Bug 6736

Summary: native midi on emu10k1 casue fatal exceptions, kernel BUG at include/linux/list.h:58!
Product: Drivers Reporter: Knut J Bjuland (knutjbj)
Component: Sound(ALSA)Assignee: James Courtier-Dutton (James)
Status: CLOSED CODE_FIX    
Severity: high CC: James, tiwai
Priority: P2    
Hardware: i386   
OS: Linux   
Kernel Version: 2.6.17.1 Subsystem:
Regression: --- Bisected commit-id:
Attachments: ksymoops output
ksymoops
dmesg output

Description Knut J Bjuland 2006-06-22 22:54:18 UTC
Most recent kernel where this bug did not occur:
Distribution:Fedora core 5
Hardware Environment:Dell 8400, Intel 925X, Audigy 2
Software Environment:kernel-2.6.17-1.2138_FC5(2.6.17.1), gcc-4.1.1-1.fc5
, glibc-2.4-9

Problem Description:
I can cause kernel panic by either alsasound stop or using a native midi player
like pmidi. osss midi player does not cause crash.pmidi -p 17:1 midifile.
1./sbin/modprobe snd-emu10k1-synth
2./bin/asfxload *.sf2
3.pmidi -p 17.0 any.midi file
4. hit ctrl-c during playing a midi file  


Jun 21 21:04:53 knutjorgen kernel: ------------[ cut here ]------------
Jun 21 21:04:53 knutjorgen kernel: kernel BUG at include/linux/list.h:58!
Jun 21 21:04:53 knutjorgen kernel: invalid opcode: 0000 [#1]
Jun 21 21:04:53 knutjorgen kernel: last sysfs file: /class/sound/midiC0D3/dev
Jun 21 21:04:53 knutjorgen kernel: Modules linked in: snd_seq_midi snd_rtctimer
snd_emu10k1_synth snd_emux_synth snd_seq_virmidi snd_seq_midi_emul ipv6 autofs4
hidp l2cap bluetooth sunrpc ip_conntrack_netbios_ns ipt_REJECT xt_state
ip_conntrack nfnetlink xt_tcpudp iptable_filter ip_tables x_tables video button
battery ac lp parport_pc parport usblp ohci1394 ieee1394 usb_storage uhci_hcd
ehci_hcd floppy sg snd_emu10k1 snd_rawmidi snd_ac97_codec snd_ac97_bus
snd_seq_dummy snd_seq_oss snd_seq_midi_event snd_seq snd_pcm_oss snd_mixer_oss
bt878 tuner tda9887 msp3400 snd_pcm snd_seq_device snd_timer snd_page_alloc
snd_util_mem snd_hwdep snd bttv video_buf ir_common compat_ioctl32 i2c_algo_bit
v4l2_common soundcore btcx_risc tveeprom tg3 videodev emu10k1_gp gameport
i2c_i801 i2c_core dm_snapshot dm_zero dm_mirror dm_mod ata_piix ext3 jbd ahci
libata sd_mod scsi_mod
Jun 21 21:04:53 knutjorgen kernel: CPU:    0
Jun 21 21:04:53 knutjorgen kernel: EIP:    0060:[<f8a31234>]    Not tainted VLI
Jun 21 21:04:53 knutjorgen kernel: EFLAGS: 00010082   (2.6.17-1.2138_FC5 #1) 
Jun 21 21:04:53 knutjorgen kernel: EIP is at snd_seq_delete_all_ports+0x60/0x176
[snd_seq]
Jun 21 21:04:53 knutjorgen kernel: eax: 00000044   ebx: f767a768   ecx: c06bcfd0
  edx: f7f7a000
Jun 21 21:04:53 knutjorgen kernel: esi: f767a768   edi: f56d67e8   ebp: f56d6760
  esp: f4edef30
Jun 21 21:04:53 knutjorgen kernel: ds: 007b   es: 007b   ss: 0068
Jun 21 21:04:53 knutjorgen kernel: Process pmidi (pid: 2994, threadinfo=f4ede000
task=f7f7a000)
Jun 21 21:04:53 knutjorgen kernel: Stack: f8a32432 f767a768 f56d67e8 f56d67fc
f56d67f0 00000282 22222222 22222222 
Jun 21 21:04:53 knutjorgen kernel:        f56d6760 f75973e0 f75973e0 f4ebc734
f8a2c1bc f56d6760 f8a2c26e 00000000 
Jun 21 21:04:53 knutjorgen kernel:        f7597568 00000008 f56d6760 f8a2c2bc
00000008 c045e00e 00000000 f71d0340 
Jun 21 21:04:53 knutjorgen kernel: Call Trace:
Jun 21 21:04:53 knutjorgen kernel:  <f8a2c1bc> seq_free_client1+0x8/0x7e
[snd_seq]  <f8a2c26e> seq_free_client+0x3c/0x78 [snd_seq]
Jun 21 21:04:53 knutjorgen kernel:  <f8a2c2bc> snd_seq_release+0x12/0x31
[snd_seq]  <c045e00e> __fput+0xb2/0x158
Jun 21 21:04:53 knutjorgen kernel:  <c045b940> filp_close+0x52/0x59  <c0402cb3>
syscall_call+0x7/0xb
Jun 21 21:04:53 knutjorgen kernel: Code: 00 00 74 6d 8b 9d 88 00 00 00 8b b5 8c
00 00 00 8b 43 04 39 f0 74 1c 89 74 24 04 89 44 24 08 c7 04 24 32 24 a3 f8 e8 8f
b7 9e c7 <0f> 0b 3a 00 1d 24 a3 f8 8b 06 39 d8 74 1c 89 5c 24 04 89 44 24 
Jun 21 21:04:53 knutjorgen kernel: EIP: [<f8a31234>]
snd_seq_delete_all_ports+0x60/0x176 [snd_seq] SS:ESP 0068:f4edef30
Jun 21 21:04:53 knutjorgen kernel:  <0>Fatal exception: panic in 5 seconds


https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=196149 and
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=194597


The kernel is untainted.
Comment 1 Knut J Bjuland 2006-06-22 23:23:24 UTC
Created attachment 8386 [details]
ksymoops output
Comment 2 Knut J Bjuland 2006-06-23 00:12:19 UTC
Created attachment 8389 [details]
ksymoops
Comment 3 Knut J Bjuland 2006-06-23 00:13:20 UTC
Created attachment 8390 [details]
dmesg output
Comment 4 Knut J Bjuland 2006-07-17 08:38:31 UTC
This bug is fixed with the latest cvs code from alsa-project or later Fedora kernel.
Comment 5 James Courtier-Dutton 2006-08-28 02:23:32 UTC
User reports bug fixed.