Fix an OOB bug in btm_read_tx_power_complete

 * Returns          void

 *

 ******************************************************************************/

void btm_read_tx_power_complete(uint8_t* p, bool is_ble) {

void btm_read_tx_power_complete(uint8_t* p, uint16_t evt_len, bool is_ble) {

  tBTM_CMPL_CB* p_cb = btm_cb.devcb.p_tx_power_cmpl_cb;

  tBTM_TX_POWER_RESULT result;

  /* If there was a registered callback, call it */

  if (p_cb) {

    if (evt_len < 1) {

      goto err_out;

    }

    STREAM_TO_UINT8(result.hci_status, p);

    if (result.hci_status == HCI_SUCCESS) {

      if (!is_ble) {

        uint16_t handle;

        if (evt_len < 4) {

          goto err_out;

        }

        STREAM_TO_UINT16(handle, p);

        STREAM_TO_UINT8(result.tx_power, p);

          result.rem_bda = p_acl_cb->remote_addr;

        }

      } else {

        if (evt_len < 2) {

          goto err_out;

        }

        STREAM_TO_UINT8(result.tx_power, p);

        result.rem_bda = btm_cb.devcb.read_tx_pwr_addr;

      }

    (*p_cb)(&result);

  }

  return;

 err_out:

  LOG_ERROR("Bogus event packet, too short");

}

/*******************************************************************************

      break;

    case HCI_READ_TRANSMIT_POWER_LEVEL:

      btm_read_tx_power_complete(p, false);

      btm_read_tx_power_complete(p, evt_len, false);

      break;

    case HCI_CREATE_CONNECTION_CANCEL:

      break;

    case HCI_BLE_READ_ADV_CHNL_TX_POWER:

      btm_read_tx_power_complete(p, true);

      btm_read_tx_power_complete(p, evt_len, true);

      break;

    case HCI_BLE_WRITE_ADV_ENABLE:

                                      uint16_t manufacturer,

                                      uint16_t lmp_subversion);

void btm_read_rssi_complete(uint8_t* p);

void btm_read_tx_power_complete(uint8_t* p, bool is_ble);

void btm_read_tx_power_complete(uint8_t* p, uint16_t evt_len, bool is_ble);

void acl_rcv_acl_data(BT_HDR* p_msg);

void acl_link_segments_xmitted(BT_HDR* p_msg);

  mock_function_count_map[__func__]++;

  test::mock::stack_acl::btm_read_rssi_timeout(data);

}

void btm_read_tx_power_complete(uint8_t* p, bool is_ble) {

void btm_read_tx_power_complete(uint8_t* p, uint16_t evt_len, bool is_ble) {

  mock_function_count_map[__func__]++;

  test::mock::stack_acl::btm_read_tx_power_complete(p, is_ble);

  test::mock::stack_acl::btm_read_tx_power_complete(p, evt_len, is_ble);

}

void btm_read_tx_power_timeout(UNUSED_ATTR void* data) {

  mock_function_count_map[__func__]++;

// Params: uint8_t* p, bool is_ble

// Returns: void

struct btm_read_tx_power_complete {

  std::function<void(uint8_t* p, bool is_ble)> body{

      [](uint8_t* p, bool is_ble) { ; }};

  void operator()(uint8_t* p, bool is_ble) { body(p, is_ble); };

  std::function<void(uint8_t* p, uint16_t evt_len, bool is_ble)> body{

      [](uint8_t* p, uint16_t evt_len, bool is_ble) { ; }};

  void operator()(uint8_t* p, uint16_t evt_len, bool is_ble) {

    body(p, evt_len, is_ble);

  };

};

extern struct btm_read_tx_power_complete btm_read_tx_power_complete;

// Name: btm_read_tx_power_timeout