- Linux-stable-mirror - lists.linaro.org

[PATCH v1] usb: core: fix pipe creation for get_bMaxPacketSize0

by Stefan Eichenberger

From: Stefan Eichenberger <stefan.eichenberger(a)toradex.com> When usb_control_msg is used in the get_bMaxPacketSize0 function, the USB pipe does not include the endpoint device number. This can cause failures when a usb hub port is reinitialized after encountering a bad cable connection. As a result, the system logs the following error messages: usb usb2-port1: cannot reset (err = -32) usb usb2-port1: Cannot enable. Maybe the USB cable is bad? usb usb2-port1: attempt power cycle usb 2-1: new high-speed USB device number 5 using ci_hdrc usb 2-1: device descriptor read/8, error -71 The problem began after commit 85d07c556216 ("USB: core: Unite old scheme and new scheme descriptor reads"). There usb_get_device_descriptor was replaced with get_bMaxPacketSize0. Unlike usb_get_device_descriptor, the get_bMaxPacketSize0 function uses the macro usb_rcvaddr0pipe, which does not include the endpoint device number. usb_get_device_descriptor, on the other hand, used the macro usb_rcvctrlpipe, which includes the endpoint device number. By modifying the get_bMaxPacketSize0 function to use usb_rcvctrlpipe instead of usb_rcvaddr0pipe, the issue can be resolved. This change will ensure that the endpoint device number is included in the USB pipe, preventing reinitialization failures. If the endpoint has not set the device number yet, it will still work because the device number is 0 in udev. Cc: stable(a)vger.kernel.org Fixes: 85d07c556216 ("USB: core: Unite old scheme and new scheme descriptor reads") Signed-off-by: Stefan Eichenberger <stefan.eichenberger(a)toradex.com> --- Before commit 85d07c556216 ("USB: core: Unite old scheme and new scheme descriptor reads") usb_rcvaddr0pipe was used in hub_port_init. With this proposed change, usb_rcvctrlpipe will be used which includes devnum for the pipe. I'm not sure if this might have some side effects. However, my understanding is that devnum is set to the right value (might also be 0 if not initialised) before get_bMaxPacketSize0 is called. Therefore, this should work but please let me know if I'm wrong on this. --- drivers/usb/core/hub.c | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/drivers/usb/core/hub.c b/drivers/usb/core/hub.c index c3f839637cb5..59e38780f76d 100644 --- a/drivers/usb/core/hub.c +++ b/drivers/usb/core/hub.c @@ -4698,7 +4698,6 @@ void usb_ep0_reinit(struct usb_device *udev) EXPORT_SYMBOL_GPL(usb_ep0_reinit); #define usb_sndaddr0pipe() (PIPE_CONTROL << 30) -#define usb_rcvaddr0pipe() ((PIPE_CONTROL << 30) | USB_DIR_IN) static int hub_set_address(struct usb_device *udev, int devnum) { @@ -4804,7 +4803,7 @@ static int get_bMaxPacketSize0(struct usb_device *udev, for (i = 0; i < GET_MAXPACKET0_TRIES; ++i) { /* Start with invalid values in case the transfer fails */ buf->bDescriptorType = buf->bMaxPacketSize0 = 0; - rc = usb_control_msg(udev, usb_rcvaddr0pipe(), + rc = usb_control_msg(udev, usb_rcvctrlpipe(udev, 0), USB_REQ_GET_DESCRIPTOR, USB_DIR_IN, USB_DT_DEVICE << 8, 0, buf, size, -- 2.45.2

4 months

3
4
0 0

[PATCH 5.10.y 0/3] vsock: fix use-after free and null-ptr-deref

by Luigi Leonardi

Hi all, This series backports three upstream commits: - 135ffc7 "bpf, vsock: Invoke proto::close on close()" - fcdd224 "vsock: Keep the binding until socket destruction" - 78dafe1 "vsock: Orphan socket after transport release" Although this version of the kernel does not support sockmap, I think backporting this patch can be useful to reduce conflicts in future backports [1]. It does not harm the system. The comment it introduces in the code can be misleading. I added some words in the commit to explain the situation. The other two commits are untouched, fixing a use-after free[2] and a null-ptr-deref[3] respectively. [1]https://lore.kernel.org/stable/f7lr3ftzo66sl6phlcygh4xx4spga4b6je37fhawjr… [2]https://lore.kernel.org/all/20250128-vsock-transport-vs-autobind-v3-0-1cf… [3]https://lore.kernel.org/all/20250210-vsock-linger-nullderef-v3-0-ef6244d0… Cheers, Luigi To: Stefano Garzarella <sgarzare(a)redhat.com> To: Michal Luczaj <mhal(a)rbox.co> To: stable(a)vger.kernel.org Signed-off-by: Luigi Leonardi <leonardi(a)redhat.com> --- Michal Luczaj (3): bpf, vsock: Invoke proto::close on close() vsock: Keep the binding until socket destruction vsock: Orphan socket after transport release net/vmw_vsock/af_vsock.c | 77 +++++++++++++++++++++++++++++++----------------- 1 file changed, 50 insertions(+), 27 deletions(-) --- base-commit: f0a53361993a94f602df6f35e78149ad2ac12c89 change-id: 20250220-backport_fix_5_10-0ae85f834bc4 Best regards, -- Luigi Leonardi <leonardi(a)redhat.com>

4 months

2
5
0 0

[PATCHv3 perf/core] uprobes: Harden uretprobe syscall trampoline check

by Jiri Olsa

Jann reported [1] possible issue when trampoline_check_ip returns address near the bottom of the address space that is allowed to call into the syscall if uretprobes are not set up. Though the mmap minimum address restrictions will typically prevent creating mappings there, let's make sure uretprobe syscall checks for that. [1] https://lore.kernel.org/bpf/202502081235.5A6F352985@keescook/T/#m9d416df341… Cc: Kees Cook <kees(a)kernel.org> Cc: Eyal Birger <eyal.birger(a)gmail.com> Cc: stable(a)vger.kernel.org Fixes: ff474a78cef5 ("uprobe: Add uretprobe syscall to speed up return probe") Acked-by: Andrii Nakryiko <andrii(a)kernel.org> Reported-by: Jann Horn <jannh(a)google.com> Reviewed-by: Oleg Nesterov <oleg(a)redhat.com> Reviewed-by: Kees Cook <kees(a)kernel.org> Signed-off-by: Jiri Olsa <jolsa(a)kernel.org> --- v3 changes: - used ~0UL instead of -1 [Alexei] - used UPROBE_NO_TRAMPOLINE_VADDR in uprobe_get_trampoline_vaddr [Masami] - added unlikely [Andrii] - I kept the review/ack tags, because I think the change is basically the same, please scream otherwise arch/x86/kernel/uprobes.c | 14 +++++++++----- include/linux/uprobes.h | 2 ++ kernel/events/uprobes.c | 2 +- 3 files changed, 12 insertions(+), 6 deletions(-) diff --git a/arch/x86/kernel/uprobes.c b/arch/x86/kernel/uprobes.c index 5a952c5ea66b..9194695662b2 100644 --- a/arch/x86/kernel/uprobes.c +++ b/arch/x86/kernel/uprobes.c @@ -357,19 +357,23 @@ void *arch_uprobe_trampoline(unsigned long *psize) return &insn; } -static unsigned long trampoline_check_ip(void) +static unsigned long trampoline_check_ip(unsigned long tramp) { - unsigned long tramp = uprobe_get_trampoline_vaddr(); - return tramp + (uretprobe_syscall_check - uretprobe_trampoline_entry); } SYSCALL_DEFINE0(uretprobe) { struct pt_regs *regs = task_pt_regs(current); - unsigned long err, ip, sp, r11_cx_ax[3]; + unsigned long err, ip, sp, r11_cx_ax[3], tramp; + + /* If there's no trampoline, we are called from wrong place. */ + tramp = uprobe_get_trampoline_vaddr(); + if (unlikely(tramp == UPROBE_NO_TRAMPOLINE_VADDR)) + goto sigill; - if (regs->ip != trampoline_check_ip()) + /* Make sure the ip matches the only allowed sys_uretprobe caller. */ + if (unlikely(regs->ip != trampoline_check_ip(tramp))) goto sigill; err = copy_from_user(r11_cx_ax, (void __user *)regs->sp, sizeof(r11_cx_ax)); diff --git a/include/linux/uprobes.h b/include/linux/uprobes.h index a40efdda9052..2e46b69ff0a6 100644 --- a/include/linux/uprobes.h +++ b/include/linux/uprobes.h @@ -39,6 +39,8 @@ struct page; #define MAX_URETPROBE_DEPTH 64 +#define UPROBE_NO_TRAMPOLINE_VADDR (~0UL) + struct uprobe_consumer { /* * handler() can return UPROBE_HANDLER_REMOVE to signal the need to diff --git a/kernel/events/uprobes.c b/kernel/events/uprobes.c index 597b9e036e5f..c5d6307bc5bc 100644 --- a/kernel/events/uprobes.c +++ b/kernel/events/uprobes.c @@ -2156,8 +2156,8 @@ void uprobe_copy_process(struct task_struct *t, unsigned long flags) */ unsigned long uprobe_get_trampoline_vaddr(void) { + unsigned long trampoline_vaddr = UPROBE_NO_TRAMPOLINE_VADDR; struct xol_area *area; - unsigned long trampoline_vaddr = -1; /* Pairs with xol_add_vma() smp_store_release() */ area = READ_ONCE(current->mm->uprobes_state.xol_area); /* ^^^ */ -- 2.48.1

