Kernel version: raspberrypi 4.4.6-v7+ #871
Driver source file: drivers/staging/vt6656/main_usb.c
Umap2 command line: umap2vsscan -P <PHY> -s 076d:0006

After connecting such a device, NULL pointer dereference in the kernel.

Binyamin Sharet
Cisco, STARE-C

<< Attached:  076d_0006_dmesg.log >>
[ 4039.069359] usb 1-1.4: new high-speed USB device number 105 using dwc_otg
[ 4039.183943] usb 1-1.4: New USB device found, idVendor=076d, idProduct=0006
[ 4039.183970] usb 1-1.4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 4039.183987] usb 1-1.4: Product: UMAP2. PID:0x0006
[ 4039.184003] usb 1-1.4: Manufacturer: UMAP2. VID:0x076d
[ 4039.184018] usb 1-1.4: SerialNumber: 123456
[ 4040.277845] Unable to handle kernel NULL pointer dereference at virtual address 00000004
[ 4040.286041] pgd = afbc8000
[ 4040.288753] [00000004] *pgd=00000000
[ 4040.292405] Internal error: Oops: 5 [#1] SMP ARM
[ 4040.277[84040.297021] Modules linked in:5] Unable to handle kernel NULL pointer dereference at virtual address 00000004
[ 4040.286041] pgd = afbc8000
[ 4040.288753] [00000004] *pgd=00000000
[ 4040.292405] Internal error: Oops: 5 [#1] SMP ARM

