Ticket #2477 (new defect)

Opened 8 years ago

Last modified 2 years ago

2.6.34: NULL pointer dereference in soc_suspend

Reported by: lindi Owned by: openmoko-kernel
Priority: normal Milestone:
Component: kernel Version: unspecified
Severity: normal Keywords:
Cc: Blocked By:
Blocking: Estimated Completion (week):
HasPatchForReview: no PatchReviewResult:


Steps to reproduce:
1) echo mem > /sys/power/state

Expected results:
1) FR suspends

Actual results:
1) kernel crashes:

<6>[  190.810000] PM: Syncing filesystems ... done.
<4>[  191.120000] Freezing user space processes ... (elapsed 0.01 seconds) done.
<4>[  191.140000] Freezing remaining freezable tasks ... (elapsed 0.01 seconds) done.
<4>[  191.160000] Suspending console(s) (use no_console_suspend to debug)
<1>[  191.160000] Unable to handle kernel NULL pointer dereference at virtual address 0000001c
<1>[  191.160000] pgd = c6d48000
<1>[  191.160000] [0000001c] *pgd=36d41031, *pte=00000000, *ppte=00000000
<0>[  191.160000] Internal error: Oops: 17 [#1]
<0>[  191.160000] last sysfs file: /sys/devices/virtual/vc/vcsa63/uevent
<4>[  191.160000] Modules linked in: ipv6 fuse neo1973_pm_resume_reason tun g_ether joydev s3c2410_udc
<4>[  191.160000] CPU: 0    Not tainted  (2.6.34-be0c856465b0823b-v31 #1)
<4>[  191.160000] PC is at soc_suspend+0xb0/0x2c8
<4>[  191.160000] LR is at __wake_up+0x2c/0x38
<4>[  191.160000] pc : [<c02adb20>]    lr : [<c003de6c>]    psr: 20000013
<4>[  191.160000] sp : c7b1bd70  ip : c798dbd4  fp : c7b1bda4
<4>[  191.160000] r10: c045df10  r9 : c79006e0  r8 : 00000000
<4>[  191.160000] r7 : c798dc08  r6 : c045e148  r5 : 00000002  r4 : 00000048
<4>[  191.160000] r3 : c045e240  r2 : 00000000  r1 : 00000002  r0 : c045d4f0
<4>[  191.160000] Flags: nzCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
<4>[  191.160000] Control: c000717f  Table: 36d48000  DAC: 00000015
<0>[  191.160000] Process bash (pid: 1735, stack limit = 0xc7b1a270)
<0>[  191.160000] Stack: (0xc7b1bd70 to 0xc7b1c000)
<0>[  191.160000] bd60:                                     c0353b00 c045d5a0 c02568a0 00000002
<0>[  191.160000] bd80: c79006e8 c0371938 00000000 00000000 00000002 c7b1be38 c7b1bdb4 c7b1bda8
<0>[  191.160000] bda0: c01f3184 c02ada80 c7b1bdec c7b1bdb8 c01f6880 c01f315c c79006e8 00000000
<0>[  191.160000] bdc0: 00000000 00000000 c7b1bdec c79006e8 00000000 00000002 c790071c c04aef98
<0>[  191.160000] bde0: c7b1be0c c7b1bdf0 c01f6ba0 c01f6814 c79006e8 00000000 00000000 c0457a0c
<0>[  191.160000] be00: c7b1be24 c7b1be10 c01f6c60 c01f6af4 c79006e8 c7900740 c7b1be6c c7b1be28
<0>[  191.160000] be20: c01f6e94 c01f6c28 09b6f812 000000bf 09b6f812 000000bf c796e4b8 c6d64d98
<0>[  191.160000] be40: c0457810 00000002 c04a6ab4 00000003 003fffff 00000004 c7b1a000 c035e4e0
<0>[  191.160000] be60: c7b1be84 c7b1be70 c01f6fb4 c01f6e1c c04a6ab4 00000000 c7b1bea4 c7b1be88
<0>[  191.160000] be80: c006c290 c01f6f9c 00000000 00000003 00000003 c6c6a000 c7b1bebc c7b1bea8
<0>[  191.160000] bea0: c006c378 c006c22c c03e935c 00000003 c7b1bee4 c7b1bec0 c006b950 c006c300
<0>[  191.160000] bec0: c780fb90 c7828ca0 c7b85c20 c036cca8 00000004 c7b1bf78 c7b1bef4 c7b1bee8