4 months

7
9
0 0

[PATCH] USB: serial: option: match on interface class for Telit FN990B

by Johan Hovold

The device id entries for Telit FN990B ended up matching only on the interface protocol. While this works, the protocol is qualified by the interface class (and subclass) which should have been included. Switch to matching using USB_DEVICE_AND_INTERFACE_INFO() while keeping the entries sorted also by protocol for consistency. Link: https://lore.kernel.org/20250227110655.3647028-2-fabio.porcedda@gmail.com/ Cc: Fabio Porcedda <fabio.porcedda(a)gmail.com> Cc: Daniele Palmas <dnlplm(a)gmail.com> Cc: stable(a)vger.kernel.org Signed-off-by: Johan Hovold <johan(a)kernel.org> --- drivers/usb/serial/option.c | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/drivers/usb/serial/option.c b/drivers/usb/serial/option.c index 58bd54e8c483..1ea2870725ac 100644 --- a/drivers/usb/serial/option.c +++ b/drivers/usb/serial/option.c @@ -1394,22 +1394,22 @@ static const struct usb_device_id option_ids[] = { .driver_info = RSVD(0) | NCTRL(3) }, { USB_DEVICE_INTERFACE_CLASS(TELIT_VENDOR_ID, 0x10c8, 0xff), /* Telit FE910C04 (rmnet) */ .driver_info = RSVD(0) | NCTRL(2) | RSVD(3) | RSVD(4) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d0, 0x60) }, /* Telit FN990B (rmnet) */ - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d0, 0x40) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d0, 0x30), + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d0, 0xff, 0xff, 0x30), /* Telit FN990B (rmnet) */ .driver_info = NCTRL(5) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d1, 0x60) }, /* Telit FN990B (MBIM) */ - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d1, 0x40) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d1, 0x30), + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d0, 0xff, 0xff, 0x40) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d0, 0xff, 0xff, 0x60) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d1, 0xff, 0xff, 0x30), /* Telit FN990B (MBIM) */ .driver_info = NCTRL(6) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d2, 0x60) }, /* Telit FN990B (RNDIS) */ - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d2, 0x40) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d2, 0x30), + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d1, 0xff, 0xff, 0x40) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d1, 0xff, 0xff, 0x60) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d2, 0xff, 0xff, 0x30), /* Telit FN990B (RNDIS) */ .driver_info = NCTRL(6) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d3, 0x60) }, /* Telit FN990B (ECM) */ - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d3, 0x40) }, - { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10d3, 0x30), + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d2, 0xff, 0xff, 0x40) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d2, 0xff, 0xff, 0x60) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d3, 0xff, 0xff, 0x30), /* Telit FN990B (ECM) */ .driver_info = NCTRL(6) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d3, 0xff, 0xff, 0x40) }, + { USB_DEVICE_AND_INTERFACE_INFO(TELIT_VENDOR_ID, 0x10d3, 0xff, 0xff, 0x60) }, { USB_DEVICE(TELIT_VENDOR_ID, TELIT_PRODUCT_ME910), .driver_info = NCTRL(0) | RSVD(1) | RSVD(3) }, { USB_DEVICE(TELIT_VENDOR_ID, TELIT_PRODUCT_ME910_DUAL_MODEM), -- 2.45.3

4 months

1
0
0 0

[PATCH V2 1/2] USB: serial: option: add Telit Cinterion FE990B compositions

by Fabio Porcedda

Add the following Telit Cinterion FE990B40 compositions: 0x10b0: rmnet + tty (AT/NMEA) + tty (AT) + tty (AT) + tty (AT) + tty (diag) + DPL + QDSS (Qualcomm Debug SubSystem) + adb T: Bus=01 Lev=01 Prnt=01 Port=01 Cnt=01 Dev#= 7 Spd=480 MxCh= 0 D: Ver= 2.10 Cls=00(>ifc ) Sub=00 Prot=00 MxPS=64 #Cfgs= 1 P: Vendor=1bc7 ProdID=10b0 Rev=05.15 S: Manufacturer=Telit Cinterion S: Product=FE990 S: SerialNumber=28c2595e C: #Ifs= 9 Cfg#= 1 Atr=e0 MxPwr=500mA I: If#= 0 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=50 Driver=qmi_wwan E: Ad=01(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=81(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=82(I) Atr=03(Int.) MxPS= 8 Ivl=32ms I: If#= 1 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=60 Driver=option E: Ad=02(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=83(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=84(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 2 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=03(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=85(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=86(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 3 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=04(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=87(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=88(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 4 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=05(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=89(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8a(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 5 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=ff Prot=30 Driver=option E: Ad=06(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8b(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 6 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=80 Driver=(none) E: Ad=8c(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 7 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=70 Driver=(none) E: Ad=8d(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 8 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=42 Prot=01 Driver=(none) E: Ad=07(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8e(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms 0x10b1: MBIM + tty (AT/NMEA) + tty (AT) + tty (AT) + tty (AT) + tty (diag) + DPL + QDSS (Qualcomm Debug SubSystem) + adb T: Bus=01 Lev=01 Prnt=01 Port=01 Cnt=01 Dev#= 8 Spd=480 MxCh= 0 D: Ver= 2.10 Cls=00(>ifc ) Sub=00 Prot=00 MxPS=64 #Cfgs= 1 P: Vendor=1bc7 ProdID=10b1 Rev=05.15 S: Manufacturer=Telit Cinterion S: Product=FE990 S: SerialNumber=28c2595e C: #Ifs=10 Cfg#= 1 Atr=e0 MxPwr=500mA I: If#= 0 Alt= 0 #EPs= 1 Cls=02(commc) Sub=0e Prot=00 Driver=cdc_mbim E: Ad=82(I) Atr=03(Int.) MxPS= 64 Ivl=32ms I: If#= 1 Alt= 1 #EPs= 2 Cls=0a(data ) Sub=00 Prot=02 Driver=cdc_mbim E: Ad=01(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=81(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 2 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=60 Driver=option E: Ad=02(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=83(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=84(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 3 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=03(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=85(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=86(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 4 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=04(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=87(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=88(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 5 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=05(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=89(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8a(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 6 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=ff Prot=30 Driver=option E: Ad=06(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8b(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 7 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=80 Driver=(none) E: Ad=8c(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 8 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=70 Driver=(none) E: Ad=8d(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 9 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=42 Prot=01 Driver=(none) E: Ad=07(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8e(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms 0x10b2: RNDIS + tty (AT/NMEA) + tty (AT) + tty (AT) + tty (AT) + tty (diag) + DPL + QDSS (Qualcomm Debug SubSystem) + adb T: Bus=01 Lev=01 Prnt=01 Port=01 Cnt=01 Dev#= 9 Spd=480 MxCh= 0 D: Ver= 2.10 Cls=00(>ifc ) Sub=00 Prot=00 MxPS=64 #Cfgs= 1 P: Vendor=1bc7 ProdID=10b2 Rev=05.15 S: Manufacturer=Telit Cinterion S: Product=FE990 S: SerialNumber=28c2595e C: #Ifs=10 Cfg#= 1 Atr=e0 MxPwr=500mA I: If#= 0 Alt= 0 #EPs= 1 Cls=ef(misc ) Sub=04 Prot=01 Driver=rndis_host E: Ad=82(I) Atr=03(Int.) MxPS= 8 Ivl=32ms I: If#= 1 Alt= 0 #EPs= 2 Cls=0a(data ) Sub=00 Prot=00 Driver=rndis_host E: Ad=01(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=81(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 2 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=60 Driver=option E: Ad=02(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=83(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=84(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 3 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=03(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=85(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=86(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 4 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=04(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=87(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=88(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 5 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=05(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=89(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8a(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 6 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=ff Prot=30 Driver=option E: Ad=06(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8b(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 7 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=80 Driver=(none) E: Ad=8c(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 8 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=70 Driver=(none) E: Ad=8d(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 9 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=42 Prot=01 Driver=(none) E: Ad=07(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8e(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms 0x10b3: ECM + tty (AT/NMEA) + tty (AT) + tty (AT) + tty (AT) + tty (diag) + DPL + QDSS (Qualcomm Debug SubSystem) + adb T: Bus=01 Lev=01 Prnt=01 Port=01 Cnt=01 Dev#= 11 Spd=480 MxCh= 0 D: Ver= 2.10 Cls=00(>ifc ) Sub=00 Prot=00 MxPS=64 #Cfgs= 1 P: Vendor=1bc7 ProdID=10b3 Rev=05.15 S: Manufacturer=Telit Cinterion S: Product=FE990 S: SerialNumber=28c2595e C: #Ifs=10 Cfg#= 1 Atr=e0 MxPwr=500mA I: If#= 0 Alt= 0 #EPs= 1 Cls=02(commc) Sub=06 Prot=00 Driver=cdc_ether E: Ad=82(I) Atr=03(Int.) MxPS= 16 Ivl=32ms I: If#= 1 Alt= 1 #EPs= 2 Cls=0a(data ) Sub=00 Prot=00 Driver=cdc_ether E: Ad=01(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=81(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 2 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=60 Driver=option E: Ad=02(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=83(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=84(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 3 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=03(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=85(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=86(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 4 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=04(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=87(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=88(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 5 Alt= 0 #EPs= 3 Cls=ff(vend.) Sub=ff Prot=40 Driver=option E: Ad=05(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=89(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8a(I) Atr=03(Int.) MxPS= 10 Ivl=32ms I: If#= 6 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=ff Prot=30 Driver=option E: Ad=06(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8b(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 7 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=80 Driver=(none) E: Ad=8c(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 8 Alt= 0 #EPs= 1 Cls=ff(vend.) Sub=ff Prot=70 Driver=(none) E: Ad=8d(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms I: If#= 9 Alt= 0 #EPs= 2 Cls=ff(vend.) Sub=42 Prot=01 Driver=(none) E: Ad=07(O) Atr=02(Bulk) MxPS= 512 Ivl=0ms E: Ad=8e(I) Atr=02(Bulk) MxPS= 512 Ivl=0ms Cc: stable(a)vger.kernel.org Signed-off-by: Fabio Porcedda <fabio.porcedda(a)gmail.com> --- drivers/usb/serial/option.c | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/drivers/usb/serial/option.c b/drivers/usb/serial/option.c index 58bd54e8c483..8660f7a89b01 100644 --- a/drivers/usb/serial/option.c +++ b/drivers/usb/serial/option.c @@ -1388,6 +1388,22 @@ static const struct usb_device_id option_ids[] = { .driver_info = RSVD(0) | NCTRL(2) | RSVD(3) | RSVD(4) }, { USB_DEVICE_INTERFACE_CLASS(TELIT_VENDOR_ID, 0x10aa, 0xff), /* Telit FN920C04 (MBIM) */ .driver_info = NCTRL(3) | RSVD(4) | RSVD(5) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b0, 0x60) }, /* Telit FE990B (rmnet) */ + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b0, 0x40) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b0, 0x30), + .driver_info = NCTRL(5) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b1, 0x60) }, /* Telit FE990B (MBIM) */ + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b1, 0x40) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b1, 0x30), + .driver_info = NCTRL(6) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b2, 0x60) }, /* Telit FE990B (RNDIS) */ + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b2, 0x40) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b2, 0x30), + .driver_info = NCTRL(6) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b3, 0x60) }, /* Telit FE990B (ECM) */ + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b3, 0x40) }, + { USB_DEVICE_INTERFACE_PROTOCOL(TELIT_VENDOR_ID, 0x10b3, 0x30), + .driver_info = NCTRL(6) }, { USB_DEVICE_INTERFACE_CLASS(TELIT_VENDOR_ID, 0x10c0, 0xff), /* Telit FE910C04 (rmnet) */ .driver_info = RSVD(0) | NCTRL(3) }, { USB_DEVICE_INTERFACE_CLASS(TELIT_VENDOR_ID, 0x10c4, 0xff), /* Telit FE910C04 (rmnet) */ -- 2.48.1

