From: Nathan Chancellor <nathan@kernel.org>
To: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: accessrunner-general@lists.sourceforge.net,
linux-usb@vger.kernel.org, llvm@lists.linux.dev,
patches@lists.linux.dev, stable@vger.kernel.org
Subject: Re: [PATCH] usb: atm: cxacru: Zero initialize bp in cxacru_heavy_init()
Date: Tue, 15 Jul 2025 22:24:50 -0700 [thread overview]
Message-ID: <20250716052450.GA1892301@ax162> (raw)
In-Reply-To: <2025071618-jester-outing-7fed@gregkh>
On Wed, Jul 16, 2025 at 07:06:50AM +0200, Greg Kroah-Hartman wrote:
> On Tue, Jul 15, 2025 at 01:33:32PM -0700, Nathan Chancellor wrote:
> > After a recent change in clang to expose uninitialized warnings from
> > const variables [1], there is a warning in cxacru_heavy_init():
> >
> > drivers/usb/atm/cxacru.c:1104:6: error: variable 'bp' is used uninitialized whenever 'if' condition is false [-Werror,-Wsometimes-uninitialized]
> > 1104 | if (instance->modem_type->boot_rom_patch) {
> > | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > drivers/usb/atm/cxacru.c:1113:39: note: uninitialized use occurs here
> > 1113 | cxacru_upload_firmware(instance, fw, bp);
> > | ^~
> > drivers/usb/atm/cxacru.c:1104:2: note: remove the 'if' if its condition is always true
> > 1104 | if (instance->modem_type->boot_rom_patch) {
> > | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > drivers/usb/atm/cxacru.c:1095:32: note: initialize the variable 'bp' to silence this warning
> > 1095 | const struct firmware *fw, *bp;
> > | ^
> > | = NULL
> >
> > This warning occurs in clang's frontend before inlining occurs, so it
> > cannot notice that bp is only used within cxacru_upload_firmware() under
> > the same condition that initializes it in cxacru_heavy_init(). Just
> > initialize bp to NULL to silence the warning without functionally
> > changing the code, which is what happens with modern compilers when they
> > support '-ftrivial-auto-var-init=zero' (CONFIG_INIT_STACK_ALL_ZERO=y).
>
> We generally do not want to paper over compiler bugs, when our code is
> correct, so why should we do that here? Why not fix clang instead?
I would not really call this a compiler bug. It IS passed uninitialized
to this function and while the uninitialized value is not actually used,
clang has no way of knowing that at this point in its pipeline, so I
don't think warning in this case is unreasonable. This type of warning
is off for GCC because of how unreliable it was when it is done in the
middle end with optimizations. Furthermore, it is my understanding based
on [1] that just the passing of an uninitialized variable in this manner
is UB.
[1]: https://lore.kernel.org/20220614214039.GA25951@gate.crashing.org/
Cheers,
Nathan
next prev parent reply other threads:[~2025-07-16 5:24 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-15 20:33 [PATCH] usb: atm: cxacru: Zero initialize bp in cxacru_heavy_init() Nathan Chancellor
2025-07-16 5:06 ` Greg Kroah-Hartman
2025-07-16 5:24 ` Nathan Chancellor [this message]
2025-07-16 7:45 ` Greg Kroah-Hartman
2025-07-16 8:00 ` Greg Kroah-Hartman
2025-07-16 15:43 ` Nathan Chancellor
2025-07-16 16:08 ` Greg Kroah-Hartman
2025-07-16 17:29 ` Nathan Chancellor
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250716052450.GA1892301@ax162 \
--to=nathan@kernel.org \
--cc=accessrunner-general@lists.sourceforge.net \
--cc=gregkh@linuxfoundation.org \
--cc=linux-usb@vger.kernel.org \
--cc=llvm@lists.linux.dev \
--cc=patches@lists.linux.dev \
--cc=stable@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).