[Pkg-samba-maint] Bug#1060052: cifs-utils: Copy file from same cifs mount to cifs mount --> kernel NULL pointer derefernce

Hans66 hans66 at freedom.nl
Fri Jan 5 10:01:42 GMT 2024


Package: cifs-utils
Version: 2:7.0-2
Severity: grave
Justification: renders package unusable

Dear Maintainer,

* Pristine up2date Bookworm install (no GUI, only SSH, cifs-utils, rsyslog installed)
* Mount smb/cifs share (/mnt/truenas)
* All works fine if I do same from Win-10 or Win-11 OS

* I have run below commands on clean Debian Bookworm install in bash shell:

sudo mount -t cifs //truenas.fritz.box/mount -o username=user /mnt/truenas
user at server:/mnt/truenas/temp$ 
sudo cp main.cf main.cf.1
Killed

-rwxr-xr-x 1 root root       1332 Jul 28 17:25  main.cf
-rwxr-xr-x 1 root root          0 Jan  5 09:40  main.cf.1

resulting in a kernel NULL pointer derefernce

Shell hangs if I try to remove the empty file.

SYSLOG
2024-01-05T10:06:35.361488+01:00 server kernel: [   85.532965] CIFS: Attempting to mount \\truenas.fritz.box\share
2024-01-05T10:07:45.994338+01:00 server kernel: [  156.163492] BUG: kernel NULL pointer dereference, address: 0000000000000000
2024-01-05T10:07:45.994348+01:00 server kernel: [  156.163524] #PF: supervisor read access in kernel mode
2024-01-05T10:07:45.994350+01:00 server kernel: [  156.163539] #PF: error_code(0x0000) - not-present page
2024-01-05T10:07:45.994350+01:00 server kernel: [  156.163553] PGD 0 P4D 0
2024-01-05T10:07:45.994352+01:00 server kernel: [  156.163565] Oops: 0000 [#1] PREEMPT SMP PTI
2024-01-05T10:07:45.994353+01:00 server kernel: [  156.163578] CPU: 3 PID: 621 Comm: cp Not tainted 6.1.0-17-amd64 #1  Debian 6.1.69-1
2024-01-05T10:07:45.994354+01:00 server kernel: [  156.163598] Hardware name:  /DZ68DB, BIOS DBZ6810H.86A.0048.2018.1024.1605 10/24/2018
2024-01-05T10:07:45.994354+01:00 server kernel: [  156.163617] RIP: 0010:cifs_flush_folio+0x3f/0x100 [cifs]
2024-01-05T10:07:45.994355+01:00 server kernel: [  156.163683] Code: d2 41 54 49 89 cc 31 c9 55 48 89 f5 48 c1 ee 0c 53 48 83 ec 08 48 8b 7f 30 e8 8d 0a 5d dd 48 3d 00 f0 ff ff 0f 87 a5 00 00 00 <48> 8b 10 48 89 c3 b8 00 10 00 00 f7 c2 00 00 01 00 74 07 0f b6 4b
2024-01-05T10:07:45.994356+01:00 server kernel: [  156.163721] RSP: 0018:ffffab5dc0833c88 EFLAGS: 00010207
2024-01-05T10:07:45.994357+01:00 server kernel: [  156.163736] RAX: 0000000000000000 RBX: 0000000000000534 RCX: 0000000000000000
2024-01-05T10:07:45.994357+01:00 server kernel: [  156.163754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff9a3e21e30000
2024-01-05T10:07:45.994358+01:00 server kernel: [  156.163771] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
2024-01-05T10:07:45.994359+01:00 server kernel: [  156.163789] R10: 0000000000000533 R11: ffff9a3e0a189c00 R12: ffffab5dc0833cf8
2024-01-05T10:07:45.994360+01:00 server kernel: [  156.163806] R13: ffffab5dc0833cf0 R14: ffff9a3e05945410 R15: 0000000000000001
2024-01-05T10:07:45.994361+01:00 server kernel: [  156.163824] FS:  00007f46b32ba500(0000) GS:ffff9a410fb80000(0000) knlGS:0000000000000000
2024-01-05T10:07:45.994361+01:00 server kernel: [  156.163844] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
2024-01-05T10:07:45.994362+01:00 server kernel: [  156.163859] CR2: 0000000000000000 CR3: 0000000108a5c005 CR4: 00000000000606e0
2024-01-05T10:07:45.994363+01:00 server kernel: [  156.163876] Call Trace:
2024-01-05T10:07:45.994364+01:00 server kernel: [  156.163887]  <TASK>
