summaryrefslogtreecommitdiff
path: root/crypto/shash.c
diff options
context:
space:
mode:
authorEric Biggers <ebiggers@google.com>2016-08-19 22:15:22 +0300
committerKees Cook <keescook@chromium.org>2016-08-23 05:07:55 +0300
commit7329a655875a2f4bd6984fe8a7e00a6981e802f3 (patch)
tree5c77614be62600da9d02d3b57709280e91e7292d /crypto/shash.c
parentef0e1ea8856bed6ff8394d3dfe77f2cab487ecea (diff)
downloadlinux-7329a655875a2f4bd6984fe8a7e00a6981e802f3.tar.xz
usercopy: avoid potentially undefined behavior in pointer math
check_bogus_address() checked for pointer overflow using this expression, where 'ptr' has type 'const void *': ptr + n < ptr Since pointer wraparound is undefined behavior, gcc at -O2 by default treats it like the following, which would not behave as intended: (long)n < 0 Fortunately, this doesn't currently happen for kernel code because kernel code is compiled with -fno-strict-overflow. But the expression should be fixed anyway to use well-defined integer arithmetic, since it could be treated differently by different compilers in the future or could be reported by tools checking for undefined behavior. Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Kees Cook <keescook@chromium.org>
Diffstat (limited to 'crypto/shash.c')
0 files changed, 0 insertions, 0 deletions