<0>[  191.160000] bee0: c01a5a40 c006b8d4 c7b1bf1c c7b1bef8 c00e9e10 c01a5a2c 00000004 00000004
<0>[  191.160000] bf00: 00000004 c7b85c20 c6c695c0 c7b85c38 c7b1bf44 c7b1bf20 c00ea1f0 c00e9dcc
<0>[  191.160000] bf20: c6c695c0 000d9008 c7b1bf78 00000004 00000004 bed4a598 c7b1bf74 c7b1bf48
<0>[  191.160000] bf40: c009f73c c00ea1ac c009cf20 c00a06e0 c6c695c0 00000000 00000000 c6c695c0
<0>[  191.160000] bf60: 00000004 c002afc4 c7b1bfa4 c7b1bf78 c009fcbc c009f68c 00000000 00000000
<0>[  191.160000] bf80: c009e1e8 00000000 c7b1bfa4 00000004 401c05c8 00000004 00000000 c7b1bfa8
<0>[  191.160000] bfa0: c002ae40 c009fc80 00000004 401c05c8 00000001 000d9008 00000004 00000000
<0>[  191.160000] bfc0: 00000004 401c05c8 00000004 00000004 000d9008 000d0bfc bed4a598 000dd4c8
<0>[  191.160000] bfe0: 00000000 bed4a518 400f9750 4014cb0c 60000010 00000001 305b9031 305b9431
<4>[  191.160000] Backtrace:
<4>[  191.160000] [<c02ada70>] (soc_suspend+0x0/0x2c8) from [<c01f3184>] (platform_pm_suspend+0x38/0x50)
<4>[  191.160000] [<c01f314c>] (platform_pm_suspend+0x0/0x50) from [<c01f6880>] (pm_op+0x7c/0xd0)
<4>[  191.160000] [<c01f6804>] (pm_op+0x0/0xd0) from [<c01f6ba0>] (__device_suspend+0xbc/0x134)
<4>[  191.160000]  r8:c04aef98 r7:c790071c r6:00000002 r5:00000000 r4:c79006e8
<4>[  191.160000] [<c01f6ae4>] (__device_suspend+0x0/0x134) from [<c01f6c60>] (device_suspend+0x48/0x70)
<4>[  191.160000]  r7:c0457a0c r6:00000000 r5:00000000 r4:c79006e8
<4>[  191.160000] [<c01f6c18>] (device_suspend+0x0/0x70) from [<c01f6e94>] (dpm_suspend+0x88/0x180)
<4>[  191.160000]  r5:c7900740 r4:c79006e8
<4>[  191.160000] [<c01f6e0c>] (dpm_suspend+0x0/0x180) from [<c01f6fb4>] (dpm_suspend_start+0x28/0x2c)
<4>[  191.160000] [<c01f6f8c>] (dpm_suspend_start+0x0/0x2c) from [<c006c290>] (suspend_devices_and_enter+0x74/0xd4)
<4>[  191.160000]  r4:00000000
<4>[  191.160000] [<c006c21c>] (suspend_devices_and_enter+0x0/0xd4) from [<c006c378>] (enter_state+0x88/0xa0)
<4>[  191.160000]  r7:c6c6a000 r6:00000003 r5:00000003 r4:00000000
<4>[  191.160000] [<c006c2f0>] (enter_state+0x0/0xa0) from [<c006b950>] (state_store+0x8c/0xc0)
<4>[  191.160000]  r5:00000003 r4:c03e935c
<4>[  191.160000] [<c006b8c4>] (state_store+0x0/0xc0) from [<c01a5a40>] (kobj_attr_store+0x24/0x28)
<4>[  191.160000] [<c01a5a1c>] (kobj_attr_store+0x0/0x28) from [<c00e9e10>] (flush_write_buffer+0x54/0x68)
<4>[  191.160000] [<c00e9dbc>] (flush_write_buffer+0x0/0x68) from [<c00ea1f0>] (sysfs_write_file+0x54/0x84)
<4>[  191.160000]  r8:c7b85c38 r7:c6c695c0 r6:c7b85c20 r5:00000004 r4:00000004
<4>[  191.160000] [<c00ea19c>] (sysfs_write_file+0x0/0x84) from [<c009f73c>] (vfs_write+0xc0/0x174)
<4>[  191.160000] [<c009f67c>] (vfs_write+0x0/0x174) from [<c009fcbc>] (sys_write+0x4c/0x84)
<4>[  191.160000]  r8:c002afc4 r7:00000004 r6:c6c695c0 r5:00000000 r4:00000000
<4>[  191.160000] [<c009fc70>] (sys_write+0x0/0x84) from [<c002ae40>] (ret_fast_syscall+0x0/0x2c)
<4>[  191.160000]  r6:00000004 r5:401c05c8 r4:00000004
<0>[  191.160000] Code: e0833004 e5930008 e2844024 e5902024 (e592201c) 
<4>[  191.170000] ---[ end trace 66ca7e2e5495a0ae ]---

