This bug was fixed in the package linux - 4.4.0-34.53
---------------
linux (4.4.0-34.53) xenial; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1606960
* [APL][SAUCE] Slow system response time due to a monitor bug (LP: #1606147)
- x86/cpu/intel: Introduce macros for Intel family numbers
- SAUCE: x86/cpu: Add workaround for MONITOR instruction erratum on Goldmont
based CPUs
linux (4.4.0-33.52) xenial; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1605709
* [regression] NFS client: access problems after updating to kernel
4.4.0-31-generic (LP: #1603719)
- SAUCE: (namespace) Bypass sget() capability check for nfs
linux (4.4.0-32.51) xenial; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1604443
* thinkpad yoga 260 wacom touchscreen not working (LP: #1603975)
- HID: wacom: break out parsing of device and registering of input
- HID: wacom: Initialize hid_data.inputmode to -1
- HID: wacom: Support switching from vendor-defined device mode on G9 and
G11
* changelog: add CVEs as first class citizens (LP: #1604344)
- use CVE numbers in changelog
* [Xenial] Include Huawei PCIe SSD hio kernel driver (LP: #1603483)
- SAUCE: import Huawei ES3000_V2 (2.1.0.23)
- SAUCE: hio: bio_endio() no longer takes errors arg
- SAUCE: hio: blk_queue make_request_fn now returns a blk_qc_t
- SAUCE: hio: use alloc_cpumask_var to avoid -Wframe-larger-than
- SAUCE: hio: fix mask maybe-uninitialized warning
- [config] enable CONFIG_HIO (Huawei ES3000_V2 PCIe SSD driver)
- SAUCE: hio: Makefile and Kconfig
* CVE-2016-5243 (LP: #1589036)
- tipc: fix an infoleak in tipc_nl_compat_link_dump
- tipc: fix nl compat regression for link statistics
* CVE-2016-4470
- KEYS: potential uninitialized variable
* integer overflow in xt_alloc_table_info (LP: #1555353)
- netfilter: x_tables: check for size overflow
* CVE-2016-3135:
- Revert "UBUNTU: SAUCE: (noup) netfilter: x_tables: check for size
overflow"
* CVE-2016-4440 (LP: #1584192)
- kvm:vmx: more complete state update on APICv on/off
* the system hangs in the dma driver when reboot or shutdown on a baytrail-m
laptop (LP: #1602579)
- dmaengine: dw: platform: power on device on shutdown
- ACPI / LPSS: override power state for LPSS DMA device
* Add proper palm detection support for MS Precision Touchpad (LP: #1593124)
- Revert "HID: multitouch: enable palm rejection if device implements
confidence usage"
- HID: multitouch: enable palm rejection for Windows Precision Touchpad
* Add support for Intel 8265 Bluetooth ([8087:0A2B]) (LP: #1599068)
- Bluetooth: Add support for Intel Bluetooth device 8265 [8087:0a2b]
* CVE-2016-4794 (LP: #1581871)
- percpu: fix synchronization between chunk->map_extend_work and chunk
destruction
- percpu: fix synchronization between synchronous map extension and chunk
destruction
* Xenial update to v4.4.15 stable release (LP: #1601952)
- net_sched: fix pfifo_head_drop behavior vs backlog
- net: Don't forget pr_fmt on net_dbg_ratelimited for CONFIG_DYNAMIC_DEBUG
- sit: correct IP protocol used in ipip6_err
- esp: Fix ESN generation under UDP encapsulation
- netem: fix a use after free
- ipmr/ip6mr: Initialize the last assert time of mfc entries.
- Bridge: Fix ipv6 mc snooping if bridge has no ipv6 address
- sock_diag: do not broadcast raw socket destruction
- bpf, perf: delay release of BPF prog after grace period
- neigh: Explicitly declare RCU-bh read side critical section in
neigh_xmit()
- net: macb: fix default configuration for GMAC on AT91
- net: alx: Work around the DMA RX overflow issue
- bpf: try harder on clones when writing into skb
- AX.25: Close socket connection on session completion
- crypto: ux500 - memmove the right size
- crypto: user - re-add size check for CRYPTO_MSG_GETALG
- USB: uas: Fix slave queue_depth not being set
- usb: quirks: Fix sorting
- usb: quirks: Add no-lpm quirk for Acer C120 LED Projector
- usb: musb: only restore devctl when session was set in backup
- usb: musb: Stop bulk endpoint while queue is rotated
- usb: musb: Ensure rx reinit occurs for shared_fifo endpoints
- usb: musb: host: correct cppi dma channel for isoch transfer
- usb: xhci-plat: properly handle probe deferral for devm_clk_get()
- USB: xhci: Add broken streams quirk for Frescologic device id 1009
- xhci: Fix handling timeouted commands on hosts in weird states.
