Date: Thu, 23 Aug 2012 00:26:50 +0400 (MSK) From: "Lev A. Serebryakov" <lev@FreeBSD.org> To: FreeBSD-gnats-submit@FreeBSD.org Subject: kern/170889: [ath] ath driver uses some uninitilized memory Message-ID: <20120822202650.331474AC31@onlyone.friendlyhosting.spb.ru> Resent-Message-ID: <201208222030.q7MKU91T062198@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 170889
>Category: kern
>Synopsis: [ath] ath driver uses some uninitilized memory
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Aug 22 20:30:08 UTC 2012
>Closed-Date:
>Last-Modified:
>Originator: Lev A. Serebryakov
>Release: FreeBSD 10.0-CURRENT i386
>Organization:
>Environment:
System: FreeBSD gateway.home.serebryakov.spb.ru 10.0-CURRENT FreeBSD 10.0-CURRENT #2 r239564M: Wed Aug 22 22:12:33 MSK 2012 root@vmware-c-32.home.serebryakov.spb.ru:/usr/obj/nanobsd.gateway-net5501/data/src/sys/NET5501 i386
Hardware:
ath0: <Atheros 9220> mem 0xa0060000-0xa006ffff irq 15 at device 17.0 on pci0
[ath] enabling AN_TOP2_FIXUP
[ath]: default pwr offset: -5 dBm != EEPROM pwr offset: 0 dBm; curves will be adjusted.
ath0: DMA setup: legacy
ath0: [HT] enabling HT modes
ath0: [HT] 2 RX streams; 2 TX streams
ath0: AR9220 mac 128.2 RF5133 phy 13.0
ath0: 2GHz radio: 0x0000; 5GHz radio: 0x00c0
dev.ath.0.debug=0x100000020 (ATH_DEBUG_RESET|ATH_DEBUG_SW_TX_BAR)
>Description:
With these debug flags ath driver prints out some buffers, which looks like uninitialized memory.
Here is snapshot from boot log:
FreeBSD 10.0-CURRENT #2 r239564M: Wed Aug 22 22:12:33 MSK 2012
root@vmware-c-32.home.serebryakov.spb.ru:/usr/obj/nanobsd.gateway-net5501/data/src/sys/NET5501 i386
> SKIPPED
ath0: <Atheros 9220> mem 0xa0060000-0xa006ffff irq 15 at device 17.0 on pci0
[ath] enabling AN_TOP2_FIXUP
[ath]: default pwr offset: -5 dBm != EEPROM pwr offset: 0 dBm; curves will be adjusted.
ath0: DMA setup: legacy
ath0: [HT] enabling HT modes
ath0: [HT] 2 RX streams; 2 TX streams
ath0: AR9220 mac 128.2 RF5133 phy 13.0
ath0: 2GHz radio: 0x0000; 5GHz radio: 0x00c0
> SKIPPED
> wlan0 created
wlan0: Ethernet address: 00:0c:42:64:69:92
ath0: ath_init: if_flags 0x8803
ath0: ath_stop_locked: invalid 0 if_flags 0x8803
ath0: ath_init: imask=0xe0000071
ath0: ath_txq_update: Q1 qflags 0xf aifs 3 cwmin 15 cwmax 63 burstTime 0
ath0: ath_txq_update: Q0 qflags 0xf aifs 7 cwmin 15 cwmax 1023 burstTime 0
ath0: ath_txq_update: Q2 qflags 0xf aifs 1 cwmin 7 cwmax 15 burstTime 3008
ath0: ath_txq_update: Q3 qflags 0xf aifs 1 cwmin 3 cwmax 7 burstTime 1504
ath0: ath_chan_set: 1 (2412 MHz, flags 0x10480)
ath0: ath_legacy_stoprecv: rx queue 0x2e7b000, link 0xd5e872a0
ath0: ath_stoptxdma: tx queue [9] 0, link 0
