https://bugs.kde.org/show_bug.cgi?id=478308
Bug ID: 478308
Summary: VMware kernel oops with KWIN_DRM_NO_AMS=0; desktop
does not repaint
Classification: Plasma
Product: kwin
Version: git master
Platform: Other
OS: Other
Status: REPORTED
Severity: normal
Priority: NOR
Component: platform-drm
Assignee: kwin-bugs-n...@kde.org
Reporter: stefan.hoffmeis...@econos.de
Target Milestone: ---
SUMMARY
Running with `export KWIN_DRM_NO_AMS=0` causes KDE Plasma 6 to trigger kernel
oops in VMware graphics `vmw_du_cursor_plane_cleanup_fb` on Wayland. This then
results in a desktop that doesn't refresh.
I tried `KWIN_DRM_NO_AMS=0` explicitly to force rendering onto the default path
(i.e. the "do not work around virtual machine challenges"), as this execution
path will become active in January 2024, with kernel 6.8 (see recent commits on
kwin) and some additions there.
I was expecting offset cursors (as on Plasma 5) as a challenge, but right now
KDE oopses indeed the kernel, and the desktop is unusable.
STEPS TO REPRODUCE
1. configure Wayland + KWIN_DRM_NO_AMS=0
2. log into desktop
3. to some UI work
// ... after a very short while kernel oops
This is on Fedora Rawhide (40) with kernel 6.7.rc4, KDE Plasma 6 git master (as
of this writing; past beta 1)
OBSERVED RESULT
```
Dec 09 16:09:08 fedora kernel: BUG: kernel NULL pointer dereference, address:
0000000000000028
Dec 09 16:09:08
fedora kernel: #PF: supervisor read access in kernel mode
Dec 09 16:09:08 fedora kernel: #PF:
error_code(0x0000) - not-present page
Dec 09 16:09:08 fedora kernel: PGD 0 P4D 0
Dec 09 16:09:08 fedora kernel: Oops: 0000 [#1] PREEMPT SMP NOPTI
Dec 09 16:09:08
fedora kernel: CPU: 4 PID: 710 Comm: kworker/u256:10 Not tainted
6.7.0-0.rc4.20231206gitbee0e7762ad2.37.fc40.x86_64 #1
Dec 09 16:09:08
fedora kernel: Hardware name: VMware, Inc. VMware20,1/440BX Desktop Reference
Platform, BIOS VMW201.00V.21805430.B64.2305221830 05/22/2023
Dec 09 16:09:08 fedora kernel:
Workqueue: events_unbound commit_work
Dec 09 16:09:08 fedora kernel: RIP:
0010:vmw_du_cursor_plane_cleanup_fb+0x14d/0x170 [vmwgfx]
Dec 09 16:09:08 fedora kernel: Code: 00 00 00 00 00 00
48 8b 44 24 08 65 48 2b 04 25 28 00 00 00 75 29 48 83 c4 10 5b 5d 41 5c c3 cc
cc cc cc 48 8b 86 98 00 00 00 <48> 8b 78 28 e8 0a f1 00 00 c6 83 c0 00 00 00 00
e9 d2 fe ff ff e8
Dec 09 16:09:08 fedora kernel: RSP: 0018:ffffc90000857e00 EFLAGS:
00010202
Dec 09
16:09:08 fedora kernel: RAX: 0000000000000000 RBX: ffff888105edac00 RCX:
0000000000000000
Dec 09 16:09:08
fedora kernel: RDX: ffff88810bc40000 RSI: ffff888105edac00 RDI:
ffff88810d1f4c38
Dec 09 16:09:08
fedora kernel: RBP: ffff88810d1f4c38 R08: ffff8881834582e0 R09:
0000000000000040
Dec 09 16:09:08
fedora kernel: R10: 000000000000000f R11: fefefefefefefeff R12:
0000000000000000
Dec 09 16:09:08
fedora kernel: R13: 0000000000000000 R14: ffff8881001ce005 R15:
ffff88810c5f72e0
Dec 09 16:09:08
fedora kernel: FS: 0000000000000000(0000) GS:ffff88842df00000(0000)
knlGS:0000000000000000
Dec 09 16:09:08 fedora
kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Dec 09 16:09:08 fedora kernel: CR2:
0000000000000028 CR3: 0000000183414002 CR4: 0000000000f70ef0
Dec 09 16:09:08 fedora kernel: PKRU: 55555554
Dec 09 16:09:08 fedora kernel: Call Trace:
Dec 09 16:09:08
fedora kernel: <TASK>
Dec 09 16:09:08 fedora kernel: ?
