From: Luiz Capitulino <lcapitulino@redhat.com>
To: peter.maydell@linaro.org
Cc: qemu-devel@nongnu.org
Subject: [Qemu-devel] [PULL 1/7] virtio-balloon: Tweak recent fix for integer overflow
Date: Thu, 23 Oct 2014 11:19:44 -0400 [thread overview]
Message-ID: <1414077590-18036-2-git-send-email-lcapitulino@redhat.com> (raw)
In-Reply-To: <1414077590-18036-1-git-send-email-lcapitulino@redhat.com>
From: Markus Armbruster <armbru@redhat.com>
Commit 1f9296b avoids "other kinds of overflow" by limiting the
polling interval to UINT_MAX. The computations to protect are done in
64 bits. This is indeed safe when unsigned is 32 bits, as it commonly
is. It isn't when unsigned is 64 bits. Purely theoretical; I'm not
aware of such a system. Limit it to UINT32_MAX instead.
Signed-off-by: Markus Armbruster <armbru@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
Signed-off-by: Luiz Capitulino <lcapitulino@redhat.com>
---
hw/virtio/virtio-balloon.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/hw/virtio/virtio-balloon.c b/hw/virtio/virtio-balloon.c
index b5cf7ca..7bfbb75 100644
--- a/hw/virtio/virtio-balloon.c
+++ b/hw/virtio/virtio-balloon.c
@@ -170,7 +170,7 @@ static void balloon_stats_set_poll_interval(Object *obj, struct Visitor *v,
return;
}
- if (value > UINT_MAX) {
+ if (value > UINT32_MAX) {
error_setg(errp, "timer value is too big");
return;
}
--
1.9.3
next prev parent reply other threads:[~2014-10-23 15:20 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-10-23 15:19 [Qemu-devel] [PULL 0/7] QMP queue Luiz Capitulino
2014-10-23 15:19 ` Luiz Capitulino [this message]
2014-10-23 15:19 ` [Qemu-devel] [PULL 2/7] dump: Propagate errors into qmp_dump_guest_memory() Luiz Capitulino
2014-10-23 15:19 ` [Qemu-devel] [PULL 3/7] dump: Turn some functions to void to make code cleaner Luiz Capitulino
2014-10-23 15:19 ` [Qemu-devel] [PULL 4/7] MAINTAINERS: add entry for qobject files Luiz Capitulino
2014-10-23 15:19 ` [Qemu-devel] [PULL 5/7] qdev: add qdev_build_hotpluggable_device_list helper Luiz Capitulino
2014-10-23 15:19 ` [Qemu-devel] [PULL 6/7] monitor: add del completion for peripheral device Luiz Capitulino
2014-10-23 15:19 ` [Qemu-devel] [PULL 7/7] monitor: delete device_del_bus_completion Luiz Capitulino
2014-10-23 18:19 ` [Qemu-devel] [PULL 0/7] QMP queue Peter Maydell
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1414077590-18036-2-git-send-email-lcapitulino@redhat.com \
--to=lcapitulino@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).