ath0: ath_tx_stopdma: tx queue [0] 0, link 0
ath0: ath_tx_stopdma: tx queue [1] 0, link 0
ath0: ath_tx_stopdma: tx queue [2] 0, link 0
ath0: ath_tx_stopdma: tx queue [3] 0, link 0
ath0: ath_tx_stopdma: tx queue [8] 0, link 0
ath0: ath_stoptxdma: tx queue [9] 0, link 0
ath0: ath_tx_stopdma: tx queue [0] 0, link 0
ath0: ath_tx_stopdma: tx queue [1] 0, link 0
ath0: ath_tx_stopdma: tx queue [2] 0, link 0
ath0: ath_tx_stopdma: tx queue [3] 0, link 0
ath0: ath_tx_stopdma: tx queue [8] 0, link 0
ath0: ath_txq_update: Q1 qflags 0xf aifs 2 cwmin 7 cwmax 1023 burstTime 2048
ath0: ath_txq_update: Q0 qflags 0xf aifs 7 cwmin 15 cwmax 1023 burstTime 0
ath0: ath_txq_update: Q2 qflags 0xf aifs 1 cwmin 7 cwmax 15 burstTime 3008
ath0: ath_txq_update: Q3 qflags 0xf aifs 1 cwmin 3 cwmax 7 burstTime 1504
ath0: ath_setslottime: chan 2412 MHz flags 0x10480 short slot, 9 usec
Starting hostapd.
Configuration file: /etc/hostapd.conf
ath0: ath_stop_locked: invalid 0 if_flags 0x8802
ath0: ath_stoptxdma: tx queue [9] 0x2e7a000, link 0
ath0: ath_tx_stopdma: tx queue [0] 0, link 0
ath0: ath_tx_stopdma: tx queue [1] 0x2dfe480, link 0
ath0: ath_tx_stopdma: tx queue [2] 0, link 0
ath0: ath_tx_stopdma: tx queue [3] 0, link 0
ath0: ath_tx_stopdma: tx queue [8] 0, link 0
ath0: ath_legacy_stoprecv: rx queue 0x2e83f60, link 0xd5e83e40
R[ 0] (DS.V:0xd5e83ea0 DS.P:0x2e83ea0) L:02e83f00 D:187bd800 *
aa55aa55 00000800 1b801b1f 00000125
00e632e1 00000100 21808080 80808080 80808080 80808080 00000003
R[ 1] (DS.V:0xd5e83f00 DS.P:0x2e83f00) L:02e83f60 D:187bf000 *
aa55aa55 00000800 1b801406 000000ee
00e6b613 00000100 14808080 80808080 80808080 80808080 00000003
Using interface wlan0 with hwaddr 00:0c:42:64:69:92 and ssid 'home.serebryakov.spb.ru'
ath0: ath_init: if_flags 0x8803
ath0: ath_stop_locked: invalid 0 if_flags 0x8803
ath0: ath_init: imask=0xe0000071
ath0: ath_txq_update: Q1 qflags 0xf aifs 3 cwmin 15 cwmax 63 burstTime 0
ath0: ath_txq_update: Q0 qflags 0xf aifs 7 cwmin 15 cwmax 1023 burstTime 0
ath0: ath_txq_update: Q2 qflags 0xf aifs 1 cwmin 7 cwmax 15 burstTime 3008
ath0: ath_txq_update: Q3 qflags 0xf aifs 1 cwmin 3 cwmax 7 burstTime 1504
ath0: ath_chan_set: 1 (2412 MHz, flags 0x10480)
ath0: ath_txq_update: Q1 qflags 0xf aifs 2 cwmin 7 cwmax 1023 burstTime 2048
ath0: ath_txq_update: Q0 qflags 0xf aifs 7 cwmin 15 cwmax 1023 burstTime 0
ath0: ath_txq_update: Q2 qflags 0xf aifs 1 cwmin 7 cwmax 15 burstTime 3008
ath0: ath_txq_update: Q3 qflags 0xf aifs 1 cwmin 3 cwmax 7 burstTime 1504
ath0: ath_setslottime: chan 2412 MHz flags 0x10480 short slot, 9 usec
>How-To-Repeat:
Build driver, add debugging :)
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120822202650.331474AC31>