You are not logged in.

#1 2015-09-29 12:04:07

orion78fr
Member
Registered: 2015-06-05
Posts: 3

Bluetooth crashing kernel while pairing.

Hi everyone!
I really don't know if this is the right place to post to inverstigate, feel free to indicate me a better place if needed.

So I'm currently trying to make the purple button of the Surface Pro 3 pen to work. It's working on bluetooth and I followed the bluetooth wiki page.
The first time I paired the device successfully and everything worked, except that the device wasn't automatically "mounted" (registered as keystokes only after pressing the button for 7 seconds to be in pairing mode).

In my attempt to investigate this issue, i removed the device using bluetoothctl in order to make step-by-step instructions for help on SurfaceLinux's reddit.
Then I rebooted and tried to pair again with the device. I connected to it and my computer instantly freezed.
Now I can't even repair my device back.
I'm giving you infos on my hardware and after the stacktraces got by journalctl.

  • Hardware : Surface Pro 3

  • Kernel : linux-surfacepro3 4.1.1-1 (aur package for patches)

  • Bluetooth : bluez 5.35-1

  • Bluetooth card : Marvell 1286:204b (don't know where to get more info)

  • Bluetooth device : Surface Pro 3 N-Trig Pen (the purple button)

BUG: unable to handle kernel NULL pointer dereference at 0000000000000398
IP: [<ffffffff81589211>] mutex_lock+0x11/0x30
PGD 0 
Oops: 0002 [#1] PREEMPT SMP 
Modules linked in: uhid bnep btusb btbcm btintel bluetooth hid_sensor_incl_3d hid_sensor_rotation hid_sensor_gyro_3d hid_sensor_magn_3d hid_sensor_accel_3d hid_sensor_als hid_sensor_trigger hid_sensor_iio_common industrialio_triggered_buffer kfifo_buf industrialio iTCO_wdt iTCO_vendor_support hid_sensor_hub intel_rapl iosf_mbi x86_pkg_temp_thermal intel_powerclamp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel aesni_intel aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd pcspkr coretemp nls_iso8859_1 nls_cp437 vfat fat i2c_i801 mwifiex_pcie mwifiex cfg80211 lpc_ich rfkill shpchp mei_me mei mousedev joydev thermal tpm_crb tpm surface_button battery evdev mac_hid snd_hda_codec_hdmi snd_hda_codec_realtek dw_dmac snd_hda_codec_generic dw_dmac_core snd_soc_sst_acpi
 snd_soc_rt5640 snd_hda_intel snd_soc_rl6231 snd_hda_controller snd_soc_core snd_hda_codec snd_hda_core uvcvideo snd_compress snd_hwdep snd_pcm_dmaengine snd_pcm videobuf2_vmalloc videobuf2_memops regmap_i2c videobuf2_core snd_timer snd v4l2_common i2c_hid soundcore videodev gpio_lynxpoint 8250_dw media i2c_designware_platform i2c_designware_core spi_pxa2xx_platform ac processor sch_fq_codel ip_tables x_tables ext4 crc16 mbcache jbd2 hid_multitouch usbhid hid sd_mod ahci libahci libata xhci_pci xhci_hcd scsi_mod usbcore usb_common sdhci_acpi sdhci led_class mmc_core i915 button intel_gtt i2c_algo_bit video drm_kms_helper drm i2c_core
CPU: 2 PID: 413 Comm: kworker/u9:1 Tainted: G        W       4.1.1-1-surfacepro3 #1
Hardware name: Microsoft Corporation Surface Pro 3/Surface Pro 3, BIOS 3.11.0950 06/05/2015
Workqueue: hci0 hci_rx_work [bluetooth]
task: ffff8802412d5180 ti: ffff88024466c000 task.ti: ffff88024466c000