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.292405] Internal error: Oops: 5 [#1] SMP ARM
 cdc_acm(+) usblp bfusb bpa10x hci_uart ath3k bcm203x ds2490[ 4040.336799] CPU: 1 PID: 19836 Comm: systemd-udevd Tainted: G         C      4.4.6-v7+ #871
[ 4040.336803] Hardware name: BCM2709
[[3 24m0[4 04.0336814] task: af926780 ti: afba8000 task.ti: afba8000
0.297021] Modules linked in: cdc_acm(+) usblp bfusb bpa10x hci_uart ath3k bcm203x ds2490 wire cn adutux xpad ff_memless ldusb powermate evdev joydev usbtouchscreen usbled cypress_m8 pl2303 aircable usbserial prism2_usb(C) rt2800usb rt2800lib rt2x00usb rt2x00lib mac80211 crc_ccitt r8712u(C) btusb btrtl btintel btbcm bnep bluetooth cfg80211 rfkill snd_bcm2835 snd_pcm bcm2835_gpiomem snd_timer bcm2835_wdt snd uio_pdrv_genirq uio i2c_dev fuse
[ 4040.336799] CPU: 1 PID: 19836 Comm: systemd-udevd Tainted: G         C      4.4.6-v7+ #871
[ 4040.336803] Hardware name: BCM2709
[ 4040.336811] task: af926780 ti: afba8000 task.ti: afba8000
[ 4040.336860] PC is at acm_probe+0x17c/0xd98 [cdc_acm]
[ 4040.336865] LR is at 0x1
[ 4040.336875] pc : [<7f39be28>]    lr : [<00000001>]    psr: 60000013
sp : afba9c30  ip : afba9c30  fp : afba9cac
[ 4040.336880] r10: af873200  r9 : 00000000  r8 : af873200
[ 4040.336887] r7 : 7f39e6dc  r6 : afb7e800  r5 : 00000000  r4 : afb7e800
[ 4040.336894] r3 : 00000010  r2 : af872800  r1 : 00000000  r0 : af873200
[ 4040.336903] Flags: nZCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
[ 4040.336911] Control: 10c5387d  Table: 2fbc806a  DAC: 00000055
[ 4040.336917] Process systemd-udevd (pid: 19836, stack limit = 0xafba8210)
[ 4040.336924] Stack: (0xafba9c30 to 0xafbaa000)
[ 4040.336935] 9c20:                                     afb20280 801c97f4 80000001 afb20280
[ 4040.336948] 9c40: afba9c64 801cc13c 801c97f4 af9c0370 af878f00 afb20280 afba9c84 af878f00
[ 4040.336962] 9c60: af9c0370 afb7e868 afba9c94 00000000 af873200 afb7e800 00000001 00000010
[ 4040.336975] 9c80: af873200 af873220 afb7e868 afb7e800 7f39e6dc af873200 7f39d994 00000000
[ 4040.336989] 9ca0: afba9cdc afba9cb0 8040af88 7f39bcb8 8040aea0 8099d880 af873220 00000000
[ 4040.337002] 9cc0: 7f39e6dc 000004ca 7f39e740 00000000 afba9d04 afba9ce0 803a5e20 8040aeac
[ 4040.337016] 9ce0: 00000007 af873220 7f39e6dc af873254 00000000 7f39e560 afba9d24 afba9d08
[ 4040.337029] 9d00: 803a5fac 803a5c64 b958a45c 00000000 7f39e6dc 803a5f04 afba9d4c afba9d28
[ 4040.337042] 9d20: 803a3fec 803a5f10 b958a45c afbe7a34 b958a470 7f39e6dc afaf9480 808ec0b4
[ 4040.337055] 9d40: afba9d5c afba9d50 803a58e8 803a3f7c afba9d84 afba9d60 803a552c 803a58c8
[ 4040.337068] 9d60: 7f39e560 afba9d70 7f39e6dc 00000000 808ec0b4 7f39e6dc afba9d9c afba9d88
[ 4040.337082] 9d80: 803a66e8 803a5384 7f39e6a8 00000000 afba9dc4 afba9da0 8040a8f4 803a666c
[ 4040.337094] 9da0: 00000000 7f39e940 00000cbd 0000000c 00000001 505335dc afba9de4 afba9dc8
[ 4040.337109] 9dc0: 7f3a00e0 8040a880 808a2398 808a2398 afb3b740 7f3a0000 afba9e64 afba9de8
[ 4040.337122] 9de0: 80009764 7f3a000c 3a721000 00000000 afba9e3c afba9e00 80105288 00029f4c
[ 4040.337135] 9e00: 801394d8 b7855b40 3a721000 00000001 505335dc 80147e40 afba9e64 afba9e28
[ 4040.337148] 9e20: 80147e40 805e93d4 00000001 801394d8 0000000b 00029f4c bc401000 7f39e740
[ 4040.337161] 9e40: 00000001 afb3bcc0 7f39e740 00000001 505335dc afacca48 afba9e8c afba9e68
[ 4040.337174] 9e60: 800fccc8 800096d0 afba9e8c afba9e78 801395d4 afba9f44 00000001 afacca40
[ 4040.337187] 9e80: afba9f3c afba9e90 8009ec68 800fcc60 7f39e74c 00007fff 7f39e740 8009c34c
[ 4040.337200] 9ea0: 0000015e 00000000 7f39e74c 7f39e74c 7f39e960 7f39e924 7f39e858 7f39e788
[ 4040.337213] 9ec0: bc401000 0000a230 0004169a 00000000 0b300002 00000000 00000000 00000000
[ 4040.337225] 9ee0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
