FS#48928 - [Bluez] Segmentation fault connecting remote audio source to local a2dp sink

Attached to Project: Arch Linux
Opened by Thomas Parker (sbeanie) - Wednesday, 13 April 2016, 19:10 GMT
Last edited by Andreas Radke (AndyRTR) - Sunday, 19 June 2016, 19:48 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To Andreas Radke (AndyRTR)
Architecture x86_64
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
When connecting an android phone (Stock S6 Edge) with 'Enable=Source' in '/etc/bluetooth/audio.conf', device will connect but shortly after bluetoothd will crash with a segmentation fault.

Task 48644 very similar: https://bugs.archlinux.org/task/48644

Additional info:
bluez-5.39-1

journalctl:

Apr 13 20:33:10 tom-ultrabook-arch NetworkManager[463]: <info> keyfile: add connection in-memory (185d4379-2b95-4a80-bfb6-505e9727fafd,"Tom's S6 Edge Network")
Apr 13 20:33:10 tom-ultrabook-arch NetworkManager[463]: <info> BT device Tom's S6 Edge (C8:A8:23:0A:71:D4) added (NAP)
Apr 13 20:33:10 tom-ultrabook-arch NetworkManager[463]: <info> (C8:A8:23:0A:71:D4): new Bluetooth device (carrier: UNKNOWN, driver: 'bluez', ifindex: 0)
Apr 13 20:33:10 tom-ultrabook-arch NetworkManager[463]: <info> (C8:A8:23:0A:71:D4): device state change: unmanaged -> unavailable (reason 'managed') [10 20 2]
Apr 13 20:33:10 tom-ultrabook-arch NetworkManager[463]: <info> (C8:A8:23:0A:71:D4): device state change: unavailable -> disconnected (reason 'none') [20 30 0]
Apr 13 20:35:47 tom-ultrabook-arch rtkit-daemon[714]: Supervising 4 threads of 1 processes of 1 users.
Apr 13 20:35:47 tom-ultrabook-arch rtkit-daemon[714]: Successfully made thread 5120 of process 3498 (/usr/bin/pulseaudio) owned by '1000' RT at priority 5.
Apr 13 20:35:47 tom-ultrabook-arch rtkit-daemon[714]: Supervising 5 threads of 1 processes of 1 users.
Apr 13 20:35:47 tom-ultrabook-arch kernel: haswell-pcm-audio haswell-pcm-audio: FW loaded, mailbox readback FW info: type 01, - version: 00.00, build 77, source commit id: 876a
Apr 13 20:35:51 tom-ultrabook-arch kernel: input: C8:A8:23:0A:71:D4 as /devices/virtual/input/input21
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) config/udev: Adding input device C8:A8:23:0A:71:D4 (/dev/input/event15)
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) C8:A8:23:0A:71:D4: Applying InputClass "evdev keyboard catchall"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) C8:A8:23:0A:71:D4: Applying InputClass "libinput keyboard catchall"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) systemd-logind: got fd for /dev/input/event15 13:79 fd 33 paused 0
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) Using input driver 'libinput' for 'C8:A8:23:0A:71:D4'
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) C8:A8:23:0A:71:D4: always reports core events
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) Option "Device" "/dev/input/event15"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) Option "_source" "server/udev"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) input device 'C8:A8:23:0A:71:D4', /dev/input/event15 is tagged by udev as: Keyboard
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) input device 'C8:A8:23:0A:71:D4', /dev/input/event15 is a keyboard
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) Option "config_info" "udev:/sys/devices/virtual/input/input21/event15"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) XINPUT: Adding extended input device "C8:A8:23:0A:71:D4" (type: KEYBOARD, id 15)
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) input device 'C8:A8:23:0A:71:D4', /dev/input/event15 is tagged by udev as: Keyboard
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) input device 'C8:A8:23:0A:71:D4', /dev/input/event15 is a keyboard
Apr 13 20:35:51 tom-ultrabook-arch kernel: bluetoothd[4775]: segfault at 58 ip 0000000000426e46 sp 00007ffdf964a290 error 4 in bluetoothd[400000+ed000]
Apr 13 20:35:51 tom-ultrabook-arch systemd[1]: Started Process Core Dump (PID 5565/UID 0).
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) config/udev: removing device C8:A8:23:0A:71:D4
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (**) Option "fd" "33"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) UnloadModule: "libinput"
Apr 13 20:35:51 tom-ultrabook-arch /usr/lib/gdm/gdm-x-session[913]: (II) systemd-logind: releasing fd for 13:79
Apr 13 20:35:51 tom-ultrabook-arch NetworkManager[463]: <info> (C8:A8:23:0A:71:D4): device state change: disconnected -> unmanaged (reason 'removed') [30 10 36]
Apr 13 20:35:51 tom-ultrabook-arch systemd[1]: bluetooth.service: Main process exited, code=dumped, status=11/SEGV
Apr 13 20:35:51 tom-ultrabook-arch systemd[1]: bluetooth.service: Unit entered failed state.
Apr 13 20:35:51 tom-ultrabook-arch systemd[1]: bluetooth.service: Failed with result 'core-dump'.
Apr 13 20:35:51 tom-ultrabook-arch systemd-coredump[5566]: Process 4775 (bluetoothd) of user 0 dumped core.

Stack trace of thread 4775:
#0 0x0000000000426e46 n/a (bluetoothd)
#1 0x0000000000426f9a n/a (bluetoothd)
#2 0x00007f615861ee4d g_slist_foreach (libglib-2.0.so.0)
#3 0x00007f615861ee6b g_slist_free_full (libglib-2.0.so.0)
#4 0x00000000004277d7 n/a (bluetoothd)
#5 0x0000000000427976 n/a (bluetoothd)
#6 0x0000000000421417 n/a (bluetoothd)
#7 0x00007f6158600dba g_main_context_dispatch (libglib-2.0.so.0)
#8 0x00007f6158601160 n/a (libglib-2.0.so.0)
#9 0x00007f6158601482 g_main_loop_run (libglib-2.0.so.0)
#10 0x000000000040b828 n/a (bluetoothd)
#11 0x00007f6157bd9710 __libc_start_main (libc.so.6)
#12 0x000000000040bfa9 n/a (bluetoothd)


/etc/bluetooth/audio.conf
[General]
Enable=Source


Steps to reproduce:
Use provided bluetooth configuration files. Only config file changed was /etc/bluetooth/audio.conf as above.
This task depends upon

Closed by  Andreas Radke (AndyRTR)
Sunday, 19 June 2016, 19:48 GMT
Reason for closing:  No response
Comment by Andreas Radke (AndyRTR) - Wednesday, 13 April 2016, 19:58 GMT
Get in touch with upstream...

Loading...