RIP: 0010:[<ffffffff81589211>]  [<ffffffff81589211>] mutex_lock+0x11/0x30
RSP: 0018:ffff88024466fb18  EFLAGS: 00010296
RAX: 0000000000000000 RBX: 0000000000000398 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffff8802449c6014 RDI: 0000000000000398
RBP: ffff88024466fb28 R08: ffffffff8160a340 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000000 R12: ffff88024485a400
R13: 0000000000000398 R14: 0000000000000000 R15: 0000000000000002
FS:  0000000000000000(0000) GS:ffff88024fb00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000398 CR3: 000000000180b000 CR4: 00000000001407e0
Stack:
 ffff88024485a400 ffff8802449c6000 ffff88024466fb88 ffffffffa092220c
 ffff88024485a540 ffff88023fc71800 ffff88024466fb88 0000000018b31560
 ffff88024466fb88 ffff88024485a400 ffff8802449c6000 ffff8802449c6000
Call Trace:
 [<ffffffffa092220c>] smp_conn_security+0xbc/0x240 [bluetooth]
 [<ffffffffa091552a>] l2cap_connect_cfm+0x41a/0x450 [bluetooth]
 [<ffffffffa08f4911>] hci_le_meta_evt+0x781/0x1000 [bluetooth]
 [<ffffffff81470d1c>] ? skb_free_head+0x6c/0x80
 [<ffffffff81470dce>] ? skb_release_data+0x9e/0xd0
 [<ffffffffa08f561b>] hci_event_packet+0x48b/0x35d0 [bluetooth]
 [<ffffffff810b0ac9>] ? dequeue_entity+0x149/0x6e0
 [<ffffffff810e4c83>] ? internal_add_timer+0x63/0x80
 [<ffffffffa08e3aa8>] hci_rx_work+0x1d8/0x430 [bluetooth]
 [<ffffffff8109f5ed>] ? finish_task_switch+0x5d/0x100
 [<ffffffff8109193b>] process_one_work+0x14b/0x470
 [<ffffffff81091ca8>] worker_thread+0x48/0x4c0
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff810977f8>] kthread+0xd8/0xf0
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
 [<ffffffff8158b8a2>] ret_from_fork+0x42/0x70
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
Code: 01 0f 85 5a ff ff ff eb d1 e8 6c f8 ae ff 66 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 48 89 e5 53 48 89 fb 48 83 ec 08 <f0> ff 0f 79 05 e8 95 fe ff ff 65 48 8b 04 25 00 b9 00 00 48 89 
RIP  [<ffffffff81589211>] mutex_lock+0x11/0x30
 RSP <ffff88024466fb18>
CR2: 0000000000000398
---[ end trace 9682ea3040e40a54 ]---
BUG: unable to handle kernel paging request at ffffffffffffffd8
IP: [<ffffffff81097d00>] kthread_data+0x10/0x20
PGD 180e067 PUD 1810067 PMD 0 
Oops: 0000 [#2] PREEMPT SMP 
Modules linked in: uhid bnep btusb btbcm btintel bluetooth hid_sensor_incl_3d hid_sensor_rotation hid_sensor_gyro_3d hid_sensor_magn_3d hid_sensor_accel_3d hid_sensor_als hid_sensor_trigger hid_sensor_iio_common industrialio_triggered_buffer kfifo_buf industrialio iTCO_wdt iTCO_vendor_support hid_sensor_hub intel_rapl iosf_mbi x86_pkg_temp_thermal intel_powerclamp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel aesni_intel aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd pcspkr coretemp nls_iso8859_1 nls_cp437 vfat fat i2c_i801 mwifiex_pcie mwifiex cfg80211 lpc_ich rfkill shpchp mei_me mei mousedev joydev thermal tpm_crb tpm surface_button battery evdev mac_hid snd_hda_codec_hdmi snd_hda_codec_realtek dw_dmac snd_hda_codec_generic dw_dmac_core snd_soc_sst_acpi
