Self-backported and hacked together 6.6 + wireless-testing. Lots of opportunities
for self harm in that....
I see this crash on rmmod, any known issue?
# BUG: unable to handle page fault for address: 00000ff81a6a0808
#PF: supervisor write access in kernel mode
#PF: error_code(0x0002) - not-present page
PGD 0 P4D 0
Oops: 0002 [#1] PREEMPT SMP
CPU: 7 PID: 7879 Comm: rmmod Not tainted 6.6.0-rc5+ #20
Hardware name: Default string Default string/SKYBAY, BIOS 5.12 02/21/2023
RIP: 0010:iwl_dbg_tlv_free+0x199/0x250 [iwlwifi]
Code: 48 89 5f 08 e8 d8 b7 57 e0 4c 89 f7 4d 8b 36 4c 39 ef 75 de 49 8b 7c 24 10 4c 8b 37 48 39 3c 24 74 26 48 8b 57 08 49 89 56 08 <4c> 89 32 48 89 2f 48 87
RSP: 0018:ffffc90003acbda0 EFLAGS: 00010202
RAX: ffff888110042600 RBX: dead000000000122 RCX: 00000000002a0009
RDX: 00000ff81a6a0808 RSI: ffffea0004e1a0c0 RDI: ffff888119883f60
RBP: dead000000000100 R08: 0000000000000000 R09: 00000000002a0009
R10: ffff888138683960 R11: 0000000000000000 R12: ffff88811a6a07f8
R13: ffff88811a6a0818 R14: ffff88811a6a0808 R15: ffff88811a6a0828
FS: 00007f1a64386740(0000) GS:ffff88845ddc0000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000ff81a6a0808 CR3: 00000001130e3006 CR4: 00000000003706e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
? __die+0x1a/0x60
? page_fault_oops+0x154/0x450
? __wake_up_common+0x6b/0x130
? __slab_free+0x55/0x2b0
? exc_page_fault+0x69/0x140
? asm_exc_page_fault+0x22/0x30
? iwl_dbg_tlv_free+0x199/0x250 [iwlwifi]
iwl_drv_stop+0xc2/0xd0 [iwlwifi]
iwl_pci_remove+0x16/0x30 [iwlwifi]
pci_device_remove+0x2c/0x90
device_release_driver_internal+0x192/0x1f0
driver_detach+0x3f/0x80
bus_remove_driver+0x64/0xe0
pci_unregister_driver+0x36/0x80
iwl_drv_exit+0x5/0x390 [iwlwifi]
__do_sys_delete_module.constprop.0+0x16f/0x2b0
(gdb) l *(iwl_dbg_tlv_free+0x199)
0x1a6b9 is in iwl_dbg_tlv_free (/home/greearb/git/linux-6.6.dev.y/include/linux/list.h:196).
191 * the prev/next entries already!
192 */
193 static inline void __list_del(struct list_head * prev, struct list_head * next)
194 {
195 next->prev = prev;
196 WRITE_ONCE(prev->next, next);
197 }
198
199 /*
200 * Delete a list entry and clear the 'prev' pointer.
(gdb) l *(iwl_drv_stop+0xc2)
0x3c32 is in iwl_drv_stop (/home/greearb/git/linux-6.6.dev.y/drivers/net/wireless/intel/iwlwifi/iwl-drv.c:1872).
1867 debugfs_remove_recursive(drv->dbgfs_drv);
1868 #endif
1869
1870 iwl_dbg_tlv_free(drv->trans);
1871
1872 kfree(drv);
1873 }
1874
1875 /* shared module parameters */
1876 struct iwl_mod_params iwlwifi_mod_params = {
(gdb)
--
Ben Greear <[email protected]>
Candela Technologies Inc http://www.candelatech.com