4 months

3
2
0 0

[REGRESSION] stable-rc/linux-6.12.y: (boot) NULL pointer dereference at virtual address 00000000000000d0 [logs...

by KernelCI bot

Hello, New boot regression found on stable-rc/linux-6.12.y: --- NULL pointer dereference at virtual address 00000000000000d0 [logspec:generic_linux_boot,linux.kernel.null_pointer_dereference] --- - dashboard: https://d.kernelci.org/issue/maestro:e301e9dec14c72112ac560e4ba2548ec434c9e… - giturl: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git - commit HEAD: 43639cc57b2273fce42874dd7f6e0b872f4984c5 Log excerpt: ===================================================== [ 2.402363] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000d0 [ 2.406659] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ovl@14005000 [ 2.406736] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ovl@14006000 [ 2.406755] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/rdma@14007000 [ 2.406768] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/color@14009000 [ 2.406779] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ccorr@1400a000 [ 2.406793] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/aal@1400b000 [ 2.406806] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/gamma@1400c000 [ 2.406866] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/dsi@14010000 [ 2.406878] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ovl@14014000 [ 2.406892] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/rdma@14015000 [ 2.411531] panfrost 13000000.gpu: clock rate = 357999878 [ 2.412537] panfrost 13000000.gpu: [drm:panfrost_devfreq_init] Failed to register cooling device [ 2.412827] panfrost 13000000.gpu: mali-g57 id 0x9093 major 0x0 minor 0x0 status 0x0 [ 2.412830] panfrost 13000000.gpu: features: 00000000,000019f7, issues: 00000003,80000400 [ 2.412832] panfrost 13000000.gpu: Features: L2:0x07130206 Shader:0x00000000 Tiler:0x00000809 Mem:0x101 MMU:0x00002830 AS:0xff JS:0x7 [ 2.412835] panfrost 13000000.gpu: shader_present=0x50045 l2_present=0x1 [ 2.412900] Mem abort info: [ 2.414378] [drm] Initialized panfrost 1.2.0 for 13000000.gpu on minor 0 [ 2.414747] xhci-mtk 11200000.usb: uwk - reg:0x420, version:102 [ 2.415395] xhci-mtk 11200000.usb: xHCI Host Controller [ 2.415505] xhci-mtk 11200000.usb: new USB bus registered, assigned bus number 1 [ 2.415720] xhci-mtk 11200000.usb: hcc params 0x01400f99 hci version 0x110 quirks 0x0000000000200010 [ 2.415751] xhci-mtk 11200000.usb: irq 275, io mem 0x11200000 [ 2.415804] xhci-mtk 11200000.usb: xHCI Host Controller [ 2.415933] xhci-mtk 11200000.usb: new USB bus registered, assigned bus number 2 [ 2.415940] xhci-mtk 11200000.usb: Host supports USB 3.1 Enhanced SuperSpeed [ 2.416011] usb usb1: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 6.12 [ 2.416014] usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1 [ 2.416016] usb usb1: Product: xHCI Host Controller [ 2.416017] usb usb1: Manufacturer: Linux 6.12.18-rc1 xhci-hcd [ 2.416019] usb usb1: SerialNumber: 11200000.usb [ 2.416274] hub 1-0:1.0: USB hub found [ 2.416285] hub 1-0:1.0: 1 port detected [ 2.416394] usb usb2: We don't know the algorithms for LPM for this host, disabling LPM. [ 2.416418] usb usb2: New USB device found, idVendor=1d6b, idProduct=0003, bcdDevice= 6.12 [ 2.416420] usb usb2: New USB device strings: Mfr=3, Product=2, SerialNumber=1 [ 2.416421] usb usb2: Product: xHCI Host Controller [ 2.416423] usb usb2: Manufacturer: Linux 6.12.18-rc1 xhci-hcd [ 2.416424] usb usb2: SerialNumber: 11200000.usb [ 2.416785] hub 2-0:1.0: USB hub found [ 2.416795] hub 2-0:1.0: 1 port detected [ 2.419750] rt5682 1-001a: Using default DAI clk names: rt5682-dai-wclk, rt5682-dai-bclk [ 2.420524] reg-fixed-voltage regulator-1v8-g: using DT '/regulator-1v8-g' for '(default)' GPIO lookup [ 2.420541] of_get_named_gpiod_flags: can't parse 'gpios' property of node '/regulator-1v8-g[0]' [ 2.420546] of_get_named_gpiod_flags: can't parse 'gpio' property of node '/regulator-1v8-g[0]' [ 2.420552] reg-fixed-voltage regulator-1v8-g: using lookup tables for GPIO lookup [ 2.420555] reg-fixed-voltage regulator-1v8-g: No GPIO consumer (default) found [ 2.420761] reg-fixed-voltage regulator-3v3-dpbrdg: using DT '/regulator-3v3-dpbrdg' for '(default)' GPIO lookup [ 2.420774] of_get_named_gpiod_flags: can't parse 'gpios' property of node '/regulator-3v3-dpbrdg[0]' [ 2.420791] of_get_named_gpiod_flags: parsed 'gpio' property of node '/regulator-3v3-dpbrdg[0]' - status (0) [ 2.420834] gpio gpiochip0: Persistence not supported for GPIO 26 [ 2.420882] rt5682 1-001a: using DT '/soc/i2c@11d20000/audio-codec@1a' for 'realtek,ldo1-en' GPIO lookup [ 2.420899] of_get_named_gpiod_flags: can't parse 'realtek,ldo1-en-gpios' property of node '/soc/i2c@11d20000/audio-codec@1a[0]' [ 2.420911] of_get_named_gpiod_flags: can't parse 'realtek,ldo1-en-gpio' property of node '/soc/i2c@11d20000/audio-codec@1a[0]' [ 2.420920] rt5682 1-001a: using lookup tables for GPIO lookup [ 2.420923] rt5682 1-001a: No GPIO consumer realtek,ldo1-en found [ 2.421046] mtk-iommu 1401d000.m4u: bound 14003000.larb (ops 0xffffb67e921d3ca8) [ 2.421060] mtk-iommu 1401d000.m4u: bound 14004000.larb (ops 0xffffb67e921d3ca8) [ 2.421064] mtk-iommu 1401d000.m4u: bound 1f002000.larb (ops 0xffffb67e921d3ca8) [ 2.421066] mtk-iommu 1401d000.m4u: bound 1602e000.larb (ops 0xffffb67e921d3ca8) [ 2.421076] mtk-iommu 1401d000.m4u: bound 1600d000.larb (ops 0xffffb67e921d3ca8) [ 2.421078] mtk-iommu 1401d000.m4u: bound 17010000.larb (ops 0xffffb67e921d3ca8) [ 2.421081] mtk-iommu 1401d000.m4u: bound 1502e000.larb (ops 0xffffb67e921d3ca8) [ 2.421084] mtk-iommu 1401d000.m4u: bound 1582e000.larb (ops 0xffffb67e921d3ca8) [ 2.421087] mtk-iommu 1401d000.m4u: bound 1a001000.larb (ops 0xffffb67e921d3ca8) [ 2.421089] mtk-iommu 1401d000.m4u: bound 1a002000.larb (ops 0xffffb67e921d3ca8) [ 2.421091] mtk-iommu 1401d000.m4u: bound 1a00f000.larb (ops 0xffffb67e921d3ca8) [ 2.421093] mtk-iommu 1401d000.m4u: bound 1a010000.larb (ops 0xffffb67e921d3ca8) [ 2.421095] mtk-iommu 1401d000.m4u: bound 1a011000.larb (ops 0xffffb67e921d3ca8) [ 2.421097] mtk-iommu 1401d000.m4u: bound 1b10f000.larb (ops 0xffffb67e921d3ca8) [ 2.421102] mtk-iommu 1401d000.m4u: bound 1b00f000.larb (ops 0xffffb67e921d3ca8) [ 2.421248] gpio gpiochip0: Persistence not supported for GPIO 128 [ 2.421266] mediatek-disp-ovl 14005000.ovl: Adding to iommu group 0 [ 2.421694] mediatek-disp-ovl 14006000.ovl: Adding to iommu group 0 [ 2.421841] mediatek-disp-ovl 14014000.ovl: Adding to iommu group 0 [ 2.421979] mediatek-disp-rdma 14007000.rdma: Adding to iommu group 0 [ 2.422135] mediatek-disp-rdma 14015000.rdma: Adding to iommu group 0 [ 2.429607] ESR = 0x0000000096000004 [ 2.429624] EC = 0x25: DABT (current EL), IL = 32 bits [ 2.429631] SET = 0, FnV = 0 [ 2.444848] anx7625 3-0058: using DT '/soc/i2c@11cb0000/anx7625@58' for 'enable' GPIO lookup [ 2.446610] EA = 0, S1PTW = 0 [ 2.456189] of_get_named_gpiod_flags: parsed 'enable-gpios' property of node '/soc/i2c@11cb0000/anx7625@58[0]' - status (0) [ 2.464133] FSC = 0x04: level 0 translation fault [ 2.472625] gpio gpiochip0: Persistence not supported for GPIO 41 [ 2.480586] Data abort info: [ 2.480594] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [ 2.480601] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 2.480607] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 2.480616] [00000000000000d0] user address but active_mm is swapper [ 2.480647] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP [ 2.489107] anx7625 3-0058: using DT '/soc/i2c@11cb0000/anx7625@58' for 'reset' GPIO lookup [ 2.497405] Modules linked in: [ 2.497434] CPU: 4 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.12.18-rc1 #1 