Halaman utama Jelajahi Bantuan
Masuk
samsung-sm8650
/
android_kernel_samsung_sm8650-modules
2
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Jelajahi Sumber

qcacld-3.0: Avoid illegal memory access

Currently In os_if_monitor_mode_configure API,
tb attribute is getting accessed before parsing
the data coming from userspace.
This is leading to illegal memory access.

Move tb attribute access after parsing userspace
data with API wlan_cfg80211_nla_parse.

Change-Id: Ia972ebb87e18ed82c6c3a2ff3ce2d10a4b9685b9
CRs-Fixed: 3241952
Divyajyothi Goparaju 2 tahun lalu
induk
0c9211ab2a
melakukan
487d2210e2
1 mengubah file dengan 4 tambahan dan 3 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 4 3
      os_if/pkt_capture/src/os_if_pkt_capture.c

+ 4 - 3
os_if/pkt_capture/src/os_if_pkt_capture.c
Tampilan Berkas 

@@ -1,5 +1,6 @@
 
 /*
 
  * Copyright (c) 2016-2021 The Linux Foundation. All rights reserved.
 
+ * Copyright (c) 2022 Qualcomm Innovation Center, Inc. All rights reserved.
 
  *
 
  * Permission to use, copy, modify, and/or distribute this software for
 
  * any purpose with or without fee is hereby granted, provided that the
 
@@ -73,9 +74,6 @@ QDF_STATUS os_if_monitor_mode_configure(struct hdd_adapter *adapter,
 
 	struct nlattr *tb[SET_MONITOR_MODE_CONFIG_MAX + 1];
 
 	QDF_STATUS status;
 
 
-	if (tb[SET_MONITOR_MODE_INVALID])
 
-		return QDF_STATUS_E_FAILURE;
 
-
 
 	vdev = hdd_objmgr_get_vdev_by_user(adapter, WLAN_PKT_CAPTURE_ID);
 
 	if (!vdev)
 
 		return QDF_STATUS_E_INVAL;
 
@@ -87,6 +85,9 @@ QDF_STATUS os_if_monitor_mode_configure(struct hdd_adapter *adapter,
 
 		return QDF_STATUS_E_INVAL;
 
 	}
 
 
+	if (tb[SET_MONITOR_MODE_INVALID])
 
+		return QDF_STATUS_E_FAILURE;
 
+
 
 	if (tb[SET_MONITOR_MODE_DATA_TX_FRAME_TYPE] &&
 
 	    nla_get_u32(tb[SET_MONITOR_MODE_DATA_TX_FRAME_TYPE]) <
 
 	    PACKET_CAPTURE_DATA_MAX_FILTER) {