From nobody Fri Dec 19 10:41:40 2025 Received: from mail-ed1-f46.google.com (mail-ed1-f46.google.com [209.85.208.46]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CD4541DB548 for ; Wed, 26 Mar 2025 12:08:03 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.208.46 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1742990887; cv=none; b=MzAI/A+qilJvUY3J0uHNJ69lUcymNVnxdmSc0/xKtFTwm2YCEUvW7WyUDTDz4S4SRldt07GpNVll62Yw0oD7ekqfyWbZ9hwTNzYG/T51IxPAwwoe5IwxAL6JgLj47SR4aPBKAt5lWdpsB3wYRcPmDKFMbYFFQX6VHhz7v3bmlvs= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1742990887; c=relaxed/simple; bh=jjnSTG3I90Mn5Ca9Xyv++q9P6Z4yvrzjERBIMNIYWYg=; h=From:Date:Subject:MIME-Version:Content-Type:Message-Id:To:Cc; b=DppvbJZWIwbWz1xi0zxxFHlt9PC3E0uTPagM1EBZT+NOopyMzRVXa6FaPbdzrEQE0kLjahtrEBhvL/IqmCiadXggt3dk1iHK+l26WUybOaa34bfS+awtf/KxvahwX6Sq23Z2ADEo8KRcp/xYKztuxDUwwchWj7STIUAl6nmDF0U= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linaro.org; spf=pass smtp.mailfrom=linaro.org; dkim=pass (2048-bit key) header.d=linaro.org header.i=@linaro.org header.b=b7mlnSxa; arc=none smtp.client-ip=209.85.208.46 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=linaro.org Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=linaro.org Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=linaro.org header.i=@linaro.org header.b="b7mlnSxa" Received: by mail-ed1-f46.google.com with SMTP id 4fb4d7f45d1cf-5e5cd420781so12160847a12.2 for ; Wed, 26 Mar 2025 05:08:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1742990882; x=1743595682; darn=vger.kernel.org; h=cc:to:message-id:content-transfer-encoding:mime-version:subject :date:from:from:to:cc:subject:date:message-id:reply-to; bh=6EOvw4ltGt39X6cSYI+P/xxRhDM+qmj120OFm+7gNRo=; b=b7mlnSxacG68Yn+Zs3UdGrkbG3EXspdbFsoFxpILRuE109HxFjaaUvjlDsZAPvZpxL 9yPtCF7AITdD3DEwz/V08f+7QVex/xwXrbN7mf5yIQRz2ILabI+EFPJ7ZXw+++XQpzVw x0j4jVH4jxQQH0JwvRNf+NBEwvPd/hmGVNKs7NAjrgPNgjiGFOQf/FLpIb2GBl6wwbru e+yEzpPdjaprSk8pYbGFAv84sAPlO1w3zplKw9RKD/UGQFoN6TtNWlEevvFBobitftDU WcYW/O7/kmT9qr52UQvHyc2ELtssW7XNZCBSWTbFWkTm8K+Kc8i53BBZjyDsNBiEzlcp g1JQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1742990882; x=1743595682; h=cc:to:message-id:content-transfer-encoding:mime-version:subject :date:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=6EOvw4ltGt39X6cSYI+P/xxRhDM+qmj120OFm+7gNRo=; b=NdGDTmqUe2R3csDdiS4JegoA5bP6yqqOaVwdhk17y6K0Fub7hoItyI6Piw/ON/1+UD gLaD+jWiULbnifPctX9ECSN5dKxaPtyqgaaJBwiqwCeXajpqaQfu4iUSFKBedYTZ6uEL xIPIoP3yxbnqYZzVtMDCZcmirAWZ6D63MNaE/UcyYNnfljiYIRObccDdFGoeDtlH6NcI U6Uj3cAfv1Mn91w3cCMsGJOwqJZ7Q6SBQcFZCb4C4LpCZUMg0/XHjw4UDl893oCZjGIC 0AWOifjPvbBxuYaNs4An9B7TOISDxTawihnDh6ZUfubNylnW5wUTz0hQ/Vvgn/APo/xS Ibvg== X-Gm-Message-State: AOJu0YywZq8N4ZxAtOBI3+kxprY35P754uJFWN53Xerh1Ho//q3qzu8n 4F+cn9EUVsh1yngLz3MNNoWWGaXUNc+DRypAECqFU1CkyxOt+n1ThyolbL47eLM= X-Gm-Gg: ASbGncu/eS4VBP3/u0M6M+AvhEQM+KXQnbaC4meeXbwMR+K/zWaBb6UxaCmtEsgizMo CvRIeBvG46yIoQYinEgKfp9wsxGXP1SkgA0C09Tp52fU5SKSllXQwNIz8xZbE8aED0okifVu5gq slxGf6gANTHDBvGDfAtfitktXpxU8y2N9M+K2lBfRt0hwIM8knwSngltlCUZ2fOlwtEXgZr+bU6 18jt2vlmo0jR2PfPQT/u2eYg0lGqfliGYObmAJzv1GRD86FWMuv2R+CuTrV3yLKJzJs5xzqG/X5 GVD/MnFgWBQCIBOD0YvoBNSlXC4NsQ5IGLcTXsmmXyYo4MVTXOvgbDeDF93Aa7mflCvnRVIUp1z to6m91IeUNE9i3iYrdLryIDFmttuxQXfQ60tM9Z8= X-Google-Smtp-Source: