[Intel-gfx] NULL pointer dereference in intel_fb_obj_invalidate
Christian Hesse
list at eworm.de
Thu Feb 25 08:25:54 UTC 2016
Hello everybody,
I am running a Lenovo Thinkpad X250 with this graphics controller:
00:02.0 VGA compatible controller: Intel Corporation Broadwell-U Integrated
Graphics (rev 09)
Everything works just fine when using the integrated display.
The notebook is connected to a docking station with two connected display
ports. With light-locker I can lock and unlock the screen once, system panics
with a kernel NULL pointer dereference in intel_fb_obj_invalidate the second
time.
Screen 0: minimum 8 x 8, current 3840 x 1080, maximum 32767 x 32767
eDP1 connected (normal left inverted right x axis y axis)
1920x1080 60.04 +
1400x1050 59.98
1600x900 60.00
1280x1024 60.02
1280x960 60.00
1368x768 60.00
1280x720 60.00
1024x768 60.00
1024x576 60.00
960x540 60.00
800x600 60.32 56.25
864x486 60.00
640x480 59.94
720x405 60.00
640x360 60.00
DP1 disconnected (normal left inverted right x axis y axis)
DP2 disconnected (normal left inverted right x axis y axis)
DP2-1 connected primary 1920x1080+0+0 (normal left inverted right x axis y axis) 521mm x 293mm
1920x1080 60.00*+ 50.00 59.94
1680x1050 59.88
1600x900 60.00
1280x1024 75.02 60.02
1440x900 59.90
1280x800 59.91
1152x864 75.00
1280x720 60.00 50.00 59.94
1024x768 75.08 70.07 60.00
832x624 74.55
800x600 72.19 75.00 60.32 56.25
720x576 50.00
720x480 60.00 59.94
640x480 75.00 72.81 66.67 60.00 59.94
720x400 70.08
DP2-2 connected 1920x1080+1920+0 (normal left inverted right x axis y axis) 521mm x 293mm
1920x1080 60.00*+ 50.00 59.94
1680x1050 59.88
1600x900 60.00
1280x1024 75.02 60.02
1440x900 59.90
1280x800 59.91
1152x864 75.00
1280x720 60.00 50.00 59.94
1024x768 75.08 70.07 60.00
832x624 74.55
800x600 72.19 75.00 60.32 56.25
720x576 50.00
720x480 60.00 59.94
640x480 75.00 72.81 66.67 60.00 59.94
720x400 70.08
DP2-3 disconnected (normal left inverted right x axis y axis)
HDMI1 disconnected (normal left inverted right x axis y axis)
HDMI2 disconnected (normal left inverted right x axis y axis)
VIRTUAL1 disconnected (normal left inverted right x axis y axis)
kernel: BUG: unable to handle kernel NULL pointer dereference at 0000000000000060
kernel: IP: [<ffffffffa06978dc>] intel_fb_obj_invalidate+0x1c/0xf0 [i915]
kernel: PGD c2f70067 PUD c2e8b067 PMD 0
kernel: Oops: 0000 [#1] PREEMPT SMP
kernel: Modules linked in: fuse pci_stub vboxpci(O) bridge acpi_call(O) stp llc nf_log_ipv6 nf_log_ipv4 nf_log_common nft_redir_ipv4 nft_redir nf_nat_redirect nft_log nft_reject_inet nf_reject_ipv4 nf_reject_ ipv6 nft_reject nft_limit nft_meta nf_conntrack_ipv6 nf_defrag_ipv6 nft_ct nft_hash nft_rbtree nft_masq_ipv4 nf_nat_masquerade_ipv4 nft_masq nft_chain_nat_ipv4 nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack nf_tables_inet nf_tables_ipv6 nf_tables_ipv4 nf_tables nfnetlink sch_fq_codel zram lz4_compress vboxnetflt(O) vboxnetadp(O) snd_hda_codec_hdmi vboxdrv(O) iTCO_wdt iTCO_vendor_support nls_iso8859_1 usbserial udf crc_itu_t uas usb_storage tun nfs lockd grace sunrpc fscache loop iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi hfsplus hfs xfs libcrc32c intel_rapl crc32c_generic
kernel: iosf_mbi nls_cp437 vfat x86_pkg_temp_thermal fat intel_powerclamp coretemp squashfs isofs kvm_intel btrfs kvm cdc_ether usbnet irqbypass r8152 btusb btrtl btbcm xor btintel snd_hda_codec_realtek mii mousedev joydev arc4 bluetooth snd_hda_codec_generic iwlmvm mac80211 pcspkr evdev input_leds mac_hid psmouse serio_raw iwlwifi intel_pch_thermal i2c_i801 rtsx_pci_ms cfg80211 memstick thermal lpc_ich wmi i915 mei_me drm_kms_helper mei snd_hda_intel thinkpad_acpi battery snd_hda_codec nvram led_class ac rfkill snd_hda_core e1000e drm snd_hwdep ptp pps_core intel_gtt snd_pcm syscopyarea sysfillrect sysimgblt fb_sys_fops i2c_algo_bit fjes video snd_timer snd button shpchp soundcore tpm_tis tpm raid6_pq dummy dm_snapshot dm_bufio processor cdrom ip_tables x_tables ext4 crc16 mbcache jbd2 sha256_ssse3
