net: aquantia: fixed memcpy size

Not careful array dereference caused analysis tools to think there could be memory overflow. There was actually no corruption because the array is two dimensional. drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c: 140 aq_ethtool_get_strings() error: memcpy() '*aq_ethtool_stat_names' too small (32 vs 704) Signed-off-by: N Nikita Danilov <nikita.danilov@aquantia.com> Signed-off-by: N Igor Russkikh <igor.russkikh@aquantia.com> Signed-off-by: N David S. Miller <davem@davemloft.net>

net: aquantia: fixed memcpy size
Not careful array dereference caused analysis tools to think there could be memory overflow. There was actually no corruption because the array is two dimensional. drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c: 140 aq_ethtool_get_strings() error: memcpy() '*aq_ethtool_stat_names' too small (32 vs 704) Signed-off-by: N Nikita Danilov <nikita.danilov@aquantia.com> Signed-off-by: N Igor Russkikh <igor.russkikh@aquantia.com> Signed-off-by: N David S. Miller <davem@davemloft.net>
ff83dbf2 · Nikita Danilov · David S. Miller · 699be715 · ff83dbf2
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c +1 -1

未找到文件。
--- a/drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c
+++ b/drivers/net/ethernet/aquantia/atlantic/aq_ethtool.c
@@ -138,7 +138,7 @@ static void aq_ethtool_get_strings(struct net_device *ndev,
 	u8 *p = data;

 	if (stringset == ETH_SS_STATS) {
-		memcpy(p, *aq_ethtool_stat_names,
+		memcpy(p, aq_ethtool_stat_names,
 		       sizeof(aq_ethtool_stat_names));
 		p = p + sizeof(aq_ethtool_stat_names);
 		for (i = 0; i < cfg->vecs; i++) {