On Saturday 21 June 2008 23:48:24 Hannu Savolainen wrote:
> Yair K. wrote:
> > When using softsynth examples with devices created by oss_midiloop
> > ("softsynth_gtk /dev/dsp /dev/midi1")
> > I got the attached oops in dmesg.
> >
> It looks like MIDI will require some work to become functional. However
> I made a fix to the hg version that should eliminate the crash.
Nope. There's still a crash:
[ 713.015771] BUG: unable to handle kernel NULL pointer dereference at
000000000000016c
[ 713.015776] IP: [<ffffffff880221cd>] :osscore:oss_strncpy+0x2d/0x50
[ 713.015800] PGD 1e030067 PUD 23e49067 PMD 0
[ 713.015802] Oops: 0002 [5] PREEMPT
[ 713.015805] CPU 0
[ 713.015806] Modules linked in: oss_midiloop(F) oss_usb(F) oss_ich(F) osscore
sis190 mii
[ 713.015811] Pid: 3745, comm: softsynth Tainted: GF D 2.6.25.7-grsec #4
[ 713.015813] RIP: 0010:[<ffffffff880221cd>] [<ffffffff880221cd>]
:osscore:oss_strncpy+0x2d/0x50
[ 713.015831] RSP: 0018:ffff81001e01dd08 EFLAGS: 00010006
[ 713.015832] RAX: 0000000000000001 RBX: 00000000ffffffed RCX: 0000000000000073
[ 713.015834] RDX: 000000000000000f RSI: ffff810023fa2930 RDI: 000000000000016c
[ 713.015836] RBP: ffff81001e01dd08 R08: 000000000000016c R09: ffff81001e01dda4
[ 713.015838] R10: 0000000000000000 R11: 0000000000000004 R12: 0000000000000001
[ 713.015840] R13: 0000000000000000 R14: ffffc200016c3010 R15: 0000000000000000
[ 713.015842] FS: 00007020b2b3d6e0(0000) GS:ffffffff80861000(0000)
knlGS:00000000edc63720
[ 713.015844] CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b
[ 713.015846] CR2: 000000000000016c CR3: 0000000026f1e000 CR4: 00000000000006e0
[ 713.015847] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 713.015849] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 713.015851] Process softsynth (pid: 3745, threadinfo ffff81001e01c000, task
ffff810023fa2500)
[ 713.015853] Stack: 0000000000000000 ffffffff88042e9e 0000000000000006
00000001000021b6
[ 713.015857] ffff81001e01dd38 ffffffff8023b1fa ffff81001e01dd68
0000000000000286
[ 713.015860] ffff81001e01dd58 ffff81003e6d64e0 ffff81001e01dd68
00000000ffffffed
[ 713.015863] Call Trace:
[ 713.015878] [<ffffffff88042e9e>] :osscore:oss_midi_open+0x11e/0x420
[ 713.015882] [<ffffffff8023b1fa>] in_group_p+0x2a/0x30
[ 713.015898] [<ffffffff88025570>] :osscore:oss_cdev_open+0x130/0x160
[ 713.015901] [<ffffffff8029941f>] cdev_get+0x2f/0xe0
[ 713.015904] [<ffffffff8029976f>] chrdev_open+0x13f/0x260
[ 713.015907] [<ffffffff802a49ff>] open_namei+0x13f/0x980
[ 713.015910] [<ffffffff80294207>] __dentry_open+0x107/0x270
[ 713.015912] [<ffffffff80299630>] chrdev_open+0x0/0x260
[ 713.015915] [<ffffffff80294454>] nameidata_to_filp+0x44/0x60
[ 713.015917] [<ffffffff802944ba>] do_filp_open+0x4a/0x50
[ 713.015920] [<ffffffff80294010>] get_unused_fd_flags+0xa0/0x180
[ 713.015923] [<ffffffff80294536>] do_sys_open+0x76/0x100
[ 713.015925] [<ffffffff802945eb>] sys_open+0x1b/0x20
[ 713.015928] [<ffffffff8020284b>] system_call_after_swapgs+0x7b/0x80
[ 713.015930]
[ 713.015931]
[ 713.015932] Code: 0e 55 49 89 f8 48 89 e5 84 c9 74 2d 48 85 d2 49 89 f8 b8
01 00 00 00 75 12 eb 22 0f 1f 00 48 39 c2 0f 1f 44 00 00 76 15 48 ff c0 <41> 88
08 0f b6 0c 06 49 ff c0 84 c9 75 e5 41 c6 00 00 48 89 f8
[ 713.015947] RIP [<ffffffff880221cd>] :osscore:oss_strncpy+0x2d/0x50
[ 713.015963] RSP <ffff81001e01dd08>
[ 713.015964] CR2: 000000000000016c
[ 713.015969] ---[ end trace 77013166231b3013 ]---
[ 713.015971] note: softsynth[3745] exited with preempt_count 1
And 'ossinfo' shows:
Version info: OSS 4.1 (b 080619/200806212120) (0x00040090)
Hg revision: changeset: 333:ab573d9da527, tag: tip, date: Sat Jun 21 23:23:30
2008 +0300, summary: Attempt to fix a crash in oss_midi_open()
Platform: Linux/x86_64 2.6.25.7-grsec #4 PREEMPT Sat Jun 21 13:28:33 IDT 2008
(indigo)
(command was: softsynth /dev/dsp /dev/midi1).
