| Message ID | 20240202150948.42888-1-icmccorm@andrew.cmu.edu |
|---|---|
| State | New |
| Headers | show
Return-Path: <gcc-patches-bounces+incoming=patchwork.ozlabs.org@gcc.gnu.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; dkim=pass (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20230601 header.b=TphzbsQU; dkim-atps=neutral Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=gcc.gnu.org (client-ip=8.43.85.97; helo=server2.sourceware.org; envelope-from=gcc-patches-bounces+incoming=patchwork.ozlabs.org@gcc.gnu.org; receiver=patchwork.ozlabs.org) Received: from server2.sourceware.org (server2.sourceware.org [8.43.85.97]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4TRK3C1sddz23g7 for <incoming@patchwork.ozlabs.org>; Sat, 3 Feb 2024 02:10:47 +1100 (AEDT) Received: from server2.sourceware.org (localhost [IPv6:::1]) by sourceware.org (Postfix) with ESMTP id 326F43857B86 for <incoming@patchwork.ozlabs.org>; Fri, 2 Feb 2024 15:10:45 +0000 (GMT) X-Original-To: gcc-patches@gcc.gnu.org Delivered-To: gcc-patches@gcc.gnu.org Received: from mail-qk1-x72d.google.com (mail-qk1-x72d.google.com [IPv6:2607:f8b0:4864:20::72d]) by sourceware.org (Postfix) with ESMTPS id 1345A3857C4F for <gcc-patches@gcc.gnu.org>; Fri, 2 Feb 2024 15:09:52 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 1345A3857C4F Authentication-Results: sourceware.org; dmarc=pass (p=none dis=none) header.from=gmail.com Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=gmail.com ARC-Filter: OpenARC Filter v1.0.0 sourceware.org 1345A3857C4F Authentication-Results: server2.sourceware.org; arc=none smtp.remote-ip=2607:f8b0:4864:20::72d ARC-Seal: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1706886594; cv=none; b=VZlDdZTxtJIVThls2f5ZHE9QrWXgLzAw4k41/0F/cRtFTbfvEOeznzBGpoS5euuMwQZNZwSX5SeD5bcn2Dyo67lwb3DUbnF7GKqOLsmsSq33K/DvVS+0jLezkHdBIHsqTO1rFUs/tP3hMJNiUPrsWuAF0Oue1sO/i+E4P4UHGK0= ARC-Message-Signature: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1706886594; c=relaxed/simple; bh=motN9Dpa/QZJH7jetMT8pLGroUHklXBkPvg9tFSastk=; h=DKIM-Signature:From:To:Subject:Date:Message-Id:MIME-Version; b=mI00rwS1MT4xmbSshdY/uRskLwbZ+C3O6tPUMVaRQSps2GXpvn90Eqc7ac3wXv8q1fKmk++R3rLbQsXCdT0CWfhZJAYc9/Wa9KcNhW/NH3cYc/XaBcfR6QCPdf/koxsIPJfMsqZ85rNaHkWWk3O3fGj8McA8KZM6uru9GOFzMAg= ARC-Authentication-Results: i=1; server2.sourceware.org Received: by mail-qk1-x72d.google.com with SMTP id af79cd13be357-7810827e54eso141338285a.2 for <gcc-patches@gcc.gnu.org>; Fri, 02 Feb 2024 07:09:52 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1706886590; x=1707491390; darn=gcc.gnu.org; h=content-transfer-encoding:mime-version:message-id:date:subject:to :from:from:to:cc:subject:date:message-id:reply-to; bh=Fd4rr/GakPE5pOsm6Oy4Vh3t59xuXHN/FZzm30BNmcQ=; b=TphzbsQU1m3vqE9KVjtrGTwzV1EH+w5dypJPa+JSaZ3pB8oG0tW2H2lD6HendWUisb Y+Lf9rmOp442MEtPIaaXnMWhQDQFeRCV1iwBcbnwRV6SnhMwm9QFsY+sOQdmLwAQREFu dzaTZGhOVp6iAPhGFEZZkTfzTMZNRjLmkXy7UG420tS3EKs0UzYsIT3AH1mX3vYPLFI8 SPny8x8kqJzcDXeG1Viho4u6HSCwNiQMrDJZGdFW4Y2cxFrHjPFHe7oO0KgwwuvekMOO lssPq60n4oF87Hq3Hd3fvqCr9A76iuLtEsArM5IKAO/hFwSkH4OcBtL88coEh7CLEnUl PkbA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706886590; x=1707491390; h=content-transfer-encoding:mime-version:message-id:date:subject:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=Fd4rr/GakPE5pOsm6Oy4Vh3t59xuXHN/FZzm30BNmcQ=; b=efFl7JFrVjIPZkBYEkYMOb12e2XiR4SsQ+LU7Qz7ca+t7L5hrzgXHkWz8gCHGAE3o1 0m0zstkK2ezz3/jYir5AerQWRgV2fwsJT846hWOFqqt4tXdG3Xva7OAz3OwS5nF+aNnj