Bluetooth: Release rfcomm_dev only once (1c64834e) · Commits · e / devices / android_kernel_xiaomi_markw

include/net/bluetooth/rfcomm.h

+5 −1

Original line number	Diff line number	Diff line
		@@ -324,11 +324,15 @@ int rfcomm_connect_ind(struct rfcomm_session *s, u8 channel,
		#define RFCOMMGETDEVINFO _IOR('R', 211, int)
		#define RFCOMMSTEALDLC _IOW('R', 220, int)

		/* rfcomm_dev.flags bit definitions */
		#define RFCOMM_REUSE_DLC 0
		#define RFCOMM_RELEASE_ONHUP 1
		#define RFCOMM_HANGUP_NOW 2
		#define RFCOMM_TTY_ATTACHED 3
		#define RFCOMM_TTY_RELEASED 4
		#define RFCOMM_DEFUNCT_BIT4 4 /* don't reuse this bit - userspace visible */

		/* rfcomm_dev.status bit definitions */
		#define RFCOMM_DEV_RELEASED 0

		struct rfcomm_dev_req {
		s16 dev_id;

+9 −2

Original line number	Diff line number	Diff line
		@@ -51,6 +51,8 @@ struct rfcomm_dev {
		unsigned long flags;
		int err;

		unsigned long status; /* don't export to userspace */

		bdaddr_t src;
		bdaddr_t dst;
		u8 channel;
		@@ -423,6 +425,12 @@ static int rfcomm_release_dev(void __user *arg)
		return -EPERM;
		}

		/* only release once */
		if (test_and_set_bit(RFCOMM_DEV_RELEASED, &dev->status)) {
		tty_port_put(&dev->port);
		return -EALREADY;
		}

		if (req.flags & (1 << RFCOMM_HANGUP_NOW))
		rfcomm_dlc_close(dev->dlc, 0);

		@@ -433,8 +441,7 @@ static int rfcomm_release_dev(void __user *arg)
		tty_kref_put(tty);
		}

		if (!test_bit(RFCOMM_RELEASE_ONHUP, &dev->flags) &&
		!test_and_set_bit(RFCOMM_TTY_RELEASED, &dev->flags))
		if (!test_bit(RFCOMM_RELEASE_ONHUP, &dev->flags))
		tty_port_put(&dev->port);

		tty_port_put(&dev->port);