From: Pablo Neira Ayuso <pablo@netfilter.org>
To: Thomas Haller <thaller@redhat.com>
Cc: NetFilter <netfilter-devel@vger.kernel.org>
Subject: Re: [PATCH nft 3/3] netlink_linearize: avoid strict-overflow warning in netlink_gen_bitwise()
Date: Wed, 27 Sep 2023 19:14:03 +0200 [thread overview]
Message-ID: <ZRRi2wA7dlqu6TO8@calendula> (raw)
In-Reply-To: <5abe71186c7dd1b78b58fcca9a3920deccad16fc.camel@redhat.com>
On Wed, Sep 27, 2023 at 07:06:26PM +0200, Thomas Haller wrote:
> On Wed, 2023-09-27 at 14:23 +0200, Thomas Haller wrote:
> > With gcc-13.2.1-1.fc38.x86_64:
> >
> > $ gcc -Iinclude -c -o tmp.o src/netlink_linearize.c -Werror -
> > Wstrict-overflow=5 -O3
> > src/netlink_linearize.c: In function ‘netlink_gen_bitwise’:
> > src/netlink_linearize.c:1790:1: error: assuming signed overflow
> > does not occur when changing X +- C1 cmp C2 to X cmp C2 -+ C1 [-
> > Werror=strict-overflow]
> > 1790 | }
> > | ^
> > cc1: all warnings being treated as errors
> >
> > It also makes more sense this way, where "n" is the hight of the
> > "binops" stack, and we check for a non-empty stack with "n > 0" and
> > pop
> > the last element with "binops[--n]".
> >
> > Signed-off-by: Thomas Haller <thaller@redhat.com>
> > ---
> > src/netlink_linearize.c | 7 +++----
> > 1 file changed, 3 insertions(+), 4 deletions(-)
> >
> > diff --git a/src/netlink_linearize.c b/src/netlink_linearize.c
> > index c91211582b3d..f2514b012a9d 100644
> > --- a/src/netlink_linearize.c
> > +++ b/src/netlink_linearize.c
> > @@ -712,14 +712,13 @@ static void netlink_gen_bitwise(struct
> > netlink_linearize_ctx *ctx,
> > while (left->etype == EXPR_BINOP && left->left != NULL &&
> > (left->op == OP_AND || left->op == OP_OR || left->op
> > == OP_XOR))
> > binops[n++] = left = left->left;
>
> I wanted to ask, what ensures that binops buffer does not overflow?
This is stacking binops, then popping them out one by one to generate
code IIRC.
binops has 16 positions, if you manage to generate a large expression
with lots of bitwise, probably you can hit the buffer overflow.
Go explore :)
prev parent reply other threads:[~2023-09-27 17:14 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-09-27 12:23 [PATCH nft 0/3] Two fixes to avoid "-Wstrict-overflow" warnings Thomas Haller
2023-09-27 12:23 ` [PATCH nft 1/3] nft: add NFT_ARRAY_SIZE() helper Thomas Haller
2023-09-27 14:24 ` Thomas Haller
2023-09-27 14:28 ` Pablo Neira Ayuso
2023-09-27 12:23 ` [PATCH nft 2/3] nfnl_osf: rework nf_osf_parse_opt() and avoid "-Wstrict-overflow" warning Thomas Haller
2023-09-27 16:42 ` Pablo Neira Ayuso
2023-09-27 17:04 ` Thomas Haller
2023-09-27 17:11 ` Pablo Neira Ayuso
2023-09-27 17:50 ` Thomas Haller
2023-09-27 19:16 ` Pablo Neira Ayuso
2023-09-27 20:11 ` Thomas Haller
2023-09-27 20:21 ` Pablo Neira Ayuso
2023-09-27 12:23 ` [PATCH nft 3/3] netlink_linearize: avoid strict-overflow warning in netlink_gen_bitwise() Thomas Haller
2023-09-27 17:06 ` Thomas Haller
2023-09-27 17:14 ` Pablo Neira Ayuso [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZRRi2wA7dlqu6TO8@calendula \
--to=pablo@netfilter.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=thaller@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).