Bug#833295: BUG: unable to handle kernel NULL pointer dereference at gen6_ppgtt_insert_entries+0xc9/0x160

2016-10-13 Thread Francois Gouget 

I found a way to reproduce this on my i7-4790K. Unfortunately it 
involves the fluvadec GStreamer plugin which is not free software.

Still this is a case of an unprivileged process causing the kernel to 
crash, freezes the X server and prevents restarting it so it does prove 
there is a serious bug.

Let me know if there is information I can provide.

-- 
Francois Gouget

Bug#833295: BUG: unable to handle kernel NULL pointer dereference at gen6_ppgtt_insert_entries+0xc9/0x160

2016-08-02 Thread Riccardo Magliocchetti 
Package: src:linux
Version: 4.6.4-1
Severity: normal
Tags: upstream

Hello,

got this crash with kernel 4.6.3, no idea on how to reproduce.

Aug  2 17:14:33 rieux kernel: [624938.589267] BUG: unable to handle kernel NULL
pointer dereference at   (null)
Aug  2 17:14:33 rieux kernel: [624938.589310] IP: []
gen6_ppgtt_insert_entries+0xc9/0x160 [i915]
Aug  2 17:14:33 rieux kernel: [624938.589376] PGD 1d5d67067 PUD 107361067 PMD 0
Aug  2 17:14:33 rieux kernel: [624938.589399] Oops:  [#1] SMP
Aug  2 17:14:33 rieux kernel: [624938.589415] Modules linked in: ufs(E) qnx4(E)
hfsplus(E) hfs(E) minix(E) ntfs(E) vfat(E) msdos(E) fat(E) jfs(E) xfs(E)
libcrc32c(E) dm_mod(E) cpuid(E) hmac(E) drbg(E) ansi_cprng
(E) ctr(E) ccm(E) hid_generic(E) hid_roccat_koneplus(E) hid_roccat(E)
hid_roccat_common(E) usbhid(E) hid(E) udf(E) crc_itu_t(E) loop(E)
usb_serial_simple(E) usbserial(E) xt_addrtype(E) br_netfilter(E) ipt_MASQUE
RADE(E) nf_nat_masquerade_ipv4(E) iptable_nat(E) nf_nat_ipv4(E) nf_nat(E)
nf_conntrack_ipv4(E) nf_defrag_ipv4(E) xt_conntrack(E) nf_conntrack(E)
xt_CHECKSUM(E) iptable_mangle(E) ipt_REJECT(E) nf_reject_ipv4(E) x
t_tcpudp(E) overlay(E) tun(E) bridge(E) stp(E) llc(E) ebtable_filter(E)
ebtables(E) ip6table_filter(E) ip6_tables(E) iptable_filter(E) ip_tables(E)
x_tables(E) cpufreq_userspace(E) cpufreq_stats(E) cpufreq_conse
rvative(E) cpufreq_powersave(E) bnep(E) fuse(E) snd_hda_codec_hdmi(E)
binfmt_misc(E) arc4(E) iTCO_wdt(E) iTCO_vendor_support(E) intel_rapl(E)
x86_pkg_temp_thermal(E) intel_powerclamp(E) coretemp(E) kvm_intel(E)
kvm(E) irqbypass(E) crct10dif_pclmul(E) crc32_pclmul(E) ghash_clmulni_intel(E)
uvcvideo(E) joydev(E) evdev(E) videobuf2_vmalloc(E) videobuf2_memops(E)
videobuf2_v4l2(E) serio_raw(E) iwlmvm(E) pcspkr(E) mac80211(
E) cdc_mbim(E) videobuf2_core(E) sg(E) videodev(E) media(E) cdc_wdm(E)
iwlwifi(E) cdc_acm(E) cdc_ncm(E) btusb(E) usbnet(E) btrtl(E) rtsx_pci_ms(E)
mii(E) btbcm(E) btintel(E) memstick(E) bluetooth(E) cfg80211(E)