 snd_soc_rt5640 snd_hda_intel snd_soc_rl6231 snd_hda_controller snd_soc_core snd_hda_codec snd_hda_core uvcvideo snd_compress snd_hwdep snd_pcm_dmaengine snd_pcm videobuf2_vmalloc videobuf2_memops regmap_i2c videobuf2_core snd_timer snd v4l2_common i2c_hid soundcore videodev gpio_lynxpoint 8250_dw media i2c_designware_platform i2c_designware_core spi_pxa2xx_platform ac processor sch_fq_codel ip_tables x_tables ext4 crc16 mbcache jbd2 hid_multitouch usbhid hid sd_mod ahci libahci libata xhci_pci xhci_hcd scsi_mod usbcore usb_common sdhci_acpi sdhci led_class mmc_core i915 button intel_gtt i2c_algo_bit video drm_kms_helper drm i2c_core
CPU: 2 PID: 413 Comm: kworker/u9:1 Tainted: G      D W       4.1.1-1-surfacepro3 #1
Hardware name: Microsoft Corporation Surface Pro 3/Surface Pro 3, BIOS 3.11.0950 06/05/2015
task: ffff8802412d5180 ti: ffff88024466c000 task.ti: ffff88024466c000
RIP: 0010:[<ffffffff81097d00>]  [<ffffffff81097d00>] kthread_data+0x10/0x20
RSP: 0018:ffff88024466f7b8  EFLAGS: 00010092
RAX: 0000000000000000 RBX: 0000000000000002 RCX: 0000000000000009
RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8802412d5180
RBP: ffff88024466f7b8 R08: 00000000ffffffff R09: 0000000000000000
R10: ffffea0002a4ee00 R11: 000000000000001a R12: 0000000000016280
R13: ffff88024fb16280 R14: ffff8802412d5180 R15: 0000000000000002
FS:  0000000000000000(0000) GS:ffff88024fb00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000028 CR3: 000000000180b000 CR4: 00000000001407e0
Stack:
 ffff88024466f7d8 ffffffff81092585 ffff88024466f7d8 ffff88024fb16280
 ffff88024466f828 ffffffff815874f0 0000000000000000 ffff8802412d5180
 0000000000000029 ffff880244670000 ffff8802412d5918 ffff88024466f3c8
Call Trace:
 [<ffffffff81092585>] wq_worker_sleeping+0x15/0xa0
 [<ffffffff815874f0>] __schedule+0x6e0/0xa30
 [<ffffffff81587877>] schedule+0x37/0x90
 [<ffffffff8107ba64>] do_exit+0x894/0xba0
 [<ffffffff810195de>] oops_end+0x9e/0xe0
 [<ffffffff8106632b>] no_context+0x16b/0x3a0
 [<ffffffff810a9595>] ? sched_clock_cpu+0xb5/0xe0
 [<ffffffff81066690>] __bad_area_nosemaphore+0x130/0x250
 [<ffffffff810667c3>] bad_area_nosemaphore+0x13/0x20
 [<ffffffff81066cba>] __do_page_fault+0x25a/0x4b0
 [<ffffffff81066f32>] do_page_fault+0x22/0x30
 [<ffffffff8158d428>] page_fault+0x28/0x30
 [<ffffffff81589211>] ? mutex_lock+0x11/0x30
 [<ffffffffa092220c>] smp_conn_security+0xbc/0x240 [bluetooth]
 [<ffffffffa091552a>] l2cap_connect_cfm+0x41a/0x450 [bluetooth]
 [<ffffffffa08f4911>] hci_le_meta_evt+0x781/0x1000 [bluetooth]
 [<ffffffff81470d1c>] ? skb_free_head+0x6c/0x80
 [<ffffffff81470dce>] ? skb_release_data+0x9e/0xd0
 [<ffffffffa08f561b>] hci_event_packet+0x48b/0x35d0 [bluetooth]
 [<ffffffff810b0ac9>] ? dequeue_entity+0x149/0x6e0
 [<ffffffff810e4c83>] ? internal_add_timer+0x63/0x80
 [<ffffffffa08e3aa8>] hci_rx_work+0x1d8/0x430 [bluetooth]
 [<ffffffff8109f5ed>] ? finish_task_switch+0x5d/0x100
 [<ffffffff8109193b>] process_one_work+0x14b/0x470
 [<ffffffff81091ca8>] worker_thread+0x48/0x4c0
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff810977f8>] kthread+0xd8/0xf0
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
 [<ffffffff8158b8a2>] ret_from_fork+0x42/0x70
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
Code: 00 48 89 e5 5d 48 8b 40 c8 48 c1 e8 02 83 e0 01 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 8b 87 30 05 00 00 55 48 89 e5 <48> 8b 40 d8 5d c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 
