On Mon, 2018-09-10 at 19:27 +0200, Lorenzo Bianconi wrote:
> >
> > Start wpa_supplicant
> > Attach to a Cisco AP (haven't tried too many other APs yet).
> > Desktop
> > locks up hard. I have some shell scripts I use start wpa_supp and
> > run
> > wpa_cli (I'm not going through the GNOME ui or other).
> >
> > (Occurs to me I need to verify I didn't have the system's
> > wpa_supplicant running... I forget to kill the systemd started
> > wpa_supp
> > before starting mine.)
> >
> > Captured a kernel oops (attached) with netconsole. Same kernel with
> > my
> > 2nd wifi (an Intel 8265 PCI-e card) works.
> >
> > Running:
> > git://git.kernel.org/pub/scm/linux/kernel/git/wireless/wireless-
> > testing.git 72d1e548defbf75c6bb42fc99276cd88fda7dda0
> >
> >
> > I can 'iw dev scan' & scan through wpa_supplicant with the card
> > fairly
> > successfully. I haven't tried monitor mode. Have recreated the oops
> > a
> > couple times.
> >
> >
> > Alfa AWUSB036ACM
> >
>
> Hi David,
>
> according to the kernel log you provided the crash occurs in
> ieee80211_wake_txqs().
> Could you please run gdb in order to identify the point where NULL
> pointer dereference occurs? E.g:
>
> $gdb mac80211.ko
> $info address ieee80211_wake_txqs
> $l*(<func addr>+<offset>)
> offset is 0x1e3 in your log
>
> Regards,
> Lorenzo
>
Hello. Here's the requested info.
...trillian:wireless-testing% gdb ./net/mac80211/mac80211.ko
[...]
(gdb) info address ieee80211_wake_txqs
Symbol "ieee80211_wake_txqs" is a function at address 0x35890.
[...]
(gdb) l*(0x35890+0x1e3)
0x35a73 is in ieee80211_wake_txqs (net/mac80211/util.c:269).
264 for (i = 0; i < ARRAY_SIZE(sta->sta.txq); i++)
{
265 struct ieee80211_txq *txq = sta-
>sta.txq[i];
266
267 txqi = to_txq_info(txq);
268
269 if (ac != txq->ac)
270 continue;
271
272 if
(!test_and_clear_bit(IEEE80211_TXQ_STOP_NETIF_TX,
273 &txqi->flags))
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