I'm using be0c856465b0823b which is just a few extra patches on top of qtmoko-v31 branch:

$ git log qtmoko-v31..be0c856465b0823b
commit be0c856465b0823b5412311efb1e9bb6d36ee0ac
Author: Timo Juhani Lindfors <timo.lindfors@iki.fi>
Date:   Mon Dec 20 18:55:42 2010 +0200

    Port ramconsole patch to 2.6.34

commit 6cada7541d7ac5cdeb41e5e38618af602c4aec28
Author: Timo Juhani Lindfors <timo.lindfors@iki.fi>
Date:   Mon Oct 18 09:46:50 2010 +0000


commit b5c12f9e63d294bb55fbdaa902ec47555e9bcb9c
Author: Timo Juhani Lindfors <timo.lindfors@iki.fi>
Date:   Mon Dec 20 21:50:34 2010 +0200

    add symlink to the config in use
$ git show qtmoko-v31 
commit 049b71de61d1ac81ff41ea07180ea1d8f3a62d69
Merge: 6bd7e47 f423469
Author: Radek Polak <psonek2@seznam.cz>
Date:   Sun Dec 12 21:59:23 2010 +0100

    Merge commit 'v2.6.34.7' into qtmoko-v31

objdump -axdt vmlinux shows

c02ada70 <soc_suspend>:                                                                                                                                                                                             
c02ada70:       e1a0c00d        mov     ip, sp                                                                                                                                                                      
c02ada74:       e92ddff0        push    {r4, r5, r6, r7, r8, r9, sl, fp, ip, lr, pc}                                                                                                                                
c02ada78:       e24cb004        sub     fp, ip, #4      ; 0x4                                                                                                                                                       
c02ada7c:       e24dd00c        sub     sp, sp, #12     ; 0xc                                                                                                                                                       
c02ada80:       e2409008        sub     r9, r0, #8      ; 0x8                                                                                                                                                       
c02ada84:       ebfd1002        bl      c01f1a94 <dev_get_drvdata>                                                                                                                                                  
c02ada88:       e5906004        ldr     r6, [r0, #4]                                                                                                                                                                
c02ada8c:       e5900008        ldr     r0, [r0, #8]                                                                                                                                                                
c02ada90:       e50b0030        str     r0, [fp, #-48]                                                                                                                                                              
c02ada94:       e5967040        ldr     r7, [r6, #64]                                                                                                                                                               
c02ada98:       e596a044        ldr     sl, [r6, #68]                                                                                                                                                               
c02ada9c:       e3570000        cmp     r7, #0  ; 0x0                                                                                                                                                               
c02adaa0:       0a000061        beq     c02adc2c <soc_suspend+0x1bc>                                                                                                                                                
c02adaa4:       e5970028        ldr     r0, [r7, #40]                                                                                                                                                               
c02adaa8:       e2800f75        add     r0, r0, #468    ; 0x1d4                                                                                                                                                     
c02adaac:       eb02b0ae        bl      c0359d6c <mutex_lock>                                                                                                                                                       
c02adab0:       e3a01000        mov     r1, #0  ; 0x0                                                                                                                                                               
c02adab4:       e5970028        ldr     r0, [r7, #40]                                                                                                                                                               
c02adab8:       ebff5383        bl      c02828cc <snd_power_wait>                                                                                                                                                   
c02adabc:       e5970028        ldr     r0, [r7, #40]                                                                                                                                                               
c02adac0:       e2800f75        add     r0, r0, #468    ; 0x1d4                                                                                                                                                     
c02adac4:       eb02b09f        bl      c0359d48 <mutex_unlock>                                                                                                                                                     
c02adac8:       e5970028        ldr     r0, [r7, #40]                                                                                                                                                               
c02adacc:       e3a03c03        mov     r3, #768        ; 0x300                                                                                                                                                     
c02adad0:       e58031d0        str     r3, [r0, #464]                                                                                                                                                              
c02adad4:       e3a01003        mov     r1, #3  ; 0x3                                                                                                                                                               
c02adad8:       e2800e1e        add     r0, r0, #480    ; 0x1e0                                                                                                                                                     