RIP  [<ffffffff81097d00>] kthread_data+0x10/0x20
 RSP <ffff88024466f7b8>
CR2: ffffffffffffffd8
---[ end trace 9682ea3040e40a55 ]---
Fixing recursive fault but reboot is needed!
BUG: scheduling while atomic: kworker/u9:1/413/0x00000004
Modules linked in: uhid bnep btusb btbcm btintel bluetooth hid_sensor_incl_3d hid_sensor_rotation hid_sensor_gyro_3d hid_sensor_magn_3d hid_sensor_accel_3d hid_sensor_als hid_sensor_trigger hid_sensor_iio_common industrialio_triggered_buffer kfifo_buf industrialio iTCO_wdt iTCO_vendor_support hid_sensor_hub intel_rapl iosf_mbi x86_pkg_temp_thermal intel_powerclamp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel aesni_intel aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd pcspkr coretemp nls_iso8859_1 nls_cp437 vfat fat i2c_i801 mwifiex_pcie mwifiex cfg80211 lpc_ich rfkill shpchp mei_me mei mousedev joydev thermal tpm_crb tpm surface_button battery evdev mac_hid snd_hda_codec_hdmi snd_hda_codec_realtek dw_dmac snd_hda_codec_generic dw_dmac_core snd_soc_sst_acpi
 snd_soc_rt5640 snd_hda_intel snd_soc_rl6231 snd_hda_controller snd_soc_core snd_hda_codec snd_hda_core uvcvideo snd_compress snd_hwdep snd_pcm_dmaengine snd_pcm videobuf2_vmalloc videobuf2_memops regmap_i2c videobuf2_core snd_timer snd v4l2_common i2c_hid soundcore videodev gpio_lynxpoint 8250_dw media i2c_designware_platform i2c_designware_core spi_pxa2xx_platform ac processor sch_fq_codel ip_tables x_tables ext4 crc16 mbcache jbd2 hid_multitouch usbhid hid sd_mod ahci libahci libata xhci_pci xhci_hcd scsi_mod usbcore usb_common sdhci_acpi sdhci led_class mmc_core i915 button intel_gtt i2c_algo_bit video drm_kms_helper drm i2c_core
CPU: 2 PID: 413 Comm: kworker/u9:1 Tainted: G      D W       4.1.1-1-surfacepro3 #1
Hardware name: Microsoft Corporation Surface Pro 3/Surface Pro 3, BIOS 3.11.0950 06/05/2015
 0000000000000000 0000000018b31560 ffff88024466f468 ffffffff81585bee
 0000000000000000 ffff88024fb16280 ffff88024466f478 ffffffff8109f6dd
 ffff88024466f4c8 ffffffff815876ca ffff88024466f4e8 ffff8802412d5180
Call Trace:
 [<ffffffff81585bee>] dump_stack+0x4c/0x6e
 [<ffffffff8109f6dd>] __schedule_bug+0x4d/0x60
 [<ffffffff815876ca>] __schedule+0x8ba/0xa30
 [<ffffffff81587877>] schedule+0x37/0x90
 [<ffffffff8107bb63>] do_exit+0x993/0xba0
 [<ffffffff810195de>] oops_end+0x9e/0xe0
 [<ffffffff8106632b>] no_context+0x16b/0x3a0
 [<ffffffff81066690>] __bad_area_nosemaphore+0x130/0x250
 [<ffffffff810667c3>] bad_area_nosemaphore+0x13/0x20
 [<ffffffff81066cba>] __do_page_fault+0x25a/0x4b0
 [<ffffffff810b0524>] ? update_curr+0xe4/0x1b0
 [<ffffffff81066f32>] do_page_fault+0x22/0x30
 [<ffffffff8158d428>] page_fault+0x28/0x30
 [<ffffffff81097d00>] ? kthread_data+0x10/0x20
 [<ffffffff81092585>] wq_worker_sleeping+0x15/0xa0
 [<ffffffff815874f0>] __schedule+0x6e0/0xa30
 [<ffffffff81587877>] schedule+0x37/0x90
 [<ffffffff8107ba64>] do_exit+0x894/0xba0
 [<ffffffff810195de>] oops_end+0x9e/0xe0
 [<ffffffff8106632b>] no_context+0x16b/0x3a0
 [<ffffffff810a9595>] ? sched_clock_cpu+0xb5/0xe0
 [<ffffffff81066690>] __bad_area_nosemaphore+0x130/0x250
 [<ffffffff810667c3>] bad_area_nosemaphore+0x13/0x20
