cuda.core: validate IPC descriptor lengths before import (Glasswing V2.1/V7.1)

[Andy-Jost]

Summary

Addresses two related Glasswing IPC import findings: peer-supplied descriptor payloads shorter than the driver struct size could be read past bounds during buffer pointer import or event-handle memcpy.

Changes

• cuda_core/cuda/core/_memory/_ipc.pyx: reject IPCBufferDescriptor payloads smaller than sizeof(CUmemPoolPtrExportData) before deviceptr_import_ipc (V2.1)
• cuda_core/cuda/core/_event.pyx: reject IPCEventDescriptor reserved fields smaller than sizeof(CUipcEventHandle) before memcpy (V7.1)
• cuda_core/tests/memory_ipc/test_errors.py: test_import_truncated_buffer_descriptor
• cuda_core/tests/test_event.py: test_import_truncated_event_descriptor

Test Coverage

• Truncated buffer descriptor raises ValueError before driver import (IPC fixture)
• Truncated event descriptor raises ValueError before memcpy (no GPU required)

Related Work

• NVIDIA/cuda-python-private#360 (Glasswing V2.1, NVBugs 6268888)
• NVIDIA/cuda-python-private#364 (Glasswing V7.1, NVBugs 6268898)
• Part of Glasswing audit umbrella NVIDIA/cuda-python-private#358
• Related: Q about CUDA API:cudaHostAlloc #373 (pickle → IPC) defers hard length validation to V2.1

[github-actions]

Doc Preview CI
Preview removed because the pull request was closed or merged.