Skip to content

Commit

Permalink
Add Coverity-only check to avoid false positive overflow (CID 1604621)
Browse files Browse the repository at this point in the history 
Coverity doesn't know at this point that fr_high_bit_pos() will
necessarily return a value between 5 and 64, so that ret will
have a value in {1, 2, ..., 8}, NOT 2305843009213693952. We add
a check only coverity will see to convince it there is no overflow.
  • Loading branch information
@jejones3141 @arr2036
jejones3141 authored and arr2036 committed Sep 10, 2024
1 parent a314517 commit 44dbade
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions src/lib/util/nbo.h
View file
Original file line number Diff line number Diff line change
Expand Up @@ -121,6 +121,13 @@ static inline size_t fr_nbo_from_uint64v(uint8_t out[static sizeof(uint64_t)], u
uint8_t swapped[sizeof(uint64_t)];

ret = ROUND_UP_DIV((size_t)fr_high_bit_pos(num | 0x80), 8);
#ifdef __COVERITY__
/*
* Coverity doesn't realize that ret is necessarily <= 8,
* so we give it a hint.
*/
if (ret > 8) return 0;
#endif

fr_nbo_from_uint64(swapped, num);
memcpy(out, (swapped + (sizeof(uint64_t) - ret)), ret); /* aligned */
Expand Down

0 comments on commit 44dbade

Please sign in to comment.