3a46926a83206508ac114c105c0e62582044df70 [ 2.503025] of_get_named_gpiod_flags: parsed 'reset-gpios' property of node '/soc/i2c@11cb0000/anx7625@58[0]' - status (0) [ 2.509098] clk: Disabling unused clocks [ 2.509736] PM: genpd: Disabling unused power domains [ 2.509759] ALSA device list: [ 2.509761] No soundcards found. [ 2.511584] Hardware name: Google Spherion (rev0 - 3) (DT) [ 2.511586] Workqueue: async async_run_entry_fn [ 2.519348] gpio gpiochip0: Persistence not supported for GPIO 42 [ 2.527478] [ 2.527480] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 2.527483] pc : power_allocator_bind+0xd0/0x2e0 [ 2.599906] panel-simple-dp-aux aux-3-0058: using DT '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel' for 'hpd' GPIO lookup [ 2.601559] lr : power_allocator_bind+0x34/0x2e0 [ 2.601561] sp : ffff8000800db010 [ 2.601562] x29: ffff8000800db010 x28: ffff0f7000a55000 x27: ffffb67e921b02d0 [ 2.601566] x26: ffffb67e934b1c18 x25: 0000000000000000 x24: ffff0f7000a56800 [ 2.601570] x23: 0000000000000000 x22: ffff0f7000a55000 x21: ffffb67e92599440 [ 2.601573] x20: ffff0f70009b0500 x19: 0000000000000000 x18: ffffffffffffffff [ 2.608613] of_get_named_gpiod_flags: can't parse 'hpd-gpios' property of node '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel[0]' [ 2.616853] x17: 000000040044ffff x16: 005000f2b5503510 x15: ffff8000800dae30 [ 2.616857] x14: ffff0f7000a58a1c [ 2.624066] of_get_named_gpiod_flags: can't parse 'hpd-gpio' property of node '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel[0]' [ 2.628926] x13: ffff0f7000a5826f x12: 0101010101010101 [ 2.628928] x11: 7f7f7f7f7f7f7f7f [ 2.634749] panel-simple-dp-aux aux-3-0058: using lookup tables for GPIO lookup [ 2.639348] x10: 0000000000000000 x9 : ffffb67e906f13c8 [ 2.639350] x8 : ffff0f70009b0540 [ 2.643087] panel-simple-dp-aux aux-3-0058: No GPIO consumer hpd found [ 2.646992] x7 : 0000000000000000 x6 : 0000000000000000 [ 2.655201] panel-simple-dp-aux aux-3-0058: using DT '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel' for 'enable' GPIO lookup [ 2.663315] x5 : 0000000000000000 x4 : 0000000000000040 x3 : 0000000000000000 [ 2.663318] x2 : ffffffffffffffc0 x1 : 0000000000000000 [ 2.670529] of_get_named_gpiod_flags: can't parse 'enable-gpios' property of node '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel[0]' [ 2.675388] x0 : ffff0f7000a55578 [ 2.675391] Call trace: [ 2.681210] of_get_named_gpiod_flags: can't parse 'enable-gpio' property of node '/soc/i2c@11cb0000/anx7625@58/aux-bus/panel[0]' [ 2.685811] power_allocator_bind+0xd0/0x2e0 [ 2.689548] panel-simple-dp-aux aux-3-0058: using lookup tables for GPIO lookup [ 2.693455] thermal_set_governor+0x48/0xc0 [ 2.701537] panel-simple-dp-aux aux-3-0058: No GPIO consumer enable found [ 2.710823] thermal_zone_device_register_with_trips+0x3ec/0x5a0 [ 2.813506] panel-simple-dp-aux aux-3-0058: Detected IVO R140NWF5 RH (0x057d) [ 2.816653] thermal_tripless_zone_device_register+0x30/0x40 [ 2.816657] __power_supply_register.part.0+0x358/0x4b0 [ 2.816667] __power_supply_register+0x60/0xb0 [ 2.823088] mediatek-drm mediatek-drm.15.auto: bound 14005000.ovl (ops 0xffffb67e91686270) [ 2.830124] devm_power_supply_register+0x60/0xb0 [ 2.830128] sbs_probe+0x288/0x398 [ 2.830130] i2c_device_probe+0x14c/0x290 [ 2.837595] mediatek-drm mediatek-drm.15.auto: bound 14006000.ovl (ops 0xffffb67e91686270) [ 2.844896] really_probe+0xc0/0x2a0 [ 2.852450] mediatek-drm mediatek-drm.15.auto: bound 14007000.rdma (ops 0xffffb67e91687478) [ 2.859659] __driver_probe_device+0x7c/0x138 [ 2.859663] driver_probe_device+0x40/0x118 [ 2.859667] __device_attach_driver+0xb4/0xf8 [ 2.859670] bus_for_each_drv+0x88/0xe8 [ 2.859673] __device_attach+0xa0/0x190 [ 2.859675] device_initial_probe+0x18/0x28 [ 2.859679] bus_probe_device+0xa8/0xb8 [ 2.859682] device_add+0x568/0x738 [ 2.867065] mediatek-drm mediatek-drm.15.auto: bound 14009000.color (ops 0xffffb67e91685a20) [ 2.874440] device_register+0x24/0x38 [ 2.874442] i2c_new_client_device+0x198/0x370 [ 2.881825] mediatek-drm mediatek-drm.15.auto: bound 1400a000.ccorr (ops 0xffffb67e916857a8) [ 2.889201] of_i2c_register_devices+0x114/0x198 [ 2.896585] mediatek-drm mediatek-drm.15.auto: bound 1400b000.aal (ops 0xffffb67e91685538) [ 2.903961] i2c_register_adapter+0x200/0x670 [ 2.911345] mediatek-drm mediatek-drm.15.auto: bound 1400c000.gamma (ops 0xffffb67e91685d68) [ 2.918721] i2c_add_adapter+0x7c/0xd8 [ 2.927700] mediatek-drm mediatek-drm.15.auto: bound 14010000.dsi (ops 0xffffb67e9168bc48) [ 2.933482] ec_i2c_probe+0xdc/0x158 [ 2.933485] platform_probe+0x6c/0xc8 [ 2.939655] mediatek-drm mediatek-drm.15.auto: bound 14014000.ovl (ops 0xffffb67e91686270) [ 2.945902] really_probe+0xc0/0x2a0 [ 2.945904] __driver_probe_device+0x7c/0x138 [ 2.952175] mediatek-drm mediatek-drm.15.auto: bound 14015000.rdma (ops 0xffffb67e91687478) [ 2.958406] driver_probe_device+0x40/0x118 [ 2.964931] mediatek-drm mediatek-drm.15.auto: Not creating crtc 1 because component 10 is disabled or missing [ 2.971257] __device_attach_driver+0xb4/0xf8 [ 2.971260] bus_for_each_drv+0x88/0xe8 [ 2.976297] [drm] Initialized mediatek 1.0.0 for mediatek-drm.15.auto on minor 1 [ 2.980291] __device_attach+0xa0/0x190 [ 2.980294] device_initial_probe+0x18/0x28 [ 2.980297] bus_probe_device+0xa8/0xb8 [ 2.980299] device_add+0x568/0x738 [ 2.980301] of_device_add+0x54/0x68 [ 2.980309] of_platform_device_create_pdata+0x94/0x130 [ 3.566249] of_platform_bus_create+0x154/0x390 [ 3.566251] of_platform_populate+0x54/0x100 [ 3.566253] devm_of_platform_populate+0x5c/0xc0 [ 3.566255] cros_ec_register+0x188/0x368 [ 3.566261] cros_ec_spi_probe+0x178/0x248 [ 3.566264] spi_probe+0x88/0xe8 [ 3.566273] really_probe+0xc0/0x2a0 [ 3.566276] __driver_probe_device+0x7c/0x138 [ 3.566278] driver_probe_device+0x40/0x118 [ 3.566281] __driver_attach_async_helper+0x50/0xb8 [ 3.566284] async_run_entry_fn+0x3c/0x158 [ 3.566286] process_one_work+0x188/0x438 [ 3.566293] worker_thread+0x304/0x410 [ 3.566296] kthread+0x124/0x130 [ 3.566299] ret_from_fork+0x10/0x20 [ 3.566307] Code: b4000b47 aa0703e5 a9019e86 52800013 (f84d0ca0) ===================================================== # Hardware platforms affected: ## mt8186-corsola-steelix-sku131072 - dashboard: https://d.kernelci.org/test/maestro:67c8c8c418018371956e1594 - compatibles: google,steelix-sku131072 | google,steelix - 2 fails since 2025-03-05 22:20 UTC - test path: boot - last pass: https://d.kernelci.org/test/maestro:67bd7853323b35c54a886efc - on 2025-02-25 07:59 UTC - commit hash: f5c37852dffd24f66248b4086ea594060f3299a4 - test id: maestro:67bd7853323b35c54a886efc ## mt8192-asurada-spherion-r0 - dashboard: https://d.kernelci.org/test/maestro:67c8c8c718018371956e15b9 - compatibles: google,spherion-rev3 | google,spherion-rev2 - 2 fails since 2025-03-05 22:21 UTC - test path: boot.nfs - last pass: https://d.kernelci.org/test/maestro:67bd7857323b35c54a886f13 - on 2025-02-25 07:59 UTC - commit hash: f5c37852dffd24f66248b4086ea594060f3299a4 - test id: maestro:67bd7857323b35c54a886f13 ## mt8195-cherry-tomato-r2 - dashboard: https://d.kernelci.org/test/maestro:67c8c8c818018371956e15bc - compatibles: google,tomato-rev2 | google,tomato | mediatek,mt8195 - 2 fails since 2025-03-05 22:20 UTC - test path: boot.nfs - last pass: https://d.kernelci.org/test/maestro:67bd7857323b35c54a886f16 - on 2025-02-25 07:59 UTC - commit hash: f5c37852dffd24f66248b4086ea594060f3299a4 - test id: maestro:67bd7857323b35c54a886f16 #kernelci issue maestro:e301e9dec14c72112ac560e4ba2548ec434c9e20 Reported-by: kernelci.org bot <bot(a)kernelci.org> -- This is an experimental report format. Please send feedback in! Talk to us at kernelci(a)lists.linux.dev Made with love by the KernelCI team - https://kernelci.org

