Skip to content

Commit

Permalink
Bluetooth: btusb: Add NULL check for data in btusb_suspend
Browse files Browse the repository at this point in the history 
When performing warm boot tests with an MT7920 device, we encounter
NULL pointer dereferences with failure rate 5/30. The crash occurs
during device suspend when btusb attempts to access data->hdev where
data is NULL. This may happen due to a race condition between PM suspend
and device disconnect. The root cause needs further investigation.

BUG: kernel NULL pointer dereference, address: 0000000000000000
Workqueue: pm pm_runtime_work
RIP: 0010:btusb_suspend+0x1d/0x1d0 [btusb]

Add a NULL check for data and return -ENODEV in this case to prevent
the NULL pointer dereference. This indicates that the device is no
longer available, which is appropriate when the driver's private data
is missing.

Signed-off-by: En-Wei Wu <[email protected]>
  • Loading branch information
@rickywu0421 @MingcongBai
rickywu0421 authored and MingcongBai committed Jan 2, 2025
1 parent 8e08c1e commit cc7626b
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions drivers/bluetooth/btusb.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4068,6 +4068,9 @@ static int btusb_suspend(struct usb_interface *intf, pm_message_t message)

BT_DBG("intf %p", intf);

if (!data)
return -ENODEV;

/* Don't auto-suspend if there are connections; external suspend calls
* shall never fail.
*/
Expand Down

0 comments on commit cc7626b

Please sign in to comment.