Home Explore Help
Sign In
samsung-sm8650
/
android_kernel_samsung_sm8650-modules
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

qcacld-3.0: Fix Null pointer dereference in rrm_process_beacon_report_xmit

In function rrm_process_beacon_report_xmit, reset flag_bss_present before
processing each bss descriptor.

Change-Id: Ic3ef01d79135effe718cbeec29894f6000de7f07
CRs-Fixed: 1034255
Naveen Rawat 8 years ago
parent
9ea7470dde
commit
d4b56dadeb
1 changed files with 2 additions and 1 deletions
Split View Show Diff Stats
  1. 2 1
      core/mac/src/pe/rrm/rrm_api.c

+ 2 - 1
core/mac/src/pe/rrm/rrm_api.c
View File 

@@ -800,7 +800,7 @@ rrm_process_beacon_report_xmit(tpAniSirGlobal mac_ctx,
 
 	tpRRMReq curr_req = mac_ctx->rrm.rrmPEContext.pCurrentReq;
 
 	tpPESession session_entry;
 
 	uint8_t session_id;
 
-	bool flag_bss_present = false, bss_desc_count = 0;
 
+	bool flag_bss_present, bss_desc_count = 0;
 
 
 	lim_log(mac_ctx, LOG1, FL("Received beacon report xmit indication"));
 
 
@@ -845,6 +845,7 @@ rrm_process_beacon_report_xmit(tpAniSirGlobal mac_ctx,
 
 				report[bss_desc_count].report.beaconReport;
 
 			bss_desc = beacon_xmit_ind->
 
 				   pBssDescription[bss_desc_count];
 
+			flag_bss_present = false;
 
 			/* Prepare the beacon report and send it to the peer.*/
 
 			report[bss_desc_count].token =
 
 				beacon_xmit_ind->uDialogToken;