2024-01-05T10:07:45.994364+01:00 server kernel: [  156.163897]  ? __die_body.cold+0x1a/0x1f
2024-01-05T10:07:45.994365+01:00 server kernel: [  156.163913]  ? page_fault_oops+0xd2/0x2b0
2024-01-05T10:07:45.994366+01:00 server kernel: [  156.163928]  ? exc_page_fault+0x70/0x170
2024-01-05T10:07:45.994367+01:00 server kernel: [  156.163942]  ? asm_exc_page_fault+0x22/0x30
2024-01-05T10:07:45.994367+01:00 server kernel: [  156.163958]  ? cifs_flush_folio+0x3f/0x100 [cifs]
2024-01-05T10:07:45.994368+01:00 server kernel: [  156.164011]  ? cifs_flush_folio+0x33/0x100 [cifs]
2024-01-05T10:07:45.994369+01:00 server kernel: [  156.164062]  ? cifs_precopy_set_eof+0x2b/0x150 [cifs]
2024-01-05T10:07:45.994369+01:00 server kernel: [  156.164115]  cifs_remap_file_range+0x16d/0x680 [cifs]
2024-01-05T10:07:45.994370+01:00 server kernel: [  156.164169]  do_clone_file_range+0xe9/0x230
2024-01-05T10:07:45.994371+01:00 server kernel: [  156.164185]  vfs_clone_file_range+0x37/0x140
2024-01-05T10:07:45.994371+01:00 server kernel: [  156.164199]  ioctl_file_clone+0x49/0xb0
2024-01-05T10:07:45.994372+01:00 server kernel: [  156.164213]  do_vfs_ioctl+0x77/0x910
2024-01-05T10:07:45.994372+01:00 server kernel: [  156.164226]  __x64_sys_ioctl+0x6e/0xd0
2024-01-05T10:07:45.994373+01:00 server kernel: [  156.164239]  do_syscall_64+0x5b/0xc0
2024-01-05T10:07:45.994374+01:00 server kernel: [  156.164253]  ? syscall_exit_to_user_mode+0x27/0x40
2024-01-05T10:07:45.994374+01:00 server kernel: [  156.164268]  ? do_syscall_64+0x67/0xc0
2024-01-05T10:07:45.994375+01:00 server kernel: [  156.164281]  ? syscall_exit_to_user_mode+0x27/0x40
2024-01-05T10:07:45.994376+01:00 server kernel: [  156.164296]  ? do_syscall_64+0x67/0xc0
2024-01-05T10:07:45.994376+01:00 server kernel: [  156.164309]  ? exit_to_user_mode_prepare+0x40/0x1e0
2024-01-05T10:07:45.994377+01:00 server kernel: [  156.164325]  entry_SYSCALL_64_after_hwframe+0x64/0xce
2024-01-05T10:07:45.994378+01:00 server kernel: [  156.164341] RIP: 0033:0x7f46b3452b5b
2024-01-05T10:07:45.994378+01:00 server kernel: [  156.164353] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
2024-01-05T10:07:45.994379+01:00 server kernel: [  156.164391] RSP: 002b:00007ffd756af7c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2024-01-05T10:07:45.994380+01:00 server kernel: [  156.164410] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f46b3452b5b
2024-01-05T10:07:45.994381+01:00 server kernel: [  156.164428] RDX: 0000000000000003 RSI: 0000000040049409 RDI: 0000000000000004
2024-01-05T10:07:45.994381+01:00 server kernel: [  156.164445] RBP: 00007ffd756afc00 R08: 00007ffd756afdc0 R09: 0000000000000001
2024-01-05T10:07:45.994394+01:00 server kernel: [  156.164463] R10: 00007f46b336c358 R11: 0000000000000246 R12: 0000000000000001
2024-01-05T10:07:45.994396+01:00 server kernel: [  156.164480] R13: 00007ffd756b07d4 R14: 0000000000008000 R15: 0000000000000000
2024-01-05T10:07:45.994396+01:00 server kernel: [  156.164499]  </TASK>
