Re: [PATCH] staging: gs_fpgaboot: add buffer overflow checks

From: Dan Carpenter
Date: Tue Jul 18 2017 - 03:55:11 EST

Next message: Arvind Yadav: "[PATCH v3] staging: unisys: visorbus: Constify attribute_group structures."
Previous message: gabriel.fernandez: "[PATCH v6 3/3] clk: stm32h7: Add stm32h743 clock driver"
In reply to: Jacob von Chorus: "Re: [PATCH] staging: gs_fpgaboot: add buffer overflow checks"
Next in thread: Jacob von Chorus: "[PATCH] staging: gs_fpgaboot: add buffer overflow checks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jul 17, 2017 at 08:21:20PM -0400, Jacob von Chorus wrote:
> On Mon, Jul 17, 2017 at 10:53:25PM +0300, Dan Carpenter wrote:
> > > + if (len + 1 > n) {
> >
> > It's more idiomatic to say "if (len >= n)". Plus that's a good habbit
>
> My reasoning behind using "((len + 1) > n)" is that len represents the length of
> the string without null-termination. "buf" is required to store a
> null-terminator on top of len. Using "len + 1" shows this requirement
> more clearly; I will add brackets around "len + 1" for emphasis.
>

Don't get into the habbit of saying len + 1 because you will end up
introducing integer overflows. Also don't add useless parenthesis.
Everyone who programs in C is used to NUL terminators, so it's not a new
concept which has to be explained.

regards,
dan carpenter

Next message: Arvind Yadav: "[PATCH v3] staging: unisys: visorbus: Constify attribute_group structures."
Previous message: gabriel.fernandez: "[PATCH v6 3/3] clk: stm32h7: Add stm32h743 clock driver"
In reply to: Jacob von Chorus: "Re: [PATCH] staging: gs_fpgaboot: add buffer overflow checks"
Next in thread: Jacob von Chorus: "[PATCH] staging: gs_fpgaboot: add buffer overflow checks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]