AGHT+IFpDQ47OkR0lnhRuhDWvB2zczsji7a4MYoKTE4Oj7Ls7vmFXhE9PL8k1vAEh0QTa7oPWlII7w== X-Received: by 2002:a17:907:9694:b0:ac4:5ff:cef6 with SMTP id a640c23a62f3a-ac405ffd0f5mr1438770566b.31.1742990881985; Wed, 26 Mar 2025 05:08:01 -0700 (PDT) Received: from puffmais.c.googlers.com (8.239.204.35.bc.googleusercontent.com. [35.204.239.8]) by smtp.gmail.com with ESMTPSA id a640c23a62f3a-ac6ef561e4csm59334466b.119.2025.03.26.05.08.01 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 26 Mar 2025 05:08:01 -0700 (PDT) From: =?utf-8?q?Andr=C3=A9_Draszik?= Date: Wed, 26 Mar 2025 12:08:00 +0000 Subject: [PATCH] clk: s2mps11: initialise clk_hw_onecell_data::num before accessing ::hws[] in probe() Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Message-Id: <20250326-s2mps11-ubsan-v1-1-fcc6fce5c8a9@linaro.org> X-B4-Tracking: v=1; b=H4sIACDu42cC/6tWKk4tykwtVrJSqFYqSi3LLM7MzwNyDHUUlJIzE vPSU3UzU4B8JSMDI1MDYyMz3WKj3IJiQ0Pd0qTixDzdZEsDS3OLVPOkZAMTJaCegqLUtMwKsHn RsbW1AHqshmBfAAAA X-Change-ID: 20250326-s2mps11-ubsan-c90978e7bc04 To: Krzysztof Kozlowski , Michael Turquette , Stephen Boyd , Kees Cook , "Gustavo A. R. Silva" Cc: linux-kernel@vger.kernel.org, linux-samsung-soc@vger.kernel.org, linux-clk@vger.kernel.org, linux-hardening@vger.kernel.org, stable@vger.kernel.org, =?utf-8?q?Andr=C3=A9_Draszik?= X-Mailer: b4 0.14.2 With UBSAN enabled, we're getting the following trace: UBSAN: array-index-out-of-bounds in .../drivers/clk/clk-s2mps11.c:186:3 index 0 is out of range for type 'struct clk_hw *[] __counted_by(num)' = (aka 'struct clk_hw *[]') This is because commit f316cdff8d67 ("clk: Annotate struct clk_hw_onecell_data with __counted_by") annotated the hws member of that struct with __counted_by, which informs the bounds sanitizer about the number of elements in hws, so that it can warn when hws is accessed out of bounds. As noted in that change, the __counted_by member must be initialised with the number of elements before the first array access happens, otherwise there will be a warning from each access prior to the initialisation because the number of elements is zero. This occurs in s2mps11_clk_probe() due to ::num being assigned after ::hws access. Move the assignment to satisfy the requirement of assign-before-access. Cc: stable@vger.kernel.org Fixes: f316cdff8d67 ("clk: Annotate struct clk_hw_onecell_data with __count= ed_by") Signed-off-by: Andr=C3=A9 Draszik Reviewed-by: Krzysztof Kozlowski --- drivers/clk/clk-s2mps11.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/drivers/clk/clk-s2mps11.c b/drivers/clk/clk-s2mps11.c index 014db6386624071e173b5b940466301d2596400a..8ddf3a9a53dfd5bb52a05a3e027= 88a357ea77ad3 100644 --- a/drivers/clk/clk-s2mps11.c +++ b/drivers/clk/clk-s2mps11.c @@ -137,6 +137,8 @@ static int s2mps11_clk_probe(struct platform_device *pd= ev) if (!clk_data) return -ENOMEM; =20 + clk_data->num =3D S2MPS11_CLKS_NUM; + switch (hwid) { case S2MPS11X: s2mps11_reg =3D S2MPS11_REG_RTC_CTRL; @@ -186,7 +188,6 @@ static int s2mps11_clk_probe(struct platform_device *pd= ev) clk_data->hws[i] =3D &s2mps11_clks[i].hw; } =20 - clk_data->num =3D S2MPS11_CLKS_NUM; of_clk_add_hw_provider(s2mps11_clks->clk_np, of_clk_hw_onecell_get, clk_data); =20 --- base-commit: 9388ec571cb1adba59d1cded2300eeb11827679c change-id: 20250326-s2mps11-ubsan-c90978e7bc04 Best regards, --=20 Andr=C3=A9 Draszik