kernel: sha256_generic hmac drbg ansi_cprng dm_crypt algif_skcipher af_alg hid_generic usbhid hid dm_mod sd_mod rtsx_pci_sdmmc mmc_core atkbd libps2 crct10dif_pclmul crc32_pclmul crc32c_intel aesni_intel aes _x86_64 lrw gf128mul glue_helper ablk_helper cryptd ahci libahci libata scsi_mod ehci_pci xhci_pci ehci_hcd xhci_hcd rtsx_pci usbcore usb_common i8042 serio
kernel: CPU: 1 PID: 1417 Comm: Xorg Tainted: G U W O 4.4.2-1-ARCH #1
kernel: Hardware name: LENOVO 20CLS06D00/20CLS06D00, BIOS N10ET41W (1.20 ) 01/19/2016
kernel: task: ffff88022312b700 ti: ffff8800c2d70000 task.ti: ffff8800c2d70000
kernel: RIP: 0010:[<ffffffffa06978dc>] [<ffffffffa06978dc>] intel_fb_obj_invalidate+0x1c/0xf0 [i915]
kernel: RSP: 0018:ffff8800c2d73a58 EFLAGS: 00010246
kernel: RAX: ffff88022312b700 RBX: ffff8801e9ae4400 RCX: 00000000315bb001
kernel: RDX: ffff8800c7c3b300 RSI: 0000000000000000 RDI: ffff8801e9ae4400
kernel: RBP: ffff8800c2d73a80 R08: 0000000000018ac0 R09: ffffffffa0489cf6
kernel: R10: ffffea000062e100 R11: ffff88018107cd80 R12: 0000000000000000
kernel: R13: 0000000000000000 R14: 0000000000200001 R15: 0000000000000080
kernel: FS: 00007f5216994940(0000) GS:ffff88022dc40000(0000) knlGS:0000000000000000
kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
kernel: CR2: 0000000000000060 CR3: 00000000c2f69000 CR4: 00000000003406e0
kernel: DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
kernel: DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
kernel: Stack:
kernel: ffff880222b51100 ffff88022165d800 0000000000000000 0000000000200001
kernel: 0000000000000080 ffff8800c2d73aa0 ffffffffa06a1403 000000008133c5bf
kernel: ffff8800c2d73c48 ffff8800c2d73c18 ffffffff8133c506 ffff88022165d860
kernel: Call Trace:
kernel: [<ffffffffa06a1403>] intel_fbdev_set_par+0x43/0x60 [i915]
kernel: [<ffffffff8133c506>] fb_set_var+0x236/0x460
kernel: [<ffffffff811f2a16>] ? do_sys_poll+0x146/0x570
kernel: [<ffffffff810a9ead>] ? update_curr+0x7d/0x160
kernel: [<ffffffff813331af>] fbcon_blank+0x30f/0x350
kernel: [<ffffffff8109e699>] ? ttwu_do_wakeup+0x19/0xe0
kernel: [<ffffffff813af913>] do_unblank_screen+0xc3/0x190
kernel: [<ffffffff813a58a9>] complete_change_console+0x59/0xe0
kernel: [<ffffffff813a6040>] vt_ioctl+0x710/0x12e0
kernel: [<ffffffff81192d0d>] ? do_wp_page+0xdd/0x610
kernel: [<ffffffffa04707e9>] ? drm_ioctl+0x189/0x540 [drm]
kernel: [<ffffffff8139a181>] tty_ioctl+0x361/0xc30
kernel: [<ffffffff81195a10>] ? handle_mm_fault+0xa20/0x1980
kernel: [<ffffffff811f0b68>] do_vfs_ioctl+0x298/0x480
kernel: [<ffffffff811fabe7>] ? __fget+0x77/0xb0
kernel: [<ffffffff811f0dc9>] SyS_ioctl+0x79/0x90
kernel: [<ffffffff81591cee>] entry_SYSCALL_64_fastpath+0x12/0x71
kernel: Code: 41 5f 5d c3 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 41 89 f5 53 4c 8b 67 08 48 89 fb <41> 8b 44 24 60 4d 8b 74 24 28 83 f8 01 74 58 8b b3 5c 01 00 00
kernel: RIP [<ffffffffa06978dc>] intel_fb_obj_invalidate+0x1c/0xf0 [i915]
kernel: RSP <ffff8800c2d73a58>
kernel: CR2: 0000000000000060
kernel: ---[ end trace bc44be530a8de325 ]---
I tried Linus' git tree (4.5rc5.r189.g84e54c4), but that is even worse: It
freezes on first try and log does not contain anything.
Any chance to get that fixed? Thanks!
--
main(a){char*c=/* Schoene Gruesse */"B?IJj;MEH"
"CX:;",b;for(a/* Best regards my address: */=0;b=c[a++];)
putchar(b-1/(/* Chris cc -ox -xc - && ./x */b/42*2-3)*42);}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <https://lists.freedesktop.org/archives/intel-gfx/attachments/20160225/68f55e3b/attachment-0001.sig>
More information about the Intel-gfx
mailing list