4 months

1
0
0 0

[REGRESSION] stable-rc/linux-6.12.y: (boot) NULL pointer dereference at virtual address 00000000000000d0 [logs...

by KernelCI bot

Hello, New boot regression found on stable-rc/linux-6.12.y: --- NULL pointer dereference at virtual address 00000000000000d0 [logspec:generic_linux_boot,linux.kernel.null_pointer_dereference] --- - dashboard: https://d.kernelci.org/issue/maestro:5a856af05fecdebd3b9507ff4ed4d0b5b6a54b… - giturl: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git - commit HEAD: 43639cc57b2273fce42874dd7f6e0b872f4984c5 Log excerpt: ===================================================== [ 2.221462] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000d0 [ 2.223502] Key type fscrypt-provisioning registered [ 2.223634] Key type encrypted registered [ 2.232290] Mem abort info: [ 2.244067] ESR = 0x0000000096000004 [ 2.247839] EC = 0x25: DABT (current EL), IL = 32 bits [ 2.253175] SET = 0, FnV = 0 [ 2.253596] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ovl@14005000 [ 2.253665] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ovl@14006000 [ 2.253698] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/rdma@14007000 [ 2.253730] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/color@14009000 [ 2.253774] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/ccorr@1400b000 [ 2.253806] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/aal@1400c000 [ 2.253839] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/gamma@1400d000 [ 2.253958] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/dsi@14013000 [ 2.254004] mediatek-drm mediatek-drm.15.auto: Adding component match for /soc/rdma@1401f000 [ 2.256239] EA = 0, S1PTW = 0 [ 2.263379] reg-fixed-voltage regulator-pp3300-disp-x: using DT '/regulator-pp3300-disp-x' for '(default)' GPIO lookup [ 2.263399] of_get_named_gpiod_flags: parsed 'gpios' property of node '/regulator-pp3300-disp-x[0]' - status (0) [ 2.263418] gpio gpiochip0: Persistence not supported for GPIO 153 [ 2.263517] reg-fixed-voltage regulator-pp3300-s3: using DT '/regulator-pp3300-s3' for '(default)' GPIO lookup [ 2.263529] of_get_named_gpiod_flags: can't parse 'gpios' property of node '/regulator-pp3300-s3[0]' [ 2.263539] of_get_named_gpiod_flags: can't parse 'gpio' property of node '/regulator-pp3300-s3[0]' [ 2.263549] reg-fixed-voltage regulator-pp3300-s3: using lookup tables for GPIO lookup [ 2.263553] reg-fixed-voltage regulator-pp3300-s3: No GPIO consumer (default) found [ 2.263728] reg-fixed-voltage regulator-usb-p1-vbus: using DT '/regulator-usb-p1-vbus' for '(default)' GPIO lookup [ 2.263742] of_get_named_gpiod_flags: can't parse 'gpios' property of node '/regulator-usb-p1-vbus[0]' [ 2.263763] of_get_named_gpiod_flags: parsed 'gpio' property of node '/regulator-usb-p1-vbus[0]' - status (0) [ 2.263780] gpio gpiochip0: Persistence not supported for GPIO 148 [ 2.264577] of_get_named_gpiod_flags: can't parse 'gpio' property of node '/regulator-pp3300-ldo-z5[0]' [ 2.272938] FSC = 0x04: level 0 translation fault [ 2.273171] cpufreq: cpufreq_online: CPU0: Running at unlisted initial frequency: 1999998 KHz, changing to: 2000000 KHz [ 2.273574] cpu cpu0: EM: created perf domain [ 2.273669] pp3300_vcn33_x: Bringing 3500000uV into 3300000-3300000uV [ 2.274033] cpufreq: cpufreq_online: CPU6: Running at unlisted initial frequency: 1084999 KHz, changing to: 1085000 KHz [ 2.274430] cpu cpu6: EM: created perf domain [ 2.274852] pp2760_vsim2_x: Bringing 1860000uV into 2700000-2700000uV [ 2.275758] i2c_hid_of 2-002c: using DT '/soc/i2c@11009000/trackpad@2c' for 'reset' GPIO lookup [ 2.275812] of_get_named_gpiod_flags: can't parse 'reset-gpios' property of node '/soc/i2c@11009000/trackpad@2c[0]' [ 2.275879] of_get_named_gpiod_flags: can't parse 'reset-gpio' property of node '/soc/i2c@11009000/trackpad@2c[0]' [ 2.275910] i2c_hid_of 2-002c: using lookup tables for GPIO lookup [ 2.275914] i2c_hid_of 2-002c: No GPIO consumer reset found [ 2.275970] i2c_hid_of_goodix 1-005d: using DT '/soc/i2c@11008000/touchscreen@5d' for 'reset' GPIO lookup [ 2.276063] i2c_hid_of 2-002c: supply vddl not found, using dummy regulator [ 2.276059] of_get_named_gpiod_flags: parsed 'reset-gpios' property of node '/soc/i2c@11008000/touchscreen@5d[0]' - status (0) [ 2.276099] gpio gpiochip0: Persistence not supported for GPIO 60 [ 2.276212] i2c_hid_of_goodix 1-005d: supply mainboard-vddio not found, using dummy regulator [ 2.279909] mt6358-sound mt6358-sound: mt6358_platform_driver_probe(), dev name mt6358-sound [ 2.280156] rt5682s 5-001a: Using default DAI clk names: rt5682-dai-wclk, rt5682-dai-bclk [ 2.281342] reg-fixed-voltage regulator-pp3300-ldo-z5: using lookup tables for GPIO lookup [ 2.281345] reg-fixed-voltage regulator-pp3300-ldo-z5: No GPIO consumer (default) found [ 2.281559] reg-fixed-voltage regulator-pp1800-dpbrdg-dx: using DT '/regulator-pp1800-dpbrdg-dx' for '(default)' GPIO lookup [ 2.281715] reg-fixed-voltage regulator-pp1800-edpbrdg-dx: using DT '/regulator-pp1800-edpbrdg-dx' for '(default)' GPIO lookup [ 2.281722] of_get_named_gpiod_flags: can't parse 'gpios' property of node '/regulator-pp1800-edpbrdg-dx[0]' [ 2.281734] of_get_named_gpiod_flags: parsed 'gpio' property of node '/regulator-pp1800-edpbrdg-dx[0]' - status (0) [ 2.281743] gpio gpiochip0: Persistence not supported for GPIO 30 [ 2.281986] rt5682s 5-001a: using DT '/soc/i2c@11016000/codec@1a' for 'realtek,ldo1-en' GPIO lookup [ 2.282002] of_get_named_gpiod_flags: can't parse 'realtek,ldo1-en-gpios' property of node '/soc/i2c@11016000/codec@1a[0]' [ 2.282014] of_get_named_gpiod_flags: can't parse 'realtek,ldo1-en-gpio' property of node '/soc/i2c@11016000/codec@1a[0]' [ 2.282022] rt5682s 5-001a: using lookup tables for GPIO lookup [ 2.282026] rt5682s 5-001a: No GPIO consumer realtek,ldo1-en found [ 2.286514] panfrost 13040000.gpu: clock rate = 249999863 [ 2.288872] panfrost 13040000.gpu: [drm:panfrost_devfreq_init] Failed to register cooling device [ 2.289521] panfrost 13040000.gpu: mali-g52 id 0x7402 major 0x1 minor 0x0 status 0x0 [ 2.289527] panfrost 13040000.gpu: features: 00000000,00000cf7, issues: 00000000,00000400 [ 2.289532] panfrost 13040000.gpu: Features: L2:0x07120206 Shader:0x00000002 Tiler:0x00000209 Mem:0x1 MMU:0x00002823 AS:0xff JS:0x7 [ 2.289538] panfrost 13040000.gpu: shader_present=0x3 l2_present=0x1 [ 2.290073] Data abort info: [ 2.291102] [drm] Initialized panfrost 1.2.0 for 13040000.gpu on minor 0 [ 2.291640] mtu3 11201000.usb: supply vusb33 not found, using dummy regulator [ 2.291905] mtu3 11201000.usb: uwk - reg:0x420, version:2 [ 2.291982] mtu3 11201000.usb: dr_mode: 3, drd: auto [ 2.291987] mtu3 11201000.usb: u2p_dis_msk: 0, u3p_dis_msk: 0 [ 2.292141] mtu3 11201000.usb: usb3-drd: 0 [ 2.292911] xhci-mtk 11200000.usb: supply vusb33 not found, using dummy regulator [ 2.293231] xhci-mtk 11200000.usb: xHCI Host Controller [ 