- USB: mos7720: delete parport
- usb: gadget: fix spinlock dead lock in gadgetfs
- usb: host: ehci-tegra: Grab the correct UTMI pads reset
- usb: dwc3: exynos: Fix deferred probing storm.
- Linux 4.4.15
* qeth: delete napi struct when removing a qeth device (LP: #1601831)
- qeth: delete napi struct when removing a qeth device
* Adjust KBL PCI-ID's (LP: #1600124)
- drm/i915: Add more Kabylake PCI IDs.
- drm/i915: Removing PCI IDs that are no longer listed as Kabylake.
* [i915_bpo] Rebase driver to v4.7-rc6 + gen9 workarounds + KBP PCH support
(LP: #1599109)
- drm/kms_helper: Add a common place to call init and exit functions.
- drm: Add helper for DP++ adaptors
- GPU-DRM: Delete unnecessary checks before drm_property_unreference_blob()
- drm: introduce pipe color correction properties
- drm: fix blob pointer check
- drm: atomic helper: do not unreference error pointer
- drm: fix lut value extraction function
- drm/dsi: Add a helper to get bits per pixel of MIPI DSI pixel format
- SAUCE: drm: Introduce drm_malloc_gfp()
- SAUCE: i915_bpo: Rebase to v4.7-rc6
- SAUCE: i915_bpo: Add backported workarounds for gen9
- SAUCE: i915_bpo: Revert "drm/i915: Get panel_type from OpRegion panel
details"
- SAUCE: i915_bpo: Introduce Kabypoint PCH for Kabylake H/DT.
* Baytrail-I got black screen with HDMI output (LP: #1599379)
- drm/i915: Only ignore eDP ports that are connected
- drm/i915: Check VBT for port presence in addition to the strap on VLV/CHV
* [Hyper-V] storvsc messages for CD-ROM medium not present tray closed
(LP: #1590655)
- SAUCE: (no-up) scsi: storvsc: Filter out storvsc messages CD-ROM medium
not
present
* Hotplug device addition issue - missing patches on Xenial kernel
(LP: #1599250)
- Revert "UBUNTU: SAUCE: powerpc/eeh: Validate arch in
eeh_add_device_early()"
- Revert "powerpc/eeh: Fix crash in eeh_add_device_early() on Cell"
- powerpc/iommu: Remove the dependency on EEH struct in DDW mechanism
- powerpc/pseries: Fix PCI config address for DDW
* kernel: signal return with invalid floating-point control (LP: #1597971)
- s390: fix test_fp_ctl inline assembly contraints
* [Toshiba P50W-B00F] Touchscreen no longer working (LP: #1498667)
- SAUCE: (no-up) usb: quirks: Add no-lpm quirk for Elan Microelectronics
Touchpad
* [yakkety] d-i does not support (ehci_msm) Qualcomm On-Chip EHCI Host
Controller (LP: #1599347)
- d-i: Add ehci_msm to usb-modules
* [Bug] Legacy audio couldn't work after S3 resume on Kabylake (LP: #1596871)
- ALSA: hda - Skip ELD notification during PM process
- ALSA: hda - hdmi add wmb barrier for audio component
- ALSA: hda - hdmi defer to register acomp eld notifier
* sync spl 0.6.5.6-0ubuntu4 changes into Xenial kernel source (LP: #1599257)
- SAUCE: (noup) Update spl to 0.6.5.6-0ubuntu4
* Config: missing AMD Seattle platform support (LP: #1597574)
- [Config] Enable the AMD Seattle platform
* Network installer fails to detect network on AMD Overdrive (ARM64)
(LP: #1597573)
- [Config] Add amd-xgbe to nic-modules udeb
* exercising ptys causes a kernel oops (LP: #1586418)
- devpts: fix null pointer dereference on failed memory allocation
* Regression (constant vibration of device) in xpad driver in Ubuntu 16.04
(LP: #1574102)
- Input: xpad - move pending clear to the correct location
* thunderx nics fail to establish link (LP: #1597867)
