On Thu, 10 Jan 2013, codeslag wrote:
> When I get dropped to ddb I'm not able to run trace or ps as the keyboard
> seems to get locked (not able to ctrl + alt + delete). So appologies I'm
> not sure if you'll be able to do much with this bug. If you want I can send
> you the usb dongle for testing.
>
> On Thu, Jan 10, 2013 at 9:21 AM, <[email protected]> wrote:
> > >Synopsis: athn0 running in hostap mode causes panic when device
> >
> > associates with it
> >
> > >Category: athn0 / athn-firmware-1.1p0
> > >Environment:
> >
> > System : OpenBSD 5.2
> > Details : OpenBSD 5.2-current (GENERIC.MP) #15: Tue Jan 8
> > 14:21:57 MST 2013
> > [email protected]:
> > /usr/src/sys/arch/i386/compile/GENERIC.MP
> >
> > Architecture: OpenBSD.i386
> > Machine : i386
> >
> > >Description:
> >
> > I have a Netgear WNA WNA1100 which has the AR9271 chip in it.
> > I configure the interface with the following:
> > "inet 10.0.0.1 255.255.255.0 NONE media autoselect mediaopt hostap nwid
> > somenet wpakey 12345678 chan 4 up"
> > When any device associates with athn0 i get the following panic:
> > uvm_fault(0xd0a547c0, 0x0, 0, 1) -> e
> > kernel: page fault trap, code=0
> > Stopped at athn_usb_newassoc_cb+0x23; cmpw $0,0x860(%ebx)
I suspect very few people have tested this code path... could you try the
following diff?
Index: if_athn_usb.c
===================================================================
RCS file: /cvs/src/sys/dev/usb/if_athn_usb.c,v
retrieving revision 1.10
diff -u -p -r1.10 if_athn_usb.c
--- if_athn_usb.c 12 Nov 2012 22:38:26 -0000 1.10
+++ if_athn_usb.c 10 Jan 2013 10:50:15 -0000
@@ -1112,7 +1112,7 @@ athn_usb_node_leave(struct ieee80211com
/* Do it in a process context. */
sta_index = ((struct athn_node *)ni)->sta_index;
- athn_usb_do_async(usc, athn_usb_newassoc_cb,
+ athn_usb_do_async(usc, athn_usb_node_leave_cb,
&sta_index, sizeof(sta_index));
}
> > I have tried this with wpa enabled / wep enabled and no security at all,
> > each time there's a panic during association.
> > athn-firmware-1.1p0 is the version of the firmware i'm using
> >
> > >How-To-Repeat:
> >
> > Configure athn0 to be in hostap mode and attempt to auth against it.
> >
> > >Fix:
> >
> > Not sure
> >
> >
> > dmesg:
> > OpenBSD 5.2-current (GENERIC.MP) #15: Tue Jan 8 14:21:57 MST 2013
> > [email protected]:/usr/src/sys/arch/i386/compile/GENERIC.MP
> > cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz ("GenuineIntel" 686-class) 3 GHz
> > cpu0:
> > FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,C
> >FLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,D
> >S-CPL,EST,CNXT-ID,CX16,xTPR,PERF real mem = 1063346176 (1014MB)
> > avail mem = 1034973184 (987MB)
> > mainbus0 at root
> > bios0 at mainbus0: AT/286+ BIOS, date 11/30/06, BIOS32 rev. 0 @ 0xffe90,
> > SMBIOS rev. 2.3 @ 0xf0450 (73 entries)
> > bios0: vendor Dell Inc. version "A11" date 11/30/2006
> > bios0: Dell Inc. OptiPlex GX620
> > acpi0 at bios0: rev 2
> > acpi0: sleep states S0 S1 S3 S4 S5
> > acpi0: tables DSDT FACP SSDT APIC BOOT ASF! MCFG HPET
> > acpi0: wakeup devices VBTN(S4) PCI0(S5) PCI4(S5) PCI2(S5) PCI3(S5)
