Bug 67131

Summary: BUG: unable to handle kernel NULL pointer dereference at 0000000000000010
Product: Drivers Reporter: Mikhail (mikhail.v.gavrilov)
Component: USBAssignee: Greg Kroah-Hartman (greg)
Status: RESOLVED DUPLICATE    
Severity: normal CC: alan, qwlouse
Priority: P1    
Hardware: All   
OS: Linux   
Kernel Version: 3.12.5 Subsystem:
Regression: No Bisected commit-id:
Attachments: dmesg output

Description Mikhail 2013-12-16 20:35:04 UTC
Created attachment 118681 [details]
dmesg output

[  763.917886] BUG: unable to handle kernel NULL pointer dereference at 0000000000000010
[  763.918408] IP: [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  763.919117] PGD 0 
[  763.919665] Oops: 0000 [#1] SMP 
[  763.920239] Modules linked in: rfcomm nls_utf8 isofs fuse nf_conntrack_netbios_ns nf_conntrack_broadcast ipt_MASQUERADE ip6t_REJECT xt_conntrack cfg80211 ebtable_nat ebtable_broute bridge stp llc ebtable_filter ebtables ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf_nat_ipv6 ip6table_mangle ip6table_security ip6table_raw ip6table_filter ip6_tables iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack iptable_mangle iptable_security iptable_raw bnep btusb joydev bluetooth hid_logitech_dj option cdc_ncm rfkill usb_wwan usbnet vfat fat x86_pkg_temp_thermal coretemp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel snd_hda_codec_realtek iTCO_wdt iTCO_vendor_support snd_hda_codec_hdmi ppdev snd_hda_intel snd_hda_codec snd_hwdep snd_seq snd_seq_device
[  763.922413]  snd_pcm microcode serio_raw i2c_i801 r8169 mii snd_page_alloc lpc_ich snd_timer mei_me mfd_core shpchp mei snd soundcore parport_pc parport binfmt_misc usb_storage i915 i2c_algo_bit drm_kms_helper drm i2c_core video
[  763.923968] CPU: 0 PID: 4645 Comm: usb-storage Not tainted 3.12.5-301.fc20.x86_64 #1
[  763.924790] Hardware name: Gigabyte Technology Co., Ltd. Z87M-D3H/Z87M-D3H, BIOS F8 08/03/2013
[  763.925630] task: ffff88053af45ac0 ti: ffff88053ac5c000 task.ti: ffff88053ac5c000
[  763.926364] RIP: 0010:[<ffffffff8146ef7d>]  [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  763.927141] RSP: 0018:ffff88053ac5dc00  EFLAGS: 00010246
[  763.927897] RAX: 0000000000000000 RBX: ffff880795cae800 RCX: 0000000000000001
[  763.928782] RDX: 0000000000000001 RSI: ffff880795cae800 RDI: ffff880811d36800
[  763.929635] RBP: ffff88053ac5dc50 R08: 000000000000000a R09: 000000000000054b
[  763.930416] R10: 0000000000000000 R11: ffff88053ac5d82e R12: 0000000000000001
[  763.931256] R13: ffff8806c1bfd400 R14: ffff880811d36800 R15: 0000000000000004
[  763.932010] FS:  0000000000000000(0000) GS:ffff88083f200000(0000) knlGS:0000000000000000
[  763.932813] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  763.933608] CR2: 0000000000000010 CR3: 0000000001c0c000 CR4: 00000000001407f0
[  763.934380] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  763.935283] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  763.936049] Stack:
[  763.936796]  0000000000000000 00000000ffffffb9 ffff88083f217340 ffff88053ac5dc48
[  763.937644]  ffffffff8146e15b ffff880795cae800 ffff880811d36800 ffff8806c1bfd400
[  763.938427]  0000000000000004 0000000000000004 ffff88053ac5dc70 ffffffff8146f2c1
[  763.939217] Call Trace:
[  763.939991]  [<ffffffff8146e15b>] ? usb_set_lpm_timeout+0x12b/0x140
[  763.940767]  [<ffffffff8146f2c1>] usb_enable_lpm+0x81/0xa0
[  763.941620]  [<ffffffff8146f3c8>] usb_disable_lpm+0xa8/0xc0
[  763.942683]  [<ffffffff8146f40c>] usb_unlocked_disable_lpm+0x2c/0x50
[  763.943488]  [<ffffffff81472a50>] usb_reset_and_verify_device+0xc0/0x770
[  763.944290]  [<ffffffff8140c88c>] ? __pm_runtime_resume+0x5c/0x80