- net: thunderx: Fix link status reporting
* Xenial update to v4.4.14 stable release (LP: #1596575)
- scsi_lib: correctly retry failed zero length REQ_TYPE_FS commands
- scsi: Add QEMU CD-ROM to VPD Inquiry Blacklist
- netlink: Fix dump skb leak/double free
- tipc: fix nametable publication field in nl compat
- switchdev: pass pointer to fib_info instead of copy
- tuntap: correctly wake up process during uninit
- udp: prevent skbs lingering in tunnel socket queues
- uapi glibc compat: fix compilation when !__USE_MISC in glibc
- sfc: on MC reset, clear PIO buffer linkage in TXQs
- team: don't call netdev_change_features under team->lock
- vxlan: Accept user specified MTU value when create new vxlan link
- tcp: record TLP and ER timer stats in v6 stats
- bridge: Don't insert unnecessary local fdb entry on changing mac address
- l2tp: fix configuration passed to setup_udp_tunnel_sock()
- ipv6: Skip XFRM lookup if dst_entry in socket cache is valid
- vxlan: Relax MTU constraints
- geneve: Relax MTU constraints
- vxlan, gre, geneve: Set a large MTU on ovs-created tunnel devices
- KVM: x86: fix OOPS after invalid KVM_SET_DEBUGREGS
- KVM: irqfd: fix NULL pointer dereference in kvm_irq_map_gsi
- ALSA: hda - Add PCI ID for Kabylake
- ALSA: hda - Fix headset mic detection problem for Dell machine
- ALSA: hda/realtek - ALC256 speaker noise issue
- ALSA: hda/realtek - Add support for new codecs ALC700/ALC701/ALC703
- ALSA: hda/realtek: Add T560 docking unit fixup
- ARM: fix PTRACE_SETVFPREGS on SMP systems
- gpio: bcm-kona: fix bcm_kona_gpio_reset() warnings
- s390/bpf: fix recache skb->data/hlen for skb_vlan_push/pop
- s390/bpf: reduce maximum program size to 64 KB
- irqchip/gic-v3: Fix ICC_SGI1R_EL1.INTID decoding mask
- crypto: public_key: select CRYPTO_AKCIPHER
- crypto: ccp - Fix AES XTS error for request sizes above 4096
- arm64: Provide "model name" in /proc/cpuinfo for PER_LINUX32 tasks
- arm64: mm: always take dirty state from new pte in ptep_set_access_flags
- powerpc/pseries/eeh: Handle RTAS delay requests in configure_bridge
- powerpc: Fix definition of SIAR and SDAR registers
- powerpc: Use privileged SPR number for MMCR2
- powerpc/pseries: Add POWER8NVL support to ibm,client-architecture-support
call
- pinctrl: mediatek: fix dual-edge code defect
- parisc: Fix pagefault crash in unaligned __get_user() call
- memcg: add RCU locking around css_for_each_descendant_pre() in
memcg_offline_kmem()
- wext: Fix 32 bit iwpriv compatibility issue with 64 bit Kernel
- x86/entry/traps: Don't force in_interrupt() to return true in IST handlers
- fix d_walk()/non-delayed __d_free() race
- sparc: Fix system call tracing register handling.
- sparc64: Fix bootup regressions on some Kconfig combinations.
- sparc64: Fix numa node distance initialization
- sparc64: Fix sparc64_set_context stack handling.
- sparc/PCI: Fix for panic while enabling SR-IOV
- sparc64: Reduce TLB flushes during hugepte changes
- sparc64: Take ctx_alloc_lock properly in hugetlb_setup().
- sparc: Harden signal return frame checks.
- sparc64: Fix return from trap window fill crashes.
- MIPS: Fix 64k page support for 32 bit kernels.
- crypto: qat - fix adf_ctl_drv.c:undefined reference to adf_init_pf_wq
- drm/core: Do not preserve framebuffer on rmfb, v4.