[ 4040.337238] 9f00: 00000000 00000000 00000000 00000000 00000058 00000000 00000007 76d19004
[ 4040.337252] 9f20: 0000017b 8000fd08 afba8000 00000000 afba9fa4 afba9f40 8009f44c 8009d2e8
[ 4040.337265] 9f40: 00000002 bc401000 0000a230 bc40ac68 bc4073e7 bc408b3c 00003960 00003cf0
[ 4040.337277] 9f60: 00000000 00000000 00000000 00002920 00000023 00000024 0000001c 00000019
[ 4040.337290] 9f80: 00000015 00000000 00000000 54b1204c 00000000 00020000 00000000 afba9fa8
[ 4040.337303] 9fa0: 8000fb40 8009f3e4 54b1204c 00000000 00000007 76d19004 00000000 54fc6dc0
[ 4040.337316] 9fc0: 54b1204c 00000000 00020000 0000017b 76d19004 00020000 54fc6dc0 00000000
[ 4040.337329] 9fe0: 7edc7200 7edc71f0 76d1109c 76e6dd40 60000010 00000007 00000000 00000000
[ 4040.337422] [<7f39be28>] (acm_probe [cdc_acm]) from [<8040af88>] (usb_probe_interface+0xe8/0x1d4)
[ 4040.337447] [<8040af88>] (usb_probe_interface) from [<803a5e20>] (really_probe+0x1c8/0x2ac)
[ 4040.337468] [<803a5e20>] (really_probe) from [<803a5fac>] (__driver_attach+0xa8/0xac)
[ 4040.337488] [<803a5fac>] (__driver_attach) from [<803a3fec>] (bus_for_each_dev+0x7c/0xb0)
[ 4040.337506] [<803a3fec>] (bus_for_each_dev) from [<803a58e8>] (driver_attach+0x2c/0x30)
[ 4040.337523] [<803a58e8>] (driver_attach) from [<803a552c>] (bus_add_driver+0x1b4/0x22c)
[ 4040.337542] [<803a552c>] (bus_add_driver) from [<803a66e8>] (driver_register+0x88/0x108)
[ 4040.337559] [<803a66e8>] (driver_register) from [<8040a8f4>] (usb_register_driver+0x80/0x144)
[ 4040.337592] [<8040a8f4>] (usb_register_driver) from [<7f3a00e0>] (acm_init+0xe0/0x124 [cdc_acm])
[ 4040.337634] [<7f3a00e0>] (acm_init [cdc_acm]) from [<80009764>] (do_one_initcall+0xa0/0x1ec)
[ 4040.337654] [<80009764>] (do_one_initcall) from [<800fccc8>] (do_init_module+0x74/0x1d8)
[ 4040.337673] [<800fccc8>] (do_init_module) from [<8009ec68>] (load_module+0x198c/0x1fc8)
[ 4040.337690] [<8009ec68>] (load_module) from [<8009f44c>] (SyS_finit_module+0x74/0x84)
[ 4040.337708] [<8009f44c>] (SyS_finit_module) from [<8000fb40>] (ret_fast_syscall+0x0/0x1c)
[ 4040.337722] Code: 13590000 0a000204 e15a0009 0a0002af (e5993004) 
[ 4040.337815] ---[ end trace 6509cfe20d4d33bc ]---
[ 4040.336860] PC is at acm_probe+0x17c/0xd98 [cdc_acm]
[ 4040.336865] LR is at 0x1
[ 4040.336875] pc : [<7f39be28>]    lr : [<00000001>]    psr: 60000013
[ 4040.336875] sp : afba9c30  ip : afba9c30  fp : afba9cac
[ 4040.336880] r10: af873200  r9 : 00000000  r8 : af873200
[ 4040.336887] r7 : 7f39e6dc  r6 : afb7e800  r5 : 00000000  r4 : afb7e800
[ 4040.336894] r3 : 00000010  r2 : af872800  r1 : 00000000  r0 : af873200
[ 4040.336903] Flags: nZCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
[ 4040.336911] Control: 10c5387d  Table: 2fbc806a  DAC: 00000055
[ 4040.336917] Process systemd-udevd (pid: 19836, stack limit = 0xafba8210)
[ 4040.336924] Stack: (0xafba9c30 to 0xafbaa000)
[ 4040.336935] 9c20:                                     afb20280 801c97f4 80000001 afb20280
[ 4040.336948] 9c40: afba9c64 801cc13c 801c97f4 af9c0370 af878f00 afb20280 afba9c84 af878f00
[ 4040.336962] 9c60: af9c0370 afb7e868 afba9c94 00000000 af873200 afb7e800 00000001 00000010
[ 4040.336975] 9c80: af873200 af873220 afb7e868 afb7e800 7f39e6dc af873200 7f39d994 00000000
[ 4040.336989] 9ca0: afba9cdc afba9cb0 8040af88 7f39bcb8 8040aea0 8099d880 af873220 00000000
[ 4040.337002] 9cc0: 7f39e6dc 000004ca 7f39e740 00000000 afba9d04 afba9ce0 803a5e20 8040aeac
[ 4040.337016] 9ce0: 00000007 af873220 7f39e6dc af873254 00000000 7f39e560 afba9d24 afba9d08
[ 4040.337029] 9d00: 803a5fac 803a5c64 b958a45c 00000000 7f39e6dc 803a5f04 afba9d4c afba9d28
[ 4040.337042] 9d20: 803a3fec 803a5f10 b958a45c afbe7a34 b958a470 7f39e6dc afaf9480 808ec0b4
[ 4040.337055] 9d40: afba9d5c afba9d50 803a58e8 803a3f7c afba9d84 afba9d60 803a552c 803a58c8
