Re: [PATCH v1 3/6] virtio 9p: Fix an overflow
From: Alexander Shishkin
Date: Fri Jan 20 2023 - 11:37:42 EST
"Michael S. Tsirkin" <mst@xxxxxxxxxx> writes:
> On Thu, Jan 19, 2023 at 03:57:18PM +0200, Alexander Shishkin wrote:
>> From: Andi Kleen <ak@xxxxxxxxxxxxxxx>
>>
>> diff --git a/net/9p/trans_virtio.c b/net/9p/trans_virtio.c
>> index 3c27ffb781e3..a78e4d80e5ba 100644
>> --- a/net/9p/trans_virtio.c
>> +++ b/net/9p/trans_virtio.c
>> @@ -629,7 +629,7 @@ static int p9_virtio_probe(struct virtio_device *vdev)
>> err = -EINVAL;
>> goto out_free_vq;
>> }
>> - tag = kzalloc(tag_len + 1, GFP_KERNEL);
>> + tag = kzalloc((u32)tag_len + 1, GFP_KERNEL);
>> if (!tag) {
>> err = -ENOMEM;
>> goto out_free_vq;
>
> Hmm are you sure there's a difference in behaviour? I thought C will just
> extend the integer to int.
Actually, you're right, integer promotion would extend the original
expression to int. I'll drop this patch also.
Thanks,
--
Alex