|
|
17ffb7 |
From 164997007447ffbf011934e84e21040f5e3eeff4 Mon Sep 17 00:00:00 2001
|
|
|
17ffb7 |
From: Gopal Tiwari <gtiwari@redhat.com>
|
|
|
17ffb7 |
Date: Thu, 25 Apr 2019 19:39:41 +0530
|
|
|
17ffb7 |
Subject: [PATCH BlueZ] device: Fix crash when connecting ATT with BR/EDR
|
|
|
17ffb7 |
only device
|
|
|
17ffb7 |
|
|
|
17ffb7 |
commit 5252296b725ef159992be5372f60721bd9adca48
|
|
|
17ffb7 |
Author: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
|
|
|
17ffb7 |
Date: Wed Aug 9 14:14:23 2017 +0300
|
|
|
17ffb7 |
|
|
|
17ffb7 |
device: Fix crash when connecting ATT with BR/EDR only device
|
|
|
17ffb7 |
---
|
|
|
17ffb7 |
src/device.c | 38 +++++++++++++++++++++++---------------
|
|
|
17ffb7 |
1 file changed, 23 insertions(+), 15 deletions(-)
|
|
|
17ffb7 |
|
|
|
17ffb7 |
diff --git a/src/device.c b/src/device.c
|
|
|
17ffb7 |
index 4d2a59522..54bef1bd3 100644
|
|
|
17ffb7 |
--- a/src/device.c
|
|
|
17ffb7 |
+++ b/src/device.c
|
|
|
17ffb7 |
@@ -133,10 +133,15 @@ struct authentication_req {
|
|
|
17ffb7 |
gboolean secure;
|
|
|
17ffb7 |
};
|
|
|
17ffb7 |
|
|
|
17ffb7 |
+enum {
|
|
|
17ffb7 |
+ BROWSE_SDP,
|
|
|
17ffb7 |
+ BROWSE_GATT
|
|
|
17ffb7 |
+};
|
|
|
17ffb7 |
+
|
|
|
17ffb7 |
struct browse_req {
|
|
|
17ffb7 |
DBusMessage *msg;
|
|
|
17ffb7 |
struct btd_device *device;
|
|
|
17ffb7 |
- uint8_t bdaddr_type;
|
|
|
17ffb7 |
+ uint8_t type;
|
|
|
17ffb7 |
GSList *match_uuids;
|
|
|
17ffb7 |
GSList *profiles_added;
|
|
|
17ffb7 |
sdp_list_t *records;
|
|
|
17ffb7 |
@@ -2149,13 +2154,13 @@ static void store_gatt_db(struct btd_device *device)
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
|
|
|
17ffb7 |
-static void browse_request_complete(struct browse_req *req, uint8_t bdaddr_type,
|
|
|
17ffb7 |
- int err)
|
|
|
17ffb7 |
+static void browse_request_complete(struct browse_req *req, uint8_t type,
|
|
|
17ffb7 |
+ uint8_t bdaddr_type, int err)
|
|
|
17ffb7 |
{
|
|
|
17ffb7 |
struct btd_device *dev = req->device;
|
|
|
17ffb7 |
DBusMessage *reply = NULL;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
- if (req->bdaddr_type != bdaddr_type)
|
|
|
17ffb7 |
+ if (req->type != type)
|
|
|
17ffb7 |
return;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
if (!req->msg)
|
|
|
17ffb7 |
@@ -2209,8 +2214,8 @@ static void device_set_svc_refreshed(struct btd_device *device, bool value)
|
|
|
17ffb7 |
DEVICE_INTERFACE, "ServicesResolved");
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
-static void device_svc_resolved(struct btd_device *dev, uint8_t bdaddr_type,
|
|
|
17ffb7 |
- int err)
|
|
|
17ffb7 |
+static void device_svc_resolved(struct btd_device *dev, uint8_t browse_type,
|
|
|
17ffb7 |
+ uint8_t bdaddr_type, int err)
|
|
|
17ffb7 |
{
|
|
|
17ffb7 |
struct bearer_state *state = get_state(dev, bdaddr_type);
|
|
|
17ffb7 |
struct browse_req *req = dev->browse;
|
|
|
17ffb7 |
@@ -2258,7 +2263,7 @@ static void device_svc_resolved(struct btd_device *dev, uint8_t bdaddr_type,
|
|
|
17ffb7 |
return;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
dev->browse = NULL;
|
|
|
17ffb7 |
- browse_request_complete(req, bdaddr_type, err);
|
|
|
17ffb7 |
+ browse_request_complete(req, browse_type, bdaddr_type, err);
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
static struct bonding_req *bonding_request_new(DBusMessage *msg,
|
|
|
17ffb7 |
@@ -4517,7 +4522,7 @@ static void search_cb(sdp_list_t *recs, int err, gpointer user_data)
|
|
|
17ffb7 |
DEVICE_INTERFACE, "UUIDs");
|
|
|
17ffb7 |
|
|
|
17ffb7 |
send_reply:
|
|
|
17ffb7 |
- device_svc_resolved(device, BDADDR_BREDR, err);
|
|
|
17ffb7 |
+ device_svc_resolved(device, BROWSE_SDP, BDADDR_BREDR, err);
