18922 – hiddev_open - BUG: unable to handle kernel NULL pointer dereference

Bug 18922 - hiddev_open - BUG: unable to handle kernel NULL pointer dereference

Summary: hiddev_open - BUG: unable to handle kernel NULL pointer dereference

Status:	CLOSED DUPLICATE of bug 18892

Alias:	None

Product:	Drivers
Classification:	Unclassified
Component:	Input Devices (show other bugs)
Hardware:	All Linux

Importance:	P1 normal
Assignee:	drivers_input-devices

URL:
Keywords:

Depends on:
Blocks:

Reported:	2010-09-21 08:02 UTC by Alex Zhavnerchik
Modified:	2010-09-21 21:32 UTC (History)
CC List:	2 users (show)

See Also:
Kernel Version:	2.6.36-rc5
Subsystem:
Regression:	Yes
Bisected commit-id:

Attachments
2.6.36-rc5 kernel log (70.17 KB, text/plain) 2010-09-21 08:02 UTC, Alex Zhavnerchik	Details
Add an attachment (proposed patch, testcase, etc.)

Description Alex Zhavnerchik 2010-09-21 08:02:05 UTC

Created attachment 30902 [details]
2.6.36-rc5 kernel log

Hi

I ran into following issue, it happened after I plugged my wireless mouse to the laptop and in second case when it was plugged and hal tried to connect it. But didn't lock the laptop I can work with it and write this message after catching this bug :)

The log from dmesg:

[   31.151103] BUG: unable to handle kernel NULL pointer dereference at (null)
[   31.151125] IP: [<ffffffffa0209ea2>] hiddev_open+0x89/0x15b [usbhid]
[   31.151143] PGD 1226f6067 PUD 1226f4067 PMD 0 
[   31.151157] Oops: 0000 [#1] SMP 
[   31.151168] last sysfs file: /sys/devices/platform/thinkpad_acpi/leds/tpacpi::power/max_brightness
[   31.151178] CPU 0 
[   31.151183] Modules linked in: vboxnetadp vboxnetflt vboxdrv binfmt_misc uinput fuse microcode nfsd exportfs nfs lockd fscache nfs_acl auth_rpcgss sunrpc tp_smapi thinkpad_ec firewire_sbp2 loop snd_hda_codec_analog arc4 ecb iwlagn snd_hda_intel snd_hda_codec iwlcore snd_hwdep snd_pcm_oss snd_mixer_oss mac80211 snd_pcm thinkpad_acpi snd_seq_midi snd_rawmidi snd_seq_midi_event snd_seq snd_timer snd_seq_device snd r852 sm_common nand nand_ids nand_ecc soundcore cfg80211 btusb bluetooth tpm_tis tpm mtd psmouse processor pcspkr tpm_bios i2c_i801 rfkill joydev nvram snd_page_alloc wmi evdev ac battery serio_raw ext4 mbcache jbd2 crc16 usbhid hid ide_cd_mod sd_mod cdrom crc_t10dif uhci_hcd ata_generic ata_piix nouveau ttm ahci libahci drm_kms_helper libata piix e1000e ehci_hcd firewire_ohci sdhci_pci sdhci scsi_mod ide_core mmc_core usbcore firewire_core video led_class crc_itu_t output thermal thermal_sys button nls_base [last unloaded: scsi_wait_scan]
[   31.154300] 
[   31.154300] Pid: 1637, comm: hald-probe-hidd Not tainted 2.6.36-rc5 #1 64608SG/64608SG
[   31.154300] RIP: 0010:[<ffffffffa0209ea2>]  [<ffffffffa0209ea2>] hiddev_open+0x89/0x15b [usbhid]
[   31.154300] RSP: 0018:ffff880123c4bcb8  EFLAGS: 00010286
[   31.154300] RAX: 0000000000000000 RBX: ffff8801228d0000 RCX: 0000000000010000
[   31.154300] RDX: ffffffffa020dac0 RSI: ffffffffa020cd37 RDI: ffff8801228dc030
[   31.154300] RBP: 0000000000000000 R08: 00000000000080d0 R09: ffff8801247d6070
[   31.154300] R10: ffffffffa0051059 R11: 00000000ffffffed R12: ffff880121f430c0
[   31.154300] R13: 00000000ffffffed R14: 0000000000000000 R15: ffff880121d8bcc0
[   31.154300] FS:  00007fa46792c700(0000) GS:ffff880001a00000(0000) knlGS:0000000000000000
[   31.154300] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   31.154300] CR2: 0000000000000000 CR3: 0000000121fb5000 CR4: 00000000000006f0
[   31.154300] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   31.154300] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[   31.154300] Process hald-probe-hidd (pid: 1637, threadinfo ffff880123c4a000, task ffff8801247a8000)
[   31.154300] Stack:
[   31.154300]  ffff8801242e8780 ffffffffa00635a0 ffff880121f430c0 ffff88012478bb90
[   31.154300] <0> 00000000ffffffed ffffffffa005c5d3 ffff880121f430c0 ffff88012478bb90
[   31.154300] <0> ffff880121f430c0 ffff8801242e8780 0000000000000000 ffffffff810ed9bc
[   31.154300] Call Trace:
[   31.154300]  [<ffffffffa005c5d3>] ? usb_open+0x61/0xc0 [usbcore]
[   31.154300]  [<ffffffff810ed9bc>] ? chrdev_open+0x127/0x145
[   31.154300]  [<ffffffff810ed895>] ? chrdev_open+0x0/0x145
[   31.154300]  [<ffffffff810e9630>] ? __dentry_open+0x161/0x291
[   31.154300]  [<ffffffff810f3158>] ? inode_permission+0x82/0x9e
[   31.154300]  [<ffffffff810f401e>] ? do_last+0x3e4/0x536
[   31.154300]  [<ffffffff810f5ae1>] ? do_filp_open+0x1e4/0x53b
[   31.154300]  [<ffffffff81053793>] ? do_sigaction+0x11d/0x166
[   31.154300]  [<ffffffff810e9404>] ? do_sys_open+0x56/0xe4
[   31.154300]  [<ffffffff81008a02>] ? system_call_fastpath+0x16/0x1b
[   31.154300] Code: c7 c2 c0 da 20 a0 48 c7 c6 37 cd 20 a0 41 b5 ed e8 04 6e e5 e0 48 89 ab 18 c0 00 00 49 89 9c 24 a0 00 00 00 48 8b 83 18 c0 00 00 <83> 38 00 0f 84 a4 00 00 00 8b 50 04 8d 4a 01 85 d2 89 48 04 75 
[   31.154300] RIP  [<ffffffffa0209ea2>] hiddev_open+0x89/0x15b [usbhid]
[   31.154300]  RSP <ffff880123c4bcb8>
[   31.154300] CR2: 0000000000000000
[   31.201285] ---[ end trace 913aa8dc54a529cc ]---

I also attach full kernel log

Comment 1 Greg Kroah-Hartman 2010-09-21 21:23:28 UTC

duplicate.

*** This bug has been marked as a duplicate of bug 18892 ***

Note You need to log in before you can comment on or make changes to this bug.