[Bug 1040463] New: Oops in i915 driver function gen6_ppgtt_insert_entries
With fully patched Leap 42.2 (Kernel 4.4.62-18.6-default) I can trigger the
oops below.

BUG: unable to handle kernel NULL pointer dereference at (null)
IP: [<ffffffffa0244a28>] gen6_ppgtt_insert_entries+0xb8/0x140 [i915]
PGD 7fcadf067 PUD 7f3a28067 PMD 0
Oops: 0000 [#1] SMP
Modules linked in: nf_log_ipv6 xt_pkttype nf_log_ipv4 nf_log_common xt_LOG
xt_limit ppdev parport fuse iscsi_ibft iscsi_boot_sysfs ip6t_REJECT
nf_reject_ipv6 xt_tcpudp nf_conntrack_ipv6 nf_defrag_ipv6 ip6table_raw
ipt_REJECT nf_reject_ipv4 iptable_raw xt_CT iptable_filter ip6table_mangle
nf_conntrack_netbios_ns nf_conntrack_broadcast nf_conntrack_ipv4 nf_defrag_ipv4
ip_tables xt_conntrack nf_conntrack ip6table_filter ip6_tables x_tables raid1
ext4 crc16 jbd2 mbcache hid_generic nls_iso8859_1 nls_cp437
snd_hda_codec_realtek snd_hda_codec_generic usbhid vfat snd_hda_codec_hdmi fat
intel_rapl x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel kvm
irqbypass crct10dif_pclmul crc32_pclmul snd_hda_intel snd_hda_codec
snd_hda_core md_mod ghash_clmulni_intel drbg snd_hwdep ansi_cprng iTCO_wdt
iTCO_vendor_support snd_pcm snd_seq aesni_intel snd_seq_device aes_x86_64 lrw
gf128mul snd_timer glue_helper e1000e ablk_helper cryptd i2c_i801 pcspkr snd
battery mei_me ptp mei pps_core soundcore lpc_ich mfd_core fan thermal fjes
processor btrfs xor raid6_pq sd_mod ahci libahci crc32c_intel xhci_pci xhci_hcd
libata i915 ehci_pci i2c_algo_bit ehci_hcd drm_kms_helper syscopyarea
sysfillrect sysimgblt usbcore fb_sys_fops usb_common drm button video sg
dm_multipath dm_mod scsi_dh_rdac scsi_dh_emc scsi_dh_alua scsi_mod efivarfs
autofs4 [last unloaded: vmnet]
CPU: 1 PID: 4487 Comm: vlc Tainted: G O 4.4.62-18.6-default #1
Hardware name: /DH87RL, BIOS RLH8710H.86A.0323.2013.1204.1726
task: ffff8807fe4d4600 ti: ffff8807fbda8000 task.ti: ffff8807fbda8000
RIP: 0010:[<ffffffffa0244a28>] [<ffffffffa0244a28>]
gen6_ppgtt_insert_entries+0xb8/0x140 [i915]
RSP: 0018:ffff8807fbdaba28 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: ffff8807f90446c0 RSI: ffff8807fa5f8000 RDI: ffff8807fbdaba40
RBP: 0000000000000000 R08: 0000000000000000 R09: ffff8807fefb6000
R10: ffff88081fa990f8 R11: 0000000080000000 R12: ffff8807fefb6000
R13: 0000000000000000 R14: 0000000000000001 R15: ffff8807fa5f8ffc
FS: 00007fbfe4fc6700(0000) GS:ffff88081fa80000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 00000007f1e9e000 CR4: 00000000001406e0
0000000000000200 ffff8807fe4d4600 000002007c2a30a0 ffff8807f90446c0
000fea7500000000 ffffffff00000001 ffff8800d7c3cd40 ffff8807f38a1940
0000000000000002 0000000000000000 0000000000000001 ffff8807fa9d0000
Call Trace:
[<ffffffffa02433fe>] aliasing_gtt_bind_vma+0x8e/0xe0 [i915]
[<ffffffffa024788b>] i915_vma_bind+0xfb/0x1d0 [i915]
[<ffffffffa024e312>] i915_gem_object_do_pin+0x5c2/0xa20 [i915]
[<ffffffffa023dbfc>] i915_gem_execbuffer_reserve_vma.isra.17+0x8c/0x140 [i915]
[<ffffffffa023dfcc>] i915_gem_execbuffer_reserve.isra.18+0x31c/0x360 [i915]
[<ffffffffa023eb01>] i915_gem_do_execbuffer.isra.24+0x651/0x1090 [i915]
[<ffffffffa02401ff>] i915_gem_execbuffer2+0xcf/0x290 [i915]
[<ffffffffa00e0843>] drm_ioctl+0x223/0x460 [drm]
[<ffffffff81218a5c>] do_vfs_ioctl+0x30c/0x570
[<ffffffff81218d34>] SyS_ioctl+0x74/0x80
[<ffffffff8160e072>] entry_SYSCALL_64_fastpath+0x16/0x71
DWARF2 unwinder stuck at entry_SYSCALL_64_fastpath+0x16/0x71

Leftover inexact backtrace:

Code: 04 00 00 41 89 07 0f 84 80 00 00 00 48 8d 7c 24 18 e8 7d 49 0f e1 84 c0
74 4e 48 85 ed 75 b1 48 8b 04 24 49 8b 84 c4 b8 01 00 00 <48> 8b 28 65 ff 05 e6
72 dc 5f 48 8b 44 24 08 83 80 70 21 00 00
RIP [<ffffffffa0244a28>] gen6_ppgtt_insert_entries+0xb8/0x140 [i915]
RSP <ffff8807fbdaba28>
CR2: 0000000000000000
---[ end trace 7a0e893a7199163c ]---