2.293400] xhci-mtk 11200000.usb: new USB bus registered, assigned bus number 1 [ 2.293469] xhci-mtk 11200000.usb: USB3 root hub has no ports [ 2.293474] xhci-mtk 11200000.usb: hcc params 0x01400f99 hci version 0x110 quirks 0x0000000000200010 [ 2.293501] xhci-mtk 11200000.usb: irq 269, io mem 0x11200000 [ 2.293704] usb usb1: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 6.12 [ 2.293711] usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1 [ 2.293715] usb usb1: Product: xHCI Host Controller [ 2.293718] usb usb1: Manufacturer: Linux 6.12.18-rc1 xhci-hcd [ 2.293722] usb usb1: SerialNumber: 11200000.usb [ 2.294096] hub 1-0:1.0: USB hub found [ 2.294119] hub 1-0:1.0: 1 port detected [ 2.294373] mtu3 11201000.usb: xHCI platform device register success... [ 2.294941] mtu3 11281000.usb: supply vusb33 not found, using dummy regulator [ 2.295211] mtu3 11281000.usb: uwk - reg:0x424, version:2 [ 2.295298] mtu3 11281000.usb: dr_mode: 3, drd: auto [ 2.295303] mtu3 11281000.usb: u2p_dis_msk: 0, u3p_dis_msk: 0 [ 2.295449] mtu3 11281000.usb: usb3-drd: 1 [ 2.297623] xhci-mtk 11280000.usb: supply vusb33 not found, using dummy regulator [ 2.297959] xhci-mtk 11280000.usb: xHCI Host Controller [ 2.298124] xhci-mtk 11280000.usb: new USB bus registered, assigned bus number 2 [ 2.298410] of_get_named_gpiod_flags: parsed 'gpios' property of node '/regulator-pp1800-dpbrdg-dx[0]' - status (0) [ 2.299642] xhci-mtk 11280000.usb: hcc params 0x01400f99 hci version 0x110 quirks 0x0000000000200010 [ 2.299676] xhci-mtk 11280000.usb: irq 270, io mem 0x11280000 [ 2.299776] xhci-mtk 11280000.usb: xHCI Host Controller [ 2.299928] xhci-mtk 11280000.usb: new USB bus registered, assigned bus number 3 [ 2.299943] xhci-mtk 11280000.usb: Host supports USB 3.2 Enhanced SuperSpeed [ 2.300053] usb usb2: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 6.12 [ 2.300059] usb usb2: New USB device strings: Mfr=3, Product=2, SerialNumber=1 [ 2.300063] usb usb2: Product: xHCI Host Controller [ 2.300066] usb usb2: Manufacturer: Linux 6.12.18-rc1 xhci-hcd [ 2.300070] usb usb2: SerialNumber: 11280000.usb [ 2.300411] hub 2-0:1.0: USB hub found [ 2.300433] hub 2-0:1.0: 1 port detected [ 2.300684] usb usb3: We don't know the algorithms for LPM for this host, disabling LPM. [ 2.300753] usb usb3: New USB device found, idVendor=1d6b, idProduct=0003, bcdDevice= 6.12 [ 2.300759] usb usb3: New USB device strings: Mfr=3, Product=2, SerialNumber=1 [ 2.300763] usb usb3: Product: xHCI Host Controller [ 2.300766] usb usb3: Manufacturer: Linux 6.12.18-rc1 xhci-hcd [ 2.300770] usb usb3: SerialNumber: 11280000.usb [ 2.301070] hub 3-0:1.0: USB hub found [ 2.301090] hub 3-0:1.0: 1 port detected [ 2.301348] mtu3 11281000.usb: xHCI platform device register success... [ 2.301983] anx7625 0-0058: using DT '/soc/i2c@11007000/anx7625@58' for 'enable' GPIO lookup [ 2.301999] of_get_named_gpiod_flags: parsed 'enable-gpios' property of node '/soc/i2c@11007000/anx7625@58[0]' - status (0) [ 2.302020] gpio gpiochip0: Persistence not supported for GPIO 96 [ 2.302033] anx7625 0-0058: using DT '/soc/i2c@11007000/anx7625@58' for 'reset' GPIO lookup [ 2.302045] of_get_named_gpiod_flags: parsed 'reset-gpios' property of node '/soc/i2c@11007000/anx7625@58[0]' - status (0) [ 2.302058] gpio gpiochip0: Persistence not supported for GPIO 98 [ 2.306779] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [ 2.315334] gpio gpiochip0: Persistence not supported for GPIO 39 [ 2.323615] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 2.323617] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 2.323619] [00000000000000d0] user address but active_mm is swapper [ 2.323622] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP [ 2.359334] panel-simple-dp-aux aux-0-0058: using DT '/soc/i2c@11007000/anx7625@58/aux-bus/panel' for 'hpd' GPIO lookup [ 2.362170] Modules linked in: [ 2.362174] CPU: 6 UID: 0 PID: 81 Comm: kworker/u32:4 Not tainted 6.12.18-rc1 #1 3a46926a83206508ac114c105c0e62582044df70 [ 2.362179] Hardware name: Google Steelix board (DT) [ 2.362181] Workqueue: async async_run_entry_fn [ 2.372178] of_get_named_gpiod_flags: can't parse 'hpd-gpios' property of node '/soc/i2c@11007000/anx7625@58/aux-bus/panel[0]' [ 2.381277] [ 2.381278] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 2.381281] pc : power_allocator_bind+0xd0/0x2e0 [ 2.390318] of_get_named_gpiod_flags: can't parse 'hpd-gpio' property of node '/soc/i2c@11007000/anx7625@58/aux-bus/panel[0]' [ 2.398210] lr : power_allocator_bind+0x34/0x2e0 [ 2.398212] sp : ffff8000808e3010 [ 2.398213] x29: ffff8000808e3010 x28: ffff77e38090f000 x27: ffffc2d32b3b02d0 [ 2.398217] x26: ffffc2d32c6b1c18 x25: 0000000000000000 x24: ffff77e38090e800 [ 2.398220] x23: 0000000000000000 [ 2.405877] panel-simple-dp-aux aux-0-0058: using lookup tables for GPIO lookup [ 2.416187] x22: ffff77e38090f000 x21: ffffc2d32b799440 [ 2.416189] x20: ffff77e380e16fc0 x19: 0000000000000000 x18: ffffffffffffffff [ 2.416192] x17: 000000040044ffff x16: 005000f2b5503510 x15: ffff8000808e2e30 [ 2.416195] x14: ffff77e3801dea1c x13: ffff77e3801de26f x12: 0000000000000001 [ 2.416198] x11: 0000000084683902 x10: 0000000000000000 x9 : ffffc2d3298f13c8 [ 2.416201] x8 : ffff77e380e17000 [ 2.425498] panel-simple-dp-aux aux-0-0058: No GPIO consumer hpd found [ 2.435385] x7 : 0000000000000000 x6 : 0000000000000000 [ 2.435387] x5 : 0000000000000000 x4 : 0000000000000040 x3 : 0000000000000000 [ 2.435390] x2 : ffffffffffffffc0 x1 : 0000000000000000 x0 : ffff77e38090f578 [ 2.435393] Call trace: [ 2.435394] power_allocator_bind+0xd0/0x2e0 [ 2.441647] panel-simple-dp-aux aux-0-0058: using DT '/soc/i2c@11007000/anx7625@58/aux-bus/panel' for 'enable' GPIO lookup [ 2.450933] thermal_set_governor+0x48/0xc0 [ 2.450937] thermal_zone_device_register_with_trips+0x3ec/0x5a0 [ 2.450941] thermal_tripless_zone_device_register+0x30/0x40 [ 2.450945] __power_supply_register.part.0+0x358/0x4b0 [ 2.455820] of_get_named_gpiod_flags: can't parse 'enable-gpios' property of node '/soc/i2c@11007000/anx7625@58/aux-bus/panel[0]' [ 2.466571] __power_supply_register+0x60/0xb0 [ 2.466574] devm_power_supply_register+0x60/0xb0 [ 2.466578] sbs_probe+0x288/0x398 [ 2.466580] i2c_device_probe+0x14c/0x290 [ 2.470942] of_get_named_gpiod_flags: can't parse 'enable-gpio' property of node '/soc/i2c@11007000/anx7625@58/aux-bus/panel[0]' [ 2.477345] really_probe+0xc0/0x2a0 [ 2.477349] __driver_probe_device+0x7c/0x138 [ 2.477352] driver_probe_device+0x40/0x118 [ 2.477355] __device_attach_driver+0xb4/0xf8 [ 2.477358] bus_for_each_drv+0x88/0xe8 [ 2.477360] __device_attach+0xa0/0x190 [ 2.488134] panel-simple-dp-aux aux-0-0058: using lookup tables for GPIO lookup [ 2.492463] device_initial_probe+0x18/0x28 [ 2.492466] bus_probe_device+0xa8/0xb8 [ 2.492469] device_add+0x568/0x738 [ 2.492471] device_register+0x24/0x38 [ 2.492473] i2c_new_client_device+0x198/0x370 [ 