[  763.945085]  [<ffffffff814737a8>] usb_reset_device+0xe8/0x1d0
[  763.946046]  [<ffffffffa0156d31>] usb_stor_port_reset+0x61/0x70 [usb_storage]
[  763.946952]  [<ffffffffa0156dcb>] usb_stor_invoke_transport+0x8b/0x510 [usb_storage]
[  763.947762]  [<ffffffff8109ae13>] ? wake_up_process+0x23/0x40
[  763.948597]  [<ffffffff8131b8cd>] ? list_del+0xd/0x30
[  763.949504]  [<ffffffff816692cb>] ? wait_for_completion_interruptible+0x11b/0x160
[  763.950439]  [<ffffffffa0155b8e>] usb_stor_transparent_scsi_command+0xe/0x10 [usb_storage]
[  763.951297]  [<ffffffffa0158355>] usb_stor_control_thread+0x165/0x280 [usb_storage]
[  763.952165]  [<ffffffffa01581f0>] ? usb_stor_disconnect+0xe0/0xe0 [usb_storage]
[  763.953050]  [<ffffffffa01581f0>] ? usb_stor_disconnect+0xe0/0xe0 [usb_storage]
[  763.953891]  [<ffffffff8108b1d0>] kthread+0xc0/0xd0
[  763.954730]  [<ffffffff8108b110>] ? insert_kthread_work+0x40/0x40
[  763.955597]  [<ffffffff81672a3c>] ret_from_fork+0x7c/0xb0
[  763.956409]  [<ffffffff8108b110>] ? insert_kthread_work+0x40/0x40
[  763.957222] Code: 44 00 00 55 48 89 e5 41 57 41 56 49 89 fe 41 55 41 54 41 89 d4 53 48 89 f3 48 83 ec 28 48 8b 86 40 03 00 00 41 83 fc 01 0f 94 c1 <48> 8b 40 10 0f b7 50 08 74 79 41 83 fc 02 40 0f 94 c6 75 17 66 
[  763.958324] RIP  [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  763.959256]  RSP <ffff88053ac5dc00>
[  763.960153] CR2: 0000000000000010
[  763.966914] ---[ end trace 1c3d113cbfcfd760 ]---
Comment 1 Mikhail 2013-12-17 02:43:01 UTC
[  122.285403] scsi 11:0:0:0: Direct-Access     JetFlash Transcend 32GB   1.00 PQ: 0 ANSI: 5
[  122.285755] sd 11:0:0:0: [sdd] 61741056 512-byte logical blocks: (31.6 GB/29.4 GiB)
[  122.285872] sd 11:0:0:0: [sdd] Write Protect is off
[  122.285874] sd 11:0:0:0: [sdd] Mode Sense: 23 00 00 00
[  122.285985] sd 11:0:0:0: Attached scsi generic sg4 type 0
[  122.285996] sd 11:0:0:0: [sdd] Write cache: disabled, read cache: disabled, doesn't support DPO or FUA
[  122.287438]  sdd: sdd1 sdd2 sdd3
[  122.288184] sd 11:0:0:0: [sdd] Attached SCSI removable disk
[  122.450339] ISO 9660 Extensions: Microsoft Joliet Level 3
[  122.451538] ISO 9660 Extensions: RRIP_1991A
[  122.451550] SELinux: initialized (dev sdd1, type iso9660), uses genfs_contexts
[  125.071393] usb 2-3: USB disconnect, device number 4
[  125.071397] usb 2-3.4: USB disconnect, device number 5
[  125.715961] usb 2-3.4: Failed to set U1 timeout to 0x0,error code -110
[  125.715981] BUG: unable to handle kernel NULL pointer dereference at 0000000000000010
[  125.716017] IP: [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  125.716048] PGD 0 
[  125.716059] Oops: 0000 [#1] SMP 
[  125.716071] Modules linked in: rfcomm nls_utf8 isofs fuse nf_conntrack_netbios_ns nf_conntrack_broadcast ipt_MASQUERADE ip6t_REJECT xt_conntrack cfg80211 ebtable_nat ebtable_broute bridge stp llc ebtable_filter ebtables ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf_nat_ipv6 ip6table_mangle ip6table_security ip6table_raw ip6table_filter ip6_tables iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat nf_conntrack iptable_mangle iptable_security iptable_raw bnep hid_logitech_dj joydev btusb bluetooth rfkill vfat fat x86_pkg_temp_thermal ppdev coretemp kvm_intel kvm snd_hda_codec_realtek iTCO_wdt iTCO_vendor_support crct10dif_pclmul crc32_pclmul crc32c_intel snd_hda_codec_hdmi ghash_clmulni_intel snd_hda_intel snd_hda_codec option usb_storage cdc_ncm usbnet usb_wwan snd_hwdep snd_seq snd_seq_device
[  125.716311]  microcode snd_pcm serio_raw i2c_i801 r8169 mii lpc_ich mfd_core snd_page_alloc shpchp snd_timer mei_me mei snd soundcore parport_pc parport binfmt_misc i915 i2c_algo_bit drm_kms_helper drm i2c_core video
