276358 – kernel Oops in rt2500pci module of (at least) gentoo-sources-2.6.29-r5

Bug 276358 - kernel Oops in rt2500pci module of (at least) gentoo-sources-2.6.29-r5

Summary: kernel Oops in rt2500pci module of (at least) gentoo-sources-2.6.29-r5

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	x86 Linux

Importance:	High critical (vote)
Assignee:	Gentoo Linux bug wranglers

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2009-07-03 10:27 UTC by Denis Loginov
Modified:	2009-07-04 08:19 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Denis Loginov 2009-07-03 10:27:22 UTC

When I use rt2500pci module in ad-hoc mode, it occasionally crashes with the following message:

BUG: unable to handle kernel NULL pointer dereference at 000000a0
IP: [<c04c3eee>] skb_push+0x9/0x62
*pde = 00000000
Oops: 0002 [#1]
last sysfs file: /sys/devices/LNXSYSTM:00/device:00/PNP0C0A:00/power_supply/CMB0/charge_full
Modules linked in: radeon drm snd_seq_oss snd_seq_midi_event snd_seq snd_seq_device snd_pcm_oss snd_mixer_oss snd_hda_codec_idt snd_hda_codec_si3054 snd_hda_intel snd_hda_codec snd_hwdep snd_pcm snd_timer rt2500pci snd rt2x00pci rt2x00lib soundcore snd_page_alloc tifm_7xx1 i2c_piix4 tifm_core evdev

Pid: 4, comm: events/0 Not tainted (2.6.29-gentoo-r5 #12) LE50-5556
EIP: 0060:[<c04c3eee>] EFLAGS: 00010286 CPU: 0
EIP is at skb_push+0x9/0x62
EAX: 00000000 EBX: f51164a4 ECX: 00000000 EDX: 00000000
ESI: 00000000 EDI: f6a18d80 EBP: f703be88 ESP: f703be80
 DS: 007b ES: 007b FS: 0000 GS: 0000 SS: 0068
Process events/0 (pid: 4, ti=f703a000 task=f702cdb0 task.ti=f703a000)
Stack:
 f51164a4 00000000 f703bea0 f807534f 00000024 f51164a4 f703bef8 f3bf102c
 f703bebc f89bccb9 f6a18d80 f2035274 f703becc f680a5cc f51164bc f703bf3c
 f807528c 00000006 f6a18d80 00413403 00000000 0000a598 02280400 00000000
Call Trace:
 [<f807534f>] ? rt2x00queue_map_txskb+0x20/0x5e [rt2x00lib]
 [<f89bccb9>] ? rt2500pci_write_beacon+0x6b/0x7d [rt2500pci]
 [<f807528c>] ? rt2x00queue_update_beacon+0xa0/0xbe [rt2x00lib]
 [<f80730a6>] ? rt2x00lib_intf_scheduled_iter+0x46/0x7c [rt2x00lib]
 [<c055b356>] ? ieee80211_iterate_active_interfaces+0x5d/0x74
 [<f8073060>] ? rt2x00lib_intf_scheduled_iter+0x0/0x7c [rt2x00lib]
 [<f8073048>] ? rt2x00lib_intf_scheduled+0x0/0x18 [rt2x00lib]
 [<f807305e>] ? rt2x00lib_intf_scheduled+0x16/0x18 [rt2x00lib]
 [<c02257bd>] ? run_workqueue+0x65/0xcf
 [<c0225b83>] ? worker_thread+0xb0/0xbc
 [<c0228389>] ? autoremove_wake_function+0x0/0x33
 [<c0225ad3>] ? worker_thread+0x0/0xbc
 [<c022803a>] ? kthread+0x39/0x5e
 [<c0228001>] ? kthread+0x0/0x5e
 [<c02034df>] ? kernel_thread_helper+0x7/0x10
Code: 85 d4 fe ff ff 8d 55 dc e8 f3 f9 db ff 31 d2 89 c7 89 d8 e8 25 d3 ff ff 8d 65 f4 89 f8 5b 5e 5f 5d c3 55 89 c1 89 e5 56 89 d6 53 <29> 90 a0 00 00 00 8b 98 a0 00 00 00 01 50 4c 3b 98 9c 00 00 00
 EIP: [<c04c3eee>] skb_push+0x9/0x62 SS:ESP 0068:f703be80
 ---[ end trace 27b8fc62d2e06c1d ]---

After that I can't use my keyboard any more (in X as well as in tty) - it just won't react (apart from it and wi-fi, everything else seems to work).

If this is not a gentoo-related bug could you please provide me with a mailing list it should belong to?

Reproducible: Sometimes

Steps to Reproduce:
1. /etc/init.d/net.wlan0 start, with the following snippet from /etc/conf.d/net:

modules_wlan0="iwconfig ifconfig !wpa_supplicant"
mode_wlan0="ad-hoc"
essid_wlan0="Home"
config_wlan0="192.168.2.2/30"
routes_wlan0="default via 192.168.2.1"
dns_servers_wlan0="192.168.1.1"
postup(){
        iwconfig wlan0 txpower 25
        iwconfig wlan0 channel 11
        iwconfig wlan0 rate 5.5M
}

2. Use the wireless network for a while

Comment 1 Denis Loginov 2009-07-04 08:19:22 UTC

Seems to have been fixed in 2-6-31-rc1.