102508 – sysctl -a gives "Segmentation fault" with madwifi-driver-0.1_pre20050809

Bug 102508 - sysctl -a gives "Segmentation fault" with madwifi-driver-0.1_pre20050809

Summary: sysctl -a gives "Segmentation fault" with madwifi-driver-0.1_pre20050809

Status:	RESOLVED UPSTREAM

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	x86 Linux

Importance:	High normal (vote)
Assignee:	Mobile Herd (OBSOLETE)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-08-14 09:12 UTC by Peng Zhang
Modified:	2006-08-14 21:55 UTC (History)
CC List:	3 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Peng Zhang 2005-08-14 09:12:15 UTC

After booting, I got segmentation fault when issuing command "sysctl -a". The
last several lines of output is:

dev.cdrom.info =
dev.cdrom.info =
dev.rtc.max-user-freq = 64
dev.scsi.logging_level = 0
Segmentation fault

This problem is gone when I do rmmod ath_pci and even after modprobe ath_pci.
The ath_pci module is loaded by hotplug I think.

Reproducible: Always
Steps to Reproduce:
1. after boot, sysctl -a gives segmentation fault.
2. rmmod ath_pci, the problem is gone.
3. modprobe ath_pci, we don't have problem either.




emerge info
Portage 2.0.51.22-r2 (default-linux/x86/2005.0, gcc-3.3.5-20050130,
glibc-2.3.5-r0, 2.6.12-gentoo-r6 i686)
=================================================================
System uname: 2.6.12-gentoo-r6 i686 Intel(R) Pentium(R) M processor 1600MHz
Gentoo Base System version 1.6.13
distcc 2.18.3 i686-pc-linux-gnu (protocols 1 and 2) (default port 3632) [enabled]
ccache version 2.3 [enabled]
dev-lang/python:     2.3.5
sys-apps/sandbox:    1.2.11
sys-devel/autoconf:  2.13, 2.59-r6
sys-devel/automake:  1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.5
sys-devel/binutils:  2.15.92.0.2-r10
sys-devel/libtool:   1.5.18-r1
virtual/os-headers:  2.6.11-r2
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O3 -march=pentium3 -pipe -mfpmath=sse -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3.4/env
/usr/kde/3.4/share/config /usr/kde/3.4/shutdown /usr/kde/3/share/config
/usr/lib/X11/xkb /usr/lib/mozilla/defaults/pref /usr/share/config
/usr/share/texmf/dvipdfm/config/ /usr/share/texmf/dvips/config/
/usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/
/usr/share/texmf/xdvi/ /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/splash /etc/terminfo /etc/env.d"
CXXFLAGS="-O2 -mcpu=i686 -pipe"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoconfig ccache distcc distlocks fixpackages sandbox sfperms strict"
GENTOO_MIRRORS="http://csociety-ftp.ecn.purdue.edu/pub/gentoo/
http://gentoo.chem.wisc.edu/gentoo/ http://distfiles.gentoo.org
http://www.ibiblio.org/pub/Linux/distributions/gentoo"
LANG="en_US.utf8"
LINGUAS="en zh_CN zh_TW"
MAKEOPTS="-j4"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.namerica.gentoo.org/gentoo-portage"
USE="x86 X Xaw3d aac aalib acpi alsa apache2 apm arts atlas avi bash-completion
berkdb bitmap-fonts bluetooth bonobo bzlib cdr cjk crypt cups curl dga
divx4linux dvd eds emacs emboss encode esd fam fbcon fftw flac foomaticdb
fortran gcj gd gdbm gif ginac gnome gnutls gphoto2 gpm gstreamer gtk gtk2
gtkhtml guile hal howl ieee1394 imagemagick imap imlib ipv6 java javascript jpeg
junit kde kerberos ldap leim libg++ libwww lirc mad maildir mikmod mime mmx mng
motif mozilla mp3 mpeg mule mysql nas ncurses nls nptl ofx ogg oggvorbis opengl
oss pam pcmcia pcre pdflib perl php pic plotutils png posix ppds python qt
quicktime readline samba sasl sdl slang sndfile speex spell sse ssl svg svga
tcltk tcpd tetex tiff truetype truetype-fonts type1-fonts unicode usb vorbis
wifi win32codecs wmf xine xml xml2 xmms xosd xprint xv xvid zlib
video_cards_radeon linguas_en linguas_zh_CN linguas_zh_TW userland_GNU
kernel_linux elibc_glibc"
Unset:  ASFLAGS, CTARGET, LC_ALL, LDFLAGS