 [<ffffffff81066cba>] __do_page_fault+0x25a/0x4b0
 [<ffffffff81066f32>] do_page_fault+0x22/0x30
 [<ffffffff8158d428>] page_fault+0x28/0x30
 [<ffffffff81589211>] ? mutex_lock+0x11/0x30
 [<ffffffffa092220c>] smp_conn_security+0xbc/0x240 [bluetooth]
 [<ffffffffa091552a>] l2cap_connect_cfm+0x41a/0x450 [bluetooth]
 [<ffffffffa08f4911>] hci_le_meta_evt+0x781/0x1000 [bluetooth]
 [<ffffffff81470d1c>] ? skb_free_head+0x6c/0x80
 [<ffffffff81470dce>] ? skb_release_data+0x9e/0xd0
 [<ffffffffa08f561b>] hci_event_packet+0x48b/0x35d0 [bluetooth]
 [<ffffffff810b0ac9>] ? dequeue_entity+0x149/0x6e0
 [<ffffffff810e4c83>] ? internal_add_timer+0x63/0x80
 [<ffffffffa08e3aa8>] hci_rx_work+0x1d8/0x430 [bluetooth]
 [<ffffffff8109f5ed>] ? finish_task_switch+0x5d/0x100
 [<ffffffff8109193b>] process_one_work+0x14b/0x470
 [<ffffffff81091ca8>] worker_thread+0x48/0x4c0
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff810977f8>] kthread+0xd8/0xf0
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
 [<ffffffff8158b8a2>] ret_from_fork+0x42/0x70
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
------------[ cut here ]------------
WARNING: CPU: 2 PID: 413 at kernel/watchdog.c:304 watchdog_overflow_callback+0x82/0xc0()
Watchdog detected hard LOCKUP on cpu 2
Modules linked in:
 uhid bnep btusb btbcm btintel bluetooth hid_sensor_incl_3d hid_sensor_rotation hid_sensor_gyro_3d hid_sensor_magn_3d hid_sensor_accel_3d hid_sensor_als hid_sensor_trigger hid_sensor_iio_common industrialio_triggered_buffer kfifo_buf industrialio iTCO_wdt iTCO_vendor_support hid_sensor_hub intel_rapl iosf_mbi x86_pkg_temp_thermal intel_powerclamp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel aesni_intel aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd pcspkr coretemp nls_iso8859_1 nls_cp437 vfat fat i2c_i801 mwifiex_pcie mwifiex cfg80211 lpc_ich rfkill shpchp mei_me mei mousedev joydev thermal tpm_crb tpm surface_button battery evdev mac_hid snd_hda_codec_hdmi snd_hda_codec_realtek dw_dmac snd_hda_codec_generic dw_dmac_core snd_soc_sst_acpi snd_soc_rt5640
 snd_hda_intel snd_soc_rl6231 snd_hda_controller snd_soc_core snd_hda_codec snd_hda_core uvcvideo snd_compress snd_hwdep snd_pcm_dmaengine snd_pcm videobuf2_vmalloc videobuf2_memops regmap_i2c videobuf2_core snd_timer snd v4l2_common i2c_hid soundcore videodev gpio_lynxpoint 8250_dw media i2c_designware_platform i2c_designware_core spi_pxa2xx_platform ac processor sch_fq_codel ip_tables x_tables ext4 crc16 mbcache jbd2 hid_multitouch usbhid hid sd_mod ahci libahci libata xhci_pci xhci_hcd scsi_mod usbcore usb_common sdhci_acpi sdhci led_class mmc_core i915 button intel_gtt i2c_algo_bit video drm_kms_helper drm i2c_core
CPU: 2 PID: 413 Comm: kworker/u9:1 Tainted: G      D W       4.1.1-1-surfacepro3 #1
Hardware name: Microsoft Corporation Surface Pro 3/Surface Pro 3, BIOS 3.11.0950 06/05/2015
 0000000000000000 0000000018b31560 ffff88024fb05a60 ffffffff81585bee
 0000000000000000 ffff88024fb05ab8 ffff88024fb05aa0 ffffffff81078c9a
 0000000000000000 ffff880245d48000 0000000000000000 ffff88024fb05c00
Call Trace:
 <NMI>  [<ffffffff81585bee>] dump_stack+0x4c/0x6e
 [<ffffffff81078c9a>] warn_slowpath_common+0x8a/0xc0
