projects / platform / upstream / nodejs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bb88050) | patch
Avoid some undefined pointer arithmetic
authormin7.choi <min7.choi@samsung.com>
Mon, 12 Jun 2017 04:01:20 +0000 (13:01 +0900)
committerjaekuk, lee <juku1999@samsung.com>
Mon, 12 Jun 2017 05:19:40 +0000 (14:19 +0900)
commitf8188fce2c61fef30e15ed2a4884d42755451136
tree6890491f1b91c0142e376e0421d61e97be31613ftree | snapshot
parentbb880502315be469c8b8e6a63652c7c0e163eb79commit | diff
Avoid some undefined pointer arithmetic

A common idiom in the codebase is:

 if (p + len > limit)
 {
     return; /* Too long */
 }

 Where "p" points to some malloc'd data of SIZE bytes and
 limit == p + SIZE

 "len" here could be from some externally supplied data (e.g. from a TLS
 message).

 The rules of C pointer arithmetic are such that "p + len" is only well
 defined where len <= SIZE. Therefore the above idiom is actually
 undefined behaviour.

 For example this could cause problems if some malloc implementation
 provides an address for "p" such that "p + len" actually overflows for
 values of len that are too big and therefore p + len < limit!w

Change-Id: Iafd9f2d3c35eb26b930a45b5a9461cb19f75bcb4
Signed-off-by: min7.choi <min7.choi@samsung.com>
deps/openssl/openssl/ssl/s3_srvr.c diff | blob | history
deps/openssl/openssl/ssl/ssl_sess.c diff | blob | history
deps/openssl/openssl/ssl/t1_lib.c diff | blob | history
Domain: Web Framework / Common;