> > PCI1(S5) PCI5(S5) PCI6(S5) MOU_(S3) USB0(S3) USB1(S3) USB2(S3) USB3(S3)
> > acpitimer0 at acpi0: 3579545 Hz, 24 bits
> > acpimadt0 at acpi0 addr 0xfee00000: PC-AT compat
> > cpu0 at mainbus0: apid 0 (boot processor)
> > cpu0: apic clock running at 199MHz
> > cpu1 at mainbus0: apid 1 (application processor)
> > cpu1: Intel(R) Pentium(R) 4 CPU 3.00GHz ("GenuineIntel" 686-class) 3 GHz
> > cpu1:
> > FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,C
> >FLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,D
> >S-CPL,EST,CNXT-ID,CX16,xTPR,PERF ioapic0 at mainbus0: apid 8 pa
> > 0xfec00000, version 20, 24 pins
> > ioapic0: misconfigured as apic 0, remapped to apid 8
> > acpimcfg0 at acpi0 addr 0xf0000000, bus 0-63
> > acpihpet0 at acpi0: 14318179 Hz
> > acpiprt0 at acpi0: bus 4 (PCI4)
> > acpiprt1 at acpi0: bus 2 (PCI2)
> > acpiprt2 at acpi0: bus 3 (PCI3)
> > acpiprt3 at acpi0: bus 1 (PCI1)
> > acpiprt4 at acpi0: bus -1 (PCI5)
> > acpiprt5 at acpi0: bus -1 (PCI6)
> > acpiprt6 at acpi0: bus 0 (PCI0)
> > acpicpu0 at acpi0
> > acpicpu1 at acpi0
> > acpibtn0 at acpi0: VBTN
> > bios0: ROM list: 0xc0000/0xa800! 0xca800/0x2000! 0xcc800/0x2000
> > 0xce800/0x1800
> > cpu0: Enhanced SpeedStep disabled by BIOS
> > pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> > pchb0 at pci0 dev 0 function 0 "Intel 82945G Host" rev 0x02
> > ppb0 at pci0 dev 1 function 0 "Intel 82945G PCIE" rev 0x02: apic 8 int 16
> > pci1 at ppb0 bus 1
> > vga1 at pci0 dev 2 function 0 "Intel 82945G Video" rev 0x02
> > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> > wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> > intagp0 at vga1
> > agp0 at intagp0: aperture at 0xe0000000, size 0x10000000
> > inteldrm0 at vga1: apic 8 int 16
> > drm0 at inteldrm0
> > "Intel 82945G Video" rev 0x02 at pci0 dev 2 function 1 not configured
> > ppb1 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x01: apic 8 int
> > 16 pci2 at ppb1 bus 2
> > bge0 at pci2 dev 0 function 0 "Broadcom BCM5751" rev 0x01, BCM5750 A1
> > (0x4001): apic 8 int 16, address 00:13:72:bc:80:4c
> > brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
> > ppb2 at pci0 dev 28 function 1 "Intel 82801GB PCIE" rev 0x01: apic 8 int
> > 17 pci3 at ppb2 bus 3
> > uhci0 at pci0 dev 29 function 0 "Intel 82801GB USB" rev 0x01: apic 8 int
> > 21 uhci1 at pci0 dev 29 function 1 "Intel 82801GB USB" rev 0x01: apic 8
> > int 22 uhci2 at pci0 dev 29 function 2 "Intel 82801GB USB" rev 0x01: apic
> > 8 int 18 uhci3 at pci0 dev 29 function 3 "Intel 82801GB USB" rev 0x01:
> > apic 8 int 23 ehci0 at pci0 dev 29 function 7 "Intel 82801GB USB" rev
> > 0x01: apic 8 int 21 usb0 at ehci0: USB revision 2.0
> > uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> > ppb3 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0xe1
> > pci4 at ppb3 bus 4
> > vr0 at pci4 dev 0 function 0 "VIA VT6105 RhineIII" rev 0x86: apic 8 int
> > 16, address 00:05:5d:63:95:5a
> > ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 4: OUI
> > 0x004063, model 0x0034
> > auich0 at pci0 dev 30 function 2 "Intel 82801GB AC97" rev 0x01: apic 8
> > int 23, ICH7 AC97
> > ac97: codec id 0x41445374 (Analog Devices AD1981B)