c02adadc:       e3a02001        mov     r2, #1  ; 0x1                                                                                                                                                               
c02adae0:       e2433c03        sub     r3, r3, #768    ; 0x300                                                                                                                                                     
c02adae4:       ebf640d5        bl      c003de40 <__wake_up>                                                                                                                                                        
c02adae8:       e5961038        ldr     r1, [r6, #56]                                                                                                                                                               
c02adaec:       e3510000        cmp     r1, #0  ; 0x0                                                                                                                                                               
c02adaf0:       da000023        ble     c02adb84 <soc_suspend+0x114>                                                                                                                                                
c02adaf4:       e3a05000        mov     r5, #0  ; 0x0                                                                                                                                                               
c02adaf8:       e1a04005        mov     r4, r5                                                                                                                                                                      
c02adafc:       ea000001        b       c02adb08 <soc_suspend+0x98>                                                                                                                                                 
c02adb00:       e1510005        cmp     r1, r5                                                                                                                                                                      
c02adb04:       da000011        ble     c02adb50 <soc_suspend+0xe0>                                                                                                                                                 
c02adb08:       e5963034        ldr     r3, [r6, #52]                                                                                                                                                               
c02adb0c:       e2855001        add     r5, r5, #1      ; 0x1                                                                                                                                                       
c02adb10:       e0833004        add     r3, r3, r4                                                                                                                                                                  
c02adb14:       e5930008        ldr     r0, [r3, #8]                                                                                                                                                                
c02adb18:       e2844024        add     r4, r4, #36     ; 0x24                                                                                                                                                      
c02adb1c:       e5902024        ldr     r2, [r0, #36]                                                                                                                                                               
c02adb20:       e592201c        ldr     r2, [r2, #28]  <= this load causes the failure since r2 is zero                                                                                                                                                               
c02adb24:       e3520000        cmp     r2, #0  ; 0x0                                                                                                                                                               
c02adb28:       0afffff4        beq     c02adb00 <soc_suspend+0x90>                                                                                                                                                 
c02adb2c:       e5d0307c        ldrb    r3, [r0, #124]                                                                                                                                                              
c02adb30:       e3130001        tst     r3, #1  ; 0x1                                                                                                                                                               
c02adb34:       0afffff1        beq     c02adb00 <soc_suspend+0x90>                                                                                                                                                 
c02adb38:       e3a01001        mov     r1, #1  ; 0x1                                                                                                                                                               
c02adb3c:       e1a0e00f        mov     lr, pc                                                                                                                                                                      
c02adb40:       e12fff12        bx      r2                                                                                                                                                                          
c02adb44:       e5961038        ldr     r1, [r6, #56]                                                                                                                                                               
c02adb48:       e1510005        cmp     r1, r5                                                                                                                                                                      
c02adb4c:       caffffed        bgt     c02adb08 <soc_suspend+0x98>                                                                                                                                                 
c02adb50:       e3510000        cmp     r1, #0  ; 0x0                                                                                                                                                               
c02adb54:       da00000a        ble     c02adb84 <soc_suspend+0x114>


testcase1.state (17.4 KB) - added by lindi 8 years ago.
alsa state that causes the crash
working.state (17.4 KB) - added by lindi 8 years ago.
alsa state that avoids the crash

