Pandora Sourcecodes - pandora-kernel.git/commit

author	Dan Carpenter <dan.carpenter@oracle.com>
	Mon, 21 Sep 2015 16:19:53 +0000 (19:19 +0300)
committer	Ben Hutchings <ben@decadent.org.uk>
	Fri, 27 Nov 2015 12:48:19 +0000 (12:48 +0000)
commit	a6a8977eadc2a96aef3af051d020ed7cb9331d1a
tree	e7d222872640087a6652a0faa9ef1755dddd9f41	tree \| snapshot
parent	7293a7e1ca7b1bb62977cd2fb97dc57ab1e50acf	commit \| diff

mwifiex: fix mwifiex_rdeeprom_read()

commit 1f9c6e1bc1ba5f8a10fcd6e99d170954d7c6d382 upstream.

There were several bugs here.

1)  The done label was in the wrong place so we didn't copy any
    information out when there was no command given.

2)  We were using PAGE_SIZE as the size of the buffer instead of
    "PAGE_SIZE - pos".

3)  snprintf() returns the number of characters that would have been
    printed if there were enough space.  If there was not enough space
    (and we had fixed the memory corruption bug #2) then it would result
    in an information leak when we do simple_read_from_buffer().  I've
    changed it to use scnprintf() instead.

I also removed the initialization at the start of the function, because
I thought it made the code a little more clear.

Fixes: 5e6e3a92b9a4 ('wireless: mwifiex: initial commit for Marvell mwifiex driver')
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Acked-by: Amitkumar Karwar <akarwar@marvell.com>
Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>