From: David Miller <davem@davemloft.net>
To: manty@manty.net
Cc: linux-kernel@vger.kernel.org, linux-ide@vger.kernel.org
Subject: Re: kernel BUG at drivers/ide/ide-disk.c:187 (2.6.31)
Date: Thu, 01 Oct 2009 11:47:55 -0700 (PDT) [thread overview]
Message-ID: <20091001.114755.132624639.davem@davemloft.net> (raw)
In-Reply-To: <20090930110529.GA3676@dis.manty.net>
From: Santiago Garcia Mantinan <manty@manty.net>
Date: Wed, 30 Sep 2009 13:05:29 +0200
> [<c010f865>] ? dequeue_task+x90/0x9e
> [<c029d777>] ? schedule+0x2ad/0x2d9
> [<c019f63a>] ? __blk_run_queue+0x39/0x60
> [<c0la4f97>] ? cfq_kick_queue+0x0/0xb
> [<c01a4fa0>] ? cfq_kick_queue+0x9/0xb
> [<c011dd82>] ? worker_thread+0xae/0x11c
So it does look like a normal block I/O request to the disk
going through the CFQ scheduler.
But ->cmd_type of the request is corrupted, but we have no
idea in what way.
Well, we know it's not a special request, because one layer
up the IDE I/O layer driver does special processing for
blk_special_request() by calling ide_special_rq().
I suspect the request structure has been freed already and
we're referencing free'd memory.
Please add this test patch and let us know what messages
you end up with in the logs. It won't BUG() any more,
so you have to watch for the messages.
Thanks!
-DaveM (the IDE bug dodger)
diff --git a/drivers/ide/ide-disk.c b/drivers/ide/ide-disk.c
index 7f87801..54b9dbc 100644
--- a/drivers/ide/ide-disk.c
+++ b/drivers/ide/ide-disk.c
@@ -184,7 +184,11 @@ static ide_startstop_t ide_do_rw_disk(ide_drive_t *drive, struct request *rq,
ide_hwif_t *hwif = drive->hwif;
BUG_ON(drive->dev_flags & IDE_DFLAG_BLOCKED);
- BUG_ON(!blk_fs_request(rq));
+ if (!blk_fs_request(rq)) {
+ pr_alert("IDE: Non-FS req in ide_do_rw_disk(), cmd_type %d\n",
+ rq->cmd_type);
+ ide_kill_rq(drive, rq);
+ }
ledtrig_ide_activity();
next prev parent reply other threads:[~2009-10-01 18:47 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-09-30 11:05 kernel BUG at drivers/ide/ide-disk.c:187 (2.6.31) Santiago Garcia Mantinan
2009-10-01 6:57 ` Andrew Morton
2009-10-01 8:26 ` Frans Pop
2009-10-01 8:30 ` David Miller
2009-10-01 9:25 ` Bartlomiej Zolnierkiewicz
2009-10-01 16:40 ` David Miller
2009-10-01 18:21 ` Bartlomiej Zolnierkiewicz
2009-10-01 18:34 ` David Miller
2009-10-01 18:52 ` Bartlomiej Zolnierkiewicz
2009-10-01 10:11 ` Santiago Garcia Mantinan
2009-10-01 18:47 ` David Miller [this message]
2009-10-01 18:53 ` David Miller
2009-10-03 3:39 ` Santiago Garcia Mantinan
2009-10-04 22:37 ` Santiago Garcia Mantinan
2009-10-05 0:19 ` David Miller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20091001.114755.132624639.davem@davemloft.net \
--to=davem@davemloft.net \
--cc=linux-ide@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=manty@manty.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.