iz2iijx329AwFqewWzGQZaTL6Gm6WsBcgWBQ8FjzJZOnkSKKcZaDA9iuL4/frRUCGcqY /NCMnuW8yFJ+52dHQjKi4K3EDOF1IT3BJAipfNtRIqVq+nMnb5wdUHe9oshV1YREP2sJ Utkv2XfOA7tPK+CTr4CuONbWHas38JNP1etcljb6SJpmNNBwU32x6ZVqasubuWvTB1Vk 3wgQ== X-Gm-Message-State: AOJu0YyIymBoxZyJ9VRkUuLUMI4GRgs8MYuG0wpE4dfjEuw9QvFJrpOl X6BMowvn/MKAFEbc+2yZhK9Bb9/hky4h6jtI7qYUhhA0LRR63xYxayBvOvGP X-Google-Smtp-Source: AGHT+IEe86EQirs5N3Ylm1uh8hUI3ZZjhzp7mNBC8LeHoZtc5x7+upIGbisEkNwtijwaTRjttvunbw== X-Received: by 2002:a05:620a:1226:b0:784:8c3:3503 with SMTP id v6-20020a05620a122600b0078408c33503mr2521994qkj.30.1706886590650; Fri, 02 Feb 2024 07:09:50 -0800 (PST) Received: from GS21625.alias.cs.cmu.edu ([96.94.98.213]) by smtp.gmail.com with ESMTPSA id z7-20020a05620a100700b00783749b0d2fsm745433qkj.94.2024.02.02.07.09.50 for <gcc-patches@gcc.gnu.org> (version=TLS1_3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256/256); Fri, 02 Feb 2024 07:09:50 -0800 (PST) From: Ian McCormack <icmccorm@gmail.com> X-Google-Original-From: Ian McCormack <icmccorm@andrew.cmu.edu> To: gcc-patches@gcc.gnu.org Subject: [PATCH 2/2] libdecnumber: fixed undefined behavior in decNumberGetBCD. Date: Fri, 2 Feb 2024 10:09:48 -0500 Message-Id: <20240202150948.42888-1-icmccorm@andrew.cmu.edu> X-Mailer: git-send-email 2.39.3 (Apple Git-145) MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-6.9 required=5.0 tests=BAYES_00, DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FREEMAIL_FROM, GIT_PATCH_0, RCVD_IN_ABUSEAT, RCVD_IN_DNSWL_NONE, RCVD_IN_SBL_CSS, SPF_HELO_NONE, SPF_PASS, TXREP, T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org X-BeenThere: gcc-patches@gcc.gnu.org X-Mailman-Version: 2.1.30 Precedence: list List-Id: Gcc-patches mailing list <gcc-patches.gcc.gnu.org> List-Unsubscribe: <https://gcc.gnu.org/mailman/options/gcc-patches>, <mailto:gcc-patches-request@gcc.gnu.org?subject=unsubscribe> List-Archive: <https://gcc.gnu.org/pipermail/gcc-patches/> List-Post: <mailto:gcc-patches@gcc.gnu.org> List-Help: <mailto:gcc-patches-request@gcc.gnu.org?subject=help> List-Subscribe: <https://gcc.gnu.org/mailman/listinfo/gcc-patches>, <mailto:gcc-patches-request@gcc.gnu.org?subject=subscribe> Errors-To: gcc-patches-bounces+incoming=patchwork.ozlabs.org@gcc.gnu.org |
| Series |
[1/2] libdecnumber: fixed undefined behavior in `decFloatFMA`
|
expand
|
diff --git a/libdecnumber/decNumber.c b/libdecnumber/decNumber.c index 0b6eb160fe3..094bc51c14a 100644 --- a/libdecnumber/decNumber.c +++ b/libdecnumber/decNumber.c @@ -3463,7 +3463,8 @@ uByte * decNumberGetBCD(const decNumber *dn, uByte *bcd) { cut--; if (cut>0) continue; /* more in this unit */ up++; - u=*up; + if (ub > bcd) + u=*up; cut=DECDPUN; } #endif
This patch fixes a minor instance of undefined behavior in libdecnumber. It was discovered in the Rust bindings for libdecnumber (`dec`) using a custom version of MIRI that can execute foreign functions. On the last iteration of the `while` loop in `decNumberGetBCD`, the pointer `up` will be incremented beyond the end of the allocation `dn->lsu` before the assignment `u=*up`. This value does not affect the termination of the loop and is never read again, so this isn't really an issue, but this patch prevent an access out-of-bounds by only incrementing `up` if it is safe to do so. Bootstrapped on x86_64-pc-linux-gnu with no regressions. libdecnumber/ChangeLog * decNumber.c: In `decNumberGetBCD`, only read from `dn->lsu` while the pointer `up` is still within bounds. --- libdecnumber/decNumber.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-)