core/gatt: Fix crash during register_notify During service changed event the characteristics of the modified services will be destroyed and corresponding notify clients also will be freed. But those notify clients are not removed from all_notify_clients queue of btd_client which causes the below crash 0 queue_remove (queue=0x1, data=0xb8e97a68) at src/shared/queue.c:292 entry = <value optimized out> prev = <value optimized out> 1 0xb6f84c34 in register_notify (data=0xb8e9a900, user_data=0xb8e97a68) at src/gatt-client.c:1833 No locals. 2 register_notify (data=0xb8e9a900, user_data=0xb8e97a68) at src/gatt-client.c:1807 notify_client = 0xb8e9a900 client = 0xb8e97a68 op = 0xb8e91f30 3 0xb6f9a41a in queue_foreach (queue=0xb8e97a98, function=0xb6f84bd9 <register_notify>, user_data=0xb8e97a68) at src/shared/queue.c:251 next = <value optimized out> entry = 0xb8e9baf0 4 0xb6f89b62 in gatt_client_ready_cb (success=<value optimized out>, att_ecode=<value optimized out>, user_data=0xb8e97770) at src/device.c:5173 No locals. 5 gatt_client_ready_cb (success=<value optimized out>, att_ecode=<value optimized out>, user_data=0xb8e97770) at src/device.c:5132 device = 0xb8e97770 6 0xb6f9e232 in notify_client_ready (client=0xb8e90710, success=<value optimized out>, att_ecode=<value optimized out>) at src/shared/gatt-client.c:1019 No locals. 7 0xb6f9cb6a in complete_notify_request (data=<value optimized out>) at src/shared/gatt-client.c:1405 notify_data = <value optimized out> 8 0xb6f9e168 in enable_ccc_callback (opcode=<value optimized out>, pdu=<value optimized out>, length=<value optimized out>, user_data=0xb8e911a8) at src/shared/gatt-client.c:1488 notify_data = 0xb8e911a8 att_ecode = <value optimized out> __PRETTY_FUNCTION__ = "enable_ccc_callback" 9 0xb6f9c6d8 in handle_rsp (io=<value optimized out>, user_data=0xb8e9a330) at src/shared/att.c:640 rsp_opcode = 19 '\023' rsp_pdu = <value optimized out> rsp_pdu_len = <value optimized out> op = 0xb8e8ece8 req_opcode = <value optimized out> This patch removes the notify clients (which will be freed) from all_notify_clients as well

Diffstat

1 files changed, 11 insertions(+), 1 deletions(-)