[ 4040.337068] 9d60: 7f39e560 afba9d70 7f39e6dc 00000000 808ec0b4 7f39e6dc afba9d9c afba9d88
[ 4040.337082] 9d80: 803a66e8 803a5384 7f39e6a8 00000000 afba9dc4 afba9da0 8040a8f4 803a666c
[ 4040.337094] 9da0: 00000000 7f39e940 00000cbd 0000000c 00000001 505335dc afba9de4 afba9dc8
[ 4040.337109] 9dc0: 7f3a00e0 8040a880 808a2398 808a2398 afb3b740 7f3a0000 afba9e64 afba9de8
[ 4040.337122] 9de0: 80009764 7f3a000c 3a721000 00000000 afba9e3c afba9e00 80105288 00029f4c
[ 4040.337135] 9e00: 801394d8 b7855b40 3a721000 00000001 505335dc 80147e40 afba9e64 afba9e28
[ 4040.337148] 9e20: 80147e40 805e93d4 00000001 801394d8 0000000b 00029f4c bc401000 7f39e740
[ 4040.337161] 9e40: 00000001 afb3bcc0 7f39e740 00000001 505335dc afacca48 afba9e8c afba9e68
[ 4040.337174] 9e60: 800fccc8 800096d0 afba9e8c afba9e78 801395d4 afba9f44 00000001 afacca40
[ 4040.337187] 9e80: afba9f3c afba9e90 8009ec68 800fcc60 7f39e74c 00007fff 7f39e740 8009c34c
[ 4040.337200] 9ea0: 0000015e 00000000 7f39e74c 7f39e74c 7f39e960 7f39e924 7f39e858 7f39e788
[ 4040.337213] 9ec0: bc401000 0000a230 0004169a 00000000 0b300002 00000000 00000000 00000000
[ 4040.337225] 9ee0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
[ 4040.337238] 9f00: 00000000 00000000 00000000 00000000 00000058 00000000 00000007 76d19004
[ 4040.337252] 9f20: 0000017b 8000fd08 afba8000 00000000 afba9fa4 afba9f40 8009f44c 8009d2e8
[ 4040.337265] 9f40: 00000002 bc401000 0000a230 bc40ac68 bc4073e7 bc408b3c 00003960 00003cf0
[ 4040.337277] 9f60: 00000000 00000000 00000000 00002920 00000023 00000024 0000001c 00000019
[ 4040.337290] 9f80: 00000015 00000000 00000000 54b1204c 00000000 00020000 00000000 afba9fa8
[ 4040.337303] 9fa0: 8000fb40 8009f3e4 54b1204c 00000000 00000007 76d19004 00000000 54fc6dc0
[ 4040.337316] 9fc0: 54b1204c 00000000 00020000 0000017b 76d19004 00020000 54fc6dc0 00000000
[ 4040.337329] 9fe0: 7edc7200 7edc71f0 76d1109c 76e6dd40 60000010 00000007 00000000 00000000
[ 4040.337422] [<7f39be28>] (acm_probe [cdc_acm]) from [<8040af88>] (usb_probe_interface+0xe8/0x1d4)
[ 4040.337447] [<8040af88>] (usb_probe_interface) from [<803a5e20>] (really_probe+0x1c8/0x2ac)
[ 4040.337468] [<803a5e20>] (really_probe) from [<803a5fac>] (__driver_attach+0xa8/0xac)
[ 4040.337488] [<803a5fac>] (__driver_attach) from [<803a3fec>] (bus_for_each_dev+0x7c/0xb0)
[ 4040.337506] [<803a3fec>] (bus_for_each_dev) from [<803a58e8>] (driver_attach+0x2c/0x30)
[ 4040.337523] [<803a58e8>] (driver_attach) from [<803a552c>] (bus_add_driver+0x1b4/0x22c)
[ 4040.337542] [<803a552c>] (bus_add_driver) from [<803a66e8>] (driver_register+0x88/0x108)
[ 4040.337559] [<803a66e8>] (driver_register) from [<8040a8f4>] (usb_register_driver+0x80/0x144)
[ 4040.337592] [<8040a8f4>] (usb_register_driver) from [<7f3a00e0>] (acm_init+0xe0/0x124 [cdc_acm])
[ 4040.337634] [<7f3a00e0>] (acm_init [cdc_acm]) from [<80009764>] (do_one_initcall+0xa0/0x1ec)
[ 4040.337654] [<80009764>] (do_one_initcall) from [<800fccc8>] (do_init_module+0x74/0x1d8)
[ 4040.337673] [<800fccc8>] (do_init_module) from [<8009ec68>] (load_module+0x198c/0x1fc8)
[ 4040.337690] [<8009ec68>] (load_module) from [<8009f44c>] (SyS_finit_module+0x74/0x84)
[ 4040.337708] [<8009f44c>] (SyS_finit_module) from [<8000fb40>] (ret_fast_syscall+0x0/0x1c)
[ 4040.337722] Code: 13590000 0a000204 e15a0009 0a0002af (e5993004) 
[ 4040.337815] ---[ end trace 6509cfe20d4d33bc ]---
[ 4040.886563] usb 1-1.4: USB disconnect, device number 105
 wire cn adutux xpad ff_memless ldusb powermate evdev joydev usbtouchscreen usbled cypress_m8 pl2303 aircable usbserial prism2_usb(C) rt2800usb rt2800lib rt2x00usb rt2x00lib mac80211 crc_ccitt r8712u(C) btusb btrtl btintel btbcm bnep bluetooth cfg80211 rfkill snd_bcm2835 snd_pcm bcm2835_gpiomem snd_timer bcm2835_wdt snd uio_pdrv_genirq uio i2c_dev fuse
[ 4040.886563] usb 1-1.4: USB disconnect, device number 105

