[Bluetooth] Fix NULL pointer dereference in HCI line discipline Normally a serial Bluetooth device is opened, TIOSETD'ed to N_HCI line discipline, HCIUARTSETPROTO'ed and finally closed. In case the device fails to HCIUARTSETPROTO, closing it produces a NULL pointer dereference. Signed-off-by: Ohad Ben-Cohen <ohad@bencohen.org> Signed-off-by: Marcel Holtmann <marcel@holtmann.org>

commit: 22ad42033b7d2b3d7928fba9f89d1c7f8a3c9581 [log] [tgz]
author: Marcel Holtmann <marcel@holtmann.org> Wed May 09 09:15:40 2007 +0200
committer: David S. Miller <davem@sunset.davemloft.net> Thu May 10 23:45:05 2007 -0700
tree: e07c8da23cb753237effd987f9d31643ec50c65e
parent: d215874460e7657b8e104de024140e0932690450 [diff] [blame]
diff --git a/drivers/bluetooth/hci_ldisc.c b/drivers/bluetooth/hci_ldisc.c
index 75c1508..e8ae0d7 100644
--- a/drivers/bluetooth/hci_ldisc.c
+++ b/drivers/bluetooth/hci_ldisc.c

@@ -307,7 +307,9 @@
 
 	if (hu) {
 		struct hci_dev *hdev = hu->hdev;
-		hci_uart_close(hdev);
+
+		if (hdev)
+			hci_uart_close(hdev);
 
 		if (test_and_clear_bit(HCI_UART_PROTO_SET, &hu->flags)) {
 			hu->proto->close(hu);
commit	22ad42033b7d2b3d7928fba9f89d1c7f8a3c9581	[log] [tgz]
author	Marcel Holtmann <marcel@holtmann.org>	Wed May 09 09:15:40 2007 +0200
committer	David S. Miller <davem@sunset.davemloft.net>	Thu May 10 23:45:05 2007 -0700
tree	e07c8da23cb753237effd987f9d31643ec50c65e
parent	d215874460e7657b8e104de024140e0932690450 [diff] [blame]