Hello:
This patch was applied to bluetooth/bluez.git (master)
by Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx>:
On Fri, 25 Apr 2025 15:45:31 -0400 you wrote:
> From: Luiz Augusto von Dentz <luiz.von.dentz@xxxxxxxxx>
>
> When matching manufacturer BT_EA_MAX_DATA_LEN in case of EA since that
> can be bigger than regular advertisements otherwise it can cause the
> following crash:
>
> data #0 __libc_do_syscall () at ../sysdeps/unix/sysv/linux/arm/libc-do-syscall.S:47
> 1 0xb6e05c58 in __pthread_kill_implementation (threadid=, signo=signo@entry=6,
> no_tid=no_tid@entry=0) at pthread_kill.c:43
> 2 0xb6e05c8c in __pthread_kill_internal (signo=6, threadid=) at pthread_kill.c:78
> 3 0xb6dd63ce in __GI_raise (sig=sig@entry=6)
> at /usr/src/debug/glibc/2.39+git/sysdeps/posix/raise.c:26
> 4 0xb6dc7f5c in __GI_abort () at abort.c:79
> 5 0xb6dfd608 in __libc_message_impl (fmt=0xb6ea1a50 "*** %s **: terminated\n")
> at /usr/src/debug/glibc/2.39+git/sysdeps/posix/libc_fatal.c:134
> 6 0xb6e5a430 in __GI___fortify_fail (msg=) at fortify_fail.c:24
> 7 0xb6e59ffe in __GI___chk_fail () at chk_fail.c:28
> 8 0xb6e5a8a2 in __GI___memcpy_chk (dstpp=dstpp@entry=0xbefff7e6, srcpp=,
> len=, dstlen=dstlen@entry=29) at memcpy_chk.c:27
> 9 0x004944f4 in memcpy (__len=, __src=, __dest=0xbefff7e6)
> at /usr/include/bits/string_fortified.h:29
> 10 match_manufacturer (data=, user_data=)
>
> [...]
Here is the summary with links:
- [BlueZ,v1] shared/ad: Fix crash on match_manufacturer
https://git.kernel.org/pub/scm/bluetooth/bluez.git/?id=1be17107d22b
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