- Linux 4.4.14
* [Hyper-V] Rebase Hyper-V to 4.6 kernel (LP: #1583357)
- hv_netvsc: rework link status change handling
- hv_netvsc: Resize some of the variables in hv_netvsc_packet
- hv_netvsc: Rearrange the hv_negtvsc_packet to be space efficient
- hv_netvsc: Eliminate the channel field in hv_netvsc_packet structure
- hv_netvsc: Eliminate rndis_msg pointer from hv_netvsc_packet structure
- hv_netvsc: Eliminatte the data field from struct hv_netvsc_packet
- hv_netvsc: Eliminate send_completion from struct hv_netvsc_packet
- hv_netvsc: Eliminate send_completion_ctx from struct hv_netvsc_packet
- hv_netvsc: Don't ask for additional head room in the skb
- hv_netvsc: move subchannel existence check to netvsc_select_queue()
- hv_netvsc: remove locking in netvsc_send()
- hv_netvsc: Eliminate page_buf from struct hv_netvsc_packet
- hv_netvsc: Eliminate send_completion_tid from struct hv_netvsc_packet
- hv_netvsc: Eliminate is_data_pkt from struct hv_netvsc_packet
- hv_netvsc: Eliminate completion_func from struct hv_netvsc_packet
- hv_netvsc: Eliminate xmit_more from struct hv_netvsc_packet
- hv_netvsc: Eliminate status from struct hv_netvsc_packet
- hv_netvsc: Eliminate vlan_tci from struct hv_netvsc_packet
- storvsc: add logging for error/warning messages
- hv_netvsc: Fix race condition on Multi-Send Data field
- kvm/x86: split ioapic-handled and EOI exit bitmaps
- kvm/x86: per-vcpu apicv deactivation support
- kvm/x86: Hyper-V synthetic interrupt controller
- kvm/x86: Hyper-V kvm exit
- kvm/x86: Rearrange func's declarations inside Hyper-V header
- kvm/x86: Added Hyper-V vcpu_to_hv_vcpu()/hv_vcpu_to_vcpu() helpers
- kvm/x86: Hyper-V internal helper to read MSR HV_X64_MSR_TIME_REF_COUNT
- kvm/x86: Hyper-V SynIC message slot pending clearing at SINT ack
- kvm/x86: Hyper-V SynIC timers
- storvsc: Fix a bug in the layout of the hv_fc_wwn_packet
- storvsc: Properly support Fibre Channel devices
- storvsc: Refactor the code in storvsc_channel_init()
- storvsc: Tighten up the interrupt path
- storvsc: Fix typo in MODULE_PARM_DESC
- Revert "hv_netvsc: use skb_get_hash() instead of a homegrown
implementation"
- hv_netvsc: use skb_get_hash() instead of a homegrown implementation
- hv_netvsc: Fix book keeping of skb during batching process
- storvsc: Install the storvsc specific timeout handler for FC devices
- storvsc: Use the specified target ID in device lookup
- Revert "Drivers: hv: vmbus: Cleanup vmbus_set_event()"
- Drivers: hv: vmbus: Cleanup vmbus_set_event()
- Revert "Drivers: hv: vmbus: Eliminate the spin lock on the read path"
- Drivers: hv: vmbus: Eliminate the spin lock on the read path
- Revert "hv_netvsc: cleanup netdev feature flags for netvsc"
- hv_netvsc: cleanup netdev feature flags for netvsc
- hv_netvsc: Restore needed_headroom request
- kvm/x86: Rename Hyper-V long spin wait hypercall
- hv_netvsc: add software transmit timestamp support
- hv_netvsc: add ethtool support for set and get of settings
- hv_netvsc: Fix accessing freed memory in netvsc_change_mtu()
- hv_netvsc: Fix the array sizes to be max supported channels
- hv_netvsc: Fix the order of num_sc_offered decrement
- x86/hyperv: Avoid reporting bogus NMI status for Gen2 instances
- Drivers: hv: vmbus: Fix signaling logic in hv_need_to_signal_on_read()
- Drivers: hv: kvp: fix IP Failover
-- Seth Forshee <seth.fors...@canonical.com> Wed, 27 Jul 2016 10:01:20
-0500
** Changed in: linux (Ubuntu Xenial)
Status: Fix Committed => Fix Released
** Changed in: linux (Ubuntu Trusty)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1586418
Title:
exercising ptys causes a kernel oops
Status in linux package in Ubuntu:
Fix Released
Status in linux source package in Trusty:
Fix Released
Status in linux source package in Vivid:
Fix Released
Status in linux source package in Wily:
Won't Fix
Status in linux source package in Xenial:
Fix Released
Status in linux source package in Yakkety:
Fix Released
Bug description:
[SRU JUSTIFICATION][TRUSTY][WILY][XENIAL]
Running stress-ng --pty 1 with a very low vmalloc memory available can
trip an oops. This can be generally only be reproduced when memory is
under a high amount of pressure. I was able to reproduce reliably by
forcefully injecting vmalloc to return NULL when the stress-ng pty was
running.