2.498909] panel-simple-dp-aux aux-0-0058: No GPIO consumer enable found [ 2.507579] of_i2c_register_devices+0x114/0x198 [ 2.507581] i2c_register_adapter+0x200/0x670 [ 2.507584] i2c_add_adapter+0x7c/0xd8 [ 2.604977] panel-simple-dp-aux aux-0-0058: Detected AUO B116XAN06.3 (0x635c) [ 2.607331] ec_i2c_probe+0xdc/0x158 [ 2.607334] platform_probe+0x6c/0xc8 [ 2.607337] really_probe+0xc0/0x2a0 [ 2.607340] __driver_probe_device+0x7c/0x138 [ 2.615592] it6505 3-005c: can not get extcon device! [ 2.626524] driver_probe_device+0x40/0x118 [ 2.626527] __device_attach_driver+0xb4/0xf8 [ 2.626530] bus_for_each_drv+0x88/0xe8 [ 2.639217] mtk-msdc 11230000.mmc: using DT '/soc/mmc@11230000' for 'wp' GPIO lookup [ 2.639300] mtk-msdc 11240000.mmc: using DT '/soc/mmc@11240000' for 'wp' GPIO lookup [ 2.639314] of_get_named_gpiod_flags: can't parse 'wp-gpios' property of node '/soc/mmc@11240000[0]' [ 2.639326] of_get_named_gpiod_flags: can't parse 'wp-gpio' property of node '/soc/mmc@11240000[0]' [ 2.639334] mtk-msdc 11240000.mmc: using lookup tables for GPIO lookup [ 2.639338] mtk-msdc 11240000.mmc: No GPIO consumer wp found [ 2.639364] mtk-msdc 11240000.mmc: allocated mmc-pwrseq [ 2.643184] mtk-iommu 14016000.iommu: bound 14003000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643191] mtk-iommu 14016000.iommu: bound 14004000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643193] mtk-iommu 14016000.iommu: bound 1b002000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643196] mtk-iommu 14016000.iommu: bound 1602e000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643198] mtk-iommu 14016000.iommu: bound 17010000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643201] mtk-iommu 14016000.iommu: bound 14023000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643204] mtk-iommu 14016000.iommu: bound 1502e000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643206] mtk-iommu 14016000.iommu: bound 1582e000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643208] mtk-iommu 14016000.iommu: bound 1a001000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643211] mtk-iommu 14016000.iommu: bound 1a002000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643214] mtk-iommu 14016000.iommu: bound 1a00f000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643216] mtk-iommu 14016000.iommu: bound 1a010000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643218] mtk-iommu 14016000.iommu: bound 1c10f000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643221] mtk-iommu 14016000.iommu: bound 1c00f000.smi (ops 0xffffc2d32b3d3ca8) [ 2.643357] mediatek-disp-ovl 14005000.ovl: Adding to iommu group 0 [ 2.643682] mediatek-disp-ovl 14006000.ovl: Adding to iommu group 0 [ 2.643856] mediatek-disp-rdma 14007000.rdma: Adding to iommu group 0 [ 2.644010] mediatek-disp-rdma 1401f000.rdma: Adding to iommu group 0 [ 2.644240] mediatek-drm mediatek-drm.15.auto: bound 14005000.ovl (ops 0xffffc2d32a886270) [ 2.644245] mediatek-drm mediatek-drm.15.auto: bound 14006000.ovl (ops 0xffffc2d32a886270) [ 2.644248] mediatek-drm mediatek-drm.15.auto: bound 14007000.rdma (ops 0xffffc2d32a887478) [ 2.644250] mediatek-drm mediatek-drm.15.auto: bound 14009000.color (ops 0xffffc2d32a885a20) [ 2.644253] mediatek-drm mediatek-drm.15.auto: bound 1400b000.ccorr (ops 0xffffc2d32a8857a8) [ 2.644256] mediatek-drm mediatek-drm.15.auto: bound 1400c000.aal (ops 0xffffc2d32a885538) [ 2.644259] mediatek-drm mediatek-drm.15.auto: bound 1400d000.gamma (ops 0xffffc2d32a885d68) [ 2.645595] mediatek-drm mediatek-drm.15.auto: bound 14013000.dsi (ops 0xffffc2d32a88bc48) [ 2.645600] mediatek-drm mediatek-drm.15.auto: bound 1401f000.rdma (ops 0xffffc2d32a887478) [ 2.645640] mediatek-drm mediatek-drm.15.auto: Not creating crtc 1 because component 10 is disabled or missing [ 2.646204] [drm] Initialized mediatek 1.0.0 for mediatek-drm.15.auto on minor 1 [ 2.647659] gpio-keys gpio-keys: using DT '/gpio-keys/pen-insert-switch' for '(default)' GPIO lookup [ 2.647679] of_get_named_gpiod_flags: parsed 'gpios' property of node '/gpio-keys/pen-insert-switch[0]' - status (0) [ 2.647699] gpio gpiochip0: Persistence not supported for GPIO 18 [ 2.647707] __device_attach+0xa0/0x190 [ 2.647710] device_initial_probe+0x18/0x28 [ 2.647713] bus_probe_device+0xa8/0xb8 [ 2.647715] device_add+0x568/0x738 [ 2.647717] of_device_add+0x54/0x68 [ 2.647721] of_platform_device_create_pdata+0x94/0x130 [ 2.647723] of_platform_bus_create+0x154/0x390 [ 2.647726] of_platform_populate+0x54/0x100 [ 2.647728] devm_of_platform_populate+0x5c/0xc0 [ 2.647840] input: gpio-keys as /devices/platform/gpio-keys/input/input0 [ 2.648296] gpio-keys wifi-wakeup: using DT '/wifi-wakeup/wowlan-event' for '(default)' GPIO lookup [ 2.648307] of_get_named_gpiod_flags: parsed 'gpios' property of node '/wifi-wakeup/wowlan-event[0]' - status (0) [ 2.648317] gpio gpiochip0: Persistence not supported for GPIO 7 [ 2.648375] input: wifi-wakeup as /devices/platform/wifi-wakeup/input/input1 [ 2.658162] of_get_named_gpiod_flags: can't parse 'wp-gpios' property of node '/soc/mmc@11230000[0]' [ 2.664222] cros_ec_register+0x188/0x368 [ 2.664226] cros_ec_spi_probe+0x178/0x248 [ 2.664228] spi_probe+0x88/0xe8 [ 2.671184] clk: Disabling unused clocks [ 2.671423] PM: genpd: Disabling unused power domains [ 2.671491] ALSA device list: [ 2.671494] No soundcards found. [ 2.673266] of_get_named_gpiod_flags: can't parse 'wp-gpio' property of node '/soc/mmc@11230000[0]' [ 2.684279] really_probe+0xc0/0x2a0 [ 2.684282] __driver_probe_device+0x7c/0x138 [ 2.684285] driver_probe_device+0x40/0x118 [ 2.695228] mtk-msdc 11230000.mmc: using lookup tables for GPIO lookup [ 2.701124] __driver_attach_async_helper+0x50/0xb8 [ 2.701127] async_run_entry_fn+0x3c/0x158 [ 2.701129] process_one_work+0x188/0x438 [ 2.707300] mtk-msdc 11230000.mmc: No GPIO consumer wp found [ 2.712677] worker_thread+0x304/0x410 [ 2.712680] kthread+0x124/0x130 [ 2.849438] hid-multitouch 0018:27C6:0EAA.0001: unknown main item tag 0x0 [ 2.853240] ret_from_fork+0x10/0x20 [ 2.853246] Code: b4000b47 aa0703e5 a9019e86 52800013 (f84d0ca0) ===================================================== # Hardware platforms affected: ## mt8186-corsola-steelix-sku131072 - dashboard: https://d.kernelci.org/test/maestro:67c8c8c618018371956e15b6 - compatibles: google,steelix-sku131072 | google,steelix - 1 fails since 2025-03-05 22:20 UTC - test path: boot.nfs - last pass: https://d.kernelci.org/test/maestro:67bd7856323b35c54a886f0c - on 2025-02-25 07:59 UTC - commit hash: f5c37852dffd24f66248b4086ea594060f3299a4 - test id: maestro:67bd7856323b35c54a886f0c #kernelci issue maestro:5a856af05fecdebd3b9507ff4ed4d0b5b6a54b63 Reported-by: kernelci.org bot <bot(a)kernelci.org> -- This is an experimental report format. Please send feedback in! Talk to us at kernelci(a)lists.linux.dev Made with love by the KernelCI team - https://kernelci.org

