drm/vmwgfx: Annotate struct vmw_surface_dirty with __counted_by

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

Prepare for the coming implementation by GCC and Clang of the __counted_by
attribute. Flexible array members annotated with __counted_by can have
their accesses bounds-checked at run-time checking via CONFIG_UBSAN_BOUNDS
(for array indexing) and CONFIG_FORTIFY_SOURCE (for strcpy/memcpy-family
functions).

As found with Coccinelle[1], add __counted_by for struct vmw_surface_dirty.

[1] https://github.com/kees/kernel-tools/blob/trunk/coccinelle/examples/counted_by.cocci

Cc: Zack Rusin <zackr@vmware.com>
Cc: VMware Graphics Reviewers <linux-graphics-maintainer@vmware.com>
Cc: David Airlie <airlied@gmail.com>
Cc: Daniel Vetter <daniel@ffwll.ch>
Cc: dri-devel@lists.freedesktop.org
Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Zack Rusin <zackr@vmware.com>
Reviewed-by: Gustavo A. R. Silva <gustavoars@kernel.org>
Signed-off-by: Christian König <christian.koenig@amd.com>
Link: https://patchwork.freedesktop.org/patch/msgid/20230922173216.3823169-8-keescook@chromium.org

authored by

Kees Cook and committed by

Christian König 2 years ago 45744668 25765dde

+1 -1

1 changed file

expand all

drivers

gpu

drm

vmwgfx

vmwgfx_surface.c

+1 -1

drivers/gpu/drm/vmwgfx/vmwgfx_surface.c

··· 77 77 struct vmw_surface_dirty { 78 78 struct vmw_surface_cache cache; 79 79 u32 num_subres; 80 - SVGA3dBox boxes[]; 80 + SVGA3dBox boxes[] __counted_by(num_subres); 81 81 }; 82 82 83 83 static void vmw_user_surface_free(struct vmw_resource *res);