core st sr_mod cdrom sd_mod sata_sil libata aic7xxx scsi_transport_spi scsi_mod unix Sep 13 12:47:32 hercules kernel: Pid: 22344, comm: mf Not tainted 2.6.17.11 #1 Sep 13 12:47:32 hercules kernel: RIP: 0010:[<ffffffff8010735a>] <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: RSP: 0000:ffff81005674b828 EFLAGS: 00010006 Sep 13 12:47:32 hercules kernel: RAX: ffff82bcbf200000 RBX: ffff81003ec8ec00 RCX: 000000000000001e Sep 13 12:47:32 hercules kernel: RDX: ffff82bcbf200000 RSI: 0000000000000000 RDI: 00000007f0000000 Sep 13 12:47:32 hercules kernel: RBP: ffff81007ffc6300 R08: 0000000000000000 R09: 0000000000000400 Sep 13 12:47:32 hercules kernel: R10: 0000000000000003 R11: ffffffff80148950 R12: 0000000000001000 Sep 13 12:47:32 hercules kernel: R13: ffff810038139d08 R14: ffff81005c2cedc0 R15: ffff81003f77deb8 Sep 13 12:47:32 hercules kernel: FS: 00000000f793f000(0000) GS:ffffffff803e4000(0000) knlGS:00000000f70b0460 Sep 13 12:47:32 hercules kernel: CS: 0010 DS: 002b ES: 002b CR0: 000000008005003b Sep 13 12:47:32 hercules kernel: CR2: ffff82bcbf200000 CR3: 0000000032370000 CR4: 00000000000006e0 Sep 13 12:47:32 hercules kernel: Process mf (pid: 22344, threadinfo ffff81005674a000, task ffff81007c69a400) Sep 13 12:47:32 hercules kernel: Stack: 00000000000000d0 0000000000000000 0000000000000296 ffff81005c2cedc0 Sep 13 12:47:32 hercules kernel: ffff81007f493a40 0000000000001000 ffff810038139d08 ffffffff80145770 Sep 13 12:47:32 hercules kernel: ffff810038139d08 00000000ffffffea Sep 13 12:47:32 hercules kernel: Call Trace: <ffffffff80145770>{bio_free+64} <ffffffff8800f75d>{:scsi_mod:scsi_execute_async+653} Sep 13 12:47:32 hercules kernel: <ffffffff80164368>{cond_resched+56} <ffffffff8809d55a>{:st:st_do_scsi+474} Sep 13 12:47:32 hercules kernel: <ffffffff8809d2f0>{:st:st_sleep_done+0} <ffffffff8809ea7f>{:st:st_int_ioctl+1711} Sep 13 12:47:32 hercules kernel: <ffffffff8809f202>{:st:st_flush+690} <ffffffff80123f26>{filp_close+70} Sep 13 12:47:32 hercules kernel: <ffffffff8013b1eb>{put_files_struct+107} <ffffffff80115145>{do_exit+597} Sep 13 12:47:32 hercules kernel: <ffffffff80249177>{do_unblank_screen+135} <ffffffff8010aa42>{do_page_fault+1922} Sep 13 12:47:32 hercules kernel: <ffffffff80123407>{mempool_alloc+71} <ffffffff80123407>{mempool_alloc+71} Sep 13 12:47:32 hercules kernel: <ffffffff801fbe7b>{as_set_request+59} <ffffffff80161df1>{error_exit+0} Sep 13 12:47:32 hercules kernel: <ffffffff80148950>{mempool_free_slab+0} <ffffffff8010735a>{kmem_cache_free+106} Sep 13 12:47:32 hercules kernel: <ffffffff80107357>{kmem_cache_free+103} <ffffffff80145770>{bio_free+64} Sep 13 12:47:32 hercules kernel: <ffffffff8800f75d>{:scsi_mod:scsi_execute_async+653} Sep 13 12:47:32 hercules kernel: <ffffffff8809d55a>{:st:st_do_scsi+474} <ffffffff8809d2f0>{:st:st_sleep_done+0} Sep 13 12:47:32 hercules kernel: <ffffffff880a2e20>{:st:st_read+912} <ffffffff80116c04>{vma_merge+516} Sep 13 12:47:32 hercules kernel: <ffffffff8010b109>{vfs_read+233} <ffffffff80110743>{sys_read+83} Sep 13 12:47:32 hercules kernel: <ffffffff80162e66>{ia32_sysret+0} Sep 13 12:47:32 hercules kernel: Sep 13 12:47:32 hercules kernel: Code: 8b 00 f6 c4 40 74 04 48 8b 52 10 48 8b 4a 30 0f b7 51 28 65 Sep 13 12:47:32 hercules kernel: RIP <ffffffff8010735a>{kmem_cache_free+106} RSP <ffff81005674b828> Sep 13 12:47:32 hercules kernel: CR2: ffff82bcbf200000 Sep 13 12:47:32 hercules kernel: <1>Fixing recursive fault but reboot is needed! The tape drive is then stuck (with a dead mf process) and reboot is needed. mf is the LaTeX metafont program: i.e. clearly it shouldn't do anything remotely sensible when applied to a tape device. Equally clearly it shouldn't give a kernel oops. Steps to reproduce: install mf (-: run command as above. I have not tried reverting to older kernels as the machine is a server...