diff options
author | Bart Van Assche <bart.vanassche@wdc.com> | 2017-10-11 19:48:45 +0200 |
---|---|---|
committer | Doug Ledford <dledford@redhat.com> | 2017-10-15 02:47:05 +0200 |
commit | c0b64f58e8d49570aa9ee55d880f92c20ff0166b (patch) | |
tree | b1017ce60e242ef0c849e49c21049ba1607e9d86 /security | |
parent | IB/cm: Suppress gcc 7 fall-through complaints (diff) | |
download | linux-c0b64f58e8d49570aa9ee55d880f92c20ff0166b.tar.xz linux-c0b64f58e8d49570aa9ee55d880f92c20ff0166b.zip |
RDMA/cma: Avoid triggering undefined behavior
According to the C standard the behavior of computations with
integer operands is as follows:
* A computation involving unsigned operands can never overflow,
because a result that cannot be represented by the resulting
unsigned integer type is reduced modulo the number that is one
greater than the largest value that can be represented by the
resulting type.
* The behavior for signed integer underflow and overflow is
undefined.
Hence only use unsigned integers when checking for integer
overflow.
This patch is what I came up with after having analyzed the
following smatch warnings:
drivers/infiniband/core/cma.c:3448: cma_resolve_ib_udp() warn: signed overflow undefined. 'offset + conn_param->private_data_len < conn_param->private_data_len'
drivers/infiniband/core/cma.c:3505: cma_connect_ib() warn: signed overflow undefined. 'offset + conn_param->private_data_len < conn_param->private_data_len'
Signed-off-by: Bart Van Assche <bart.vanassche@wdc.com>
Acked-by: Sean Hefty <sean.hefty@intel.com>
Signed-off-by: Doug Ledford <dledford@redhat.com>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions