Merge "dsp: q6lsm: Avoid null pointer access in SSR"

};

static struct lsm_common lsm_common;

static DEFINE_MUTEX(session_lock);

/*

 * mmap_handle_p can point either client->sound_model.mem_map_handle or

 * lsm_common.mmap_handle_for_cal.

static int q6lsm_memory_unmap_regions(struct lsm_client *client,

				      uint32_t handle);

static int q6lsm_get_session_id_from_lsm_client(struct lsm_client *client)

{

	int n;

	for (n = LSM_MIN_SESSION_ID; n <= LSM_MAX_SESSION_ID; n++) {

		if (lsm_session[n] == client)

			return n;

	}

	pr_err("%s: cannot find matching lsm client. client = %pa\n",

		__func__, client);

	return LSM_INVALID_SESSION_ID;

}

static bool q6lsm_is_valid_lsm_client(struct lsm_client *client)

{

	return q6lsm_get_session_id_from_lsm_client(client) ? 1 : 0;

}

static int q6lsm_callback(struct apr_client_data *data, void *priv)

{

	struct lsm_client *client = (struct lsm_client *)priv;

			 __func__, data->opcode, data->reset_event,

			 data->reset_proc);

		mutex_lock(&session_lock);

		if (!client || !q6lsm_is_valid_lsm_client(client)) {

			pr_err("%s: client already freed/invalid, return\n",

				__func__);

			mutex_unlock(&session_lock);

			return 0;

		}

		apr_reset(client->apr);

		client->apr = NULL;

		atomic_set(&client->cmd_state, CMD_STATE_CLEARED);

		mutex_lock(&lsm_common.cal_data[LSM_CUSTOM_TOP_IDX]->lock);

		lsm_common.set_custom_topology = 1;

		mutex_unlock(&lsm_common.cal_data[LSM_CUSTOM_TOP_IDX]->lock);

		mutex_unlock(&session_lock);

		return 0;

	}

		pr_err("%s: Invalid Session %d\n", __func__, client->session);

		return;

	}

	mutex_lock(&session_lock);

	apr_deregister(client->apr);

	client->mmap_apr = NULL;

	q6lsm_session_free(client);

	mutex_destroy(&client->cmd_lock);

	kfree(client);

	client = NULL;

	mutex_unlock(&session_lock);

}

EXPORT_SYMBOL(q6lsm_client_free);