BTW, softsynth /dev/dsp /dev/midi creates a recrusive fault in dmesg:
[ 812.449329] BUG: unable to handle kernel paging request at ffffffff880927b7
[ 812.449332] IP: [<ffffffff880d7a39>] :oss_midiloop:midiloop_ioctl+0xe9/0x1b0
[ 812.449338] PGD 643067 PUD 647063 PMD 3e55c063 PTE 3e62e161
[ 812.449341] Oops: 0003 [7] PREEMPT
[ 812.449343] CPU 0
[ 812.449345] Modules linked in: oss_midiloop(F) oss_usb(F) oss_ich(F) osscore
sis190 mii
[ 812.449350] Pid: 3795, comm: softsynth Tainted: GF D 2.6.25.7-grsec #4
[ 812.449352] RIP: 0010:[<ffffffff880d7a39>] [<ffffffff880d7a39>]
:oss_midiloop:midiloop_ioctl+0xe9/0x1b0
[ 812.449357] RSP: 0018:ffff81002eb99b48 EFLAGS: 00010246
[ 812.449359] RAX: ffffc200016b9010 RBX: ffffffff880d53e0 RCX: ffffc200016b7010
[ 812.449361] RDX: ffffffff88092778 RSI: 0000000040405902 RDI: 0000000000000000
[ 812.449363] RBP: ffffffff88092778 R08: 0000000000000000 R09: 0000000000000068
[ 812.449365] R10: 0000000000000000 R11: ffff81002eb99aa8 R12: 0000000000000001
[ 812.449366] R13: ffff81003ea31a20 R14: ffffc200016b9010 R15: ffff81003ef1b9c0
[ 812.449369] FS: 000079c3c08686e0(0000) GS:ffffffff80861000(0000)
knlGS:00000000edc63720
[ 812.449371] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 812.449372] CR2: ffffffff880927b7 CR3: 000000002ebb3000 CR4: 00000000000006e0
[ 812.449374] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 812.449376] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 812.449378] Process softsynth (pid: 3795, threadinfo ffff81002eb98000, task
ffff810026f206c0)
[ 812.449380] Stack: ffffc20001645010 0000000000000001 ffffc20001641010
0000000000000001
[ 812.449383] 000000000000000d ffffffff88043b52 ffffc20001641010
000000018803044a
[ 812.449386] ffffc200016dc010 ffffffff00000000 ffffffffffffffff
0000000000000287
[ 812.449389] Call Trace:
[ 812.449409] [<ffffffff88043b52>] ? :osscore:oss_midi_release+0xb2/0x380
[ 812.449425] [<ffffffff880252f3>] ? :osscore:oss_cdev_release+0x73/0xc0
[ 812.449429] [<ffffffff8029756c>] ? __fput+0xac/0x1b0
[ 812.449432] [<ffffffff80297685>] ? fput+0x15/0x20
[ 812.449434] [<ffffffff80293dfb>] ? filp_close+0x5b/0x90
[ 812.449438] [<ffffffff8022d709>] ? put_files_struct+0x79/0xd0
[ 812.449441] [<ffffffff8022d7b8>] ? __exit_files+0x58/0x70
[ 812.449444] [<ffffffff8022fa67>] ? do_exit+0x7c7/0x820
[ 812.449447] [<ffffffff8022faf5>] ? do_group_exit+0x35/0xc0
[ 812.449450] [<ffffffff8023b00b>] ? get_signal_to_deliver+0x30b/0x3c0
[ 812.449453] [<ffffffff802028d4>] ? sysret_signal+0x1c/0x27
[ 812.449456] [<ffffffff802019ed>] ? do_notify_resume+0xdd/0xa20
[ 812.449470] [<ffffffff8802bd5d>] ? :osscore:move_wrpointer+0xcd/0xf0
[ 812.449485] [<ffffffff8802eddf>] ? :osscore:oss_audio_write+0x57f/0x670
[ 812.449490] [<ffffffff802a8371>] ? sys_select+0x41/0x1b0
[ 812.449493] [<ffffffff802028d4>] ? sysret_signal+0x1c/0x27
[ 812.449495] [<ffffffff80202b67>] ? ptregscall_common+0x67/0xb0
[ 812.449498]
[ 812.449498]
[ 812.449499] Code: 00 00 44 8b 4b 14 45 85 c9 0f 84 ab 00 00 00 31 c0 48 83
c4 18 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 44 8b 53 14 45 85 d2 75 e4 <c6> 42
3f 00 48 8b 7b 08 48 8d 74 24 10 48 c7 44 24 10 00 00 00
[ 812.449515] RIP [<ffffffff880d7a39>] :oss_midiloop:midiloop_ioctl+0xe9/0x1b0
[ 812.449519] RSP <ffff81002eb99b48>
[ 812.449520] CR2: ffffffff880927b7
[ 812.449523] ---[ end trace 77013166231b3013 ]---
[ 812.449525] Fixing recursive fault but reboot is needed!
Yours,
Yair K.
_______________________________________________
oss-devel mailing list
oss-devel@mailman.opensound.com
http://mailman.opensound.com/mailman/listinfo/oss-devel