[FIX]
Upstream commit 5353ed8deedee9e5acb9f896e9032158f5d998de ("devpts: fix null
pointer dereference on failed memory allocation"). This needs backporting to
Yakkey, Xenial, Wily and Trusty because of changes in variable names.
[TEST]
Forcefully inject vmalloc to return NULL when running the pty stressor.
Without the fix, an oops can be tripped, with the fix, no issues occur.
------------------------------------------------------------------
running: "stress-ng --pty 1" and this occurs in less than 1 second:
[ 67.753230] alloc_vmap_area: 9 callbacks suppressed
[ 67.753233] vmap allocation for size 16384 failed: use vmalloc=<size> to
increase size.
[ 67.753235] vmalloc: allocation failure: 8844 bytes
[ 67.753237] stress-ng-pty: page allocation failure: order:0, mode:0x24000c2
[ 67.753240] CPU: 2 PID: 2150 Comm: stress-ng-pty Not tainted
4.4.0-23-generic #41-Ubuntu
[ 67.753241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS
Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 67.753243] c1abf967 0832d3cc 00000286 f2497c8c c139fe1f c19ce22c
00000001 f2497cbc
[ 67.753248] c1177396 c19cc624 f506b5f0 00000000 024000c2 f2497cd0
c19ce22c f2497ca4
[ 67.753252] 0832d3cc 0000228c 00000000 f2497cec c11ad2ff 024000c2
00000000 c19ce22c
[ 67.753256] Call Trace:
[ 67.753264] [<c139fe1f>] dump_stack+0x58/0x79
[ 67.753267] [<c1177396>] warn_alloc_failed+0xd6/0x110
[ 67.753272] [<c11ad2ff>] __vmalloc_node_range+0x1ef/0x210
[ 67.753276] [<c148f590>] ? tty_get_pgrp+0x40/0x40
[ 67.753278] [<c11ad386>] __vmalloc_node+0x66/0x70
[ 67.753280] [<c1494e46>] ? n_tty_open+0x16/0xc0
[ 67.753283] [<c11ad408>] vmalloc+0x38/0x40
[ 67.753284] [<c1494e46>] ? n_tty_open+0x16/0xc0
[ 67.753290] [<c1494e46>] n_tty_open+0x16/0xc0
[ 67.753293] [<c1498fd8>] tty_ldisc_open.isra.2+0x28/0x60
[ 67.753295] [<c14997fc>] tty_ldisc_setup+0x1c/0x70
[ 67.753297] [<c14935bc>] tty_init_dev+0x7c/0x180
[ 67.753301] [<c124fee1>] ? devpts_new_index+0xf1/0x120
[ 67.753303] [<c149b7a5>] ptmx_open+0x75/0x160
[ 67.753306] [<c11e0a14>] chrdev_open+0xa4/0x180
[ 67.753310] [<c11da62c>] do_dentry_open+0x1ec/0x300
[ 67.753312] [<c11e0970>] ? cdev_put+0x20/0x20
[ 67.753314] [<c11db60f>] vfs_open+0x4f/0x60
[ 67.753316] [<c11ea109>] path_openat+0x509/0x1140
[ 67.753318] [<c11eae94>] ? putname+0x54/0x60
[ 67.753321] [<c11ebde8>] do_filp_open+0x68/0xe0
[ 67.753324] [<c11f8d16>] ? __alloc_fd+0x36/0x150
[ 67.753326] [<c11db9c8>] do_sys_open+0x128/0x2b0
[ 67.753329] [<c11dbb72>] SyS_open+0x22/0x30
[ 67.753332] [<c100393d>] do_fast_syscall_32+0x8d/0x150
[ 67.753336] [<c17a98dc>] sysenter_past_esp+0x3d/0x61
[ 67.753338] Mem-Info:
[ 67.753342] active_anon:5790 inactive_anon:1203 isolated_anon:0
active_file:30258 inactive_file:14843 isolated_file:0
unevictable:856 dirty:46 writeback:0 unstable:0
slab_reclaimable:4643 slab_unreclaimable:5952
mapped:5271 shmem:1380 pagetables:193 bounce:0
free:166082 free_pcp:1176 free_cma:0
[ 67.753349] DMA free:9616kB min:788kB low:984kB high:1180kB
