bpf: btf: Check array t->size This patch ensures array's t->size is 0. The array size is decided by its individual elem's size and the number of elements. Hence, t->size is not used and it must be 0. A test case is added to test_btf.c Signed-off-by: Martin KaFai Lau <kafai@fb.com> Signed-off-by: Alexei Starovoitov <ast@kernel.org>

commit: b9308ae696b2c35e862636eec631d95ff958c33d [log] [tgz]
author: Martin KaFai Lau <kafai@fb.com> Sat Jun 02 09:06:50 2018 -0700
committer: Alexei Starovoitov <ast@kernel.org> Sat Jun 02 11:22:36 2018 -0700
tree: e6ec045510d123dbb9f6e1502e4c5aa809e88f6e
parent: b4b21a05b8fe7288087691e993c913a41fd6eb4b [diff] [blame]
diff --git a/kernel/bpf/btf.c b/kernel/bpf/btf.c
index 3d20aa1..84ad532f 100644
--- a/kernel/bpf/btf.c
+++ b/kernel/bpf/btf.c

@@ -1342,6 +1342,11 @@ static s32 btf_array_check_meta(struct btf_verifier_env *env,
 		return -EINVAL;
 	}
 
+	if (t->size) {
+		btf_verifier_log_type(env, t, "size != 0");
+		return -EINVAL;
+	}
+
 	/* Array elem type and index type cannot be in type void,
 	 * so !array->type and !array->index_type are not allowed.
 	 */
commit	b9308ae696b2c35e862636eec631d95ff958c33d	[log] [tgz]
author	Martin KaFai Lau <kafai@fb.com>	Sat Jun 02 09:06:50 2018 -0700
committer	Alexei Starovoitov <ast@kernel.org>	Sat Jun 02 11:22:36 2018 -0700
tree	e6ec045510d123dbb9f6e1502e4c5aa809e88f6e
parent	b4b21a05b8fe7288087691e993c913a41fd6eb4b [diff] [blame]