Bug 98760

Summary: some videos cause BUG: unable to handle kernel NULL pointer dereference at (null) in i915 module
Product: DRI Reporter: Dominik 'Rathann' Mierzejewski <dominik>
Component: DRM/IntelAssignee: Intel GFX Bugs mailing list <intel-gfx-bugs>
Status: CLOSED DUPLICATE QA Contact: Intel GFX Bugs mailing list <intel-gfx-bugs>
Severity: normal    
Priority: medium CC: intel-gfx-bugs, mads
Version: XOrg git   
Hardware: x86-64 (AMD64)   
OS: Linux (All)   
Whiteboard:
i915 platform: HSW i915 features:

Description Dominik 'Rathann' Mierzejewski 2016-11-17 10:48:48 UTC 
As reported in https://github.com/i-rinat/libvdpau-va-gl/issues/64 and https://bugzilla.redhat.com/show_bug.cgi?id=1392164 , this Apple trailer for Arrival (http://trailers.apple.com/movies/paramount/arrival/arrival-final-trailer_h1080p.mov) causes mplayer -vo vdpau -vc ffh264vdpau, (or mpv --vo=vdpau --hwdec=vdpau) to freeze my entire machine with libvdpau-va-gl 0.4.0 or newer installed. Downgrading to 0.3.6 "fixes" the issue. Also, playing the same video via VA-API directly (for example, using mpv --vo=vaapi --hwdec=vaapi) works just fine even with 0.4.2.

fedora-release-24-2.noarch
mplayer-1.3.0-1.fc24.x86_64
mpv-0.21.0-1.fc24.x86_64
kernel-4.8.6-201.fc24.x86_64
libvdpau-1.1.1-3.fc24.x86_64
libvdpau-va-gl-0.4.2-1.fc24.x86_64
libva-1.7.2-1.fc24.x86_64
libva-intel-driver-1.7.2-1.fc24.x86_64
xorg-x11-drv-intel-2.99.917-24.20160712.fc24.x86_64
xorg-x11-server-Xorg-1.18.4-4.fc24.x86_64

$ lspci -tvvnn
-[0000:00]-+-00.0  Intel Corporation Haswell-ULT DRAM Controller [8086:0a04]
           +-02.0  Intel Corporation Haswell-ULT Integrated Graphics Controller [8086:0a16]
           +-03.0  Intel Corporation Haswell-ULT HD Audio Controller [8086:0a0c]
           +-14.0  Intel Corporation 8 Series USB xHCI HC [8086:9c31]
           +-16.0  Intel Corporation 8 Series HECI #0 [8086:9c3a]
           +-1b.0  Intel Corporation 8 Series HD Audio Controller [8086:9c20]
           +-1c.0-[01]----00.0  Intel Corporation Wireless 7260 [8086:08b1]
           +-1c.3-[02]----00.0  Realtek Semiconductor Co., Ltd. RTS5209 PCI Express Card Reader [10ec:5209]
           +-1c.4-[03]----00.0  Samsung Electronics Co Ltd XP941 PCIe SSD [144d:a800]
           +-1d.0  Intel Corporation 8 Series USB EHCI #1 [8086:9c26]
           +-1f.0  Intel Corporation 8 Series LPC Controller [8086:9c43]
           \-1f.3  Intel Corporation 8 Series SMBus Controller [8086:9c22]

