Re: [PATCH v1 3/6] virtio 9p: Fix an overflow

From: Alexander Shishkin
Date: Fri Jan 20 2023 - 11:37:42 EST

Next message: Alexandre Belloni: "Re: [PATCH v3 09/14] rtc: pcf2127: set PWRMNG value for PCF2131"
Previous message: Mark Brown: "Re: [PATCH] regulator: dt-bindings: fixed-regulator: allow gpios property"
In reply to: Michael S. Tsirkin: "Re: [PATCH v1 3/6] virtio 9p: Fix an overflow"
Next in thread: Alexander Shishkin: "[PATCH v1 5/6] virtio_net: Guard against buffer length overflow in xdp_linearize_page()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Michael S. Tsirkin" <mst@xxxxxxxxxx> writes:

> On Thu, Jan 19, 2023 at 03:57:18PM +0200, Alexander Shishkin wrote:
>> From: Andi Kleen <ak@xxxxxxxxxxxxxxx>
>>
>> diff --git a/net/9p/trans_virtio.c b/net/9p/trans_virtio.c
>> index 3c27ffb781e3..a78e4d80e5ba 100644
>> --- a/net/9p/trans_virtio.c
>> +++ b/net/9p/trans_virtio.c
>> @@ -629,7 +629,7 @@ static int p9_virtio_probe(struct virtio_device *vdev)
>> err = -EINVAL;
>> goto out_free_vq;
>> }
>> - tag = kzalloc(tag_len + 1, GFP_KERNEL);
>> + tag = kzalloc((u32)tag_len + 1, GFP_KERNEL);
>> if (!tag) {
>> err = -ENOMEM;
>> goto out_free_vq;
>
> Hmm are you sure there's a difference in behaviour? I thought C will just
> extend the integer to int.

Actually, you're right, integer promotion would extend the original
expression to int. I'll drop this patch also.

Thanks,
--
Alex

Next message: Alexandre Belloni: "Re: [PATCH v3 09/14] rtc: pcf2127: set PWRMNG value for PCF2131"
Previous message: Mark Brown: "Re: [PATCH] regulator: dt-bindings: fixed-regulator: allow gpios property"
In reply to: Michael S. Tsirkin: "Re: [PATCH v1 3/6] virtio 9p: Fix an overflow"
Next in thread: Alexander Shishkin: "[PATCH v1 5/6] virtio_net: Guard against buffer length overflow in xdp_linearize_page()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]