1 year ago · 3e9f7d3d0e
--- a/components/tdls/core/src/wlan_tdls_ct.c
+++ b/components/tdls/core/src/wlan_tdls_ct.c
@@ -105,6 +105,9 @@ void tdls_discovery_timeout_peer_cb(void *user_data)
 
				 
			
 
				 	vdev = (struct wlan_objmgr_vdev *)user_data;
			
 
				 	tdls_soc = wlan_vdev_get_tdls_soc_obj(vdev);
			
 
				+	if (!tdls_soc)
			
 
				+		return;
			
 
				+
			
 
				 	if (wlan_vdev_mlme_is_mlo_vdev(vdev) &&
			
 
				 	    qdf_atomic_dec_and_test(&tdls_soc->timer_cnt)) {
			
 
				 		tdls_process_mlo_cal_tdls_link_score(vdev);
			
@@ -144,6 +147,9 @@ void tdls_discovery_timeout_peer_cb(void *user_data)
 
				 	}
			
 
				 
			
 
				 	tdls_vdev = wlan_vdev_get_tdls_vdev_obj(vdev);
			
 
				+	if (!tdls_vdev)
			
 
				+		return;
			
 
				+
			
 
				 	for (i = 0; i < WLAN_TDLS_PEER_LIST_SIZE; i++) {
			
 
				 		head = &tdls_vdev->peer_list[i];
			
 
				 		status = qdf_list_peek_front(head, &p_node);
			
--- a/components/tdls/core/src/wlan_tdls_main.c
+++ b/components/tdls/core/src/wlan_tdls_main.c
@@ -346,6 +346,13 @@ QDF_STATUS tdls_vdev_obj_destroy_notification(struct wlan_objmgr_vdev *vdev,
 
				 		return QDF_STATUS_E_FAILURE;
			
 
				 	}
			
 
				 
			
 
				+	if (wlan_vdev_mlme_is_mlo_vdev(vdev)) {
			
 
				+		if (QDF_TIMER_STATE_STOPPED !=
			
 
				+		    qdf_mc_timer_get_current_state(
			
 
				+					&tdls_vdev_obj->peer_discovery_timer))
			
 
				+			qdf_mc_timer_stop(&tdls_vdev_obj->peer_discovery_timer);
			
 
				+	}
			
 
				+
			
 
				 	qdf_event_destroy(&tdls_vdev_obj->tdls_teardown_comp);
			
 
				 	tdls_vdev_deinit(tdls_vdev_obj);