Comment 1 Peng Zhang 2005-08-14 09:17:52 UTC

The following is the output of "sysctl -a" after rmmod ath_pci and modprobe
ath_pci. (Only the part that is relevant.)

dev.cdrom.info =
dev.cdrom.info =
dev.rtc.max-user-freq = 64
dev.scsi.logging_level = 0
net.wlan.ath0.scan_table =
net.wlan.ath0.scan_table = macaddr: <00:05:4e:42:17:d9>
net.wlan.ath0.scan_table = BSS
net.wlan.ath0.scan_table =   rssi: 0 dBm ;refcnt: 2
net.wlan.ath0.scan_table =   capinfo:
net.wlan.ath0.scan_table =   freq: 2427 MHz (channel 4)
net.wlan.ath0.scan_table =   opmode: b
net.wlan.ath0.scan_table =   txrate: 0 ? (rs_nrates: 0)
net.wlan.ath0.scan_table =   txpower 34 vlan 0
net.wlan.ath0.scan_table =   txseq: 0  rxseq: 0 fragno 0 rxfragstamp 0
net.wlan.ath0.scan_table =   fails: 0  inact: 65266
net.wlan.ath0.debug = 0

Comment 2 SpanKY gentoo-dev

2005-08-14 19:47:01 UTC

post your sysctl.conf file and see if you can narrow down only the lines that
are required to make it crash

Comment 3 Peng Zhang 2005-08-14 21:16:08 UTC

cat /etc/sysctl.conf | sed -e /^#/d

net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.all.rp_filter = 1

kernel.sysrq = 1
kernel.panic = 3

vm.swappiness = 0

Comment 4 Peng Zhang 2005-08-15 17:07:48 UTC

And this is the output of dmesg when segmentation fault happened.


