diff options
| author | Gustavo A. R. Silva <[email protected]> | 2020-01-20 17:53:26 -0600 | 
|---|---|---|
| committer | Greg Kroah-Hartman <[email protected]> | 2020-01-23 19:54:26 +0100 | 
| commit | 987f028b8637cfa7658aa456ae73f8f21a7a7f6f (patch) | |
| tree | 5d54f7aca3a7dc44b3efe82280e60c12215b0161 /include/linux/string_helpers.h | |
| parent | eb143f8756e77c8fcfc4d574922ae9efd3a43ca9 (diff) | |
char: hpet: Use flexible-array member
Old code in the kernel uses 1-byte and 0-byte arrays to indicate the
presence of a "variable length array":
struct something {
    int length;
    u8 data[1];
};
struct something *instance;
instance = kmalloc(sizeof(*instance) + size, GFP_KERNEL);
instance->length = size;
memcpy(instance->data, source, size);
There is also 0-byte arrays. Both cases pose confusion for things like
sizeof(), CONFIG_FORTIFY_SOURCE, etc.[1] Instead, the preferred mechanism
to declare variable-length types such as the one above is a flexible array
member[2] which need to be the last member of a structure and empty-sized:
struct something {
        int stuff;
        u8 data[];
};
Also, by making use of the mechanism above, we will get a compiler warning
in case the flexible array does not occur last in the structure, which
will help us prevent some kind of undefined behavior bugs from being
unadvertenly introduced[3] to the codebase from now on.
[1] https://github.com/KSPP/linux/issues/21
[2] https://gcc.gnu.org/onlinedocs/gcc/Zero-Length.html
[3] commit 76497732932f ("cxgb3/l2t: Fix undefined behaviour")
Signed-off-by: Gustavo A. R. Silva <[email protected]>
Link: https://lore.kernel.org/r/[email protected]
Signed-off-by: Greg Kroah-Hartman <[email protected]>
Diffstat (limited to 'include/linux/string_helpers.h')
0 files changed, 0 insertions, 0 deletions