4 months

1
0
0 0

[PATCH v2 1/2] Revert "drivers: core: synchronize really_probe() and dev_uevent()"

by Dmitry Torokhov

This reverts commit c0a40097f0bc81deafc15f9195d1fb54595cd6d0. Probing a device can take arbitrary long time. In the field we observed that, for example, probing a bad micro-SD cards in an external USB card reader (or maybe cards were good but cables were flaky) sometimes takes longer than 2 minutes due to multiple retries at various levels of the stack. We can not block uevent_show() method for that long because udev is reading that attribute very often and that blocks udev and interferes with booting of the system. The change that introduced locking was concerned with dev_uevent() racing with unbinding the driver. However we can handle it without locking (which will be done in subsequent patch). There was also claim that synchronization with probe() is needed to properly load USB drivers, however this is a red herring: the change adding the lock was introduced in May of last year and USB loading and probing worked properly for many years before that. Revert the harmful locking. Cc: stable(a)vger.kernel.org Signed-off-by: Dmitry Torokhov <dmitry.torokhov(a)gmail.com> --- v2: added Cc: stable, no code changes. drivers/base/core.c | 3 --- 1 file changed, 3 deletions(-) diff --git a/drivers/base/core.c b/drivers/base/core.c index 5a1f05198114..9f4d4868e3b4 100644 --- a/drivers/base/core.c +++ b/drivers/base/core.c @@ -2725,11 +2725,8 @@ static ssize_t uevent_show(struct device *dev, struct device_attribute *attr, if (!env) return -ENOMEM; - /* Synchronize with really_probe() */ - device_lock(dev); /* let the kset specific function add its keys */ retval = kset->uevent_ops->uevent(&dev->kobj, env); - device_unlock(dev); if (retval) goto out; -- 2.49.0.rc0.332.g42c0ae87b1-goog

4 months

2
2
0 0

[PATCH] qlcnic: fix a memory leak in __qlcnic_pci_sriov_enable()

by Haoxiang Li

Add qlcnic_sriov_free_vlans() to free the memory allocated by qlcnic_sriov_alloc_vlans() if qlcnic_sriov_alloc_vlans() fails. Fixes: 60ec7fcfe768 ("qlcnic: potential dereference null pointer of rx_queue->page_ring") Cc: stable(a)vger.kernel.org Signed-off-by: Haoxiang Li <haoxiang_li2024(a)163.com> --- drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_pf.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_pf.c b/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_pf.c index 8dd7aa08ecfb..b8a9e0e2907e 100644 --- a/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_pf.c +++ b/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_pf.c @@ -598,8 +598,10 @@ static int __qlcnic_pci_sriov_enable(struct qlcnic_adapter *adapter, goto del_flr_queue; err = qlcnic_sriov_alloc_vlans(adapter); - if (err) + if (err) { + qlcnic_sriov_free_vlans(adapter); goto del_flr_queue; + } return err; -- 2.25.1

4 months

2
1
0 0

[PATCH v2] qlcnic: fix a memory leak in qlcnic_sriov_set_guest_vlan_mode()

by Haoxiang Li

Add qlcnic_sriov_free_vlans() to free the memory allocated by qlcnic_sriov_alloc_vlans() if qlcnic_sriov_alloc_vlans() fails or "sriov->allowed_vlans" fails to be allocated. Fixes: 91b7282b613d ("qlcnic: Support VLAN id config.") Cc: stable(a)vger.kernel.org Signed-off-by: Haoxiang Li <haoxiang_li2024(a)163.com> --- Changes in v2: - Add qlcnic_sriov_free_vlans() if qlcnic_sriov_alloc_vlans() fails. - Modify the patch description. vf_info was allocated by kcalloc, no need to do more checks cause kfree(NULL) is safe. Thanks, Paolo! --- drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_common.c | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_common.c b/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_common.c index f9dd50152b1e..0dd9d7cb1de9 100644 --- a/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_common.c +++ b/drivers/net/ethernet/qlogic/qlcnic/qlcnic_sriov_common.c @@ -446,16 +446,20 @@ static int qlcnic_sriov_set_guest_vlan_mode(struct qlcnic_adapter *adapter, sriov->num_allowed_vlans); ret = qlcnic_sriov_alloc_vlans(adapter); - if (ret) + if (ret) { + qlcnic_sriov_free_vlans(adapter); return ret; + } if (!sriov->any_vlan) return 0; num_vlans = sriov->num_allowed_vlans; sriov->allowed_vlans = kcalloc(num_vlans, sizeof(u16), GFP_KERNEL); - if (!sriov->allowed_vlans) + if (!sriov->allowed_vlans) { + qlcnic_sriov_free_vlans(adapter); return -ENOMEM; + } vlans = (u16 *)&cmd->rsp.arg[3]; for (i = 0; i < num_vlans; i++) -- 2.25.1

4 months

2
2
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror