libreport version: 2.0.8 abrt_version: 2.0.7 cmdline: BOOT_IMAGE=/vmlinuz-3.2.5-3.fc16.x86_64 root=UUID=42527cb8-1a42-4f0a-a374-b01f7fa3a38f ro rd.md=0 rd.lvm=0 rd.dm=0 KEYTABLE=us quiet SYSFONT=latarcyrheb-sun16 rhgb rd.luks=0 LANG=en_US.UTF-8 kernel: 3.2.5-3.fc16.x86_64 reason: BUG: unable to handle kernel NULL pointer dereference at 0000000000000060 time: Mon 13 Feb 2012 10:00:47 AM PST backtrace: :BUG: unable to handle kernel NULL pointer dereference at 0000000000000060 :IP: [<ffffffffa0296d39>] rtl92ce_get_desc+0x19/0xd0 [rtl8192ce] :PGD c16a7067 PUD a95c1067 PMD 0 :Oops: 0000 [#1] SMP :CPU 2 :Modules linked in: tcp_lp ppdev parport_pc lp parport fuse be2iscsi iscsi_boot_sysfs bnx2i cnic uio cxgb4i cxgb4 cxgb3i libcxgbi cxgb3 mdio ib_iser rdma_cm ib_cm fcoe iw_cm libfcoe ib_sa ib_mad libfc ib_core scsi_transport_fc ib_addr scsi_tgt iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi 8021q garp stp llc ip6t_REJECT nf_conntrack_ipv6 nf_defrag_ipv6 ip6table_filter ip6_tables nf_conntrack_ipv4 nf_defrag_ipv4 xt_state nf_conntrack snd_hda_codec_hdmi snd_hda_codec_conexant arc4 uvcvideo videodev media v4l2_compat_ioctl32 snd_hda_intel snd_hda_codec snd_hwdep joydev snd_seq snd_seq_device microcode snd_pcm rtl8192ce(-) rtl8192c_common rtlwifi mac80211 cfg80211 i2c_i801 iTCO_wdt iTCO_vendor_support snd_timer snd_page_alloc thinkpad_acpi e1000e rfkill snd soundcore uinput sdhci_pci sdhci mmc_core wmi i915 drm_kms_helper drm i2c_algo_bit i2c_core video [last unloaded: scsi_wait_scan] :Pid: 3609, comm: rmmod Not tainted 3.2.5-3.fc16.x86_64 #1 LENOVO 4286CTO/4286CTO :RIP: 0010:[<ffffffffa0296d39>] [<ffffffffa0296d39>] rtl92ce_get_desc+0x19/0xd0 [rtl8192ce] :RSP: 0018:ffff8800adb97b58 EFLAGS: 00010046 :RAX: ffffffffa029a2a0 RBX: 0000000000000000 RCX: 0000000000000000 :RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000060 :RBP: ffff8800adb97b68 R08: ffff880116e85800 R09: ffff8801194000a0 :R10: ffffffc0fffff000 R11: ffffffc0fffff000 R12: ffff880113897200 :R13: 0000000000000060 R14: 0000000000000003 R15: 0000000000000003 :FS: 00007f1d236ff700(0000) GS:ffff88011e280000(0000) knlGS:0000000000000000 :CS: 0010 DS: 0000 ES: 0000 CR0: 000000008005003b :CR2: 0000000000000060 CR3: 00000000ad941000 CR4: 00000000000406e0 :DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 :DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 :Process rmmod (pid: 3609, threadinfo ffff8800adb96000, task ffff8800ad902e40) :Stack: : 0000000000000003 ffff880115c02540 ffff8800adb97ca8 ffffffffa027b8e7 : 0000000000000282 000000010015000e ffff8800adb97fd8 ffff880115c02810 : ffff8800adb97bc8 ffffffff81054732 0000000000000000 ffff880115c00d40 :Call Trace: : [<ffffffffa027b8e7>] _rtl_pci_rx_interrupt+0x187/0x650 [rtlwifi] : [<ffffffff81054732>] ? complete+0x52/0x60 : [<ffffffffa027ce69>] _rtl_pci_interrupt+0x409/0x930 [rtlwifi] : [<ffffffff810dec3d>] __free_irq+0x17d/0x220 : [<ffffffff810dee65>] free_irq+0x55/0xd0 : [<ffffffffa027c656>] rtl_pci_disconnect+0x176/0x1a0 [rtlwifi] : [<ffffffff812dcc86>] pci_device_remove+0x46/0x110 : [<ffffffff81392e1c>] __device_release_driver+0x7c/0xe0 : [<ffffffff813936f8>] driver_detach+0xb8/0xc0 : [<ffffffff81392c5a>] bus_remove_driver+0x8a/0x100 : [<ffffffff81393eb2>] driver_unregister+0x62/0xa0 : [<ffffffff812dbb34>] pci_unregister_driver+0x44/0xa0 : [<ffffffffa0296e5c>] rtl92ce_module_exit+0x10/0x1b4 [rtl8192ce] : [<ffffffff810aa9ee>] sys_delete_module+0x18e/0x250 : [<ffffffff810c0065>] ? cgroup_iter_next+0x15/0x80 : [<ffffffff815e9782>] system_call_fastpath+0x16/0x1b :Code: ff 09 d0 89 07 48 83 c4 08 5b 5d c3 66 0f 1f 44 00 00 55 48 89 e5 53 48 83 ec 08 66 66 66 66 90 40 84 f6 89 d3 74 13 84 d2 75 57 <8b> 07 48 83 c4 08 5b 5d c1 e8 1f c3 0f 1f 00 84 d2 74 ed 80 fa :RIP [<ffffffffa0296d39>] rtl92ce_get_desc+0x19/0xd0 [rtl8192ce] : RSP <ffff8800adb97b58> :CR2: 0000000000000060 smolt_data: : : :General :================================= :UUID: 8e3e71b2-5890-489a-aa59-738a8607babc :OS: Fedora release 16 (Verne) :Default run level: Unknown :Language: en_US.UTF-8 :Platform: x86_64 :BogoMIPS: 4983.74 :CPU Vendor: GenuineIntel :CPU Model: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz :CPU Stepping: 7 :CPU Family: 6 :CPU Model Num: 42 :Number of CPUs: 4 :CPU Speed: 2501 :System Memory: 3838 :System Swap: 5887 :Vendor: LENOVO :System: 4286CTO ThinkPad X220 :Form factor: Notebook :Kernel: 3.2.5-3.fc16.x86_64 :SELinux Enabled: 0 :SELinux Policy: targeted :SELinux Enforce: Unknown :MythTV Remote: Unknown :MythTV Role: Unknown :MythTV Theme: Unknown :MythTV Plugin: :MythTV Tuner: -1 : : :Devices :================================= :(32902:7247:6058:8666) pci, None, PCI/ISA, QM67 Express Chipset Family LPC Controller :(32902:294:6058:8666) pci, i915, VIDEO, 2nd Generation Core Processor Family Integrated Graphics Controller :(32902:7171:6058:8666) pci, ahci, STORAGE, 6 Series/C200 Series Chipset Family 6 port SATA AHCI Controller :(32902:7184:6058:8666) pci, pcieport, PCI/PCI, 6 Series/C200 Series Chipset Family PCI Express Root Port 1 :(32902:7186:6058:8666) pci, pcieport, PCI/PCI, 6 Series/C200 Series Chipset Family PCI Express Root Port 2 :(32902:7192:6058:8666) pci, pcieport, PCI/PCI, 6 Series/C200 Series Chipset Family PCI Express Root Port 5 :(32902:7200:6058:8666) pci, snd_hda_intel, MULTIMEDIA, 6 Series/C200 Series Chipset Family High Definition Audio Controller :(32902:5378:6058:8654) pci, e1000e, ETHERNET, 82579LM Gigabit Network Connection :(32902:7202:6058:8666) pci, i801_smbus, SERIAL, 6 Series/C200 Series Chipset Family SMBus Controller :(4332:33142:4332:33173) pci, rtl8192ce, NETWORK, RTL8188CE 802.11b/g/n WiFi Adapter :(4480:59427:6058:8666) pci, sdhci-pci, BASE, N/A :(32902:7213:6058:8666) pci, ehci_hcd, USB, 6 Series/C200 Series Chipset Family USB Enhanced Host Controller #2 :(32902:7206:6058:8666) pci, ehci_hcd, USB, 6 Series/C200 Series Chipset Family USB Enhanced Host Controller #1 :(32902:260:6058:8666) pci, agpgart-intel, HOST/PCI, 2nd Generation Core Processor Family DRAM Controller :(32902:7226:6058:8666) pci, None, SIMPLE, 6 Series/C200 Series Chipset Family MEI Controller #1 : : :Filesystem Information :================================= :device mtpt type bsize frsize blocks bfree bavail file ffree favail :------------------------------------------------------------------- :/dev/sda2 / ext4 4096 4096 13092026 11517579 11386557 3276800 3071053 3071053 :/dev/sda5 /home ext4 4096 4096 24291459 18912978 17696505 6086656 5911941 5911941 :/dev/sda1 /boot ext4 1024 1024 508745 410766 385166 128016 127780 127780 :