Here's the kernel log:
Nov 15 11:21:00 localhost kernel: BUG: unable to handle kernel NULL pointer dereference at           (null)
Nov 15 11:21:00 localhost kernel: IP: [<ffffffffc02b543d>] gen6_ppgtt_insert_entries+0x14d/0x1d0 [i915]
Nov 15 11:21:00 localhost kernel: PGD 0 
Nov 15 11:21:00 localhost kernel: Oops: 0000 [#1] SMP
Nov 15 11:21:00 localhost kernel: Modules linked in: hid_logitech_hidpp uas snd_usb_audio hid_plantronics hid_logitech_dj usb_storage snd_usbmidi
_lib snd_rawmidi gspca_ov534 gspca_main v4l2_common ax88179_178a usbnet mii ip6t_rpfilter ip6t_REJECT nf_reject_ipv6 xt_conntrack ebtable_broute ebtable_nat 
ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6 nf_nat_ipv6 ip6table_raw ip6table_mangle ip6table_security iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_
ipv4 nf_nat nf_conntrack iptable_raw iptable_mangle iptable_security ebtable_filter ebtables ip6table_filter ip6_tables ccm bnep fuse bluetooth ip_set nfnetl
ink bridge stp llc arc4 intel_rapl x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel kvm pn544_mei mei_phy pn544 hci iwlmvm vfat nfc fat irqbypass iTC
O_wdt mac80211 iTCO_vendor_support intel_cstate intel_uncore
Nov 15 11:21:00 localhost kernel:  uvcvideo snd_hda_codec_realtek snd_hda_codec_hdmi intel_rapl_perf snd_hda_codec_generic snd_hda_intel iwlwifi videobuf2_vmalloc videobuf2_memops snd_hda_codec videobuf2_v4l2 videobuf2_core snd_hda_core snd_hwdep snd_seq videodev snd_seq_device i2c_i801 media rtsx_pci_ms i2c_smbus cfg80211 memstick lpc_ich joydev mei_me snd_pcm sony_laptop snd_timer acpi_als mei kfifo_buf shpchp industrialio rfkill snd soundcore tpm_tis tpm_tis_core tpm nfsd auth_rpcgss nfs_acl lockd grace sunrpc dm_crypt mmc_block i915 rtsx_pci_sdmmc mmc_core crct10dif_pclmul i2c_algo_bit crc32_pclmul drm_kms_helper crc32c_intel ghash_clmulni_intel drm serio_raw rtsx_pci fjes video hid_multitouch [last unloaded: ip6_tables]
Nov 15 11:21:00 localhost kernel: CPU: 3 PID: 15785 Comm: mplayer Not tainted 4.8.6-201.fc24.x86_64 #1
Nov 15 11:21:00 localhost kernel: Hardware name: Sony Corporation SVP1322C5E/VAIO, BIOS R2091V7 03/24/2014
Nov 15 11:21:00 localhost kernel: task: ffff90a4b48fbd00 task.stack: ffff90a3c99bc000
Nov 15 11:21:00 localhost kernel: RIP: 0010:[<ffffffffc02b543d>]  [<ffffffffc02b543d>] gen6_ppgtt_insert_entries+0x14d/0x1d0 [i915]
Nov 15 11:21:00 localhost kernel: RSP: 0018:ffff90a3c99bf9d8  EFLAGS: 00010246
Nov 15 11:21:00 localhost kernel: RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff90a4d494a000
Nov 15 11:21:00 localhost kernel: RDX: ffff90a4b49ecc60 RSI: ffff90a4d13cd000 RDI: 000000009b19c000
Nov 15 11:21:00 localhost kernel: RBP: ffff90a3c99bfa28 R08: 0000000000000000 R09: ffff90a4d494a000
Nov 15 11:21:00 localhost kernel: R10: 0000000000000000 R11: ffff90a4d1390000 R12: ffff90a4d13cdffc
Nov 15 11:21:00 localhost kernel: R13: 0000000000000000 R14: ffff90a4b49ecc60 R15: 0000000000000000
Nov 15 11:21:00 localhost kernel: FS:  00007f8859ecb980(0000) GS:ffff90a4dfb80000(0000) knlGS:0000000000000000
Nov 15 11:21:00 localhost kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Nov 15 11:21:00 localhost kernel: CR2: 0000000000000000 CR3: 00000001f3a60000 CR4: 00000000001406e0
Nov 15 11:21:00 localhost kernel: Stack:
Nov 15 11:21:00 localhost kernel:  ffff90a4b48fbd00 0000000000000200 ffff90a4d494a000 0000100000000001
Nov 15 11:21:00 localhost kernel:  000000009b19c000 0000000000000000 ffff90a4d206f400 0000000000000002
Nov 15 11:21:00 localhost kernel:  0000000000000001 ffff90a431e30240 ffff90a3c99bfa60 ffffffffc02b6d10
Nov 15 11:21:00 localhost kernel: Call Trace:
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b6d10>] aliasing_gtt_bind_vma+0x90/0xe0 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02bbd3e>] i915_vma_bind+0xce/0x180 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02c23ab>] i915_gem_object_do_pin+0x86b/0xa60 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02c25cd>] i915_gem_object_pin+0x2d/0x30 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b097f>] i915_gem_execbuffer_reserve_vma.isra.20+0x9f/0x180 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b0deb>] i915_gem_execbuffer_reserve.isra.21+0x38b/0x3b0 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b2088>] i915_gem_do_execbuffer.isra.24+0x6b8/0x1200 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffff9b1da284>] ? shmem_getpage_gfp+0x6b4/0xc90
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b37f4>] i915_gem_execbuffer2+0x104/0x260 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc01aefa0>] drm_ioctl+0x200/0x4f0 [drm]
Nov 15 11:21:00 localhost kernel:  [<ffffffffc02b36f0>] ? i915_gem_execbuffer+0x330/0x330 [i915]
Nov 15 11:21:00 localhost kernel:  [<ffffffff9b264dd3>] do_vfs_ioctl+0xa3/0x5f0
Nov 15 11:21:00 localhost kernel:  [<ffffffff9b265399>] SyS_ioctl+0x79/0x90
Nov 15 11:21:00 localhost kernel:  [<ffffffff9b802572>] entry_SYSCALL_64_fastpath+0x1a/0xa4
Nov 15 11:21:00 localhost kernel: Code: 5f 5d c3 c7 45 cc 00 00 00 00 31 db 48 c7 45 d0 00 00 00 00 45 31 f6 e9 2a ff ff ff 8b 45 b8 48 8b 4d c0 48 8b 84 c1 c8 01 00 00 <4c> 8b 38 48 8b 45 b0 83 80 00 1a 00 00 01 48 b8 00 00 00 00 00 
Nov 15 11:21:00 localhost kernel: RIP  [<ffffffffc02b543d>] gen6_ppgtt_insert_entries+0x14d/0x1d0 [i915]
Comment 1 Mads 2016-11-22 17:05:22 UTC 
Same here. Downgraded from libva-1.7.3 to libva-1.7.2 to fix it.
Comment 2 Dominik 'Rathann' Mierzejewski 2016-12-09 13:54:18 UTC 
(In reply to Mads from comment #1)
> Same here. Downgraded from libva-1.7.3 to libva-1.7.2 to fix it.

Unlikely. If you check my original report, you'll see that I had 1.7.2 installed when it occurred. Only libvdpau-va-gl downgrade to 0.3.6 helps.
Comment 3 Mads 2016-12-09 14:06:46 UTC 
I don't know how gentoo bundles those libva drivers, but you might be right that by downgrading libva to 1.7.3 to 1.7.2 to gentoo, then that driver also gets downgraded. But I'm really not sure (libvdpau-va-gl is not a standalone package in gentoo, I guess it's enabled or disabled with use flags for the package libva).
Comment 4 Chris Wilson 2017-02-10 22:24:43 UTC 

*** This bug has been marked as a duplicate of bug 99107 ***

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.