From mboxrd@z Thu Jan  1 00:00:00 1970
From: Ville =?iso-8859-1?Q?Syrj=E4l=E4?= <ville.syrjala@linux.intel.com>
Subject: Re: [PATCH 2/3] drm/i915/sdvo: Robustify the
 dtd<->drm_mode conversions
Date: Tue, 10 Sep 2013 15:44:34 +0300
Message-ID: <20130910124434.GN11428@intel.com>
References: <1378807612-18399-1-git-send-email-daniel.vetter@ffwll.ch>
	<1378807612-18399-2-git-send-email-daniel.vetter@ffwll.ch>
	<20130910102620.GL11428@intel.com>
	<CAKMK7uHfgPYOXX4c0t20izki1L=nfAVQ1ErwrEqvRu-04ZKz-w@mail.gmail.com>
	<20130910110027.GM11428@intel.com>
	<CAKMK7uG2Vfex5Y645eKVbxJLBd4ZnFWQo7YunG6f+kmwnPUYVA@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Return-path: <intel-gfx-bounces+gcfxdi-intel-gfx=m.gmane.org@lists.freedesktop.org>
Received: from mga14.intel.com (mga14.intel.com [143.182.124.37])
	by gabe.freedesktop.org (Postfix) with ESMTP id 1A533E662F
	for <intel-gfx@lists.freedesktop.org>;
	Tue, 10 Sep 2013 05:44:39 -0700 (PDT)
Content-Disposition: inline
In-Reply-To: <CAKMK7uG2Vfex5Y645eKVbxJLBd4ZnFWQo7YunG6f+kmwnPUYVA@mail.gmail.com>
List-Unsubscribe: <http://lists.freedesktop.org/mailman/options/intel-gfx>,
	<mailto:intel-gfx-request@lists.freedesktop.org?subject=unsubscribe>
List-Archive: <http://lists.freedesktop.org/archives/intel-gfx>
List-Post: <mailto:intel-gfx@lists.freedesktop.org>
List-Help: <mailto:intel-gfx-request@lists.freedesktop.org?subject=help>
List-Subscribe: <http://lists.freedesktop.org/mailman/listinfo/intel-gfx>,
	<mailto:intel-gfx-request@lists.freedesktop.org?subject=subscribe>
Sender: intel-gfx-bounces+gcfxdi-intel-gfx=m.gmane.org@lists.freedesktop.org
Errors-To: intel-gfx-bounces+gcfxdi-intel-gfx=m.gmane.org@lists.freedesktop.org
To: Daniel Vetter <daniel.vetter@ffwll.ch>
Cc: Intel Graphics Development <intel-gfx@lists.freedesktop.org>
List-Id: intel-gfx@lists.freedesktop.org

On Tue, Sep 10, 2013 at 02:26:10PM +0200, Daniel Vetter wrote:
> On Tue, Sep 10, 2013 at 1:00 PM, Ville Syrj=E4l=E4
> <ville.syrjala@linux.intel.com> wrote:
> > On Tue, Sep 10, 2013 at 12:50:25PM +0200, Daniel Vetter wrote:
> >> On Tue, Sep 10, 2013 at 12:26 PM, Ville Syrj=E4l=E4
> >> <ville.syrjala@linux.intel.com> wrote:
> >> >>  static void intel_sdvo_get_mode_from_dtd(struct drm_display_mode *=
 mode,
> >> >>                                        const struct intel_sdvo_dtd =
*dtd)
> >> >>  {
> >> >> +     memset(mode, 0, sizeof(*mode));
> >> >
> >> > I have a theoretical worry that someone might end up calling this on=
 a
> >> > mode that sits on some list or was actually allocated and has a prop=
er
> >> > object id which we'd leak here.
> >> >
> >> > To make it totally safe you could populate a pristine mode struct and
> >> > use drm_mode_copy() to overwrite adjusted_mode. Assuming we're not so
> >> > short on stack space that our oversized mode struct would cause issu=
es.
> >> > Other options would be to add some WARNs to catch wrongdoers, or emb=
ed
> >> > a temp mode for this purpose inside the intel_sdvo struct.
> >>
> >> We can't really check for this since list_empty on stack garbage won't
> >> work too well, either. And e.g. ->get_config has the pipe config on
> >> the stack. So I think we just need to do review here. I also think the
> >> risk is pretty low, this is all used in internal structures around
> >> pipe_config, where the mode is never linked.
> >
> > Well, another idea would be to add drm_mode_clear() what would do the
> > memset() but preserve the id and list head.
> =

> At least for the adjusted mode embedded into the pipe config that
> won't work either since we want to memset the entire thing to not miss
> any fields ...

drm_mode_clear() would skip only the obj id and list head just like
drm_mode_copy().

Also isn't the pipe config supposed to be entirely zeroed to start
with anyway? And we already use drm_mode_copy() to fill the initial
values for adjusted_mode. drm_mode_clear() would overwrite exactly
the same fields as drm_mode_copy() filled in.

-- =

Ville Syrj=E4l=E4
Intel OTC