Return-Path: MIME-Version: 1.0 Date: Wed, 13 Jul 2011 17:04:12 -0500 Message-ID: Subject: l2cap_security OOPS From: Pavan Savoy To: linux-bluetooth@vger.kernel.org Content-Type: text/plain; charset=UTF-8 Sender: linux-bluetooth-owner@vger.kernel.org List-ID: This was on kernel 3.0 when I tried to connect to NAP. root@android:/ # [ 324.546295] Unable to handle kernel NULL pointer dereference at virtual address 000001c4 [ 324.554870] pgd = c0004000 [ 324.557708] [000001c4] *pgd=00000000 [ 324.561553] Internal error: Oops: 17 [#1] PREEMPT SMP [ 324.566864] Modules linked in: wl12xx_sdio wl12xx mac80211 cfg80211 [ 324.573516] CPU: 0 Not tainted (3.0.0-rc7-22315-g77e4eff-dirty #16) [ 324.580505] PC is at l2cap_security_cfm+0x170/0x2d4 [ 324.585662] LR is at l2cap_security_cfm+0x174/0x2d4 [ 324.590789] pc : [] lr : [] psr: 20000013 [ 324.590789] sp : ee847d90 ip : 00000001 fp : ee847de4 [ 324.602905] r10: 00000000 r9 : dc3adeb0 r8 : d994c474 [ 324.608428] r7 : d994c230 r6 : d994c200 r5 : d994c400 r4 : 00000006 [ 324.615295] r3 : 00000000 r2 : 00000040 r1 : 00000000 r0 : 00000000 [ 324.622192] Flags: nzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment kernel [ 324.629882] Control: 10c5387d Table: 99be404a DAC: 00000015 [ 324.635955] [ 324.635955] PC: 0xc04aea98: [ 324.640441] ea98 e5d13036 e5c53020 ebef8a9a e1a00006 ebffeb32 e3a01000 e51b0038 eb000f63 [ 324.649108] eab8 e1a00007 eb009d62 e5953150 e1590003 e2435e15 1affffe1 e51b0040 eb009ca2 [ 324.657775] ead8 e3a00000 e24bd028 e89daff0 e3540005 0a00001b e3540006 1affffd2 e35a0000 [ 324.666442] eaf8 1a000045 e59631f0 e3530000 0a00003c e59631ec e1a0100a e1a00003 e1a0e00f [ 324.675079] eb18 e593f1c4 e3a02001 e3a03002 e1d511b2 e51b0038 e14b13b2 e1d5c1b4 e14b23b0 [ 324.683746] eb38 e3a02003 e14b32be e3a03008 e14bc3b4 e24bc034 e5d51025 e58dc000 ebffec2a [ 324.692413] eb58 eaffffb8 e35a0000 1a000010 e14b23b2 e1d531b0 e51b0038 e14b33b4 ebffead4 [ 324.701080] eb78 e1a01008 e5c50025 e1a00004 ebf4ea8d e5d51025 e51b0038 e3a02002 e3a03004 [ 324.709747] [ 324.709747] LR: 0xc04aea9c: [ 324.714263] ea9c e5c53020 ebef8a9a e1a00006 ebffeb32 e3a01000 e51b0038 eb000f63 e1a00007 [ 324.722930] eabc eb009d62 e5953150 e1590003 e2435e15 1affffe1 e51b0040 eb009ca2 e3a00000 [ 324.731597] eadc e24bd028 e89daff0 e3540005 0a00001b e3540006 1affffd2 e35a0000 1a000045 [ 324.740264] eafc e59631f0 e3530000 0a00003c e59631ec e1a0100a e1a00003 e1a0e00f e593f1c4 [ 324.748931] eb1c e3a02001 e3a03002 e1d511b2 e51b0038 e14b13b2 e1d5c1b4 e14b23b0 e3a02003 [ 324.757598] eb3c e14b32be e3a03008 e14bc3b4 e24bc034 e5d51025 e58dc000 ebffec2a eaffffb8 [ 324.766265] eb5c e35a0000 1a000010 e14b23b2 e1d531b0 e51b0038 e14b33b4 ebffead4 e1a01008 [ 324.774932] eb7c e5c50025 e1a00004 ebf4ea8d e5d51025 e51b0038 e3a02002 e3a03004 e24bc034 [ 324.783599] [ 324.783599] SP: 0xee847d10: [ 324.788116] 7d10 c00736c8 c0073610 c0d64420 eb1af400 ffffffff ee847d7c d994c200 d994c230 [ 324.796783] 7d30 d994c474 00000000 ee847de4 ee847d48 c004a1ec c00444c8 00000000 00000000 [ 324.805450] 7d50 00000040 00000000 00000006 d994c400 d994c200 d994c230 d994c474 dc3adeb0 [ 324.814086] 7d70 00000000 ee847de4 00000001 ee847d90 c04aeb1c c04aeb18 20000013 ffffffff [ 324.822784] 7d90 c007993c c00795f8 ee847ddc 00000001 dc63f400 dc3adeb8 dc3ade94 dc3ade00 [ 324.831451] 7db0 c04d62f8 c01f90d0 