 [<ffffffff81078d25>] warn_slowpath_fmt+0x55/0x70
 [<ffffffff81119412>] watchdog_overflow_callback+0x82/0xc0
 [<ffffffff8115b86b>] __perf_event_overflow+0x9b/0x250
 [<ffffffff8115c4a4>] perf_event_overflow+0x14/0x20
 [<ffffffff810365a2>] intel_pmu_handle_irq+0x1f2/0x490
 [<ffffffff8102cbbb>] perf_event_nmi_handler+0x2b/0x50
 [<ffffffff81019dec>] nmi_handle+0x7c/0x170
 [<ffffffff8101a40a>] default_do_nmi+0x4a/0x140
 [<ffffffff8101a588>] do_nmi+0x88/0xd0
 [<ffffffff8158d77f>] end_repeat_nmi+0x1e/0x2e
 [<ffffffff81587877>] ? schedule+0x37/0x90
 [<ffffffff8158acd7>] ? _raw_spin_lock_irq+0x47/0x50
 [<ffffffff8158acd7>] ? _raw_spin_lock_irq+0x47/0x50
 [<ffffffff8158acd7>] ? _raw_spin_lock_irq+0x47/0x50
 <<EOE>>  [<ffffffff81586ea3>] __schedule+0x93/0xa30
 [<ffffffff81587877>] schedule+0x37/0x90
 [<ffffffff8107bb63>] do_exit+0x993/0xba0
 [<ffffffff810195de>] oops_end+0x9e/0xe0
 [<ffffffff8106632b>] no_context+0x16b/0x3a0
 [<ffffffff81066690>] __bad_area_nosemaphore+0x130/0x250
 [<ffffffff810667c3>] bad_area_nosemaphore+0x13/0x20
 [<ffffffff81066cba>] __do_page_fault+0x25a/0x4b0
 [<ffffffff810b0524>] ? update_curr+0xe4/0x1b0
 [<ffffffff81066f32>] do_page_fault+0x22/0x30
 [<ffffffff8158d428>] page_fault+0x28/0x30
 [<ffffffff81097d00>] ? kthread_data+0x10/0x20
 [<ffffffff81092585>] wq_worker_sleeping+0x15/0xa0
 [<ffffffff815874f0>] __schedule+0x6e0/0xa30
 [<ffffffff81587877>] schedule+0x37/0x90
 [<ffffffff8107ba64>] do_exit+0x894/0xba0
 [<ffffffff810195de>] oops_end+0x9e/0xe0
 [<ffffffff8106632b>] no_context+0x16b/0x3a0
 [<ffffffff810a9595>] ? sched_clock_cpu+0xb5/0xe0
 [<ffffffff81066690>] __bad_area_nosemaphore+0x130/0x250
 [<ffffffff810667c3>] bad_area_nosemaphore+0x13/0x20
 [<ffffffff81066cba>] __do_page_fault+0x25a/0x4b0
 [<ffffffff81066f32>] do_page_fault+0x22/0x30
 [<ffffffff8158d428>] page_fault+0x28/0x30
 [<ffffffff81589211>] ? mutex_lock+0x11/0x30
 [<ffffffffa092220c>] smp_conn_security+0xbc/0x240 [bluetooth]
 [<ffffffffa091552a>] l2cap_connect_cfm+0x41a/0x450 [bluetooth]
 [<ffffffffa08f4911>] hci_le_meta_evt+0x781/0x1000 [bluetooth]
 [<ffffffff81470d1c>] ? skb_free_head+0x6c/0x80
 [<ffffffff81470dce>] ? skb_release_data+0x9e/0xd0
 [<ffffffffa08f561b>] hci_event_packet+0x48b/0x35d0 [bluetooth]
 [<ffffffff810b0ac9>] ? dequeue_entity+0x149/0x6e0
 [<ffffffff810e4c83>] ? internal_add_timer+0x63/0x80
 [<ffffffffa08e3aa8>] hci_rx_work+0x1d8/0x430 [bluetooth]
 [<ffffffff8109f5ed>] ? finish_task_switch+0x5d/0x100
 [<ffffffff8109193b>] process_one_work+0x14b/0x470
 [<ffffffff81091ca8>] worker_thread+0x48/0x4c0
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff81091c60>] ? process_one_work+0x470/0x470
 [<ffffffff810977f8>] kthread+0xd8/0xf0
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
 [<ffffffff8158b8a2>] ret_from_fork+0x42/0x70
 [<ffffffff81097720>] ? kthread_worker_fn+0x170/0x170
---[ end trace 9682ea3040e40a56 ]---
------------[ cut here ]------------
WARNING: CPU: 1 PID: 0 at kernel/watchdog.c:304 watchdog_overflow_callback+0x82/0xc0()
Watchdog detected hard LOCKUP on cpu 1
Modules linked in:
 uhid bnep btusb btbcm btintel bluetooth hid_sensor_incl_3d hid_sensor_rotation hid_sensor_gyro_3d hid_sensor_magn_3d hid_sensor_accel_3d hid_sensor_als hid_sensor_trigger hid_sensor_iio_common industrialio_triggered_buffer kfifo_buf industrialio iTCO_wdt iTCO_vendor_support hid_sensor_hub intel_rapl iosf_mbi x86_pkg_temp_thermal intel_powerclamp kvm_intel kvm crct10dif_pclmul crc32_pclmul crc32c_intel ghash_clmulni_intel aesni_intel aes_x86_64 lrw gf128mul glue_helper ablk_helper cryptd pcspkr coretemp nls_iso8859_1 nls_cp437 vfat fat i2c_i801 mwifiex_pcie mwifiex cfg80211 lpc_ich rfkill shpchp mei_me mei mousedev joydev thermal tpm_crb tpm surface_button battery evdev mac_hid snd_hda_codec_hdmi snd_hda_codec_realtek dw_dmac snd_hda_codec_generic dw_dmac_core snd_soc_sst_acpi snd_soc_rt5640
 snd_hda_intel snd_soc_rl6231 snd_hda_controller snd_soc_core snd_hda_codec snd_hda_core uvcvideo snd_compress snd_hwdep snd_pcm_dmaengine snd_pcm videobuf2_vmalloc videobuf2_memops regmap_i2c videobuf2_core snd_timer snd v4l2_common i2c_hid soundcore videodev gpio_lynxpoint 8250_dw media i2c_designware_platform i2c_designware_core spi_pxa2xx_platform ac processor sch_fq_codel ip_tables x_tables ext4 crc16 mbcache jbd2 hid_multitouch usbhid hid sd_mod ahci libahci libata xhci_pci xhci_hcd scsi_mod usbcore usb_common sdhci_acpi sdhci led_class mmc_core i915 button intel_gtt i2c_algo_bit video drm_kms_helper drm i2c_core
CPU: 1 PID: 0 Comm: swapper/1 Tainted: G      D W       4.1.1-1-surfacepro3 #1
Hardware name: Microsoft Corporation Surface Pro 3/Surface Pro 3, BIOS 3.11.0950 06/05/2015
 0000000000000000 ea5cad3d6624f751 ffff88024fa85a60 ffffffff81585bee
 0000000000000000 ffff88024fa85ab8 ffff88024fa85aa0 ffffffff81078c9a
 0000000000000000 ffff880246298000 0000000000000000 ffff88024fa85c00
Call Trace:
 <NMI>  [<ffffffff81585bee>] dump_stack+0x4c/0x6e
 [<ffffffff81078c9a>] warn_slowpath_common+0x8a/0xc0
 [<ffffffff81078d25>] warn_slowpath_fmt+0x55/0x70
 [<ffffffff81119412>] watchdog_overflow_callback+0x82/0xc0
 [<ffffffff8115b86b>] __perf_event_overflow+0x9b/0x250
 [<ffffffff8115c4a4>] perf_event_overflow+0x14/0x20
 [<ffffffff810365a2>] intel_pmu_handle_irq+0x1f2/0x490
 [<ffffffff8102cbbb>] perf_event_nmi_handler+0x2b/0x50
 [<ffffffff81019dec>] nmi_handle+0x7c/0x170
 [<ffffffff8101a40a>] default_do_nmi+0x4a/0x140
 [<ffffffff8101a588>] do_nmi+0x88/0xd0
 [<ffffffff8158d77f>] end_repeat_nmi+0x1e/0x2e
 [<ffffffff8158ad17>] ? _raw_spin_lock+0x37/0x40
 [<ffffffff8158ad17>] ? _raw_spin_lock+0x37/0x40
 [<ffffffff8158ad17>] ? _raw_spin_lock+0x37/0x40
 <<EOE>>  <IRQ>  [<ffffffff810b81b5>] sched_rt_period_timer+0x115/0x350
 [<ffffffff810e6777>] __run_hrtimer+0x77/0x250
 [<ffffffff810b80a0>] ? sched_rt_rq_enqueue+0xb0/0xb0
 [<ffffffff810e7363>] hrtimer_interrupt+0x113/0x290
 [<ffffffff81051cfc>] local_apic_timer_interrupt+0x3c/0x70
 [<ffffffff8158e0b1>] smp_apic_timer_interrupt+0x41/0x60
 [<ffffffff8158c31e>] apic_timer_interrupt+0x6e/0x80
 <EOI>  [<ffffffff8143f3c2>] ? cpuidle_enter_state+0x92/0x240
 [<ffffffff8143f394>] ? cpuidle_enter_state+0x64/0x240
 [<ffffffff8143f5a7>] cpuidle_enter+0x17/0x20
 [<ffffffff810bccac>] cpu_startup_entry+0x31c/0x450
 [<ffffffff81050066>] start_secondary+0x196/0x1e0
---[ end trace 9682ea3040e40a57 ]---
NMI watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [modprobe:3032]

