Re: null pointer error in bluez kernel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Marcel,

>
> Reproduce steps:
> 1. Pair and connect with Motorola S305 headset.
> 2. Disconnect and unpair with the headset.
> 3. Turn off and then turn on the headset. The headset will auto pair with phone.
> 4. Input PIN code "0000" on the phone to complete the incoming pairing.
>
> Repeat step 2-4 for many times, then kernel panic may happen right
> after step 4.
>
> From the kernel log, I found if the bt_accept_unlink() is called
> before l2cap_conn_start(), then panic will happen because in the
> bt_accept_unlink() function it set parent to NULL.
>
> Below is the call order  when the result is successful. We can see the
> parent is not NULL.
>
> [  190.162475] bt_accept_enqueue: parent ccda5298, sk cdb68920
> [  190.170104] bt_accept_enqueue: parent ccda5d10, sk cdf5cd90
> [  190.191223] l2cap_conn_start: conn cd14a320
> [  190.218719] l2cap_conn_start: conn cd14a320
> [  190.223480] l2cap_conn_start: @@@ in l2cap_conn_start --- sk =
> cdb68920, parent = ccda5298
> [  190.235565] bt_accept_unlink: sk cdb68920 state 6
>
> Below is the call order when the result is kernel panic.
> bt_accept_unlink is called first, then we can see the parent is NULL.
>
> [  238.188812] bt_accept_enqueue: parent ccda5298, sk ccf60040
> [  238.196350] bt_accept_enqueue: parent ccda5d10, sk cdf5c960
> [  238.217590] l2cap_conn_start: conn cd14a848
> [  238.223449] bt_accept_unlink: sk ccf60040 state 6
> [  238.229400] l2cap_sock_accept: new socket ccf60040
> [  238.245086] l2cap_conn_start: conn cd14a848
> [  238.249725] l2cap_conn_start: @@@ in l2cap_conn_start --- sk =
> ccf60040, parent = (null)
> [  238.258636] Unable to handle kernel NULL pointer dereference at
> virtual address 00000120
> [  238.267456] pgd = cdb34000
> [  238.270446] [00000120] *pgd=8db32031, *pte=00000000, *ppte=00000000
> [  238.277740] Internal error: Oops: 17 [#1] PREEMPT
>
>
> I think this might be a call competing issue, how do we fix it?
>

any idea for this issue?

Thanks,
Zhu Lan
--
To unsubscribe from this list: send the line "unsubscribe linux-bluetooth" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Bluez Devel]     [Linux Wireless Networking]     [Linux Wireless Personal Area Networking]     [Linux ATH6KL]     [Linux USB Devel]     [Linux Media Drivers]     [Linux Audio Users]     [Linux Kernel]     [Linux SCSI]     [Big List of Linux Books]

  Powered by Linux