Does this happen whenever you rmmod the rtlwifi driver?
I wonder why it is getting an RX interrupt long after the call to the module exit. Some queue is not being cleared. I'll take a look at this. Could you please state exactly what sequence of actions led to this oops?
Created attachment 563808 [details] Test patch to disable interrupts Does this patch fix the problem?
This problem is believed to have something to do with the RealTek RTL8192CE WiFi adapter. I'm using hostapd to create a 802.11n access point on my laptop, and the radio link sometimes dies spotaneously, and this kernel trace can be seen in dmesg output. Package: kernel OS Release: Fedora release 16 (Verne)
Oops, comment #4 was auto-generated by abrt, and the text was what I typed into the abrt reporting tool without looking at the context of the thread. Sorry for causing the confusion. Reply to comment #2: on my computer this usually happen some 20 or 30 seconds after hostapd is started and a 802.11n access point is created. After that, each time you restart hostapd the WiFi card lasts some 20 seconds and dies. It cannot be re-created reliably, and I'm trying to see if creating a pure 802.11g AP could lower the chance of bumping into this bug.
Sorry for spamming this thread, but I think I completely got things mixed up. You can safely ignore my comment #4 and #5. The WiFi signal issue seems not directly related to this bug and I'll open another report for it.
Is this bug a dup: https://bugzilla.redhat.com/show_bug.cgi?id=797762 ? At least it seems to be the same function called. This happens to me when rmmod the module and I hope that this might be the reason why my laptop doesn't resume.
[mass update] kernel-3.3.0-4.fc16 has been pushed to the Fedora 16 stable repository. Please retest with this update.
Created attachment 592111 [details] dmesg with oops when rmmod rtl8192ce, debug param of rtl8192ce is 4
Hi this oops happens for me on fedora 17 x64 lenovo e320 laptop with rtl8188ce. It happens on fedora 3.4.0-1 and vanilla 3.4.2. The dmesg for 3.4.2 with debug of 4 is attached in previous comment. Also will add debug 5 but dmesg buffer wraps so the early messages are lost. * the rtl8192ce has trouble connecting to my router at home when I'm in a different room to the router. A rt73 usb dongle has no problem connecting from the same place. I try to rmmod rtl8192ce to stop network manager popping up the reconnect box at inopportune moments.
Created attachment 592113 [details] dmesg of 3.4.2 kernel with oops when rmmod rtl8192ce, debug param of rtl8192ce is 5
"sudo modprobe -r rtl8192ce" in the process of trying to reload my wireless module, immediate crash of some sort dropping me into a fullscreen terminal with my X cursor. Was able to switch to another virtual terminal and back, X was as I left it. Automatic bug reporter was waiting for me to report this. Package: kernel OS Release: Fedora release 16 (Verne)
Where is the oops report?
Bug has been sitting in needinfo for over 2 months. Closing.