__die+0x23/0x70
Dec 09 16:09:08 fedora kernel: ?
page_fault_oops+0x171/0x4e0
Dec 09 16:09:08 fedora kernel: ?
exc_page_fault+0x7f/0x180
Dec 09 16:09:08 fedora kernel: ?
asm_exc_page_fault+0x26/0x30
Dec 09 16:09:08 fedora kernel: ?
vmw_du_cursor_plane_cleanup_fb+0x14d/0x170 [vmwgfx]
Dec 09 16:09:08 fedora kernel:
drm_atomic_helper_cleanup_planes+0x9b/0xc0
Dec 09 16:09:08 fedora kernel:
commit_tail+0xd1/0x130
Dec 09 16:09:08 fedora kernel:
process_one_work+0x171/0x340
Dec 09 16:09:08 fedora kernel:
worker_thread+0x27b/0x3a0
Dec 09 16:09:08 fedora kernel: ?
__pfx_worker_thread+0x10/0x10
Dec 09 16:09:08 fedora kernel: kthread+0xe5/0x120
Dec 09 16:09:08 fedora kernel: ? __pfx_kthread+0x10/0x10
Dec 09 16:09:08
fedora kernel: ret_from_fork+0x31/0x50
Dec 09 16:09:08 fedora kernel: ?
__pfx_kthread+0x10/0x10
Dec 09 16:09:08 fedora kernel:
ret_from_fork_asm+0x1b/0x30
Dec 09 16:09:08 fedora kernel: </TASK>
Dec 09 16:09:08 fedora kernel: Modules linked in: uinput snd_seq_dummy
snd_hrtimer nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet
nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6
nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defra>Dec
09 16:09:08 fedora kernel: CR2: 0000000000000028
Dec 09 16:09:08 fedora
kernel: ---[ end trace 0000000000000000 ]---
Dec 09 16:09:08 fedora kernel: RIP:
0010:vmw_du_cursor_plane_cleanup_fb+0x14d/0x170 [vmwgfx]
Dec 09 16:09:08 fedora kernel: Code: 00 00 00 00 00 00
48 8b 44 24 08 65 48 2b 04 25 28 00 00 00 75 29 48 83 c4 10 5b 5d 41 5c c3 cc
cc cc cc 48 8b 86 98 00 00 00 <48> 8b 78 28 e8 0a f1 00 00 c6 83 c0 00 00 00 00
e9 d2 fe ff ff e8
Dec 09 16:09:08 fedora kernel: RSP: 0018:ffffc90000857e00 EFLAGS:
00010202
Dec 09
16:09:08 fedora kernel: RAX: 0000000000000000 RBX: ffff888105edac00 RCX:
0000000000000000
Dec 09 16:09:08
fedora kernel: RDX: ffff88810bc40000 RSI: ffff888105edac00 RDI:
ffff88810d1f4c38
Dec 09 16:09:08
fedora kernel: RBP: ffff88810d1f4c38 R08: ffff8881834582e0 R09:
0000000000000040
Dec 09 16:09:08
fedora kernel: R10: 000000000000000f R11: fefefefefefefeff R12:
0000000000000000
Dec 09 16:09:08
fedora kernel: R13: 0000000000000000 R14: ffff8881001ce005 R15:
ffff88810c5f72e0
Dec 09 16:09:08
fedora kernel: FS: 0000000000000000(0000) GS:ffff88842df00000(0000)
knlGS:0000000000000000
Dec 09 16:09:08 fedora
kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Dec 09 16:09:08 fedora kernel: CR2:
0000000000000028 CR3: 0000000183414002 CR4: 0000000000f70ef0
Dec 09 16:09:08 fedora kernel: PKRU: 55555554
Dec 09 16:09:08 fedora kernel: note: kworker/u256:10[710] exited with irqs
disabled
Dec 09 16:09:08
fedora systemd[1287]: Finished plasma-ksplash.service - Splash screen shown
during boot.
```
EXPECTED RESULT
no oops
--
You are receiving this mail because:
You are watching all bug changes.
