Commit cc34c669 authored by Thorsten Blum's avatar Thorsten Blum Committed by Kees Cook
Browse files

ecryptfs: Annotate struct ecryptfs_message with __counted_by 



Add the __counted_by() compiler attribute to the flexible array member
'data' to improve access bounds-checking via CONFIG_UBSAN_BOUNDS and
CONFIG_FORTIFY_SOURCE.

Signed-off-by: default avatarThorsten Blum <thorsten.blum@linux.dev>
Acked-by: default avatarTyler Hicks <code@tyhicks.com>
Link: https://patch.msgid.link/20260112115314.739612-2-thorsten.blum@linux.dev


Signed-off-by: default avatarKees Cook <kees@kernel.org>
parent 7583873c

fs/ecryptfs/ecryptfs_kernel.h

+1 −1
Original line number Diff line number Diff line
@@ -359,7 +359,7 @@ struct ecryptfs_message { 
	/* Inherits from msg_ctx->index */

	u32 index;

	u32 data_len;

	u8 data[];

	u8 data[] __counted_by(data_len);

};



struct ecryptfs_msg_ctx {