SDP: Restrict attribute length to SDP_MAX_ATTR_LEN

*******************************************************************************/

UINT8 *sdpu_build_partial_attrib_entry (UINT8 *p_out, tSDP_ATTRIBUTE *p_attr, UINT16 len, UINT16 *offset)

{

    UINT8 *p_tmp_attr;

    size_t len_to_copy;

    UINT16 attr_len;

    UINT8 *p_attr_buff = (UINT8 *)osi_malloc(sizeof(UINT8) * SDP_MAX_ATTR_LEN);

    sdpu_build_attrib_entry(p_attr_buff, p_attr);

    p_tmp_attr = p_attr_buff;

    UINT16 attr_len = sdpu_get_attrib_entry_len(p_attr);

    sdpu_build_attrib_entry(p_tmp_attr, p_attr);

    attr_len = sdpu_get_attrib_entry_len(p_attr);

    len_to_copy = ((attr_len - *offset) < len) ? (attr_len - *offset): len;

    if (len > SDP_MAX_ATTR_LEN)

    {

        SDP_TRACE_ERROR("%s len %d exceeds SDP_MAX_ATTR_LEN", __func__, len);

        len = SDP_MAX_ATTR_LEN;

    }

    size_t len_to_copy = ((attr_len - *offset) < len) ? (attr_len - *offset) : len;

    memcpy(p_out, &p_attr_buff[*offset], len_to_copy);

    p_out = &p_out[len_to_copy];