Re: [PATCH] Bluetooth: Fix locking in bt_accept_dequeue after disconnection

Hi Yichen, > Fix a crash that may happen when bt_accept_dequeue is run after a > Bluetooth connection has been disconnected. bt_accept_unlink was called > after release_sock, permitting bt_accept_unlink to run twice on the same > socket and cause a NULL pointer dereference. > > > [50510.241632]

[PATCH] Bluetooth: Fix locking in bt_accept_dequeue after disconnection

Fix a crash that may happen when bt_accept_dequeue is run after a Bluetooth connection has been disconnected. bt_accept_unlink was called after release_sock, permitting bt_accept_unlink to run twice on the same socket and cause a NULL pointer dereference. [50510.241632] BUG: unable to handle