Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp2980206rwd; Wed, 14 Jun 2023 09:36:18 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ5tUB8V+KoBngeBBGB8MrX48ME8Ob7IjHfBopax7pypgdGlgJKSbL/n5K03ciFlxBwq473c X-Received: by 2002:a17:90a:5385:b0:246:634d:a89c with SMTP id y5-20020a17090a538500b00246634da89cmr1560206pjh.41.1686760577922; Wed, 14 Jun 2023 09:36:17 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1686760577; cv=none; d=google.com; s=arc-20160816; b=pnqa4UPuVdOt2NJDu+8OhgzcgEAQhZNGBc7Okhkyc8cKQGAg/4soeYJc5ir/cMB2Eu yCLGNww1KaeR6lUobVbp3p0Z3b8SxUnnz5FbG5LuyV95cV5UIa/RU1iVNIDfCdRhuzyE o6C1wxXPZgMBxH02tISK2sB5hoZvFEdV/YXkrJLYjiqsmvIyOg76otGbpLH0ivd14M4q nOV+dT9UJFR7HQkAmQdJeWfLAVS/G6/JXutJQdDCnB4q8Lo4Ea8MDiiMFxz+8dLBJ/2c HUjdcE1LkCKprYewtOSJNacLYlUFtSuks/IsyVU5YGShLynI1sXQRb8iui6E4bsKHjbY OmUw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=BgqMOR19zDvGs15lDn9222dEk+6mHvCrjr5/sLKRJ3o=; b=qKs1dlEctR/a6/X5ulVhzX8j+uNMKRu1OAzZgIjYzjWd3MInz1TonbGk2xjY23DrlD Wd570ZGA5bHztmFLGI9G249M1KoLYKGC0xEwasJ10XTH6E5OfSz48OQPvCGhqOb9loPi 3Rq7flrWBUYMucMbapUIPfcJJSXgVDWTKUiMQJA+HoH2Y7AFTwPDpYDOjTgRVtPJp1kj jLsafJHneLcW2How4bWI5qjophOUhNqS4mgXwwNrlqa6862wvTxb0onBtzKbgywcslCd cLzOFLWQdLaqFgUd72zEsZ7JQVMfoKtiJ+0c4H5kX3mzjIhCfFTTprUk0LMpScVHt3Yo BpGQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=iKUOM1nE; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id s20-20020a17090a5d1400b00259b7a03125si11006976pji.29.2023.06.14.09.36.02; Wed, 14 Jun 2023 09:36:17 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=iKUOM1nE; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229569AbjFNQ0P (ORCPT + 99 others); Wed, 14 Jun 2023 12:26:15 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41492 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232600AbjFNQ0O (ORCPT ); Wed, 14 Jun 2023 12:26:14 -0400 Received: from mail-lj1-x234.google.com (mail-lj1-x234.google.com [IPv6:2a00:1450:4864:20::234]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6BC84ED for ; Wed, 14 Jun 2023 09:26:13 -0700 (PDT) Received: by mail-lj1-x234.google.com with SMTP id 38308e7fff4ca-2b39bf8d5faso2915341fa.1 for ; Wed, 14 Jun 2023 09:26:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1686759971; x=1689351971; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=BgqMOR19zDvGs15lDn9222dEk+6mHvCrjr5/sLKRJ3o=; b=iKUOM1nErIKGvdTZqGdpFZmSReoc5FMKYfapdppePrdGHzAU09YEZ0Xt/okxk+QR9e 3ihG3yfPrJCGXqhhil9TlO4NuQLs9yW9mVRAbYoJ3VLaIAARiLKvn4Mu0Ld/gu+/Qrko /PQe8mtN5JBNwR6bDtLB2RFYoddQTjgrcLiS0Obz6mo/DyN1EbIiEGk2RfrdAcAyGw17 Gyz4JVfE0z4FaN6LbVqyOkO4HrcLQJ6CO9xiTkWFAmO+k8HLYqVJIuHvXf2IQS9paGeR 9T+LxGmlnd2QwuHvMMHKlkJZeBxhpNcDqAR2R9+hS0s3MidszTbMf4gY9I1sl8uA4+du dEBA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1686759971; x=1689351971; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=BgqMOR19zDvGs15lDn9222dEk+6mHvCrjr5/sLKRJ3o=; b=ZQM89net1T7WsZd0Cy7VOdr1c72i4UuJIwcprnAhJ9jAmJkP0lMjl2GFgyjtWwElnl kymsVfj+y2HQr1+9jGi1cMUlCXivn/ShesJg8GHzbrEmX1T3RKaVDsdKDIXXNhYwHz7k FCKoaQyCprvk2lNql7UNypyF4Uk6eUX1svui4UiXuBI+R+oXH3YYouhZvVxEFDE9lhEC 63TsnlKpUlt2RUQCrrJOdIdlHuf2rwqD2P32yVPh6ESHM/krHyQXyW6s88k1ZX7VzStH