Re: [PATCH] iwlwifi: mvm: check return value of rs_rate_from_ucode_rate()

13 Oct 2018

      Luca Coelho luca@coelho.fi wrote:
...
From: Luca Coelho luciano.coelho@intel.com
The rs_rate_from_ucode_rate() function may return -EINVAL if the rate
is invalid, but none of the callsites check for the error, potentially
making us access arrays with index IWL_RATE_INVALID, which is larger
than the arrays, causing an out-of-bounds access.  This will trigger
KASAN warnings, such as the one reported in the bugzilla issue
mentioned below.
This fixes https://bugzilla.kernel.org/show_bug.cgi?id=200659
Cc: stable@vger.kernel.org
Signed-off-by: Luca Coelho luciano.coelho@intel.com
Patch applied to wireless-drivers-next.git, thanks.
3d71c3f1f50c iwlwifi: mvm: check return value of rs_rate_from_ucode_rate()
-- 
https://patchwork.kernel.org/patch/10639957/

https://wireless.wiki.kernel.org/en/developers/documentation/submittingpatch...

2025

2024

2023

2022

2021

2020

2019

2018

2017

Re: [PATCH] iwlwifi: mvm: check return value of rs_rate_from_ucode_rate()