[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#892647: linux-image-4.14.0-0.bpo.3-amd64: Kernel panic, NULL pointer dereference in xhci_hcd

Reported issue occurs usually 1-3 times a day. USB device utilization increases occurance interval. Hard to reproduce other than waiting it occuring. 

Has also a form of following panic bellow.
[ 6090.515722] list_del corruption. prev->next should be ffff99e5cea8ca20, but was ffff99e5cea8d420 
[ 6090.515757] ------------[ cut here ]------------
[ 6090.515763] kernel BUG at /build/linux-3RM5ap/linux-4.14.13/lib/list_debug.c:53! 
[ 6090.515776] invalid opcode: 0000 [#1] SMP PTI
[ 6090.515783] Modules linked in: acpi_call(O) pci_stub vboxpci(O) vboxnetadp(O) vboxnetflt(O) vboxdrv(O) ctr ccm cpufreq_userspace cpufreq_conservative cpufreq_powersave bnep nls_ascii nls_cp437 vfat fat sg snd_us b_audio snd_usbmidi_lib snd_rawmidi snd_seq_device snd_hda_codec_hdmi snd_hda_codec_realtek snd_hda_codec_generic arc4 wmi_bmof intel_rapl x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel snd_soc_skl kvm hci_uart btqca efi_pstore irqbypass iwlmvm snd_soc_skl_ipc intel_cstate snd_soc_sst_ipc btintel intel_uncore snd_soc_sst_dsp snd_hda_ext_core intel_rapl_perf snd_soc_sst_match mac80211 bluetooth snd_soc_core snd_compress snd_hda_intel snd_hda_codec i915 evdev jo ydev snd_hda_core iwlwifi snd_hwdep snd_pcm iTCO_wdt efivars pcspkr cfg80211 drm_kms_helper serio_raw thinkpad_acpi iTCO_vendor_support [ 6090.515874] drbg mei_me snd_timer drm nvram ucsi_acpi i2c_algo_bit typec_ucsi mei intel_pch_thermal shpchp snd typec wmi ansi_cprng soundcore battery ac ecdh_generic rfkill video intel_lpss_acpi intel_lpss mfd_ core tpm_crb acpi_pad button efivarfs ip_tables x_tables autofs4 ext4 crc16 mbcache jbd2 crc32c_generic fscrypto ecb algif_skcipher af_alg dm_crypt dm_mod sd_mod hid_logitech_hidpp hid_logitech_dj uas usb_storage scsi_mod hid_generic usb hid netconsole configfs crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel pcbc aesni_intel xhci_pci aes_x86_64 crypto_simd xhci_hcd e1000e glue_helper ptp cryptd pps_core psmouse nvme usbcore i2c_i801 nvme_core usb_common th 
ermal i2c_hid hid
[ 6090.515981] CPU: 2 PID: 0 Comm: swapper/2 Tainted: G O 4.14.0-0.bpo.3-amd64 #1 Debian 4.14.13-1~bpo9+1 [ 6090.515988] Hardware name: LENOVO 20HD0001MX/20HD0001MX, BIOS N1QET72W (1.47 ) 02/24/2018 
[ 6090.515994] task: ffff99e5d033a040 task.stack: ffffad9641968000
[ 6090.516008] RIP: 0010:__list_del_entry_valid+0x70/0x90
[ 6090.516015] RSP: 0018:ffff99e5e2503dd0 EFLAGS: 00010086
[ 6090.516022] RAX: 0000000000000054 RBX: ffff99e5cea8ca00 RCX: 000000000000083f [ 6090.516027] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f [ 6090.516032] RBP: ffff99e5cea8ca20 R08: 0000000000000000 R09: 0000000000000471 [ 6090.516037] R10: 0000000000000000 R11: 0000000000000000 R12: ffff99e5c959e284 [ 6090.516041] R13: ffff99e5c959e000 R14: 0000000000000000 R15: ffff99e5c959e284 [ 6090.516047] FS: 0000000000000000(0000) GS:ffff99e5e2500000(0000) knlGS:0000000000000000 
[ 6090.516052] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 6090.516057] CR2: 00007f71afa2a000 CR3: 000000010860a004 CR4: 00000000003606e0 
[ 6090.516062] Call Trace:
[ 6090.516069]  <IRQ>
[ 6090.516097]  usb_hcd_unlink_urb_from_ep+0x22/0x50 [usbcore]
[ 6090.516120]  xhci_giveback_urb_in_irq.isra.43+0x62/0xe0 [xhci_hcd]
[ 6090.516133]  ? group_balance_cpu+0x17/0x20
[ 6090.516148]  xhci_td_cleanup+0xe7/0x170 [xhci_hcd]
[ 6090.516167]  xhci_irq+0x162d/0x1fe0 [xhci_hcd]
[ 6090.516175]  ? trigger_load_balance+0x12a/0x220
[ 6090.516184]  __handle_irq_event_percpu+0x7b/0x180
[ 6090.516193]  handle_irq_event_percpu+0x30/0x80
[ 6090.516201]  handle_irq_event+0x3c/0x60
[ 6090.516210]  handle_edge_irq+0x86/0x1d0
[ 6090.516220]  handle_irq+0x19/0x30
[ 6090.516228]  do_IRQ+0x41/0xc0
[ 6090.516236]  common_interrupt+0x98/0x98
[ 6090.516242]  </IRQ>
[ 6090.516252] RIP: 0010:cpuidle_enter_state+0xa2/0x2c0
[ 6090.516259] RSP: 0018:ffffad964196bea0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff14 [ 6090.516266] RAX: ffff99e5e2521980 RBX: 0000058a0f0639da RCX: 000000000000001f [ 6090.516271] RDX: 0000058a0f0639da RSI: fffffffbb124fa40 RDI: 0000000000000000 [ 6090.516275] RBP: ffffcd963fd0a2a0 R08: 00000000ffffffff R09: 0000000000000008 [ 6090.516280] R10: 0000000000000340 R11: 00000000000003bf R12: 0000000000000006 [ 6090.516285] R13: 0000000000000006 R14: 0000000000000006 R15: 0000058a0ef76a4d 
[ 6090.516298]  do_idle+0x188/0x1f0
[ 6090.516307]  cpu_startup_entry+0x6f/0x80
[ 6090.516316]  start_secondary+0x18b/0x1e0
[ 6090.516324]  secondary_startup_64+0xa5/0xb0
[ 6090.516330] Code: 60 9e a4 97 e8 7d 21 d5 ff 0f 0b 48 89 fe 48 c7 c7 98 9e a4 97 e8 6c 21 d5 ff 0f 0b 48 89 fe 48 c7 c7 d0 9e a4 97 e8 5b 21 d5 ff <0f> 0b 48 89 fe 48 c7 c7 10 9f a4 97 e8 4a 21 d5 ff 0f 0b 90 90 [ 6090.516416] RIP: __list_del_entry_valid+0x70/0x90 RSP: ffff99e5e2503dd0 
[ 6090.516428] ---[ end trace cddd99a8590783d5 ]---
[ 6090.552338] Kernel panic - not syncing: Fatal exception in interrupt
[ 6090.552676] Kernel Offset: 0x15c00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) 
[ 6090.562584] Rebooting in 10 seconds..
[ 6100.483015] ACPI MEMORY or I/O RESET_REG.
Reply to: