hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock

#include <linux/module.h>

#include <linux/mutex.h>

#include <linux/slab.h>

#include <linux/spinlock.h>

#include <linux/types.h>

#define USB_VENDOR_ID_CORSAIR			0x1b1c

struct ccp_device {

	struct hid_device *hdev;

	struct device *hwmon_dev;

	/* For reinitializing the completion below */

	spinlock_t wait_input_report_lock;

	struct completion wait_input_report;

	struct mutex mutex; /* whenever buffer is used, lock before send_usb_cmd */

	u8 *cmd_buffer;

	ccp->cmd_buffer[2] = byte2;

	ccp->cmd_buffer[3] = byte3;

	/*

	 * Disable raw event parsing for a moment to safely reinitialize the

	 * completion. Reinit is done because hidraw could have triggered

	 * the raw event parsing and marked the ccp->wait_input_report

	 * completion as done.

	 */

	spin_lock_bh(&ccp->wait_input_report_lock);

	reinit_completion(&ccp->wait_input_report);

	spin_unlock_bh(&ccp->wait_input_report_lock);

	ret = hid_hw_output_report(ccp->hdev, ccp->cmd_buffer, OUT_BUFFER_SIZE);

	if (ret < 0)

	struct ccp_device *ccp = hid_get_drvdata(hdev);

	/* only copy buffer when requested */

	if (completion_done(&ccp->wait_input_report))

		return 0;

	spin_lock(&ccp->wait_input_report_lock);

	if (!completion_done(&ccp->wait_input_report)) {

		memcpy(ccp->buffer, data, min(IN_BUFFER_SIZE, size));

		complete_all(&ccp->wait_input_report);

	}

	spin_unlock(&ccp->wait_input_report_lock);

	return 0;

}

	ccp->hdev = hdev;

	hid_set_drvdata(hdev, ccp);

	mutex_init(&ccp->mutex);

	spin_lock_init(&ccp->wait_input_report_lock);

	init_completion(&ccp->wait_input_report);

	hid_device_io_start(hdev);