> > ac97: codec features headphone, 20 bit DAC, No 3D Stereo
> > audio0 at auich0
> > ichpcib0 at pci0 dev 31 function 0 "Intel 82801GB LPC" rev 0x01: PM
> > disabled
> > pciide0 at pci0 dev 31 function 1 "Intel 82801GB IDE" rev 0x01: DMA,
> > channel 0 configured to compatibility, channel 1 configured to
> > compatibility atapiscsi0 at pciide0 channel 0 drive 0
> > scsibus0 at atapiscsi0: 2 targets
> > cd0 at scsibus0 targ 0 lun 0: <TSSTcorp, CDRW/DVD TSL462C, DE01> ATAPI
> > 5/cdrom removable
> > cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
> > pciide0: channel 1 ignored (disabled)
> > pciide1 at pci0 dev 31 function 2 "Intel 82801GB SATA" rev 0x01: DMA,
> > channel 0 configured to native-PCI, channel 1 configured to native-PCI
> > pciide1: using apic 8 int 20 for native-PCI interrupt
> > wd0 at pciide1 channel 0 drive 0: <WDC WD2500BEVS-60UST0>
> > wd0: 16-sector PIO, LBA48, 238475MB, 488397168 sectors
> > wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5
> > ichiic0 at pci0 dev 31 function 3 "Intel 82801GB SMBus" rev 0x01: SMI
> > iic0 at ichiic0
> > spdmem0 at iic0 addr 0x50: 512MB DDR2 SDRAM non-parity PC2-4200CL3
> > spdmem1 at iic0 addr 0x52: 512MB DDR2 SDRAM non-parity PC2-4200CL3
> > usb1 at uhci0: USB revision 1.0
> > uhub1 at usb1 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> > usb2 at uhci1: USB revision 1.0
> > uhub2 at usb2 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> > usb3 at uhci2: USB revision 1.0
> > uhub3 at usb3 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> > usb4 at uhci3: USB revision 1.0
> > uhub4 at usb4 "Intel UHCI root hub" rev 1.00/1.00 addr 1
> > isa0 at ichpcib0
> > isadma0 at isa0
> > com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
> > pckbc0 at isa0 port 0x60/5
> > pckbd0 at pckbc0 (kbd slot)
> > pckbc0: using irq 1 for kbd slot
> > wskbd0 at pckbd0: console keyboard, using wsdisplay0
> > pcppi0 at isa0 port 0x61
> > spkr0 at pcppi0
> > lpt0 at isa0 port 0x378/4 irq 7
> > npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
> > mtrr: Pentium Pro MTRR support
> > athn0 at uhub0 port 2 "NETGEAR WNA WNA1100" rev 2.00/1.08 addr 2
> > umass0 at uhub0 port 3 configuration 1 interface 0 "Generic Mass Storage"
> > rev 2.00/1.03 addr 3
> > umass0: using SCSI over Bulk-Only
> > scsibus1 at umass0: 2 targets, initiator 0
> > sd0 at scsibus1 targ 1 lun 0: <USB1112, Flash Disk, 8.07> SCSI2 0/direct
> > removable
> > sd0: 3751MB, 512 bytes/sector, 7682048 sectors
> > uhidev0 at uhub1 port 1 configuration 1 interface 0 "DELL DELL USB
> > Keyboard" rev 1.10/1.05 addr 2
> > uhidev0: iclass 3/1
> > ukbd0 at uhidev0: 8 variable keys, 6 key codes
> > wskbd1 at ukbd0 mux 1
> > wskbd1: connecting to wsdisplay0
> > vscsi0 at root
> > scsibus2 at vscsi0: 256 targets
> > softraid0 at root
> > scsibus3 at softraid0: 256 targets
> > root on wd0a (0be6d48bc9895f27.a) swap on wd0b dump on wd0b
> > WARNING: / was not properly unmounted
> > athn0: AR9271 rev 1 (1T1R), ROM rev 15, address 4c:60:de:f5:d0:ed
--
"Reason is not automatic. Those who deny it cannot be conquered by it.
Do not count on them. Leave them alone." -- Ayn Rand