Change History

Changed 8 years ago by lindi

alsa state that causes the crash

Changed 8 years ago by lindi

alsa state that avoids the crash

comment:1 Changed 2 years ago by Chassmetly

Are you this business Wow.Best in customer service We are a licensed lender and our rates are transparent. <a href=http://easymoneyfast-365.com>quick cash</a> Find out more.We are reliable hard money lenders with the capability to offer loans from to.Zithromax For Sinusitis <a href=http://viag1.xyz/sildenafil-100mg.php>Sildenafil 100mg</a> Generic 5 Mg Cialis Cipro For Sale Online <a href=http://cial1.xyz/buy-cialis-online-cheap.php>Buy Cialis Online Cheap</a> Cephalexin Dosage In Human Adults Du Cytotec Pour Expulser <a href=http://kama1.xyz/generic-kamagra-online.php>Generic Kamagra Online</a> Vrikshamla Zithromax Pregnant <a href=http://cial1.xyz/cialis-online-buy.php>Cialis Online Buy</a> Cialis Precio Mercadolibre Amoxicillin Canine <a href=http://cial5mg.xyz/brand-cialis-online.php>Brand Cialis Online</a> Levitra Filmtabletten Schmelztabletten Keflex Mg Lb <a href=http://cial5mg.xyz/cialis-online-no.php>Cialis Online No</a> Zithromax Gastrointestinal Side Effects Cialis Viagra Salud <a href=http://cial1.xyz/cialis-20mg-price.php>Cialis 20mg Price</a> Amoxicillin No Rx Indian Pharmacy Clomid <a href=http://cial1.xyz/need-to-order-cialis.php>Need To Order Cialis</a> Prank Call Fake Viagra Prescription Levitra Walmart <a href=http://zol1.xyz/zoloft.php>Zoloft</a> Cialis Sin Receta Farmacia Italia Viagra Generico <a href=http://cial1.xyz/cialis-buy.php>Cialis Buy</a> Commande Viagra Fiable Commander Viagra Pas Cher <a href=http://prozac.ccrpdc.com/cheapest-prozac-online.php>Cheapest Prozac Online</a> Acheter Priligy En Ligne Cialis Wirkung Nebenwirkung <a href=http://inderal.ccrpdc.com/inderal-free-offer.php>Inderal Free Offer</a> Generique Cialis Livestock Erithromicin Tablets <a href=http://kama1.xyz/purchase-kamagra.php>Purchase Kamagra</a> Rash Reaction To Keflex Best Site To Buy Viagra Online <a href=http://zol1.xyz/shop-zoloft-online.php>Shop Zoloft Online</a> Priligy Es Eficaz Generic Viagra Available In Usa <a href=http://nolvadex.ccrpdc.com/nolvadex-for-sale-cheap.php>Nolvadex For Sale Cheap</a> 5 Cc Dose Of Amoxicillin Comprar Viagra Paypal <a href=http://cial1.xyz/buy-cheap-generic-cialis.php>Buy Cheap Generic Cialis</a> Vendo Cialis Bologna Were To Buy Levothyroxine <a href=http://zol1.xyz/mail-order-zoloft.php>Mail Order Zoloft</a> Viagra Fast Delivery Achat Viagra Internet <a href=http://zol1.xyz/zoloft-buy-online.php>Zoloft Buy Online</a> Nebenwirkungen Viagra Woman Kamagra 100mg Francia <a href=http://kama1.xyz/prices-kamagra.php>Prices Kamagra</a> Will Cephalexin Heal Tooth Infection Buy Propecia No Prescription Uk <a href=http://zol1.xyz/cheap-zoloft-50mg.php>Cheap Zoloft 50mg</a> Get Cialis Without Prescription Canadian Rx Cialis Viagra Trial <a href=http://zol1.xyz/buy-generic-zoloft.php>Buy Generic Zoloft</a> Purchasing Acticin Best