summaryrefslogtreecommitdiff
path: root/include/mtd/git@git.tavy.me:linux.git
diff options
context:
space:
mode:
authorCássio Gabriel <cassiogabrielcontato@gmail.com>2026-03-19 21:45:26 -0300
committerMark Brown <broonie@kernel.org>2026-03-20 12:52:41 +0000
commit215e5fe75881a7e2425df04aeeed47a903d5cd5d (patch)
tree6c36edefffe9a94f639f9b70432371a187fb2ee0 /include/mtd/git@git.tavy.me:linux.git
parenta437601a0a1383260222223440a95dd4322eb7fa (diff)
ASoC: SOF: topology: reject invalid vendor array size in token parser
sof_parse_token_sets() accepts array->size values that can be invalid for a vendor tuple array header. In particular, a zero size does not advance the parser state and can lead to non-progress parsing on malformed topology data. Validate array->size against the minimum header size and reject values smaller than sizeof(*array) before parsing. This preserves behavior for valid topologies and hardens malformed-input handling. Signed-off-by: Cássio Gabriel <cassiogabrielcontato@gmail.com> Acked-by: Peter Ujfalusi <peter.ujfalusi@linux.intel.com> Link: https://patch.msgid.link/20260319-sof-topology-array-size-fix-v1-1-f9191b16b1b7@gmail.com Signed-off-by: Mark Brown <broonie@kernel.org>
Diffstat (limited to 'include/mtd/git@git.tavy.me:linux.git')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-03 14:00:06 +0000