Re: [RFC] saturate check_*_overflow() output?

From: Matthew Wilcox
Date: Tue Aug 04 2020 - 18:45:53 EST

Next message: syzbot: "INFO: task can't die in pipe_release"
Previous message: Stephen Rothwell: "linux-next: Signed-off-by missing for commit in the kvm tree"
In reply to: Kees Cook: "Re: [RFC] saturate check_*_overflow() output?"
Next in thread: Rasmus Villemoes: "Re: [RFC] saturate check_*_overflow() output?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Aug 04, 2020 at 12:23:03PM -0700, Kees Cook wrote:
> > What we might do, to deal with the "caller fails to check the result",
> > is to add a
> >
> > static inline bool __must_check must_check_overflow(bool b) { return
> > unlikely(b); }
> >
> > and wrap all the final "did it overflow" results in that one - perhaps
> > also for the __builtin_* cases, I don't know if those are automatically
> > equipped with that attribute. [I also don't know if gcc propagates
> > likely/unlikely out to the caller, but it shouldn't hurt to have it
> > there and might improve code gen if it does.]
>
> (What is the formal name for the ({ ...; return_value; }) C construct?)

'Statement Exprs'.

A compound statement enclosed in parentheses may appear as an expression
in GNU C. This allows you to use loops, switches, and local variables
within an expression.

Next message: syzbot: "INFO: task can't die in pipe_release"
Previous message: Stephen Rothwell: "linux-next: Signed-off-by missing for commit in the kvm tree"
In reply to: Kees Cook: "Re: [RFC] saturate check_*_overflow() output?"
Next in thread: Rasmus Villemoes: "Re: [RFC] saturate check_*_overflow() output?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]