Website Pills Overseas Next Day En <a href=http://viag1.xyz/order-viagra-online.php>Order Viagra Online</a> Cialis 5 Mg Precio Farmacia Zithromax Z Pak Generic Name <a href=http://cial5mg.xyz/order-cialis-online-usa.php>Order Cialis Online Usa</a> Celebrex 22mg Cheap Cialis Super Active <a href=http://antabuse.ccrpdc.com/generic-antabuse-cheap.php>Generic Antabuse Cheap</a> Augmentin Amoxicillin Cephalexin Nephrotoxicity <a href=http://zol1.xyz/zoloft-online-buy.php>Zoloft Online Buy</a> Acquistare Kamagra In Francia Order Kamagra Oral Jelly Australia <a href=http://antabuse.ccrpdc.com/antabuse-online.php>Antabuse Online</a> Propecia Mental Side Effects Noticed Achat Ligne Xenical <a href=http://zol1.xyz/zoloft-on-line.php>Zoloft On Line</a> Propecia Comentarios On Line Doxycycline <a href=http://cial1.xyz/cheap-cialis-generic.php>Cheap Cialis Generic</a> Ivermectin No Prescription Levitra 10mg Preise <a href=http://viag1.xyz/cheap-viagra-tablets.php>Cheap Viagra Tablets</a> Toncils Infection Amoxicillin Galvus <a href=http://viag1.xyz/order-viagra-pills.php>Order Viagra Pills</a> Cheap Viagra Online Prescription Purchase Cialis For Daily Use Online <a href=http://viag1.xyz/cheap-viagra-on-line.php>Cheap Viagra On Line</a> How To Get A Free Trial Of Levitra Kamagra Soft Tablets <a href=http://viag1.xyz/real-viagra-online.php>Real Viagra Online</a> buy accutane ireland Pharmacy Cheapest Reviews <a href=http://zol1.xyz/cost-of-zoloft.php>Cost Of Zoloft</a> Levitra 20mg Prix En Ligne Propecia Canada Pharmacy Online <a href=http://viag1.xyz/generic-viagra-cheap.php>Generic Viagra Cheap</a> Dutasteride Baldness Ups Price On Line Highland Interigo Keflex <a href=http://viagra.ccrpdc.com/buy-cheap-viagra-200mg.php>Buy Cheap Viagra 200mg</a> Vegra Pills Alli Xenical <a href=http://cial5mg.xyz/cialis-to-buy.php>Cialis To Buy</a> Cialis Super Active 20 Mg Levitra Precio En Farmacia En Espana <a href=http://cial5mg.xyz/tadalafil.php>?Tadalafil</a> Levitra Testberichte Acheter Viagra Cialis Ligne <a href=http://cial1.xyz/cialis-online.php>Cialis Online</a> Viagra Plus 400 Mg Sildenafil Vente 120 Mg <a href=http://cial5mg.xyz/generic-cialis-pricing.php>Generic Cialis Pricing</a> 10 Years Using Propecia Cytotec Sale <a href=http://cial5mg.xyz/cialis-tadalafil.php>Cialis Tadalafil</a> Levitra Wofur Generic Viagra Fast Shipping <a href=http://viag1.xyz/viagra-online-fast.php>Viagra Online Fast</a> Dove Comprare Cialis Sicuro 40mg Tadalafil <a href=http://cial5mg.xyz/buy-cheap-cialis-site.php>Buy Cheap Cialis Site</a> Priligy Cruz Verde Generic Propecia 1 Mg <a href=http://zol1.xyz/online-zoloft.php>Online Zoloft</a> All Pill Shop Prix Levitra 10 Mg Posologie <a href=http://zol1.xyz/zoloft-cheap.php>Zoloft Cheap</a> Bentyl In Canada Medicine Free Shipping No Script Needed Propiedades Propecia <a href=http://kama1.xyz/buy-kamagra-jelly-online.php>Buy Kamagra Jelly Online</a> Buying Doxycycline Online Uk Safe

Note: See TracTickets for help on using tickets.