Hi Yuri, * Yuri Ershov <ext-yuri.ershov@xxxxxxxxx> [2010-10-21 20:08:58 +0400]: > This patch fixes NULL pointer dereference at running test with > connect-transfer-disconnect in loop. Sometimes sk_state is > BT_CLOSED and sk_refcnt equal to 0, so there is oops in > bt_accept_unlink. In normal case removed block is not used. Question here is: Why sk_refcnt is 0 at that point of the code? The socket should be destroyed if it ref is 0, but it wasn't, so something in another point of the code went is wrong. "Sometimes" is not a good description of the problem, you have to show why that happened. -- Gustavo F. Padovan ProFUSION embedded systems - http://profusion.mobi -- To unsubscribe from this list: send the line "unsubscribe linux-bluetooth" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
