#57 NULL pointer deref and freezes on writing on DVD-RAM (UDF)

open
nobody
None
5
2006-01-28
2006-01-28
martin h.
No

Had many crashes and freezes with udf on DVD-RAMs. When
copying some files to a DVD-RAM a freeze occurs
everytime with the same file(name).

Kernel: 2.6.15-gentoo-r1

Here is a message log i got but now without a freeze
and with (an)other files:

Jan 28 10:02:47 qed udf: udf_read_inode(ino 899517)
failed !bh
Jan 28 10:02:47 qed udf: udf_read_inode(ino 899517)
failed !bh
Jan 28 10:06:16 qed udf: udf_read_inode(ino 929167)
failed !bh
Jan 28 10:06:16 qed Unable to handle kernel NULL
pointer dereference at virtual address 00000001
Jan 28 10:06:16 qed printing eip:
Jan 28 10:06:16 qed c0210372
Jan 28 10:06:16 qed *pde = 00000000
Jan 28 10:06:16 qed Oops: 0000 [#1]
Jan 28 10:06:16 qed Modules linked in:
Jan 28 10:06:16 qed CPU: 0
Jan 28 10:06:16 qed EIP: 0060:[<c0210372>] Not
tainted VLI
Jan 28 10:06:16 qed EFLAGS: 00010293
(2.6.15-gentoo-r1-mhe-workstation)
Jan 28 10:06:16 qed EIP is at udf_get_fileshortad+0x2d/0x3f
Jan 28 10:06:16 qed eax: 00000001 ebx: 00000001
ecx: e862bd08 edx: 00000030
Jan 28 10:06:16 qed esi: d8f3797c edi: e862bd08
ebp: d8f379b4 esp: e862bc6c
Jan 28 10:06:16 qed ds: 007b es: 007b ss: 0068
Jan 28 10:06:16 qed Process mc (pid: 9031,
threadinfo=e862a000 task=e82aba50)
Jan 28 10:06:16 qed Stack: c0209681 00000001 00010029
e862bd08 00000001 00000000 00000000 c044958c
Jan 28 10:06:16 qed 00000001 00000001 00000000 e862bd00
e862bd18 d8f379b4 e862bd0c c0209581
Jan 28 10:06:16 qed d8f379b4 e862bd00 e862bd08 e862bd0c
e862bd14 e862bd18 00000001 00000000
Jan 28 10:06:16 qed Call Trace:
Jan 28 10:06:16 qed [<c0209681>]
udf_current_aext+0xef/0x18c
Jan 28 10:06:16 qed [<c0209581>] udf_next_aext+0x76/0x87
Jan 28 10:06:16 qed [<c020f6e9>]
udf_discard_prealloc+0x135/0x240
Jan 28 10:06:16 qed [<c0205fe3>] udf_clear_inode+0x17/0x2d
Jan 28 10:06:16 qed [<c015a066>] clear_inode+0x81/0xaf
Jan 28 10:06:16 qed [<c015ac70>]
generic_forget_inode+0xf7/0x10d
Jan 28 10:06:16 qed [<c015ad01>] iput+0x63/0x66
Jan 28 10:06:16 qed [<c0208fa5>] udf_iget+0x96/0x9e
Jan 28 10:06:16 qed [<c020a522>] udf_lookup+0x79/0xa1
Jan 28 10:06:16 qed [<c0110000>] wakeup_code+0x0/0xba
Jan 28 10:06:16 qed [<c01594fa>] d_lookup+0x18/0x35
Jan 28 10:06:16 qed [<c0150f73>] real_lookup+0x4f/0xae
Jan 28 10:06:16 qed [<c01511b6>] do_lookup+0x4a/0x7b
Jan 28 10:06:16 qed [<c0151886>]
__link_path_walk+0x69f/0xa1c
Jan 28 10:06:16 qed [<c0151c45>] link_path_walk+0x42/0xad
Jan 28 10:06:16 qed [<c012112c>] do_sigaction+0x117/0x145
Jan 28 10:06:16 qed [<c0150c5b>] getname+0x5b/0x92
Jan 28 10:06:16 qed [<c0151f1e>] path_lookup+0xfe/0x106
Jan 28 10:06:16 qed [<c0152137>] __user_walk+0x23/0x3a
Jan 28 10:06:16 qed [<c014dae2>] vfs_stat+0x17/0x41
Jan 28 10:06:16 qed [<c012112c>] do_sigaction+0x117/0x145
Jan 28 10:06:16 qed [<c014e06e>] sys_stat64+0x10/0x27
Jan 28 10:06:16 qed [<c0155914>] sys_select+0x3aa/0x3b6
Jan 28 10:06:16 qed [<c0102a3f>]
sysenter_past_esp+0x54/0x75
Jan 28 10:06:16 qed Code: 24 04 8b 4c 24 0c 85 c0 74 04
85 c9 75 0e 68 80 54 3f c0 e8 ad 7d f0 ff 31 c0 5a c3
8b 11 85 d2 78 0
e 83 c2 08 3b 54 24 08 77 05 <83> 38 00 75 03 31 c0 c3
83 7c 24 10 00 74 02 89 11 c3 8b 44 24

Discussion