00000005 00000001 dc63f400 dc3a3480 eeb0a450 c0758490 [ 324.840118] 7dd0 eeb0a000 00000000 ee847eb4 ee847de8 c049e900 c04ae9b4 ee847e0c ee847df8 [ 324.848785] 7df0 c04d601c c01f94e8 a0000013 dc63f440 dc3a3480 ee847e10 c0073180 c04d6014 [ 324.857452] [ 324.857452] FP: 0xee847d64: [ 324.861968] 7d64 d994c230 d994c474 dc3adeb0 00000000 ee847de4 00000001 ee847d90 c04aeb1c [ 324.870635] 7d84 c04aeb18 20000013 ffffffff c007993c c00795f8 ee847ddc 00000001 dc63f400 [ 324.879302] 7da4 dc3adeb8 dc3ade94 dc3ade00 c04d62f8 c01f90d0 00000005 00000001 dc63f400 [ 324.887969] 7dc4 dc3a3480 eeb0a450 c0758490 eeb0a000 00000000 ee847eb4 ee847de8 c049e900 [ 324.896636] 7de4 c04ae9b4 ee847e0c ee847df8 c04d601c c01f94e8 a0000013 dc63f440 dc3a3480 [ 324.905303] 7e04 ee847e10 c0073180 c04d6014 000000c3 c0d64420 ee847e44 eeb0a008 e03d200a [ 324.913970] 7e24 dc63f000 dc3a3540 00000000 ee847e54 ee847e40 c0398b18 c00ce848 dc63f070 [ 324.922637] 7e44 dc63f000 ee847e7c ee847e58 c039af4c c0398abc dc63ec00 00000000 ee847e7c [ 324.931274] [ 324.931274] R5: 0xd994c380: [ 324.935791] c380 00000000 00000000 c06d2360 00000000 00000000 ffffffff c4653600 ffffffff [ 324.944427] c3a0 db841c00 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 324.953094] c3c0 c0398940 c0398ab0 c0398a1c c03988d4 00000000 c04b24a0 280d606f 42a20800 [ 324.961761] c3e0 001cf06c d994c3e4 d994c3e4 00000000 0000001e 00000000 d994c400 00000000 [ 324.970428] c400 d994c200 dc3ade00 00000006 00000003 0042000f 069b0040 ffff02a0 00000300 [ 324.979095] c420 00000002 00001101 00000000 00000000 00000000 00000000 00000000 00000000 [ 324.987731] c440 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 324.996398] c460 00000000 00000000 033f0100 00000000 00000000 00000000 00000000 00000000 [ 325.005065] [ 325.005096] R6: 0xd994c180: [ 325.009582] c180 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.018249] c1a0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.026916] c1c0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.035552] c1e0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.044219] c200 00000000 00000000 00000000 0006001f 00000000 00000000 00000000 c06adcd4 [ 325.052886] c220 00000000 00000000 ffffffff 00000001 00000001 00000000 dead4ead 00000000 [ 325.061584] c240 ee83c680 00000000 00000000 00000000 dead4ead ffffffff ffffffff d994c25c [ 325.070251] c260 d994c25c d994c264 d994c264 00000000 00000000 00000000 dead4ead ffffffff [ 325.078887] [ 325.078887] R7: 0xd994c1b0: [ 325.083404] c1b0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.092071] c1d0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.100738] c1f0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 0006001f [ 325.109405] c210 00000000 00000000 00000000 c06adcd4 00000000 00000000 ffffffff 00000001 [ 325.118072] c230 00000001 00000000 dead4ead 00000000 ee83c680 00000000 00000000 00000000 [ 325.126708] c250 dead4ead ffffffff ffffffff d994c25c d994c25c d994c264 d994c264 00000000 [ 325.135375] c270 00000000 00000000 dead4ead ffffffff ffffffff 00000000 00000000 00000000 [ 325.144042] c290 00000000 00000000 00000000 00000000 0001b000 00000000 d915ff80 00000000 [ 325.152709] [ 325.152709] R8: 0xd994c3f4: [ 325.157226] c3f4 00000000 d994c400 00000000 d994c200 dc3ade00 00000006 00000003 0042000f [ 325.165893] c414 069b0040 ffff02a0 00000300 00000002 