diff options
| author | Kees Cook <keescook@chromium.org> | 2021-06-16 12:54:10 -0700 |
|---|---|---|
| committer | Kalle Valo <kvalo@codeaurora.org> | 2021-06-22 18:28:00 +0300 |
| commit | c8bcd82a4efd053cdd5ce515a8b0003011a5f756 (patch) | |
| tree | 4fce0eb4a4ec04487e6c8f5fa4c36a2fb019fd88 /tools/perf/scripts/python/syscall-counts-by-pid.py | |
| parent | 49f5b114e36ebc69318ab95f98b57df7458b0f42 (diff) | |
| download | linux-c8bcd82a4efd053cdd5ce515a8b0003011a5f756.tar.gz linux-c8bcd82a4efd053cdd5ce515a8b0003011a5f756.tar.bz2 linux-c8bcd82a4efd053cdd5ce515a8b0003011a5f756.zip | |
ath11k: Avoid memcpy() over-reading of he_cap
In preparation for FORTIFY_SOURCE performing compile-time and run-time
field bounds checking for memcpy(), memmove(), and memset(), avoid
intentionally writing across neighboring array fields.
Since peer_he_cap_{mac,phy}info and he_cap_elem.{mac,phy}_cap_info are not
the same sizes, memcpy() was reading beyond field boundaries. Instead,
correctly cap the copy length and pad out any difference in size
(peer_he_cap_macinfo is 8 bytes whereas mac_cap_info is 6, and
peer_he_cap_phyinfo is 12 bytes whereas phy_cap_info is 11).
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
Link: https://lore.kernel.org/r/20210616195410.1232119-1-keescook@chromium.org
Diffstat (limited to 'tools/perf/scripts/python/syscall-counts-by-pid.py')
0 files changed, 0 insertions, 0 deletions