[  125.716395] CPU: 1 PID: 3655 Comm: usb-storage Not tainted 3.12.5-301.fc20.x86_64 #1
[  125.716424] Hardware name: Gigabyte Technology Co., Ltd. Z87M-D3H/Z87M-D3H, BIOS F8 08/03/2013
[  125.716456] task: ffff8806e4b218c0 ti: ffff88007b046000 task.ti: ffff88007b046000
[  125.716484] RIP: 0010:[<ffffffff8146ef7d>]  [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  125.716511] RSP: 0018:ffff88007b047c00  EFLAGS: 00010246
[  125.716524] RAX: 0000000000000000 RBX: ffff88007c037000 RCX: 0000000000000001
[  125.716542] RDX: 0000000000000001 RSI: ffff88007c037000 RDI: ffff880811d82c00
[  125.716558] RBP: ffff88007b047c50 R08: 000000000000000a R09: 0000000000000518
[  125.716574] R10: 0000000000000000 R11: ffff88007b04782e R12: 0000000000000001
[  125.716590] R13: ffff8807f301dc00 R14: ffff880811d82c00 R15: 0000000000000004
[  125.716606] FS:  0000000000000000(0000) GS:ffff88083f240000(0000) knlGS:0000000000000000
[  125.716624] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  125.716637] CR2: 0000000000000010 CR3: 00000007ec1de000 CR4: 00000000001407e0
[  125.716654] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  125.716670] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  125.716686] Stack:
[  125.716691]  0000000000000000 00000000ffffff92 0000000000000001 ffff88007b047c48
[  125.716711]  ffffffff8146e15b ffff88007c037000 ffff880811d82c00 ffff8807f301dc00
[  125.716731]  0000000000000004 0000000000000004 ffff88007b047c70 ffffffff8146f2c1
[  125.716752] Call Trace:
[  125.716760]  [<ffffffff8146e15b>] ? usb_set_lpm_timeout+0x12b/0x140
[  125.716780]  [<ffffffff8146f2c1>] usb_enable_lpm+0x81/0xa0
[  125.716798]  [<ffffffff8146f3c8>] usb_disable_lpm+0xa8/0xc0
[  125.716816]  [<ffffffff8146f40c>] usb_unlocked_disable_lpm+0x2c/0x50
[  125.716840]  [<ffffffff81472a50>] usb_reset_and_verify_device+0xc0/0x770
[  125.716857]  [<ffffffff8140c88c>] ? __pm_runtime_resume+0x5c/0x80
[  125.716872]  [<ffffffff814737a8>] usb_reset_device+0xe8/0x1d0
[  125.716892]  [<ffffffffa0298d31>] usb_stor_port_reset+0x61/0x70 [usb_storage]
[  125.716910]  [<ffffffffa0298dcb>] usb_stor_invoke_transport+0x8b/0x510 [usb_storage]
[  125.716932]  [<ffffffff8109ae13>] ? wake_up_process+0x23/0x40
[  125.716947]  [<ffffffff8131b8cd>] ? list_del+0xd/0x30
[  125.716960]  [<ffffffff816692cb>] ? wait_for_completion_interruptible+0x11b/0x160
[  125.716979]  [<ffffffffa0297b8e>] usb_stor_transparent_scsi_command+0xe/0x10 [usb_storage]
[  125.716999]  [<ffffffffa029a355>] usb_stor_control_thread+0x165/0x280 [usb_storage]
[  125.717018]  [<ffffffffa029a1f0>] ? usb_stor_disconnect+0xe0/0xe0 [usb_storage]
[  125.717037]  [<ffffffffa029a1f0>] ? usb_stor_disconnect+0xe0/0xe0 [usb_storage]
[  125.717056]  [<ffffffff8108b1d0>] kthread+0xc0/0xd0
[  125.717068]  [<ffffffff8108b110>] ? insert_kthread_work+0x40/0x40
[  125.717083]  [<ffffffff81672a3c>] ret_from_fork+0x7c/0xb0
[  125.717096]  [<ffffffff8108b110>] ? insert_kthread_work+0x40/0x40
[  125.717109] Code: 44 00 00 55 48 89 e5 41 57 41 56 49 89 fe 41 55 41 54 41 89 d4 53 48 89 f3 48 83 ec 28 48 8b 86 40 03 00 00 41 83 fc 01 0f 94 c1 <48> 8b 40 10 0f b7 50 08 74 79 41 83 fc 02 40 0f 94 c6 75 17 66 
[  125.717208] RIP  [<ffffffff8146ef7d>] usb_enable_link_state+0x2d/0x2f0
[  125.717239]  RSP <ffff88007b047c00>
[  125.717248] CR2: 0000000000000010
[  125.723201] ---[ end trace 9e4b3aa6b18cdd51 ]---
Comment 2 Alan 2013-12-18 14:17:50 UTC
Another bitflip. Will fold this into the "Mikhael" probably broken computer bug shortly
Comment 3 Alan 2013-12-18 14:37:56 UTC

