drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc

[ Upstream commit 88a9a467c548d0b3c7761b4fd54a68e70f9c0944 ]

Initialize the size before calling amdgpu_vce_cs_reloc, such as case 0x03000001.
V2: To really improve the handling we would actually
   need to have a separate value of 0xffffffff.(Christian)

Signed-off-by: Jesse Zhang <jesse.zhang@amd.com>
Suggested-by: Christian König <christian.koenig@amd.com>
Reviewed-by: Christian König <christian.koenig@amd.com>
Signed-off-by: Alex Deucher <alexander.deucher@amd.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>

diff --git a/drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c b/drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c
index 59acf424a078f0eb5e0182ed5dc082d86d4421a1..968ca2c84ef7e52dc39d0c74acd4e86e4cb95f72 100644 (file)
--- a/drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c
+++ b/drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c
@@ -743,7 +743,8 @@ int amdgpu_vce_ring_parse_cs(struct amdgpu_cs_parser *p,
        uint32_t created = 0;
        uint32_t allocated = 0;
        uint32_t tmp, handle = 0;
-       uint32_t *size = &tmp;
+       uint32_t dummy = 0xffffffff;
+       uint32_t *size = &dummy;
        unsigned int idx;
        int i, r = 0;