00001101 00000000 00000000 00000000 [ 325.174560] c434 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.183227] c454 00000000 00000000 00000000 00000000 00000000 033f0100 00000000 00000000 [ 325.191894] c474 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.200561] c494 c06d2bf0 ee8f3854 00000ed4 c06d2360 c04b10f0 d994c400 ffffffff 00000000 [ 325.209228] c4b4 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.217895] c4d4 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.226562] [ 325.226562] R9: 0xdc3ade30: [ 325.231079] de30 ffffffff 00000000 00000000 dead4ead ffffffff ffffffff 00000000 00000000 [ 325.239746] de50 00001303 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.248382] de70 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.257080] de90 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.265747] deb0 d994c550 d994c550 00000001 00000000 deaf1eed ffffffff ffffffff 00000000 [ 325.274414] ded0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 [ 325.283050] def0 00000000 00000000 00000000 00000000 00000000 00000000 0000002d 00000025 [ 325.291717] df10 00730106 00000004 302e313a 00000000 00750105 00000024 00730107 00000004 [ 325.300384] Process ksoftirqd/0 (pid: 3, stack limit = 0xee8462f8) [ 325.306915] Stack: (0xee847d90 to 0xee848000) [ 325.311492] 7d80: c007993c c00795f8 ee847ddc 00000001 [ 325.320129] 7da0: dc63f400 dc3adeb8 dc3ade94 dc3ade00 c04d62f8 c01f90d0 00000005 00000001 [ 325.328765] 7dc0: dc63f400 dc3a3480 eeb0a450 c0758490 eeb0a000 00000000 ee847eb4 ee847de8 [ 325.337371] 7de0: c049e900 c04ae9b4 ee847e0c ee847df8 c04d601c c01f94e8 a0000013 dc63f440 [ 325.346008] 7e00: dc3a3480 ee847e10 c0073180 c04d6014 000000c3 c0d64420 ee847e44 eeb0a008 [ 325.354614] 7e20: e03d200a dc63f000 dc3a3540 00000000 ee847e54 ee847e40 c0398b18 c00ce848 [ 325.363250] 7e40: dc63f070 dc63f000 ee847e7c ee847e58 c039af4c c0398abc dc63ec00 00000000 [ 325.371887] 7e60: ee847e7c ee847e70 c04d5d74 c01f9384 ee847eb4 ee847e80 c04a8348 c04d5d70 [ 325.380493] 7e80: dc3a3480 00000210 ee847eb4 eeb0a340 eeb0a344 dc3a3480 eeb0a450 eeb0a000 [ 325.389129] 7ea0: eeb0a50c dc3a3498 ee847efc ee847eb8 c049ab24 c049e6ac c0758490 eeb0a028 [ 325.397766] 7ec0: eeb0a368 eeb0a008 ffffffff eeb0a020 ee847f04 eeb0a340 eeb0a344 ee846000 [ 325.406372] 7ee0: 00000000 c06d21c0 c004250c c0666540 ee847f34 ee847f00 c008a204 c049a970 [ 325.414978] 7f00: c00a790c c06704c0 00000000 00000018 00000001 00000006 00000101 ee846000 [ 325.423614] 7f20: 0000000a c0656040 ee847f7c ee847f38 c008a694 c008a160 c0043420 c0656080 [ 325.432250] 7f40: c0683c54 c0666540 c06d21c0 00000000 c04d966c ee846000 c06d21c0 c04d966c [ 325.440887] 7f60: 00000000 00000000 00000000 00000001 ee847fac ee847f80 c008a878 c008a5d0 [ 325.449523] 7f80: 00000000 ee847fb8 ee841eec 00000000 c008a764 00000000 00000000 00000000 [ 325.458129] 7fa0: ee847ff4 ee847fb0 c00a1344 c008a770 00000000 00000000 00000000 00000000 [ 325.466766] 7fc0: ee841eec dead4ead ffffffff ffffffff ee847fd0 ee847fd0 ee841eec c00a12b0 [ 325.475402] 7fe0: c0087e2c 00000013 00000000 ee847ff8 c0087e2c c00a12bc 292bd2d4 615b4a27 [ 325.484039] Backtrace: [ 325.486663] [] (l2cap_security_cfm+0x0/0x2d4) from [] (hci_event_packet+0x260/0x4cd4) [ 325.496734] [] (hci_event_packet+0x0/0x4cd4) from [] (hci_rx_task+0x1c0/0x2a8) [ 325.506225] [] (hci_rx_task+0x0/0x2a8) from [] (tasklet_action+0xb0/0x170) [ 325.515289] [] (tasklet_action+0x0/0x170) from [] (__do_softirq+0xd0/0x1a0) [ 325.524475] [] (__do_softirq+0x0/0x1a0) from [] (run_ksoftirqd+0x114/0x204) [ 325.533660] [] (run_ksoftirqd+0x0/0x204) from [] (kthread+0x94/0x98) [ 325.542205] [] (kthread+0x0/0x98) from [] (do_exit+0x0/0x730) [ 325.550109] r7:00000013 r6:c0087e2c r5:c00a12b0 r4:ee841eec [ 325.556091] Code: e59631ec e1a0100a e1a00003 e1a0e00f (e593f1c4) [ 325.562622] ---[ end trace 07a41b7bfe2fcf8e ]--- [ 325.567565] Kernel panic - not syncing: Fatal exception in interrupt [ 325.574279] Backtrace: [ 325.576934] [] (dump_backtrace+0x0/0x110) from [] (dump_stack+0x18/0x1c) [ 325.585876] r7:c05c9008 r6:00000017 r5:ee846000 r4:c06b18a8 [ 325.591918] [] (dump_stack+0x0/0x1c) from [] (panic+0x8c/0x1bc) [ 325.600006] [] (panic+0x0/0x1bc) from [] (die+0x1bc/0x1d4) [ 325.607666] r3:ee846000 r2:00000100 r1:ee83c680 r0:c05c859c [ 325.613677] [] (die+0x0/0x1d4) from [] (__do_kernel_fault+0x7c/0x8c) [ 325.622253] [] (__do_kernel_fault+0x0/0x8c) from [] (do_page_fault+0x13c/0x204) [ 325.631774] r9:ee847d48 r8:00000017 r7:000001c4 r6:00000017 r5:00000000 [ 325.638732] r4:00000001 [ 325.641510] [] (do_page_fault+0x0/0x204) from [] (do_DataAbort+0x3c/0xa0) [ 325.650543] [] (do_DataAbort+0x0/0xa0) from [] (__dabt_svc+0x4c/0x60) [ 325.659210] Exception stack(0xee847d48 to 0xee847d90) [ 325.664550] 7d40: 00000000 00000000 00000040 00000000 00000006 d994c400 [ 325.673217] 7d60: d994c200 d994c230 d994c474 dc3adeb0 00000000 ee847de4 00000001 ee847d90 [ 325.681854] 7d80: c04aeb1c c04aeb18 20000013 ffffffff [ 325.687225] [] (l2cap_security_cfm+0x0/0x2d4) from [] (hci_event_packet+0x260/0x4cd4) [ 325.697357] [] (hci_event_packet+0x0/0x4cd4) from [] (hci_rx_task+0x1c0/0x2a8) [ 325.706848] [] (hci_rx_task+0x0/0x2a8) from [] (tasklet_action+0xb0/0x170) [ 325.715972] [] (tasklet_action+0x0/0x170) from [] (__do_softirq+0xd0/0x1a0) [ 325.725189] [] (__do_softirq+0x0/0x1a0) from [] (run_ksoftirqd+0x114/0x204) [ 325.734405] [] (run_ksoftirqd+0x0/0x204) from [] (kthread+0x94/0x98) [ 325.742950] [] (kthread+0x0/0x98) from [] (do_exit+0x0/0x730) [ 325.750885] r7:00000013 r6:c0087e2c r5:c00a12b0 r4:ee841eec [ 325.756896] CPU1: stopping [ 325.759765] Backtrace: [ 325.762390] [] (dump_backtrace+0x0/0x110) from [] (dump_stack+0x18/0x1c) [ 325.771301] r7:00000000 r6:c0666540 r5:c0042e40 r4:00000001 [ 325.777282] [] (dump_stack+0x0/0x1c) from [] (do_IPI+0x120/0x130) [ 325.785552] [] (do_IPI+0x0/0x130) from [] (__irq_svc+0x48/0xe0) [ 325.793640] Exception stack(0xee861f38 to 0xee861f80) [ 325.798980] 1f20: 00000001 c0666540 [ 325.807586] 1f40: 00000000 ee860000 ee860000 c06af164 c04d966c c066e3c4 00000000 411fc092 [ 325.816223] 1f60: 00000000 ee861f8c ee861f90 ee861f80 c004b904 c004b908 60000013 ffffffff [ 325.824859] r7:00000002 r6:00000006 r5:fa240100 r4:ffffffff [ 325.830871] [] (default_idle+0x0/0x30) from [] (cpuidle_idle_call+0xac/0x128) [ 325.840240] [] (cpuidle_idle_call+0x0/0x128) from [] (cpu_idle+0xc0/0xf4) [ 325.849243] [] (cpu_idle+0x0/0xf4) from [] (secondary_start_kernel+0x168/0x174) [ 325.858764] r7:c06af274 r6:00000001 r5:00000001 r4:c06af268 [ 325.864776] [] (secondary_start_kernel+0x0/0x174) from [<804cf234>] (0x804cf234) [ 325.873474] r7:c06af274 r6:10c0387d r5:00000015 r4:ae86406a