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336917] Process systemd-udevd (pid: 19836, stack limit = 0xafba8210)

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336924] Stack: (0xafba9c30 to 0xafbaa000)

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336935] 9c20:                                     afb20280 801c97f4 80000001 afb20280

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336948] 9c40: afba9c64 801cc13c 801c97f4 af9c0370 af878f00 afb20280 afba9c84 af878f00

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336962] 9c60: af9c0370 afb7e868 afba9c94 00000000 af873200 afb7e800 00000001 00000010

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336975] 9c80: af873200 af873220 afb7e868 afb7e800 7f39e6dc af873200 7f39d994 00000000

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.336989] 9ca0: afba9cdc afba9cb0 8040af88 7f39bcb8 8040aea0 8099d880 af873220 00000000

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337002] 9cc0: 7f39e6dc 000004ca 7f39e740 00000000 afba9d04 afba9ce0 803a5e20 8040aeac

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337016] 9ce0: 00000007 af873220 7f39e6dc af873254 00000000 7f39e560 afba9d24 afba9d08

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337029] 9d00: 803a5fac 803a5c64 b958a45c 00000000 7f39e6dc 803a5f04 afba9d4c afba9d28

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337042] 9d20: 803a3fec 803a5f10 b958a45c afbe7a34 b958a470 7f39e6dc afaf9480 808ec0b4

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337055] 9d40: afba9d5c afba9d50 803a58e8 803a3f7c afba9d84 afba9d60 803a552c 803a58c8

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337068] 9d60: 7f39e560 afba9d70 7f39e6dc 00000000 808ec0b4 7f39e6dc afba9d9c afba9d88

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337082] 9d80: 803a66e8 803a5384 7f39e6a8 00000000 afba9dc4 afba9da0 8040a8f4 803a666c

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337094] 9da0: 00000000 7f39e940 00000cbd 0000000c 00000001 505335dc afba9de4 afba9dc8

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337109] 9dc0: 7f3a00e0 8040a880 808a2398 808a2398 afb3b740 7f3a0000 afba9e64 afba9de8

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337122] 9de0: 80009764 7f3a000c 3a721000 00000000 afba9e3c afba9e00 80105288 00029f4c

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337135] 9e00: 801394d8 b7855b40 3a721000 00000001 505335dc 80147e40 afba9e64 afba9e28

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337148] 9e20: 80147e40 805e93d4 00000001 801394d8 0000000b 00029f4c bc401000 7f39e740

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337161] 9e40: 00000001 afb3bcc0 7f39e740 00000001 505335dc afacca48 afba9e8c afba9e68

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337174] 9e60: 800fccc8 800096d0 afba9e8c afba9e78 801395d4 afba9f44 00000001 afacca40

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337187] 9e80: afba9f3c afba9e90 8009ec68 800fcc60 7f39e74c 00007fff 7f39e740 8009c34c

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337200] 9ea0: 0000015e 00000000 7f39e74c 7f39e74c 7f39e960 7f39e924 7f39e858 7f39e788

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337213] 9ec0: bc401000 0000a230 0004169a 00000000 0b300002 00000000 00000000 00000000

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337225] 9ee0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000

Message from syslogd@raspberrypi at Jun 27 13:24:16 ...
 kernel:[ 4040.337238] 9f00: 000000
Messa
Messa
Messa
Message 

Reply via email to