Unable to handle kernel paging request at virtual address 0000ffff
 printing eip:
f9b996ce
*pde = 00000000
Oops: 0000 [#1]
Modules linked in: radeon drm pcmcia ipt_LOG ipt_state ipt_limit iptable_filter
iptable_nat ip_conntrack iptable_mangle ip_tables snd_pcm_oss snd_mixer_oss
snd_seq_dummy snd_seq_oss snd_seq_midi_event snd_seq snd_seq_device hci_usb
ath_pci ath_rate_sample wlan ath_hal e1000 yenta_socket rsrc_nonstatic
pcmcia_core snd_intel8x0 snd_ac97_codec snd_pcm snd_timer snd snd_page_alloc
fuse ppp_generic slhc shfs cdemu intel_agp agpgart usblp ata_piix sata_via
sata_svw sata_promise libata sbp2 ohci1394 ieee1394 ohci_hcd uhci_hcd
usb_storage usbhid
ehci_hcd usbcore
CPU:    0
EIP:    0060:[<f9b996ce>]    Tainted: P      VLI
EFLAGS: 00010286   (2.6.12-gentoo-r6)
EIP is at proc_read_node+0x15e/0x610 [wlan]
eax: 0000ffff   ebx: f28eff44   ecx: f9b9eab0   edx: 00000000
esi: f28efb3a   edi: f7f65000   ebp: f9b9ea87   esp: f28efad8
ds: 007b   es: 007b   ss: 0068
Process sysctl (pid: 26584, threadinfo=f28ee000 task=d3ee2a40)
Stack: f28efb39 00000000 00000002 c01929b3 f28efccc 00000064 000002d4 63616d0a
       72646461 303c203a 35303a30 3a65343a 313a3234 39643a37 53420a3e 20200a53
       69737372 2030203a 206d4264 6665723b 3a746e63 200a3220 70616320 6f666e69
Call Trace:
 [<c01929b3>] balance_leaf+0x3083/0x30a0
 [<c01ab295>] pathrelse_and_restore+0x45/0x50
 [<c01a22cb>] unfix_nodes+0x9b/0x180
 [<c013b2c2>] buffered_rmqueue+0x142/0x1d0
 [<c013b6e3>] __alloc_pages+0x2e3/0x430
 [<c013b2c2>] buffered_rmqueue+0x142/0x1d0
 [<c0145a5e>] do_anonymous_page+0xfe/0x150
 [<c013b2c2>] buffered_rmqueue+0x142/0x1d0
 [<c013b6e3>] __alloc_pages+0x2e3/0x430
 [<c013b2c2>] buffered_rmqueue+0x142/0x1d0
 [<c0145a5e>] do_anonymous_page+0xfe/0x150
 [<c0116638>] recalc_task_prio+0x88/0x150
 [<c0116762>] activate_task+0x62/0x80
 [<c0182dbd>] proc_alloc_inode+0x4d/0x80
 [<c016c58b>] alloc_inode+0x1b/0x140
 [<c016d0dd>] get_new_inode_fast+0x3d/0x110
 [<c0182d47>] proc_read_inode+0x17/0x40
 [<c0182f31>] proc_get_inode+0xf1/0x130
 [<c016be6a>] d_rehash+0x4a/0x60
 [<c0185bba>] proc_lookup+0x7a/0xc0
 [<c01613d1>] real_lookup+0xc1/0xf0
 [<c01616c0>] do_lookup+0x50/0xb0
 [<c016206b>] __link_path_walk+0x94b/0xbf0
 [<c016236a>] link_path_walk+0x5a/0xe0
 [<c015dba7>] sys_stat64+0x37/0x40
 [<c0297792>] copy_to_user+0x42/0x60
 [<c015db58>] cp_new_stat64+0xf8/0x110
 [<f9b99cae>] ieee80211_sysctl_scan+0x7e/0x90 [wlan]
 [<c011fe19>] do_rw_proc+0xa9/0xc0
 [<c011fe7f>] proc_readsys+0x2f/0x40
 [<c0153d76>] vfs_read+0xb6/0x180
 [<c0154101>] sys_read+0x51/0x80
 [<c0102f3f>] sysenter_past_esp+0x54/0x75
Code: 03 00 00 f6 c4 20 0f 85 71 03 00 00 89 34 24 b9 af ea b9 f9 89 4c 24 04 e8
60 d1 6f c6 31 d2 01 c6 89 54 24 04 8b 87 28 01 00 00 <0f> b7 00 89 04 24 e8 77
d3 fe ff 89 44 24 0c 8b 87 28 01 00 00

Comment 5 Henrik Brix Andersen 2005-08-16 05:13:52 UTC

Adding solar and horton to CC: as this seems to be related to the madwifi driver.

Comment 6 Peng Zhang 2005-08-19 17:56:19 UTC

The problem is gone after downgrading to madwifi-driver-0.1_pre20050420

Comment 7 Henrik Brix Andersen 2005-08-22 06:37:36 UTC

Closing as UPSTREAM since madwifi-driver-0.1_pre20050809 seems to be utterly broken.

You might want to test with a recent cvs snapshot and report the problem
upstream, if it still exists.

Comment 8 Peng Zhang 2005-08-25 12:20:23 UTC

Which branch do you recommend me to try? the main branch or the bsd branch? I am
no t sure which one is corresponding to the madwifi-driver ebuild.