DCKMvfKt5ggdEQ178KgCFT5PLnyJPGVY2L/VX6FzY0Z+fCE/643eBujkD5hVl9H57kdu gTvg== X-Gm-Message-State: AC+VfDzFKjz2fvgXqRFMr7BG0z3uW+rZmEDW5HWAXjcuJzgRflOqZdzn 37Y/yAkGBJwQwIxOUxYYX9OKGeJ/UL6Rnlcwuvg= X-Received: by 2002:a2e:7e09:0:b0:2b1:e725:f4f4 with SMTP id z9-20020a2e7e09000000b002b1e725f4f4mr6683127ljc.5.1686759971228; Wed, 14 Jun 2023 09:26:11 -0700 (PDT) MIME-Version: 1.0 References: <6704ebbea9d1bb64e54b45b1b3d6cd321b28971b.camel@infinera.com> In-Reply-To: <6704ebbea9d1bb64e54b45b1b3d6cd321b28971b.camel@infinera.com> From: Luiz Augusto von Dentz Date: Wed, 14 Jun 2023 09:25:58 -0700 Message-ID: Subject: Re: bluez SEGV in current master To: Joakim Tjernlund Cc: "linux-bluetooth@vger.kernel.org" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE, URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-bluetooth@vger.kernel.org Hi Joakim, On Wed, Jun 14, 2023 at 5:36=E2=80=AFAM Joakim Tjernlund wrote: > > commit bap: Add broadcast source support, 3030883, in bluez.git > > A co-worker see this SEGV when connecting a headset: > > Jun 13 13:38:15 systemd-coredump[3941]: Process 1897 (bluetoothd) of user= 0 dumped core. > Module bluetoothd without build-i= d. > #0 0x0000556bea93277a a2dp_resum= e_complete (bluetoothd + 0x3e77a) > #1 0x0000556bea9210a2 finalize_r= esume (bluetoothd + 0x2d0a2) > #2 0x0000556bea92afaf avdtp_star= t_resp (bluetoothd + 0x36faf) > #6 0x0000556bea9dcc85 mainloop_r= un (bluetoothd + 0xe8c85) > #7 0x0000556bea9dd0dc mainloop_r= un_with_signal (bluetoothd + 0xe90dc) > #8 0x0000556bea91a4ef main (blue= toothd + 0x264ef) > #11 0x0000556bea91ace1 _start (bl= uetoothd + 0x26ce1) > Jun 13 13:38:15 systemd[1]: bluetooth.service: Main process exited, code= =3Ddumped, status=3D11/SEGV > > > Crash seems to be at: > > 342 static void a2dp_resume_complete(struct avdtp *session, int err, > 343 void *use= r_data) > 344 { > 345 struct media_owner *owner =3D user_data; > 346 struct media_request *req =3D owner->pending; > 347 struct media_transport *transport =3D owner->transport; > 348 struct a2dp_sep *sep =3D media_endpoint_get_sep(transport= ->endpoint); > > A good start(but does NOT fix the problem) might be: > > --- bluez-9999/profiles/audio/transport.c.org 2023-06-13 18:38:14.54213= 7531 +0200 > +++ bluez-9999/profiles/audio/transport.c 2023-06-13 18:48:32.54252= 7882 +0200 > @@ -345,7 +345,7 @@ > struct media_owner *owner =3D user_data; > struct media_request *req =3D owner->pending; > struct media_transport *transport =3D owner->transport; > - struct a2dp_sep *sep =3D media_endpoint_get_sep(transport->endpoi= nt); > + struct a2dp_sep *sep; > struct avdtp_stream *stream; > int fd; > uint16_t imtu, omtu; > @@ -355,7 +355,10 @@ > > if (err) > goto fail; > + if (!transport) > + goto fail; > > + sep =3D media_endpoint_get_sep(transport->endpoint); > stream =3D a2dp_sep_get_stream(sep); > if (stream =3D=3D NULL) > goto fail; > > bluez-5.66 Works fine though. > > Headset: WH-1000XM3 > > Jocke Weird, I don't think much has changed for A2DP, but perhaps there is some BAP related changes affecting A2DP for some reason, any chance to bisect the patch that introduces this problem? Or it is not always reproducible? --=20 Luiz Augusto von Dentz