Bluetooth : Ignore incomming events when the hci device is down In error conditions Adapter state machine via Bluez tries to reset the hci device, during that in some rare scenario if some pending event comes from riva, the command complete apis tries to access some already freed memory in reset sequence. CRs-fixed: 369658 Change-Id: I5e9ce0a4322d07a26602c7f74b1484720f6b4d75 Signed-off-by: Bhasker Neti <bneti@codeaurora.org>

commit: 6f4ceb1f8588aec11b4d9380cd328d0008c8d167 [log] [tgz]
author: Bhasker Neti <bneti@codeaurora.org> Tue Jun 26 16:48:18 2012 +0530
committer: Bhasker Neti <bneti@codeaurora.org> Mon Jul 09 22:25:59 2012 +0530
tree: a2eff65e72b309ef6e17018c2e6a635042c49289
parent: 75c34ca1b4e69e96921e4153dfa9d399e5b9d2e8 [diff] [blame]
diff --git a/net/bluetooth/hci_event.c b/net/bluetooth/hci_event.c
index 2b14423..eb5a0cc 100644
--- a/net/bluetooth/hci_event.c
+++ b/net/bluetooth/hci_event.c

@@ -2084,6 +2084,9 @@
 
 	opcode = __le16_to_cpu(ev->opcode);
 
+	if (test_bit(HCI_RESET, &hdev->flags) && (opcode != HCI_OP_RESET))
+		return;
+
 	switch (opcode) {
 	case HCI_OP_INQUIRY_CANCEL:
 		hci_cc_inquiry_cancel(hdev, skb);
commit	6f4ceb1f8588aec11b4d9380cd328d0008c8d167	[log] [tgz]
author	Bhasker Neti <bneti@codeaurora.org>	Tue Jun 26 16:48:18 2012 +0530
committer	Bhasker Neti <bneti@codeaurora.org>	Mon Jul 09 22:25:59 2012 +0530
tree	a2eff65e72b309ef6e17018c2e6a635042c49289
parent	75c34ca1b4e69e96921e4153dfa9d399e5b9d2e8 [diff] [blame]