projects / openwrt / staging / blogic.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d93fa1b) | patch
drm/i915/query: Protect tainted function pointer lookup
authorChris Wilson <[email protected]>
Mon, 21 May 2018 21:05:30 +0000 (22:05 +0100)
committerChris Wilson <[email protected]>
Tue, 22 May 2018 09:47:07 +0000 (10:47 +0100)
commit84b510e22da7926522a257cfe295d3695346a0bd
tree2727b27a6fe7db45f7d973f340d09d42d52ed305tree | snapshot
parentd93fa1b47b8fcd149b5091f18385304f402a8e15commit | diff
drm/i915/query: Protect tainted function pointer lookup

Smatch identifies i915_query_ioctl() as being a potential victim of
Spectre due to its use of a tainted user index into a function pointer
array. Use array_index_nospec() to defang the user index before using it
to lookup the function pointer.

Fixes: a446ae2c6e65 ("drm/i915: add query uAPI")
Signed-off-by: Chris Wilson <[email protected]>
Cc: Lionel Landwerlin <[email protected]>
Cc: Joonas Lahtinen <[email protected]>
Cc: Tvrtko Ursulin <[email protected]>
Reviewed-by: Lionel Landwerlin <[email protected]>
Link: https://patchwork.freedesktop.org/patch/msgid/[email protected]
drivers/gpu/drm/i915/i915_query.c diff | blob | history
John Crispins staging tree