Received: by 2002:a05:6a10:1a4d:0:0:0:0 with SMTP id nk13csp1730069pxb; Wed, 9 Feb 2022 03:18:53 -0800 (PST) X-Google-Smtp-Source: ABdhPJyCbIYwGUMro9qWLF2euqRvYpqsmitD+BlbxHBVABuyk0sDQo7SiNcQSYiMjafU9Zizy6R6 X-Received: by 2002:a17:906:729c:: with SMTP id b28mr1515047ejl.319.1644405533335; Wed, 09 Feb 2022 03:18:53 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1644405533; cv=none; d=google.com; s=arc-20160816; b=uf//0X4s8THrl7SW+keePaqGb/o6xjlp06yK/uxU8ZMzZ7KKb9VYMtIg9pl//vcgzE YfVPB48PBpC/4JE8F+fCh0bfZhAxXp3rYneiUm4yRYnGoqm1RxnkwVbxZCQLwlvdu84u XWtWNE4b8YovNsIJAoRTGnuC/A5KNl5B2Zgorh1OTjaSCe2wwkyUTdiXPhuB/vhjP8cV 4JE5SOgmWWA4gcZuAZ7Sb7jjDOrZbbT8JbxUPtS07FiedF4UravcICNpBi3t+NDuxi+f 53xkdj51xhnHHMJgxH+SlG6vrcBDWlntk6qRfFf4NPsYExfz5RkK+03hE7T5D5/jrRjq KBEw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=GNvuYJS+BDktQ76i8HMvIJpRaBzyH1n1z59+AckQW2A=; b=KBUUthIOPDlJ6SL/QmPEYBkQXNFCVMrb0VvglMzvY4AnxQ6hfixxtjNpVUuKXW1UA0 5rMuHILOGggCJs4Fb6piGk0f6ULe0bTVyM19kOqy+0W05bo03bpbEDG99mnMNWGwWaVG brLmbHKW+ybymIZEd3rQ2Yf23ttSdJpx55WVzn4vTT2k9MAwnE92Vv+B9xK41vT3iY5W MlCkQWKy8ra1VWxCMw8ovzwpqIziUkR7RwxxwvGfln/w9FvU7zeTllW2d6xaggewBbc5 e2l6oqHR9mmoeqvqkMAZCg78+/2wIIXZ4v+ft9cmFzmogE6VY63VqimjHnvnRI5MgeJr 7XxA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b="Ku60g/mH"; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id f19si13052554edd.169.2022.02.09.03.18.26; Wed, 09 Feb 2022 03:18:53 -0800 (PST) Received-SPF: pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b="Ku60g/mH"; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S241193AbiBICmP (ORCPT + 99 others); Tue, 8 Feb 2022 21:42:15 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44146 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1343955AbiBICk3 (ORCPT ); Tue, 8 Feb 2022 21:40:29 -0500 Received: from mail-yb1-xb33.google.com (mail-yb1-xb33.google.com [IPv6:2607:f8b0:4864:20::b33]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A1525C03FEFC for ; Tue, 8 Feb 2022 18:39:51 -0800 (PST) Received: by mail-yb1-xb33.google.com with SMTP id v186so2125924ybg.1 for ; Tue, 08 Feb 2022 18:39:51 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=GNvuYJS+BDktQ76i8HMvIJpRaBzyH1n1z59+AckQW2A=; b=Ku60g/mHRsBJN3BEmZ49ZDOokdTHT0GxvBqKr7oEpDBvE+huIdYB2jNh3RXW1t6bZe VjREe32p6J5xJTUIyYE6FyKn+sv3D+lRJUkaQSbglakujYhHW0SFs1diGUzTUXl14Qy4 PnUPKeo1dihsNFaXUMl2hveaxxeFMVRpEYF+kKHnSZ4CcspHn9DyAWFmj+8zMyCfeaaA byUOmWHTQPEtnz5DA8sE8HDlndSVVi1TujQ1NDLOc4Mhmj3HWoD7B5/bVU5QgSJAFXFs SU0wdoNx+dFK4hZ9FCjI7HYCtHcEH62XhOvQ9lMR0puqH99Z04Ke65cQ+njwUqr1+3qM PXYA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=GNvuYJS+BDktQ76i8HMvIJpRaBzyH1n1z59+AckQW2A=; b=zogtVycYUyetgf1tPtI0EMGVPehB1yXQOAk8o0pEFbhDrM84g1hpi6a4qy/UJQS81H FrSogk5X711WBWJtK56N8JxJpnJZPIjoEdX/vqfDr2r+JEj+uWsa+RTYspb/9FUNNgQ1 dJtss4baT1JtHIGGBUTkYuc9/uLn4XLHYa4n9H2Zzm8KYPZzhZtv7ckXo4uH7f9057eO EySsZMp2esADh8IpCZzitey2qFAJf7/kHmTNSZOduHBCklyK3hLDyzGSr4G+JFSzx/Xe jWzoFtGCBhywARzUZvIXa5dkadi+JpaHzexG7ZLwMDOQatIehbWvb5pc68k4SpHcCDcX 6K4Q== X-Gm-Message-State: AOAM5328RaFSpvOMP9D8n7syDwxYlOzhrBsxA2ZlqJSRw6ABqTXXxk0p aOSHlNDtRhUjZ5Mg+IroeuQ2IgBAi5oI0r/ztKM= X-Received: by 2002:a81:c40c:: with SMTP id j12mr165041ywi.37.1644374390762; Tue, 08 Feb 2022 18:39:50 -0800 (PST) MIME-Version: 1.0 References: <20200915110347.Bluez.v3.1.If16fd16b4a629ec4d4093a974256225a95b58044@changeid> In-Reply-To: From: Luiz Augusto von Dentz Date: Tue, 8 Feb 2022 18:39:39 -0800 Message-ID: Subject: Re: [Bluez PATCH v3] device: don't wait for timeout if RemoveDevice is called To: Archie Pusaka Cc: linux-bluetooth , CrosBT Upstreaming , Archie Pusaka , Daniel Winkler Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-bluetooth@vger.kernel.org Hi Archie, On Tue, Sep 15, 2020 at 9:51 AM Luiz Augusto von Dentz wrote: > > Hi Archie, > > On Mon, Sep 14, 2020 at 8:04 PM Archie Pusaka wrote: > > > > From: Archie Pusaka > > > > RemoveDevice on adapter interface used to remove a device, even when > > the device is connected. However, since the introduction of the new > > 30 seconds timeout when setting a device as temporary, RemoveDevice > > doesn't immediately remove a connected device, but only disconnects > > it and waits for the timer to expire before effectively removes it. > > > > This patch removes the device as soon as it gets disconnected, > > provided the disconnection is triggered by a call to RemoveDevice. > > The regular timeout still applies for other cases. > > > > Tested manually by calling RemoveDevice on a connected device, > > and with ChromeOS autotest setup. > > > > Reviewed-by: Daniel Winkler > > --- > > > > Changes in v3: > > * Rebasing again > > > > Changes in v2: > > * Rebasing to HEAD > > > > src/adapter.c | 2 -- > > src/adapter.h | 2 ++ > > src/device.c | 11 +++++++++++ > > 3 files changed, 13 insertions(+), 2 deletions(-) > > > > diff --git a/src/adapter.c b/src/adapter.c > > index df628a7fd..4e27bd74b 100644 > > --- a/src/adapter.c > > +++ b/src/adapter.c > > @@ -80,8 +80,6 @@ > > #include "adv_monitor.h" > > #include "eir.h" > > > > -#define ADAPTER_INTERFACE "org.bluez.Adapter1" > > - > > #define MODE_OFF 0x00 > > #define MODE_CONNECTABLE 0x01 > > #define MODE_DISCOVERABLE 0x02 > > diff --git a/src/adapter.h b/src/adapter.h > > index c70a7b0da..2f1e4b737 100644 > > --- a/src/adapter.h > > +++ b/src/adapter.h > > @@ -29,6 +29,8 @@ > > #include > > #include > > > > +#define ADAPTER_INTERFACE "org.bluez.Adapter1" > > + > > #define MAX_NAME_LENGTH 248 > > > > /* Invalid SSP passkey value used to indicate negative replies */ > > diff --git a/src/device.c b/src/device.c > > index 8f73ce4d3..3e7784034 100644 > > --- a/src/device.c > > +++ b/src/device.c > > @@ -3007,6 +3007,7 @@ void device_remove_connection(struct btd_device *device, uint8_t bdaddr_type) > > { > > struct bearer_state *state = get_state(device, bdaddr_type); > > DBusMessage *reply; > > + bool remove_device = false; > > > > if (!state->connected) > > return; > > @@ -3036,6 +3037,10 @@ void device_remove_connection(struct btd_device *device, uint8_t bdaddr_type) > > while (device->disconnects) { > > DBusMessage *msg = device->disconnects->data; > > > > + if (dbus_message_is_method_call(msg, ADAPTER_INTERFACE, > > + "RemoveDevice")) > > + remove_device = true; > > + > > g_dbus_send_reply(dbus_conn, msg, DBUS_TYPE_INVALID); > > device->disconnects = g_slist_remove(device->disconnects, msg); > > dbus_message_unref(msg); > > @@ -3061,6 +3066,9 @@ void device_remove_connection(struct btd_device *device, uint8_t bdaddr_type) > > > > g_dbus_emit_property_changed(dbus_conn, device->path, > > DEVICE_INTERFACE, "Connected"); > > + > > + if (remove_device) > > + btd_adapter_remove_device(device->adapter, device); It looks like there are instances where device_remove_connection is called that can lead to the following trace: ==4030336== Invalid read of size 8 ==4030336== at 0x40B8A1: device_is_authenticating (device.c:6975) ==4030336== by 0x3ABA2F: adapter_remove_connection (adapter.c:7166) ==4030336== by 0x3C2A60: dev_disconnected (adapter.c:8123) ==4030336== by 0x45C6B4: request_complete (mgmt.c:298) ==4030336== by 0x45FF74: can_read_data (mgmt.c:390) ==4030336== by 0x49B28F: watch_callback (io-glib.c:157) ==4030336== by 0x495312F: g_main_context_dispatch (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x49A8207: ??? (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x4952852: g_main_loop_run (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x49C814: mainloop_run (mainloop-glib.c:66) ==4030336== by 0x49CD0B: mainloop_run_with_signal (mainloop-notify.c:188) ==4030336== by 0x29B18B: main (main.c:1239) ==4030336== Address 0x771bfe0 is 448 bytes inside a block of size 656 free'd ==4030336== at 0x48440E4: free (vg_replace_malloc.c:872) ==4030336== by 0x4954DAC: g_free (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x44D166: remove_interface (object.c:660) ==4030336== by 0x44DEDA: g_dbus_unregister_interface (object.c:1394) ==4030336== by 0x3ABA27: adapter_remove_connection (adapter.c:7164) ==4030336== by 0x3C2A60: dev_disconnected (adapter.c:8123) ==4030336== by 0x45C6B4: request_complete (mgmt.c:298) ==4030336== by 0x45FF74: can_read_data (mgmt.c:390) ==4030336== by 0x49B28F: watch_callback (io-glib.c:157) ==4030336== by 0x495312F: g_main_context_dispatch (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x49A8207: ??? (in /usr/lib64/libglib-2.0.so.0.7000.2) ==4030336== by 0x4952852: g_main_loop_run (in /usr/lib64/libglib-2.0.so.0.7000.2) So it appeared to be unsafe to call btd_adapter_remove_device, btw this happened when Ive attempted to pair 2 emulator instances (btvirt). > > } > > > > guint device_add_disconnect_watch(struct btd_device *device, > > @@ -4482,6 +4490,9 @@ void device_remove(struct btd_device *device, gboolean remove_stored) > > disconnect_all(device); > > } > > > > + if (device->temporary_timer > 0) > > + g_source_remove(device->temporary_timer); > > + > > if (device->store_id > 0) { > > g_source_remove(device->store_id); > > device->store_id = 0; > > -- > > 2.28.0.618.gf4bc123cb7-goog > > > > Applied, thanks. > > -- > Luiz Augusto von Dentz -- Luiz Augusto von Dentz