[PATCH v3 ipsec-next] xfrm: remove VLA usage in __xfrm6_sort()

From: Kees Cook
Date: Tue Apr 24 2018 - 19:47:00 EST

Next message: Joel Fernandes: "Re: [RFC v4 3/4] irqflags: Avoid unnecessary calls to trace_ if you can"
Previous message: Laurent Pinchart: "Re: [PATCH] drm: xlnx: pl_disp: fix odd_ptr_err.cocci warnings"
Next in thread: Stefano Brivio: "Re: [PATCH v3 ipsec-next] xfrm: remove VLA usage in __xfrm6_sort()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In the quest to remove all stack VLA usage removed from the kernel[1],
just use XFRM_MAX_DEPTH as already done for the "class" array. In one
case, it'll do this loop up to 5, the other caller up to 6.

[1] https://lkml.org/lkml/2018/3/7/621

Co-developed-by: Andreas Christoforou <andreaschristofo@xxxxxxxxx>
Signed-off-by: Kees Cook <keescook@xxxxxxxxxxxx>
---
v3:
- adjust Subject and commit log (Steffen)
- use "= { }" instead of memset() (Stefano)
- reorder variables (Stefano)
v2:
- use XFRM_MAX_DEPTH for "count" array (Steffen and Mathias).
---
net/ipv6/xfrm6_state.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/net/ipv6/xfrm6_state.c b/net/ipv6/xfrm6_state.c
index 16f434791763..eeb44b64ae7f 100644
--- a/net/ipv6/xfrm6_state.c
+++ b/net/ipv6/xfrm6_state.c
@@ -60,9 +60,9 @@ xfrm6_init_temprop(struct xfrm_state *x, const struct xfrm_tmpl *tmpl,
static int
__xfrm6_sort(void **dst, void **src, int n, int (*cmp)(void *p), int maxclass)
{
- int i;
+ int count[XFRM_MAX_DEPTH] = { };
int class[XFRM_MAX_DEPTH];
- int count[maxclass];
+ int i;

memset(count, 0, sizeof(count));

--
2.7.4

--
Kees Cook
Pixel Security

Next message: Joel Fernandes: "Re: [RFC v4 3/4] irqflags: Avoid unnecessary calls to trace_ if you can"
Previous message: Laurent Pinchart: "Re: [PATCH] drm: xlnx: pl_disp: fix odd_ptr_err.cocci warnings"
Next in thread: Stefano Brivio: "Re: [PATCH v3 ipsec-next] xfrm: remove VLA usage in __xfrm6_sort()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]