qed: Prevent creation of too-big u32-chains

Current Logic would allow the creation of a chain with U32_MAX + 1 elements, when the actual maximum supported by the driver infrastructure is U32_MAX. Fixes: a91eb52a ("qed: Revisit chain implementation") Signed-off-by: N Tomer Tayar <Tomer.Tayar@cavium.com> Signed-off-by: N Yuval Mintz <Yuval.Mintz@cavium.com> Signed-off-by: N David S. Miller <davem@davemloft.net>

qed: Prevent creation of too-big u32-chains
Current Logic would allow the creation of a chain with U32_MAX + 1 elements, when the actual maximum supported by the driver infrastructure is U32_MAX. Fixes: a91eb52a ("qed: Revisit chain implementation") Signed-off-by: N Tomer Tayar <Tomer.Tayar@cavium.com> Signed-off-by: N Yuval Mintz <Yuval.Mintz@cavium.com> Signed-off-by: N David S. Miller <davem@davemloft.net>
3ef310a7 · Tomer Tayar · David S. Miller · f3e48119 · 3ef310a7
显示空白变更内容
内联并排

Showing with 2 addition and 3 deletion

drivers/net/ethernet/qlogic/qed/qed_dev.c drivers/net/ethernet/qlogic/qed/qed_dev.c +2 -3

未找到文件。
--- a/drivers/net/ethernet/qlogic/qed/qed_dev.c
+++ b/drivers/net/ethernet/qlogic/qed/qed_dev.c
@@ -2389,9 +2389,8 @@ qed_chain_alloc_sanity_check(struct qed_dev *cdev,
 	 * size/capacity fields are of a u32 type.
 	 */
 	if ((cnt_type == QED_CHAIN_CNT_TYPE_U16 &&
-	     chain_size > 0x10000) ||
-	    (cnt_type == QED_CHAIN_CNT_TYPE_U32 &&
-	     chain_size > 0x100000000ULL)) {
+	     chain_size > ((u32)U16_MAX + 1)) ||
+	    (cnt_type == QED_CHAIN_CNT_TYPE_U32 && chain_size > U32_MAX)) {
 		DP_NOTICE(cdev,
 			  "The actual chain size (0x%llx) is larger than the maximal possible value\n",
 			  chain_size);