The following issues were found
drivers/net/wireless/ath/ath10k/txrx.c
1 issues
Line: 162
CWE codes:
908
{
struct ath10k_peer *peer;
if (peer_id >= BITS_PER_TYPE(peer->peer_ids))
return NULL;
lockdep_assert_held(&ar->data_lock);
list_for_each_entry(peer, &ar->peers, list)
Reported by Cppcheck.
drivers/net/ethernet/qualcomm/rmnet/rmnet_map_data.c
1 issues
Line: 392
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
skb_reserve(skbn, RMNET_MAP_DEAGGR_HEADROOM);
skb_put(skbn, packet_len);
memcpy(skbn->data, skb->data, packet_len);
skb_pull(skb, packet_len);
return skbn;
}
Reported by FlawFinder.
drivers/net/ethernet/qualcomm/qca_uart.c
1 issues
Line: 224
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
pos += qcafrm_create_header(pos, skb->len + pad_len);
memcpy(pos, skb->data, skb->len);
pos += skb->len;
if (pad_len) {
memset(pos, 0, pad_len);
pos += pad_len;
Reported by FlawFinder.
drivers/net/ethernet/huawei/hinic/hinic_tx.c
1 issues
Line: 893
Column: 2
CWE codes:
120
Suggestion:
Use sprintf_s, snprintf, or vsnprintf
goto err_alloc_irqname;
}
sprintf(txq->irq_name, "%s_txq%d", netdev->name, qp->q_id);
err = hinic_hwdev_hw_ci_addr_set(hwdev, sq, CI_UPDATE_NO_PENDING,
CI_UPDATE_NO_COALESC);
if (err)
goto err_hw_ci;
Reported by FlawFinder.
drivers/net/wireless/ath/ath10k/wmi.h
1 issues
Line: 4268
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct wmi_debug_mesg_event {
/* message buffer, NULL terminated */
char bufp[WMI_MAX_DEBUG_MESG];
} __packed;
enum {
/* P2P device */
VDEV_SUBTYPE_P2PDEV = 0,
Reported by FlawFinder.
drivers/net/ethernet/qualcomm/emac/emac.c
1 issues
Line: 548
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct emac_adapter *adpt)
{
struct net_device *netdev = adpt->netdev;
char maddr[ETH_ALEN];
int ret = 0;
/* get mac address */
if (device_get_mac_address(&pdev->dev, maddr, ETH_ALEN))
ether_addr_copy(netdev->dev_addr, maddr);
Reported by FlawFinder.
drivers/net/wireless/ath/ath11k/ahb.c
1 issues
Line: 40
Column: 14
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
#define ATH11K_IRQ_CE0_OFFSET 4
static const char *irq_name[ATH11K_IRQ_NUM_MAX] = {
"misc-pulse1",
"misc-latch",
"sw-exception",
"watchdog",
"ce0",
Reported by FlawFinder.
drivers/net/wireless/intel/iwlwifi/mvm/tdls.c
1 issues
Line: 423
Column: 2
CWE codes:
120
Suggestion:
Make sure destination can always hold the source data
hdr->frame_control);
rcu_read_unlock();
memcpy(tail->frame.data, skb->data, skb->len);
ret = iwl_mvm_send_cmd_pdu(mvm, TDLS_CHANNEL_SWITCH_CMD, 0, len, &cmd);
if (ret) {
IWL_ERR(mvm, "Failed to send TDLS_CHANNEL_SWITCH cmd: %d\n",
ret);
Reported by FlawFinder.
drivers/net/wireless/ath/ath11k/debug.c
1 issues
Line: 82
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
const char *msg, const char *prefix,
const void *buf, size_t len)
{
char linebuf[256];
size_t linebuflen;
const void *ptr;
if (ath11k_debug_mask & mask) {
if (msg)
Reported by FlawFinder.
drivers/net/ethernet/mellanox/mlx5/core/en_selftest.c
1 issues
Line: 49
Column: 7
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
MLX5E_ST_NUM,
};
const char mlx5e_self_tests[MLX5E_ST_NUM][ETH_GSTRING_LEN] = {
"Link Test",
"Speed Test",
"Health Test",
#ifdef CONFIG_INET
"Loopback Test",
Reported by FlawFinder.