ALSA: atmel: Fix possible array overflow The static checker found a possible array overflow in atmel/abdac.c: static checker warning: "sound/atmel/abdac.c:373 set_sample_rates() error: buffer overflow 'dac->rates' 6 <= 6" This patch papers over the buggy point, by ensuring that dac->rates[] update not overflowing the actual array size. Reported-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: Takashi Iwai <tiwai@suse.de>

commit: e4de211cd31665c167351a428e08199ee6355e46 [log] [tgz]
author: Takashi Iwai <tiwai@suse.de> Mon Dec 02 15:07:59 2013 +0100
committer: Takashi Iwai <tiwai@suse.de> Mon Dec 02 15:10:41 2013 +0100
tree: cc45cb0130056615b11733ddf8296a36835d246e
parent: 88d071fc9a93de2916822910c927f28ed15c3a56 [diff] [blame]
diff --git a/sound/atmel/abdac.c b/sound/atmel/abdac.c
index 872d59e..721d8fd 100644
--- a/sound/atmel/abdac.c
+++ b/sound/atmel/abdac.c

@@ -357,7 +357,8 @@
 		if (new_rate < 0)
 			break;
 		/* make sure we are below the ABDAC clock */
-		if (new_rate <= clk_get_rate(dac->pclk)) {
+		if (index < MAX_NUM_RATES &&
+		    new_rate <= clk_get_rate(dac->pclk)) {
 			dac->rates[index] = new_rate / 256;
 			index++;
 		}
commit	e4de211cd31665c167351a428e08199ee6355e46	[log] [tgz]
author	Takashi Iwai <tiwai@suse.de>	Mon Dec 02 15:07:59 2013 +0100
committer	Takashi Iwai <tiwai@suse.de>	Mon Dec 02 15:10:41 2013 +0100
tree	cc45cb0130056615b11733ddf8296a36835d246e
parent	88d071fc9a93de2916822910c927f28ed15c3a56 [diff] [blame]