Hi Ville, On Mon, Oct 18, 2010 at 9:02 AM, Ville Tervo <ville.tervo@xxxxxxxxx> wrote: > Hi, > > Here is v2 of bluetooth low energy patch set. > Changes from previous version. While doing tests with your most recent trees (using devel HW from TI), I'm getting consistent panic on the following test: (dev1) hciconfig hciX leadv (dev2) hcitool -i hciX lecc <dev2_addr> I attached two logs. One is from dev1 machine (which has the oops), the other is from the dev2 machine. Hope that helps debugging the problem. I'm on IRC if you need any clarification. For reference, I'm using the tree from: git://git.kernel.org/pub/scm/linux/kernel/git/vtervo/bluetooth-le-2.6.git (branch master) Regards, -- Anderson Lizardo OpenBossa Labs - INdT Manaus - Brazil
[ 91.586913] hci_sock_create: sock d74c5300 [ 91.588455] hci_sock_ioctl: cmd 800448d2 arg b8641008 [ 91.589757] hci_sock_ioctl: cmd 800448d3 arg bffdd9fc [ 91.591167] hci_dev_get: 0 [ 91.592004] hci_sock_release: sock d74c5300 sk d6a7c400 [ 92.366309] hci_sock_create: sock d74c5300 [ 92.367636] hci_sock_ioctl: cmd 800448d2 arg b98dd008 [ 92.369340] hci_sock_ioctl: cmd 800448d3 arg bfd5fa9c [ 92.370705] hci_dev_get: 0 [ 92.371570] hci_sock_release: sock d74c5300 sk d69f1400 [ 93.120496] hci_sock_create: sock d74c5300 [ 93.121813] hci_sock_ioctl: cmd 800448d2 arg b94f8008 [ 93.123214] hci_sock_ioctl: cmd 800448d3 arg bfcd86ec [ 93.124827] hci_dev_get: 0 [ 93.125658] hci_sock_release: sock d74c5300 sk d6a7ce00 [ 94.003517] hci_sock_create: sock d74c5180 [ 94.005313] hci_sock_ioctl: cmd 800448d3 arg b785c260 [ 94.006913] hci_dev_get: 0 [ 94.007821] hci_sock_create: sock d74c5600 [ 94.009439] hci_sock_bind: sock d74c5600 sk d6a4d200 [ 94.011046] hci_dev_get: 0 [ 94.011916] hci_sock_setsockopt: sk d6a4d200, opt 2 [ 94.013664] hci_sock_sendmsg: sock d74c5600 sk d6a4d200 [ 94.015381] hci_cmd_task: hci0 cmd 1 [ 94.016449] hci_send_frame: hci0 type 1 len 4 [ 94.017838] hci_send_to_sock: hdev d6a65000 len 4 [ 94.019463] hci_uart_send_frame: hci0: type 1 len 4 [ 94.020895] ll_enqueue: hu d6bd1380 skb d6b88a80 [ 94.022279] ll_enqueue: device awake, sending normally [ 94.023872] hci_uart_tx_wakeup: [ 94.025984] hci_uart_tty_wakeup: [ 94.027265] hci_uart_tx_wakeup: [ 94.032150] ll_recv: hu d6bd1380 count 7 rx_state 0 rx_count 0 [ 94.033936] ll_recv: Event packet [ 94.034810] ll_recv: Event header: evt 0x0e plen 4 [ 94.035943] ll_check_data_len: len 4 room 1078 [ 94.037536] ll_recv: Complete data [ 94.039898] hci_rx_task: hci0 [ 94.040708] hci_send_to_sock: hdev d6a65000 len 6 [ 94.041920] hci_cmd_complete_evt: hci0 opcode 0x200a [ 94.043381] hci_sock_recvmsg: sock d74c5600, sk d6a4d200 [ 94.045647] hci_sock_setsockopt: sk d6a4d200, opt 2 [ 94.047169] hci_sock_release: sock