Fix crash at unexpected code after root inflammation

static std::recursive_timed_mutex commands_pending_response_mutex;

static OnceTimer abort_timer;

// Root inflammation error codes

static uint8_t root_inflamed_error_code = 0;

static uint8_t root_inflamed_vendor_error_code = 0;

// The hand-off point for data going to a higher layer, set by the higher layer

static base::Callback<void(const base::Location&, BT_HDR*)> send_data_upwards;

static waiting_command_t* get_waiting_command(command_opcode_t opcode);

static int get_num_waiting_commands();

static void hci_root_inflamed_abort();

static void hci_timeout_abort(void);

static void event_finish_startup(void* context);

static void startup_timer_expired(void* context);

void hal_service_died() {

  if (abort_timer.IsScheduled()) {

    LOG(ERROR) << "abort_timer is scheduled, wait for timeout";

    if (root_inflamed_vendor_error_code != 0 || root_inflamed_error_code != 0) {

      hci_root_inflamed_abort();

    } else {

      hci_timeout_abort();

    }

    return;

  }

  abort();

  abort();

}

static void hci_root_inflamed_abort(uint8_t error_code,

                                    uint8_t vendor_error_code) {

  LOG(FATAL) << __func__ << ": error_code = " << std::to_string(error_code)

             << ", vendor_error_code = " << std::to_string(vendor_error_code);

static void hci_root_inflamed_abort() {

  LOG(FATAL) << __func__

             << ": error_code = " << std::to_string(root_inflamed_error_code)

             << ", vendor_error_code = "

             << std::to_string(root_inflamed_vendor_error_code);

}

static void command_timed_out_log_info(void* original_wait_entry) {

  return abort_timer.IsScheduled();

}

void handle_root_inflammation_event(uint8_t error_code,

                                    uint8_t vendor_error_code) {

void handle_root_inflammation_event() {

  LOG(ERROR) << __func__

             << ": Root inflammation event! setting timer to restart.";

  // TODO(ugoyu) Report to bluetooth metrics here

      if (alarm_is_scheduled(command_response_timer)) {

        alarm_cancel(command_response_timer);

      }

      // Cleanup the hci/startup timers so they will not be scheduled again and

      // expire before the abort_timer.

      alarm_free(command_response_timer);

      command_response_timer = NULL;

      alarm_free(startup_timer);

      startup_timer = NULL;

    } else {

      LOG(ERROR) << __func__ << ": Failed to obtain mutex";

      hci_root_inflamed_abort();

    }

  }

  if (!hci_thread.IsRunning() ||

      !abort_timer.Schedule(

          hci_thread.GetWeakPtr(), FROM_HERE,

          base::Bind(hci_root_inflamed_abort, error_code, vendor_error_code),

          base::Bind(hci_root_inflamed_abort),

          base::TimeDelta::FromMilliseconds(ROOT_INFLAMMED_RESTART_MS))) {

    LOG(ERROR) << "Failed to schedule abort_timer or hci has already closed!";

    hci_root_inflamed_abort(error_code, vendor_error_code);

    hci_root_inflamed_abort();

  }

}

    case bluetooth::bqr::QUALITY_REPORT_ID_ROOT_INFLAMMATION:

      if (bqr_parameter_length >=

          bluetooth::bqr::kRootInflammationParamTotalLen) {

        uint8_t error_code;

        uint8_t vendor_error_code;

        STREAM_TO_UINT8(quality_report_id, p_bqr_event);

        STREAM_TO_UINT8(error_code, p_bqr_event);

        STREAM_TO_UINT8(vendor_error_code, p_bqr_event);

        handle_root_inflammation_event(error_code, vendor_error_code);

        STREAM_TO_UINT8(root_inflamed_error_code, p_bqr_event);

        STREAM_TO_UINT8(root_inflamed_vendor_error_code, p_bqr_event);

        handle_root_inflammation_event();

      }

      intercepted = true;

      break;