|
|
@@ -109,6 +109,13 @@ int read_cold_reset_rsp(struct nfc_dev *nfc_dev, char *header)
|
|
|
struct cold_reset *cold_rst = &nfc_dev->cold_reset;
|
|
|
char *rsp_buf = NULL;
|
|
|
|
|
|
+ if (cold_rst->rsp_len < COLD_RESET_RSP_LEN) {
|
|
|
+ dev_err(nfc_dev->nfc_device,
|
|
|
+ "%s: received cold reset rsp buffer length is invalid \n",
|
|
|
+ __func__);
|
|
|
+ return -EINVAL;
|
|
|
+ }
|
|
|
+
|
|
|
rsp_buf = kzalloc(cold_rst->rsp_len, GFP_DMA | GFP_KERNEL);
|
|
|
if (!rsp_buf)
|
|
|
return -ENOMEM;
|
PRANAY BHARGAV BHAVARAJU