active_anon:288kB inactive_anon:112kB active_file:2436kB inactive_file:1216kB
unevictable:0kB isolated(anon):0kB isolated(file):0kB present:15992kB
managed:15916kB mlocked:0kB dirty:4kB writeback:0kB mapped:396kB shmem:108kB
slab_reclaimable:268kB slab_unreclaimable:428kB kernel_stack:24kB
pagetables:8kB unstable:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
writeback_tmp:0kB pages_scanned:0 all_unreclaimable? no
[ 67.753350] lowmem_reserve[]: 0 818 949 949
[ 67.753357] Normal free:567248kB min:41608kB low:52008kB high:62412kB
active_anon:18440kB inactive_anon:2992kB active_file:101312kB
inactive_file:47608kB unevictable:3164kB isolated(anon):0kB isolated(file):0kB
present:897016kB managed:872588kB mlocked:3164kB dirty:180kB writeback:0kB
mapped:16216kB shmem:3620kB slab_reclaimable:18304kB slab_unreclaimable:23380kB
kernel_stack:1568kB pagetables:688kB unstable:0kB bounce:0kB free_pcp:3736kB
local_pcp:224kB free_cma:0kB writeback_tmp:0kB pages_scanned:0
all_unreclaimable? no
[ 67.753358] lowmem_reserve[]: 0 0 1055 1055
[ 67.753364] HighMem free:87464kB min:128kB low:1804kB high:3480kB
active_anon:4432kB inactive_anon:1708kB active_file:17284kB
inactive_file:10548kB unevictable:260kB isolated(anon):0kB isolated(file):0kB
present:135044kB managed:135044kB mlocked:260kB dirty:0kB writeback:0kB
mapped:4472kB shmem:1792kB slab_reclaimable:0kB slab_unreclaimable:0kB
kernel_stack:0kB pagetables:76kB unstable:0kB bounce:0kB free_pcp:968kB
local_pcp:152kB free_cma:0kB writeback_tmp:0kB pages_scanned:0
all_unreclaimable? no
[ 67.753365] lowmem_reserve[]: 0 0 0 0
[ 67.753367] DMA: 2*4kB (UM) 1*8kB (E) 2*16kB (UE) 1*32kB (U) 3*64kB (ME)
3*128kB (UME) 1*256kB (M) 3*512kB (UME) 3*1024kB (UME) 2*2048kB (UM) 0*4096kB =
9616kB
[ 67.753378] Normal: 1*4kB (U) 25*8kB (ME) 38*16kB (UM) 25*32kB (ME)
14*64kB (UME) 9*128kB (UM) 9*256kB (UM) 8*512kB (UME) 8*1024kB (UME) 0*2048kB
134*4096kB (M) = 567116kB
[ 67.753389] HighMem: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 1*64kB (M) 0*128kB
3*256kB (UM) 3*512kB (UM) 5*1024kB (UM) 1*2048kB (U) 19*4096kB (M) = 87380kB
[ 67.753435] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0
hugepages_size=2048kB
[ 67.753436] 47051 total pagecache pages
[ 67.753437] 0 pages in swap cache
[ 67.753439] Swap cache stats: add 0, delete 0, find 0/0
[ 67.753440] Free swap = 1046524kB
[ 67.753444] Total swap = 1046524kB
[ 67.753450] 262013 pages RAM
[ 67.753459] 33761 pages HighMem/MovableOnly
[ 67.753461] 6126 pages reserved
[ 67.753483] 0 pages cma reserved
[ 67.753486] tty_init_dev: ldisc open failed, clearing slot 3474
[ 67.753525] BUG: unable to handle kernel NULL pointer dereference at
0000001c
[ 67.755622] IP: [<c124ff1a>] devpts_kill_index+0xa/0x60
[ 67.756058] *pdpt = 000000002f82f001 *pde = 0000000000000000
[ 67.756461] Oops: 0000 [#1] SMP
[ 67.756866] Modules linked in: snd_hda_codec_generic snd_hda_intel