Do you know what can cause such a crash?
Does it keeps info somewhere on the old deleted bluetooth device that conflicts and do this bug?

Offline

#2 2015-09-30 03:04:50

pigiron
Member
From: USA
Registered: 2009-07-14
Posts: 150

Re: Bluetooth crashing kernel while pairing.

The top "OOPS" (mutex_lock) is a bluetooth bug that was fixed in version 4.2 of the kernel:

Date:   Mon Jul 20 20:31:25 2015 +0300

    Bluetooth: Fix NULL pointer dereference in smp_conn_security

    The l2cap_conn->smp pointer may be NULL for various valid reasons where
    SMP has failed to initialize properly. One such scenario is when crypto
    support is missing, another when the adapter has been powered on through
    a legacy method.
    The smp_conn_security() function should have the appropriate check for this
    situation to avoid NULL pointer dereferences.

But they then made a change to that fix very recently in version v4.3-rc3:

Date:   Fri Sep 4 12:22:46 2015 +0300

    Bluetooth: Delay check for conn->smp in smp_conn_security()

    There are several actions that smp_conn_security() might make that do
    not require a valid SMP context (conn->smp pointer). One of these
    actions is to encrypt the link with an existing LTK. If the SMP
    context wasn't initialized properly we should still allow the
    independent actions to be done, i.e. the check for the context should
    only be done at the last possible moment.

My guess is that this first problem caused the other "OOPS" in your log after things went wrong.

Offline

#3 2015-09-30 04:00:54

orion78fr
Member
Registered: 2015-06-05
Posts: 3

Re: Bluetooth crashing kernel while pairing.

Ok, so it's normal if I have this bug.

As I followed the bluetooth's arch wiki page, I created a udev rule to power up my device automatically, and I think this rule is triggered too soon inside the boot process.
Removing the udev rule make it able to pair without crashing.

Thank you for the help, I will try to compile my own 4.3 kernel for the fix (or ask the AUR package maintainer to update).

Offline

Board footer

Powered by FluxBB