d74c5600 sk d6a4d200 [ 94.048850] hci_sock_release: sock d74c5180 sk d6a4d000 [ 94.948111] ll_recv: hu d6bd1380 count 6 rx_state 0 rx_count 0 [ 94.949507] ll_recv: Event packet [ 94.950290] ll_recv: Event header: evt 0x3e plen 19 [ 94.951415] ll_check_data_len: len 19 room 1078 [ 94.952813] ll_recv: hu d6bd1380 count 16 rx_state 4 rx_count 16 [ 94.954252] ll_recv: Complete data [ 94.955388] hci_rx_task: hci0 [ 94.956400] hci_le_conn_complete_evt: hci0 status 0 [ 94.958075] hci_conn_add: hci0 dst 00:17:E7:90:08:07 [ 94.959841] hci_conn_init_sysfs: conn d6bf3800 [ 94.961320] hci_conn_add_sysfs: conn d6bf3800 [ 94.962665] l2cap_connect_cfm: hcon d6bf3800 bdaddr 00:17:E7:90:08:07 status 0 [ 94.964922] l2cap_conn_add: hcon d6bf3800 conn d787dc80 [ 94.966370] l2cap_conn_ready: conn d787dc80 [ 94.974706] l2cap_le_conn_ready: [ 94.977693] BUG: unable to handle kernel NULL pointer dereference at 00000034 [ 94.979982] IP: [<c0132f73>] __ticket_spin_unlock+0x3/0x10 [ 94.981627] *pdpt = 0000000014867001 *pde = 0000000000000000 [ 94.981627] Oops: 0002 [#1] SMP [ 94.981627] last sysfs file: /sys/module/bluetooth/initstate [ 94.981627] Modules linked in: hci_uart l2cap bluetooth ftdi_sio usbserial uhci_hcd usbcore 8139too 8139cp mii i2c_piix4 [ 94.981627] [ 94.981627] Pid: 3, comm: ksoftirqd/0 Not tainted 2.6.36-rc7+ #1 /Bochs [ 94.981627] EIP: 0060:[<c0132f73>] EFLAGS: 00010246 CPU: 0 [ 94.981627] EIP is at __ticket_spin_unlock+0x3/0x10 [ 94.981627] EAX: 00000034 EBX: d787dc80 ECX: c071fc34 EDX: 00000000 [ 94.981627] ESI: d787dce0 EDI: 00000034 EBP: d785be04 ESP: d785be04 [ 94.981627] DS: 007b ES: 007b FS: 00d8 GS: 00e0 SS: 0068 [ 94.981627] Process ksoftirqd/0 (pid: 3, ti=d785a000 task=d7851960 task.ti=d785a000) [ 94.981627] Stack: [ 94.981627] d785be48 d921e07c d9224e75 d9224089 d787dc80 d9187992 00000000 d4ba8810 [ 94.981627] <0> d785be34 c0169200 d6bceae0 00000000 d785be40 c016927a d6bf3800 00000000 [ 94.981627] <0> d4ba8810 d785be58 d917cacd d6bf3800 d4ba880b d785bee0 d9180496 d9184e24 [ 94.981627] Call Trace: [ 94.981627] [<d921e07c>] ? l2cap_connect_cfm+0x25c/0x430 [l2cap] [ 94.981627] [<c0169200>] ? queue_work_on+0x0/0x40 [ 94.981627] [<c016927a>] ? queue_work+0x1a/0x20 [ 94.981627] [<d917cacd>] ? hci_proto_connect_cfm+0x2d/0x60 [bluetooth] [ 94.981627] [<d9180496>] ? hci_event_packet+0x15b6/0x22e0 [bluetooth] [ 94.981627] [<c014c8f8>] ? dequeue_entity+0x1c8/0x210 [ 94.981627] [<c0132fc8>] ? default_spin_lock_flags+0x8/0x10 [ 94.981627] [<c055958f>] ? _raw_spin_lock_irqsave+0x2f/0x50 [ 94.981627] [<c048d810>] ? skb_dequeue+0x50/0x70 [ 94.981627] [<d9177e2b>] ? hci_rx_task+0x28b/0x470 [bluetooth] [ 94.981627] [<c010851a>] ? __switch_to+0xba/0x170 [ 94.981627] [<c0157887>] ? tasklet_action+0xa7/0xb0 [ 94.981627] [<c01585cc>] ? __do_softirq+0x9c/0x1b0 [ 94.981627] [<c0158725>] ? do_softirq+0x45/0x50 [ 94.981627] [<c015879e>] ? run_ksoftirqd+0x6e/0x100 [ 94.981627] [<c0158730>] ? run_ksoftirqd+0x0/0x100 [ 94.981627] [<c016f3b4>] ? kthread+0x74/0x80 [ 94.981627] [<c016f340>] ? kthread+0x0/0x80 [ 94.981627] [<c010a186>] ? kernel_thread_helper+0x6/0x10 [ 94.981627] Code: c3 8d b4 26 00 00 00 00 55 89 c2 89 e5 0f b7 02 38 e0 8d 88 00 01 00 00 75 05 3e 66 0f b1 0a 0f 94 c1 0f b6 c1 5d c3 90 55 89 e5 <3e> fe 00 5d c3 90 8d b4 26 00 00 00 00 55 8b 10 89 e5 5d 89 d0 [ 94.981627] EIP: [<c0132f73>] __ticket_spin_unlock+0x3/0x10 SS:ESP 0068:d785be04 [ 94.981627] CR2: 0000000000000034 [ 95.085803] ---[ end trace b3d0bafeb61a44e4 ]--- [ 95.087338] Kernel panic - not syncing: Fatal exception in interrupt [ 95.089445] Pid: 3, comm: ksoftirqd/0 Tainted: G D 2.6.36-rc7+ #1 [ 95.092081] Call Trace: [ 95.092988] [<c0556c67>] ? printk+0x1d/0x26 [ 95.094649] [<c0556b48>] panic+0x5c/0x15e [ 95.096421] [<c055aeed>] oops_end+0xcd/0xd0 [ 95.098281] [<c0134106>] no_context+0xc6/0x1a0 [ 95.100136] [<c013421c>] __bad_area_nosemaphore+0x3c/0x160 [ 95.102325] [<c0158869>] ? irq_exit+0x39/0x70 [ 95.104167] [<c0560485>] ? do_IRQ+0x55/0xc0 [ 95.105905] [<c0158869>] ? irq_exit+0x39/0x70 [ 95.107681] [<c0134357>] bad_area_nosemaphore+0x17/0x20 [ 95.109690] [<c055d301>] do_page_fault+0x3b1/0x470 [ 95.111695] [<c0152cb1>] ? vprintk+0x191/0x3f0 [ 95.113542] [<c055cf50>] ? do_page_fault+0x0/0x470 [ 95.115464] [<c055a327>] error_code+0x67/0x70 [ 95.117187] [<c0132f73>] ? __ticket_spin_unlock+0x3/0x10 [ 95.119432] [<d921e07c>] l2cap_connect_cfm+0x25c/0x430 [l2cap] [ 95.121826] [<c0169200>] ? queue_work_on+0x0/0x40 [ 95.123681] [<c016927a>] ? queue_work+0x1a/0x20 [ 95.125357] [<d917cacd>] hci_proto_connect_cfm+0x2d/0x60 [bluetooth] [ 95.127881] [<d9180496>] hci_event_packet+0x15b6/0x22e0 [bluetooth] [ 95.130168] [<c014c8f8>] ? dequeue_entity+0x1c8/0x210 [ 95.132314] [<c0132fc8>] ? default_spin_lock_flags+0x8/0x10 [ 95.134434] [<c055958f>] ? _raw_spin_lock_irqsave+0x2f/0x50 [ 95.136702] [<c048d810>] ? skb_dequeue+0x50/0x70 [ 95.138576] [<d9177e2b>] hci_rx_task+0x28b/0x470 [bluetooth] [ 95.140879] [<c010851a>] ? __switch_to+0xba/0x170 [ 95.142660] [<c0157887>] tasklet_action+0xa7/0xb0 [ 95.144594] [<c01585cc>] __do_softirq+0x9c/0x1b0 [ 95.146336] [<c0158725>] do_softirq+0x45/0x50 [ 95.148053] [<c015879e>] run_ksoftirqd+0x6e/0x100 [ 95.149865] [<c0158730>] ? run_ksoftirqd+0x0/0x100 [ 95.151612] [<c016f3b4>] kthread+0x74/0x80 [ 95.152940] [<c016f340>] ? kthread+0x0/0x80 [ 95.154409] [<c010a186>] kernel_thread_helper+0x6/0x10