snd_hda_codec snd_hda_core snd_hwdep snd_pcm ppdev input_leds snd_timer
parport_pc joydev snd parport 8250_fintek soundcore serio_raw i2c_piix4 mac_hid
ib_iser rdma_cm iw_cm ib_cm ib_sa ib_mad ib_core ib_addr iscsi_tcp libiscsi_tcp
libiscsi scsi_transport_iscsi autofs4 btrfs raid10 raid456 async_raid6_recov
async_memcpy async_pq async_xor async_tx xor raid6_pq libcrc32c raid1 raid0
multipath linear qxl crc32_pclmul ttm aesni_intel drm_kms_helper aes_i586
syscopyarea sysfillrect xts sysimgblt lrw fb_sys_fops gf128mul ablk_helper
cryptd drm pata_acpi psmouse floppy
[ 67.759038] CPU: 2 PID: 2150 Comm: stress-ng-pty Not tainted
4.4.0-23-generic #41-Ubuntu
[ 67.759396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS
Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 67.759758] task: f506b200 ti: f2496000 task.ti: f2496000
[ 67.760109] EIP: 0060:[<c124ff1a>] EFLAGS: 00010246 CPU: 2
[ 67.760460] EIP is at devpts_kill_index+0xa/0x60
[ 67.760806] EAX: 00000000 EBX: 00000000 ECX: 00000033 EDX: 00000d92
[ 67.761165] ESI: fffffff4 EDI: 00000d92 EBP: f2497d54 ESP: f2497d4c
[ 67.761500] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068
[ 67.761830] CR0: 80050033 CR2: 0000001c CR3: 355d6ca0 CR4: 001406f0
[ 67.762166] DR0: 00000000 DR1: 00000000 DR2: 00000000 DR3: 00000000
[ 67.762497] DR6: fffe0ff0 DR7: 00000400
[ 67.762822] Stack:
[ 67.763139] 00000000 fffffff4 f2497d60 c149b509 e65caa00 f2497d6c
c1492bb0 e65caa00
[ 67.763497] f2497d98 c14935e9 c1a2cf78 00000d92 f64aa7d0 f2497d98
c124fee1 00000d92
[ 67.763860] e65e66c0 f64aa7d0 f64aa7d0 f2497db4 c149b7a5 00000000
00000d92 c1d20ae0
[ 67.764228] Call Trace:
[ 67.764568] [<c149b509>] pty_unix98_shutdown+0x29/0x40
[ 67.764917] [<c1492bb0>] release_tty+0x30/0xe0
[ 67.765272] [<c14935e9>] tty_init_dev+0xa9/0x180
[ 67.765623] [<c124fee1>] ? devpts_new_index+0xf1/0x120
[ 67.765974] [<c149b7a5>] ptmx_open+0x75/0x160
[ 67.766323] [<c11e0a14>] chrdev_open+0xa4/0x180
[ 67.766668] [<c11da62c>] do_dentry_open+0x1ec/0x300
[ 67.767013] [<c11e0970>] ? cdev_put+0x20/0x20
[ 67.767352] [<c11db60f>] vfs_open+0x4f/0x60
[ 67.767690] [<c11ea109>] path_openat+0x509/0x1140
[ 67.768030] [<c11eae94>] ? putname+0x54/0x60
[ 67.768367] [<c11ebde8>] do_filp_open+0x68/0xe0
[ 67.768704] [<c11f8d16>] ? __alloc_fd+0x36/0x150
[ 67.769051] [<c11db9c8>] do_sys_open+0x128/0x2b0
[ 67.769385] [<c11dbb72>] SyS_open+0x22/0x30
[ 67.769717] [<c100393d>] do_fast_syscall_32+0x8d/0x150
[ 67.770052] [<c17a98dc>] sysenter_past_esp+0x3d/0x61
[ 67.770385] Code: 00 b8 fb ff ff ff eb 9d b8 ed ff ff ff eb 96 e8 9d 01 e2
ff 8d b6 00 00 00 00 8d bc 27 00 00 00 00 55 89 e5 56 53 3e 8d 74 26 00 <8b> 40
1c 89 d6 81 78 38 d1 1c 00 00 74 0c a1 f8 59 d1 c1 85 c0
[ 67.771232] EIP: [<c124ff1a>] devpts_kill_index+0xa/0x60 SS:ESP
0068:f2497d4c
[ 67.771607] CR2: 000000000000001c
[ 67.772009] ---[ end trace 40e08a6f48f9983e ]---
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1586418/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