*** This bug has been marked as a duplicate of bug 64521 ***
Comment 4 Qwlouse 2015-02-17 14:00:23 UTC
I get the same kernel oops since upgrading to Ubuntu 14.04. Before that I never had any problems. So I would vote for reopening it as a bug.

Linux Pecorino 3.13.0-45-generic #74-Ubuntu SMP Tue Jan 13 19:36:28 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

Here is the relevant dmesg output:

[13905.650184] usb 4-3: USB disconnect, device number 2
[13905.650190] usb 4-3.3: USB disconnect, device number 4
[13905.650193] usb 4-3.3.3: USB disconnect, device number 6
[13906.581251] usb 4-3.3.3: Failed to set U1 timeout to 0x0,error code -110
[13906.581263] BUG: unable to handle kernel NULL pointer dereference at 0000000000000010
[13906.581265] IP: [<ffffffff8153bb0d>] usb_enable_link_state+0x2d/0x2f0
[13906.581270] PGD 0 
[13906.581271] Oops: 0000 [#1] SMP 
[13906.581273] Modules linked in: cfg80211 joydev usb_storage hid_generic usbhid hid snd_hda_codec_hdmi rfcomm bnep bluetooth eeepc_wmi asus_wmi sparse_keymap intel_rapl x86_pkg_temp_thermal intel_powerclamp coretemp kvm crct10dif_pclmul crc32_pclmul ghash_clmulni_intel aesni_intel aes_x86_64 lrw snd_hda_codec_realtek gf128mul glue_helper ablk_helper cryptd serio_raw nls_iso8859_1 snd_hda_intel snd_seq_midi snd_seq_midi_event snd_hda_codec snd_rawmidi snd_hwdep snd_seq snd_pcm nvidia(POX) snd_seq_device lpc_ich snd_page_alloc snd_timer drm mei_me snd mei soundcore parport_pc video ppdev mac_hid wmi lp parport psmouse r8169 ahci libahci mii
[13906.581293] CPU: 6 PID: 1382 Comm: usb-storage Tainted: P           OX 3.13.0-45-generic #74-Ubuntu
[13906.581294] Hardware name: System manufacturer System Product Name/P8Z77-V LX, BIOS 1201 08/17/2012
[13906.581295] task: ffff880405581800 ti: ffff8803ef0c6000 task.ti: ffff8803ef0c6000
[13906.581296] RIP: 0010:[<ffffffff8153bb0d>]  [<ffffffff8153bb0d>] usb_enable_link_state+0x2d/0x2f0
[13906.581298] RSP: 0018:ffff8803ef0c7c18  EFLAGS: 00010246
[13906.581298] RAX: 0000000000000000 RBX: ffff88003621b800 RCX: 0000000000000001
[13906.581299] RDX: 0000000000000001 RSI: ffff88003621b800 RDI: ffff880404162800
[13906.581300] RBP: ffff8803ef0c7c68 R08: 0000000000000086 R09: 0000000000000451
[13906.581300] R10: 0000000000000000 R11: ffff8803ef0c783e R12: 0000000000000001
[13906.581301] R13: ffff8804056a8800 R14: ffff880404162800 R15: ffff880404162800
[13906.581302] FS:  0000000000000000(0000) GS:ffff88041ed80000(0000) knlGS:0000000000000000
[13906.581303] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[13906.581304] CR2: 0000000000000010 CR3: 0000000001c0e000 CR4: 00000000001407e0
[13906.581304] Stack:
[13906.581305]  0000000000000000 00000000ffffff92 ffff88041ed96200 ffff8803ef0c7c60