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
static void browse_cb(sdp_list_t *recs, int err, gpointer user_data)
|
|
|
17ffb7 |
@@ -4642,7 +4647,8 @@ static void gatt_client_ready_cb(bool success, uint8_t att_ecode,
|
|
|
17ffb7 |
DBG("status: %s, error: %u", success ? "success" : "failed", att_ecode);
|
|
|
17ffb7 |
|
|
|
17ffb7 |
if (!success) {
|
|
|
17ffb7 |
- device_svc_resolved(device, device->bdaddr_type, -EIO);
|
|
|
17ffb7 |
+ device_svc_resolved(device, BROWSE_GATT, device->bdaddr_type,
|
|
|
17ffb7 |
+ -EIO);
|
|
|
17ffb7 |
return;
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
@@ -4650,7 +4656,7 @@ static void gatt_client_ready_cb(bool success, uint8_t att_ecode,
|
|
|
17ffb7 |
|
|
|
17ffb7 |
btd_gatt_client_ready(device->client_dbus);
|
|
|
17ffb7 |
|
|
|
17ffb7 |
- device_svc_resolved(device, device->bdaddr_type, 0);
|
|
|
17ffb7 |
+ device_svc_resolved(device, BROWSE_GATT, device->bdaddr_type, 0);
|
|
|
17ffb7 |
|
|
|
17ffb7 |
store_gatt_db(device);
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
@@ -4855,6 +4861,7 @@ static void att_connect_cb(GIOChannel *io, GError *gerr, gpointer user_data)
|
|
|
17ffb7 |
|
|
|
17ffb7 |
if (device->browse) {
|
|
|
17ffb7 |
browse_request_complete(device->browse,
|
|
|
17ffb7 |
+ BROWSE_GATT,
|
|
|
17ffb7 |
device->bdaddr_type,
|
|
|
17ffb7 |
-ECONNABORTED);
|
|
|
17ffb7 |
device->browse = NULL;
|
|
|
17ffb7 |
@@ -4959,7 +4966,7 @@ int device_connect_le(struct btd_device *dev)
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
static struct browse_req *browse_request_new(struct btd_device *device,
|
|
|
17ffb7 |
- uint8_t bdaddr_type,
|
|
|
17ffb7 |
+ uint8_t type,
|
|
|
17ffb7 |
DBusMessage *msg)
|
|
|
17ffb7 |
{
|
|
|
17ffb7 |
struct browse_req *req;
|
|
|
17ffb7 |
@@ -4969,7 +4976,7 @@ static struct browse_req *browse_request_new(struct btd_device *device,
|
|
|
17ffb7 |
|
|
|
17ffb7 |
req = g_new0(struct browse_req, 1);
|
|
|
17ffb7 |
req->device = device;
|
|
|
17ffb7 |
- req->bdaddr_type = bdaddr_type;
|
|
|
17ffb7 |
+ req->type = type;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
device->browse = req;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
@@ -4995,7 +5002,7 @@ static int device_browse_gatt(struct btd_device *device, DBusMessage *msg)
|
|
|
17ffb7 |
struct btd_adapter *adapter = device->adapter;
|
|
|
17ffb7 |
struct browse_req *req;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
- req = browse_request_new(device, device->bdaddr_type, msg);
|
|
|
17ffb7 |
+ req = browse_request_new(device, BROWSE_GATT, msg);
|
|
|
17ffb7 |
if (!req)
|
|
|
17ffb7 |
return -EBUSY;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
@@ -5011,7 +5018,8 @@ static int device_browse_gatt(struct btd_device *device, DBusMessage *msg)
|
|
|
17ffb7 |
* Services have already been discovered, so signal this browse
|
|
|
17ffb7 |
* request as resolved.
|
|
|
17ffb7 |
*/
|
|
|
17ffb7 |
- device_svc_resolved(device, device->bdaddr_type, 0);
|
|
|
17ffb7 |
+ device_svc_resolved(device, BROWSE_GATT, device->bdaddr_type,
|
|
|
17ffb7 |
+ 0);
|
|
|
17ffb7 |
return 0;
|
|
|
17ffb7 |
}
|
|
|
17ffb7 |
|
|
|
17ffb7 |
@@ -5068,7 +5076,7 @@ static int device_browse_sdp(struct btd_device *device, DBusMessage *msg)
|
|
|
17ffb7 |
uuid_t uuid;
|
|
|
17ffb7 |
int err;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
- req = browse_request_new(device, BDADDR_BREDR, msg);
|
|
|
17ffb7 |
+ req = browse_request_new(device, BROWSE_SDP, msg);
|
|
|
17ffb7 |
if (!req)
|
|
|
17ffb7 |
return -EBUSY;
|
|
|
17ffb7 |
|
|
|
17ffb7 |
--
|
|
|
17ffb7 |
2.17.2
|
|
|
17ffb7 |
|