netfilter: nf_tables: Annotate struct nft_pipapo_match with __counted_by

Prepare for the coming implementation by GCC and Clang of the __counted_by
attribute. Flexible array members annotated with __counted_by can have
their accesses bounds-checked at run-time via CONFIG_UBSAN_BOUNDS (for
array indexing) and CONFIG_FORTIFY_SOURCE (for strcpy/memcpy-family
functions).

As found with Coccinelle[1], add __counted_by for struct nft_pipapo_match.

Cc: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: Jozsef Kadlecsik <kadlec@netfilter.org>
Cc: Florian Westphal <fw@strlen.de>
Cc: "David S. Miller" <davem@davemloft.net>
Cc: Eric Dumazet <edumazet@google.com>
Cc: Jakub Kicinski <kuba@kernel.org>
Cc: Paolo Abeni <pabeni@redhat.com>
Cc: netfilter-devel@vger.kernel.org
Cc: coreteam@netfilter.org
Cc: netdev@vger.kernel.org
Link: https://github.com/kees/kernel-tools/blob/trunk/coccinelle/examples/counted_by.cocci [1]
Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Gustavo A. R. Silva <gustavoars@kernel.org>
Signed-off-by: Florian Westphal <fw@strlen.de>

This commit is contained in:

Kees Cook

2023-10-03 16:17:51 -07:00

committed by

Florian Westphal

parent 2e1d175410

commit d51c42cdef

1 changed files with 1 additions and 1 deletions

									
										2

net/netfilter/nft_set_pipapo.h

										View File
									
				@ -147,7 +147,7 @@ struct nft_pipapo_match {

					unsigned long * __percpu *scratch;

					size_t bsize_max;

					struct rcu_head rcu;

					struct nft_pipapo_field f[];

					struct nft_pipapo_field f[] __counted_by(field_count);

				};

				/**

netfilter: nf_tables: Annotate struct nft_pipapo_match with __counted_by

2 net/netfilter/nft_set_pipapo.h Unescape Escape View File

2

net/netfilter/nft_set_pipapo.h

View File