2024-01-05T10:07:45.994397+01:00 server kernel: [  156.164508] Modules linked in: cmac nls_utf8 cifs cifs_arc4 cifs_md4 dns_resolver fscache netfs binfmt_misc snd_hda_codec_hdmi intel_rapl_msr intel_rapl_common x86_pkg_temp_thermal intel_powerclamp coretemp snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio kvm_intel kvm irqbypass ghash_clmulni_intel sha512_ssse3 sha512_generic sha256_ssse3 sha1_ssse3 joydev i915 aesni_intel snd_hda_intel crypto_simd cryptd snd_intel_dspcfg snd_intel_sdw_acpi drm_buddy snd_hda_codec video wmi hid_generic snd_hda_core drm_display_helper rapl snd_hwdep intel_cstate snd_pcm cec iTCO_wdt mei_hdcp usbhid intel_pmc_bxt rc_core snd_timer iTCO_vendor_support evdev ttm intel_uncore hid at24 serio_raw watchdog mei_me snd pcspkr soundcore drm_kms_helper mei i2c_algo_bit button sg drm loop dm_mod fuse efi_pstore configfs ip_tables x_tables autofs4 ext4 crc16 mbcache jbd2 crc32c_generic sd_mod t10_pi crc64_rocksoft crc64 crc_t10dif crct10dif_generic ahci libahci libata crct10dif_pclmul crct10dif_common
2024-01-05T10:07:45.994398+01:00 server kernel: [  156.164571]  xhci_pci crc32_pclmul scsi_mod xhci_hcd crc32c_intel psmouse ehci_pci ehci_hcd i2c_i801 i2c_smbus scsi_common usbcore e1000e lpc_ich usb_common
2024-01-05T10:07:45.994399+01:00 server kernel: [  156.164766] CR2: 0000000000000000
2024-01-05T10:07:45.994400+01:00 server kernel: [  156.164777] ---[ end trace 0000000000000000 ]---
2024-01-05T10:07:45.994400+01:00 server kernel: [  156.164790] RIP: 0010:cifs_flush_folio+0x3f/0x100 [cifs]
2024-01-05T10:07:45.994401+01:00 server kernel: [  156.164844] Code: d2 41 54 49 89 cc 31 c9 55 48 89 f5 48 c1 ee 0c 53 48 83 ec 08 48 8b 7f 30 e8 8d 0a 5d dd 48 3d 00 f0 ff ff 0f 87 a5 00 00 00 <48> 8b 10 48 89 c3 b8 00 10 00 00 f7 c2 00 00 01 00 74 07 0f b6 4b
2024-01-05T10:07:45.994402+01:00 server kernel: [  156.164882] RSP: 0018:ffffab5dc0833c88 EFLAGS: 00010207
2024-01-05T10:07:45.994402+01:00 server kernel: [  156.164896] RAX: 0000000000000000 RBX: 0000000000000534 RCX: 0000000000000000
2024-01-05T10:07:45.994403+01:00 server kernel: [  156.164913] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff9a3e21e30000
2024-01-05T10:07:45.994404+01:00 server kernel: [  156.166273] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
2024-01-05T10:07:45.994404+01:00 server kernel: [  156.167653] R10: 0000000000000533 R11: ffff9a3e0a189c00 R12: ffffab5dc0833cf8
2024-01-05T10:07:45.998305+01:00 server kernel: [  156.169018] R13: ffffab5dc0833cf0 R14: ffff9a3e05945410 R15: 0000000000000001
2024-01-05T10:07:45.998310+01:00 server kernel: [  156.170366] FS:  00007f46b32ba500(0000) GS:ffff9a410fb80000(0000) knlGS:0000000000000000
2024-01-05T10:07:45.998332+01:00 server kernel: [  156.171698] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
2024-01-05T10:07:46.001465+01:00 server kernel: [  156.172676] CR2: 0000000000000000 CR3: 0000000108a5c005 CR4: 00000000000606e0


*** End of the template - remove these template lines ***


-- System Information:
Debian Release: 12.4
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-17-amd64 (SMP w/4 CPU threads; PREEMPT)
Kernel taint flags: TAINT_DIE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages cifs-utils depends on:
ii  libc6             2.36-9+deb12u3
ii  libcap-ng0        0.8.3-1+b3
ii  libgssapi-krb5-2  1.20.1-2+deb12u1
ii  libkeyutils1      1.6.3-2
ii  libkrb5-3         1.20.1-2+deb12u1
ii  libpam0g          1.5.2-6+deb12u1
ii  libtalloc2        2.4.0-f2
ii  libwbclient0      2:4.17.12+dfsg-0+deb12u1
ii  python3           3.11.2-1+b1

Versions of packages cifs-utils recommends:
ii  keyutils  1.6.3-2

Versions of packages cifs-utils suggests:
ii  bash-completion  1:2.11-6
pn  smbclient        <none>
pn  winbind          <none>

-- no debconf information



More information about the Pkg-samba-maint mailing list