Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NimBLEService::start() causes LoadProhibited error when using external SPI Ram #151

Open
chrispbarlow opened this issue Mar 27, 2024 · 4 comments
Open

NimBLEService::start() causes LoadProhibited error when using external SPI Ram #151

chrispbarlow opened this issue Mar 27, 2024 · 4 comments

Comments

@chrispbarlow
Copy link

Since external RAM is not zeroed at startup, an overflow occurs in ble_gatts_count_resources.

To resolve this, ble_gatt_svc_def* svc, ble_gatt_chr_def* pChr_a and ble_gatt_dsc_def* pDsc_a need to be initialised to zero in NimBLEService::start()

The following patch fixes this (based on top of release/1.4 branch):

diff --git a/src/NimBLEService.cpp b/src/NimBLEService.cpp
index 0ae2e9f..4bb6fa5 100644
--- a/src/NimBLEService.cpp
+++ b/src/NimBLEService.cpp
@@ -127,7 +127,7 @@ bool NimBLEService::start() {
         // Nimble requires an array of services to be sent to the api
         // Since we are adding 1 at a time we create an array of 2 and set the type
         // of the second service to 0 to indicate the end of the array.
-        ble_gatt_svc_def* svc = new ble_gatt_svc_def[2];
+        ble_gatt_svc_def* svc = new ble_gatt_svc_def[2]{};
         ble_gatt_chr_def* pChr_a = nullptr;
         ble_gatt_dsc_def* pDsc_a = nullptr;
 
@@ -160,7 +160,7 @@ bool NimBLEService::start() {
             // Nimble requires the last characteristic to have it's uuid = 0 to indicate the end
             // of the characteristics for the service. We create 1 extra and set it to null
             // for this purpose.
-            pChr_a = new ble_gatt_chr_def[numChrs + 1];
+            pChr_a = new ble_gatt_chr_def[numChrs + 1]{};
             uint8_t i = 0;
             for(auto chr_it = m_chrVec.begin(); chr_it != m_chrVec.end(); ++chr_it) {
                 if((*chr_it)->m_removed > 0) {
@@ -189,7 +189,7 @@ bool NimBLEService::start() {
                     pChr_a[i].descriptors = NULL;
                 } else {
                     // Must have last descriptor uuid = 0 so we have to create 1 extra
-                    pDsc_a = new ble_gatt_dsc_def[numDscs+1];
+                    pDsc_a = new ble_gatt_dsc_def[numDscs+1]{};
                     uint8_t d = 0;
                     for(auto dsc_it = (*chr_it)->m_dscVec.begin(); dsc_it != (*chr_it)->m_dscVec.end(); ++dsc_it ) {
                         if((*dsc_it)->m_removed > 0) {
@h2zero
Copy link
Owner

h2zero commented Apr 21, 2024

Thanks, I will look to change this soon.

@michaelboeding
Copy link

michaelboeding commented Apr 21, 2024
edited

I'm also running into this issue, I made the above changes and it works now. Thanks @chrispbarlow

@joshbillions
Copy link

Same issue here. @chrispbarlow 's fix resolves it.

@cmorganBE
Copy link

cmorganBE commented May 16, 2024
edited

Seeing this as a new crash with esp-idf v5.2.1 (did not see it earlier today when using v5.2, just upgraded to 5.2.1 to see if it fixes the bonding issue I'm seeing) without afaik using external ram. Likely for similar reasons. Looking at the code and fix it does look like in certain paths not all fields of the structures are being set, perhaps these uninitialized fields are causing the crash? I'm not familiar enough with esp-nimble-cpp to provide a review beyond that, at the moment.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@joshbillions @chrispbarlow @h2zero @michaelboeding @cmorganBE