[dpdk-dev] [PATCH 3/7] net/i40e/base: fix potential out of bound array access

Jingjing Wu jingjing.wu at intel.com
Wed Mar 22 10:24:55 CET 2017

Previous message: [dpdk-dev] [PATCH 2/7] net/i40e/base: control register read/write on X722
Next message: [dpdk-dev] [PATCH 4/7] net/i40e/base: new AQ commands for ppp
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This is fix for klocwork issue where dcbcfg->numapps could
be greater than size of array (i.e dcbcfg->app[I40E_DCBX_MAX_APPS]).
The fix makes sure the array is not accessed past size of array
(i.e. I40E_DCBX_MAX_APPS).

Fixes: 166dceeeeafc ("i40e/base: add parsing for CEE DCBX TLVs")
Cc: stable at dpdk.org
Signed-off-by: Jingjing Wu <jingjing.wu at intel.com>
---
 drivers/net/i40e/base/i40e_dcb.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/drivers/net/i40e/base/i40e_dcb.c b/drivers/net/i40e/base/i40e_dcb.c
index 26c344f..9b5405d 100644
--- a/drivers/net/i40e/base/i40e_dcb.c
+++ b/drivers/net/i40e/base/i40e_dcb.c
@@ -396,6 +396,8 @@ static void i40e_parse_cee_app_tlv(struct i40e_cee_feat_tlv *tlv,
 	dcbcfg->numapps = length / sizeof(*app);
 	if (!dcbcfg->numapps)
 		return;
+	if (dcbcfg->numapps > I40E_DCBX_MAX_APPS)
+		dcbcfg->numapps = I40E_DCBX_MAX_APPS;
 
 	for (i = 0; i < dcbcfg->numapps; i++) {
 		u8 up, selector;
-- 
2.4.11

Previous message: [dpdk-dev] [PATCH 2/7] net/i40e/base: control register read/write on X722
Next message: [dpdk-dev] [PATCH 4/7] net/i40e/base: new AQ commands for ppp
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dev mailing list