[ 95.164174] hci_sock_create: sock d7658480 [ 95.165661] hci_sock_ioctl: cmd 800448d2 arg b8548008 [ 95.167174] hci_sock_ioctl: cmd 800448d3 arg bf96b090 [ 95.169134] hci_dev_get: 0 [ 95.170087] hci_sock_release: sock d7658480 sk d494fc00 [ 95.171717] hci_sock_create: sock d7658480 [ 95.173511] hci_sock_bind: sock d7658480 sk d494fc00 [ 95.175036] hci_dev_get: 0 [ 95.175916] hci_sock_setsockopt: sk d494fc00, opt 2 [ 95.177807] hci_sock_sendmsg: sock d7658480 sk d494fc00 [ 95.179474] hci_cmd_task: hci0 cmd 1 [ 95.180743] hci_send_frame: hci0 type 1 len 28 [ 95.182061] hci_send_to_sock: hdev d4081000 len 28 [ 95.183559] hci_uart_send_frame: hci0: type 1 len 28 [ 95.185083] ll_enqueue: hu d6b46980 skb d69d2240 [ 95.186487] ll_enqueue: device awake, sending normally [ 95.187982] hci_uart_tx_wakeup: [ 95.190964] hci_uart_tty_wakeup: [ 95.191971] hci_uart_tx_wakeup: [ 95.196115] ll_recv: hu d6b46980 count 7 rx_state 0 rx_count 0 [ 95.197711] ll_recv: Event packet [ 95.198632] ll_recv: Event header: evt 0x0f plen 4 [ 95.200003] ll_check_data_len: len 4 room 1078 [ 95.201255] ll_recv: Complete data [ 95.202088] hci_rx_task: hci0 [ 95.202809] hci_send_to_sock: hdev d4081000 len 6 [ 95.204163] hci_cs_le_create_conn: hci0 status 0x0 [ 95.205293] hci_sent_cmd_data: hci0 opcode 0x200d [ 95.206376] hci_cs_le_create_conn: hci0 bdaddr 00:17:E7:90:08:6D conn (null) [ 95.208300] hci_conn_add: hci0 dst 00:17:E7:90:08:6D [ 95.210251] hci_conn_init_sysfs: conn d7a59800 [ 95.211983] hci_sock_recvmsg: sock d7658480, sk d494fc00 [ 95.214411] ll_recv: hu d6b46980 count 22 rx_state 0 rx_count 0 [ 95.216160] ll_recv: Event packet [ 95.216996] ll_recv: Event header: evt 0x3e plen 19 [ 95.221649] ll_check_data_len: len 19 room 1078 [ 95.223225] ll_recv: Complete data [ 95.224721] hci_rx_task: hci0 [ 95.225578] hci_send_to_sock: hdev d4081000 len 21 [ 95.226983] hci_le_conn_complete_evt: hci0 status 0 [ 95.228446] hci_conn_add_sysfs: conn d7a59800 [ 95.229613] l2cap_connect_cfm: hcon d7a59800 bdaddr 00:17:E7:90:08:6D status 0 [ 95.231870] l2cap_conn_add: hcon d7a59800 conn d791d300 [ 95.237446] l2cap_conn_ready: conn d791d300 [ 95.238927] hci_sock_recvmsg: sock d7658480, sk d494fc00 [ 95.242764] hci_sock_setsockopt: sk d494fc00, opt 2 [ 95.244603] hci_sock_release: sock d7658480 sk d494fc00 [ 95.304073] ll_recv: hu d6b46980 count 7 rx_state 0 rx_count 0 [ 95.305472] ll_recv: Event packet [ 95.306409] ll_recv: Event header: evt 0x05 plen 4 [ 95.307517] ll_check_data_len: len 4 room 1078 [ 95.308941] ll_recv: Complete data [ 95.311881] hci_rx_task: hci0 [ 95.316296] hci_disconn_complete_evt: hci0 status 0 [ 95.317676] l2cap_disconn_cfm: hcon d7a59800 reason 62 [ 95.320974] l2cap_conn_del: hcon d7a59800 conn d791d300, err 38 [ 95.324343] hci_conn_del: hci0 conn d7a59800 handle 1025 [ 95.327635] hci_conn_del_sysfs: conn d7a59800
