git.kernel.dk Git - linux-block.git/commit

author	Evgeny Pimenov <pimenoveu12@gmail.com>
	Tue, 1 Apr 2025 20:40:58 +0000 (23:40 +0300)
committer	Mark Brown <broonie@kernel.org>
	Sun, 6 Apr 2025 22:18:17 +0000 (23:18 +0100)
commit	a31a4934b31faea76e735bab17e63d02fcd8e029
tree	28495491d3843d7d21ab550f8e972c5a0c42d9f2	tree
parent	2b727b3f8a04fe52f55316ccb8792cfd9b2dd05d	commit \| diff

ASoC: qcom: Fix sc7280 lpass potential buffer overflow

Case values introduced in commit
5f78e1fb7a3e ("ASoC: qcom: Add driver support for audioreach solution")
cause out of bounds access in arrays of sc7280 driver data (e.g. in case
of RX_CODEC_DMA_RX_0 in sc7280_snd_hw_params()).

Redefine LPASS_MAX_PORTS to consider the maximum possible port id for
q6dsp as sc7280 driver utilizes some of those values.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Fixes: 77d0ffef793d ("ASoC: qcom: Add macro for lpass DAI id's max limit")
Cc: stable@vger.kernel.org # v6.0+
Suggested-by: Mikhail Kobuk <m.kobuk@ispras.ru>
Suggested-by: Alexey Khoroshilov <khoroshilov@ispras.ru>
Signed-off-by: Evgeny Pimenov <pimenoveu12@gmail.com>
Link: https://patch.msgid.link/20250401204058.32261-1-pimenoveu12@gmail.com
Signed-off-by: Mark Brown <broonie@kernel.org>