[13906.581307]  ffffffff8153ad2b ffff88003621b800 ffff880404162800 ffff8804056a8800
[13906.581309]  0000000000000003 ffff880404162800 ffff8803ef0c7c88 ffffffff8153be51
[13906.581310] Call Trace:
[13906.581313]  [<ffffffff8153ad2b>] ? usb_set_lpm_timeout+0x12b/0x140
[13906.581315]  [<ffffffff8153be51>] usb_enable_lpm+0x81/0xa0
[13906.581316]  [<ffffffff8153bf56>] usb_disable_lpm+0xa6/0xb0
[13906.581318]  [<ffffffff8153bf8c>] usb_unlocked_disable_lpm+0x2c/0x50
[13906.581319]  [<ffffffff8153f6a0>] usb_reset_and_verify_device+0xc0/0x480
[13906.581322]  [<ffffffff814a457c>] ? __pm_runtime_resume+0x5c/0x80
[13906.581324]  [<ffffffff815401e8>] usb_reset_device+0xe8/0x1c0
[13906.581327]  [<ffffffffa0d2ee71>] usb_stor_port_reset+0x61/0x70 [usb_storage]
[13906.581329]  [<ffffffffa0d2ef10>] usb_stor_invoke_transport+0x90/0x560 [usb_storage]
[13906.581331]  [<ffffffff8109a973>] ? wake_up_process+0x23/0x40
[13906.581334]  [<ffffffff8106c069>] ? wakeup_softirqd+0x29/0x30
[13906.581337]  [<ffffffff81726751>] ? wait_for_completion_interruptible+0xc1/0x1b0
[13906.581339]  [<ffffffffa0d2dc3e>] usb_stor_transparent_scsi_command+0xe/0x10 [usb_storage]
[13906.581341]  [<ffffffffa0d30545>] usb_stor_control_thread+0x1b5/0x300 [usb_storage]
[13906.581343]  [<ffffffffa0d30390>] ? usb_stor_disconnect+0xf0/0xf0 [usb_storage]
[13906.581345]  [<ffffffffa0d30390>] ? usb_stor_disconnect+0xf0/0xf0 [usb_storage]
[13906.581347]  [<ffffffff8108b572>] kthread+0xd2/0xf0
[13906.581348]  [<ffffffff8108b4a0>] ? kthread_create_on_node+0x1c0/0x1c0
[13906.581350]  [<ffffffff817318bc>] ret_from_fork+0x7c/0xb0
[13906.581352]  [<ffffffff8108b4a0>] ? kthread_create_on_node+0x1c0/0x1c0
[13906.581352] Code: 44 00 00 55 48 89 e5 41 57 41 56 49 89 fe 41 55 41 54 41 89 d4 53 48 89 f3 48 83 ec 28 48 8b 86 40 03 00 00 41 83 fc 01 0f 94 c1 <48> 8b 40 10 0f b7 50 08 74 79 41 83 fc 02 40 0f 94 c6 75 17 66 
[13906.581365] RIP  [<ffffffff8153bb0d>] usb_enable_link_state+0x2d/0x2f0
[13906.581367]  RSP <ffff8803ef0c7c18>
[13906.581367] CR2: 0000000000000010
[13906.581369] ---[ end trace a188e3e29b08721a ]---
Comment 5 Alan 2015-02-17 15:06:27 UTC
nvidia(POX) 

Nvidia have our source we don't have theirs so only they can help you.

The original bug was closed because it was hardware failures.

If you can reproduce it repeatedly without the Nvidia drivers loaded then it becomes interesting (but please file it as a new bug)
Comment 6 Qwlouse 2015-02-17 15:11:55 UTC
> If you can reproduce it repeatedly without the Nvidia drivers loaded then it
> becomes interesting (but please file it as a new bug)

Oh ok, I understand. I didn't realize it was connected to the Nvidia driver. (But I do have problems with that too). Thanks.