Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[backport v4.0-branch] bluetooth: host: hci_core: add missing NULL check #85723

Merged
merged 2 commits into from
Feb 20, 2025
Merged

[backport v4.0-branch] bluetooth: host: hci_core: add missing NULL check #85723

merged 2 commits into from
Feb 20, 2025

Conversation

JordanYates
Copy link
Collaborator

Add check that the command buffer claimed in bt_le_create_conn_cancel is not NULL. Fixes a fault caused by providing the NULL buffer to bt_hci_cmd_state_set_init.

Primary fix from #85260.
Increasing the command buffer count as discussed in Bluetooth WG 2025/02/06
Duplicate content from #85299

Fixes #85301

@JordanYates
bluetooth: host: hci_core: add missing NULL check
4827001 
Add check that the command buffer claimed in `bt_le_create_conn_cancel`
is not `NULL`. Fixes a fault caused by providing the `NULL` buffer to
`bt_hci_cmd_state_set_init`.

Signed-off-by: Jordan Yates <jordan@embeint.com>
@JordanYates
bluetooth: increment BT_BUF_CMD_TX_COUNT
989c786 
The extended advertising start procedure can consume both command
buffers in a single API call, resulting in `bt_le_create_conn_cancel`
being unable to claim a buffer to terminate the connection request.

Increase the command count if both extended advertising and Bluetooth
central are enabled in an application.

Signed-off-by: Jordan Yates <jordan@embeint.com>
@jhedberg jhedberg changed the title bluetooth: host: hci_core: add missing NULL check [backport v4.0-branch] bluetooth: host: hci_core: add missing NULL check Feb 13, 2025
@JordanYates JordanYates added this to the v4.0.1 milestone Feb 16, 2025
@dkalowsk dkalowsk merged commit f61d53d into zephyrproject-rtos:v4.0-branch Feb 20, 2025
34 checks passed
@JordanYates JordanYates deleted the 250213_40_conn_timeout branch February 20, 2025 22:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jhedberg jhedberg jhedberg approved these changes

@Thalley Thalley Thalley approved these changes

@dkalowsk dkalowsk dkalowsk approved these changes

@lylezhu2012 lylezhu2012 lylezhu2012 approved these changes

@alwa-nordic alwa-nordic Awaiting requested review from alwa-nordic

@carlescufi carlescufi Awaiting requested review from carlescufi

@cvinayak cvinayak Awaiting requested review from cvinayak

@erbr-ot erbr-ot Awaiting requested review from erbr-ot

@hermabe hermabe Awaiting requested review from hermabe

@kruithofa kruithofa Awaiting requested review from kruithofa

@mtpr-ot mtpr-ot Awaiting requested review from mtpr-ot

@rugeGerritsen rugeGerritsen Awaiting requested review from rugeGerritsen

@sjanc sjanc Awaiting requested review from sjanc

@theob-pro theob-pro Awaiting requested review from theob-pro

@thoh-ot thoh-ot Awaiting requested review from thoh-ot

@wopu-ot wopu-ot Awaiting requested review from wopu-ot

@mmahadevan108 mmahadevan108 Awaiting requested review from mmahadevan108

Assignees

@jhedberg jhedberg

@alwa-nordic alwa-nordic

Labels
area: Bluetooth Classic Bluetooth Classic (BR/EDR) area: Bluetooth Controller area: Bluetooth Host Bluetooth Host (excluding BR/EDR) area: Bluetooth
Projects
None yet
Milestone
v4.0.1
Development

Successfully merging this pull request may close these issues.
7 participants
@JordanYates @jhedberg @Thalley @dkalowsk @lylezhu2012 @zephyrbot @alwa-nordic