From bdd8dad951f9f1338c754b84a3a2b655d27b0ba0 Mon Sep 17 00:00:00 2001
From: Joshua Jun <joshuajun@proton.me>
Date: Thu, 13 Nov 2025 19:48:56 +0100
Subject: [PATCH] services/voice_endpoint: Fix voice crash from invalid session
 setup

Signed-off-by: Joshua Jun <joshuajun@proton.me>
---
 src/fw/services/normal/voice_endpoint.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/src/fw/services/normal/voice_endpoint.c b/src/fw/services/normal/voice_endpoint.c
index 80eaeed0..6923747f 100644
--- a/src/fw/services/normal/voice_endpoint.c
+++ b/src/fw/services/normal/voice_endpoint.c
@@ -145,8 +145,17 @@ void voice_endpoint_protocol_msg_callback(CommSession *session, const uint8_t* d
     case MsgIdSessionSetup: {
       if (size >= sizeof(SessionSetupResultMsg)) {
         SessionSetupResultMsg *msg = (SessionSetupResultMsg *) data;
+        
+        // Validate result enum value to prevent crashes from invalid values
+        VoiceEndpointResult result = msg->result;
+        if (result > VoiceEndpointResultFailInvalidMessage) {
+          PBL_LOG(LOG_LEVEL_ERROR, "Invalid VoiceEndpointResult value: %d, treating as invalid message", 
+                  (int)result);
+          result = VoiceEndpointResultFailInvalidMessage;
+        }
+        
         bool app_initiated = (msg->flags.app_initiated == 1);
-        voice_handle_session_setup_result(msg->result, msg->session_type, app_initiated);
+        voice_handle_session_setup_result(result, msg->session_type, app_initiated);
       } else {
         PBL_LOG(LOG_LEVEL_WARNING, "Invalid size for session setup result message");
       }