wmi(E) thinkpad_acpi(E) nvram(E) rfkill(E) ac(E) battery(E)
snd_hda_codec_realtek(E) snd_hda_codec_generic(E) i915(E) snd_hda_intel(E)
snd_hda_codec(E) snd_hda_core(E) snd_hwdep(E) snd_pcm(E) snd_timer(E) snd(E)
 soundcore(E) drm_kms_helper(E) video(E) drm(E) mei_me(E) i2c_algo_bit(E)
mei(E) i2c_i801(E) lpc_ich(E) shpchp(E) tpm_tis(E) tpm(E) processor(E)
button(E) parport_pc(E) ppdev(E) lp(E) parport(E) autofs4(E) ext4(
E) ecb(E) crc16(E) jbd2(E) mbcache(E) btrfs(E) crc32c_generic(E) xor(E)
raid6_pq(E) sd_mod(E) crc32c_intel(E) rtsx_pci_sdmmc(E) mmc_core(E)
aesni_intel(E) aes_x86_64(E) glue_helper(E) lrw(E) gf128mul(E) ablk_hel
per(E) cryptd(E) psmouse(E) rtsx_pci(E) mfd_core(E) ahci(E) libahci(E)
libata(E) scsi_mod(E) ehci_pci(E) ehci_hcd(E) xhci_pci(E) xhci_hcd(E) e1000e(E)
ptp(E) pps_core(E) usbcore(E) usb_common(E) thermal(E) fjes(
E)
Aug  2 17:14:33 rieux kernel: [624938.590189] CPU: 1 PID: 28204 Comm: vlc
Tainted: GE   4.6.0-1-amd64 #1 Debian 4.6.3-1
Aug  2 17:14:33 rieux kernel: [624938.590211] Hardware name: LENOVO
20AQ007SIX/20AQ007SIX, BIOS GJET79WW (2.29 ) 09/03/2014
Aug  2 17:14:33 rieux kernel: [624938.590231] task: 8801d5d72180 ti:
8800a0cf8000 task.ti: 8800a0cf8000
Aug  2 17:14:33 rieux kernel: [624938.590249] RIP: 0010:[]
[] gen6_ppgtt_insert_entries+0xc9/0x160 [i915]
Aug  2 17:14:33 rieux kernel: [624938.590294] RSP: 0018:8800a0cfba20
EFLAGS: 00010246
Aug  2 17:14:33 rieux kernel: [624938.590308] RAX:  RBX:
 RCX: 
Aug  2 17:14:33 rieux kernel: [624938.590325] RDX: 880036c4f160 RSI:
8800a9d32000 RDI: 8800a0cfba38
Aug  2 17:14:33 rieux kernel: [624938.590342] RBP:  R08:
 R09: 880231512000
Aug  2 17:14:33 rieux kernel: [624938.590359] R10:  R11:
 R12: 880231512000
Aug  2 17:14:33 rieux kernel: [624938.590375] R13:  R14:
0001 R15: 8800a9d32ffc
Aug  2 17:14:33 rieux kernel: [624938.590393] FS:  7fb7aff2f700()
GS:88023e24() knlGS:
Aug  2 17:14:33 rieux kernel: [624938.590412] CS:  0010 DS:  ES:  CR0:
80050033
Aug  2 17:14:33 rieux kernel: [624938.590426] CR2:  CR3:
000234243000 CR4: 001406e0
Aug  2 17:14:33 rieux kernel: [624938.590443] Stack:
Aug  2 17:14:33 rieux kernel: [624938.590448]  0200
8801d5d72180 02007bcadc60 880036c4f160
Aug  2 17:14:33 rieux kernel: [624938.590469]  0005
0001 503253b2 880036be0640
Aug  2 17:14:33 rieux kernel: [624938.590489]  
8800a88abe80 0002 0001
Aug  2 17:14:33 rieux kernel: [624938.590510] Call Trace:
Aug  2 17:14:33 rieux kernel: [624938.590529]  [] ?
aliasing_gtt_bind_vma+0x90/0xe0 [i915]
Aug  2 17:14:33 rieux kernel: [624938.590556]  [] ?
i915_vma_bind+0xbb/0x160 [i915]
Aug  2 17:14:33 rieux kernel: [624938.590582]  [] ?