diff options
author | Anton Moryakov <ant.v.moryakov@gmail.com> | 2024-12-24 15:27:09 +0300 |
---|---|---|
committer | David Oberhollenzer <david.oberhollenzer@sigma-star.at> | 2024-12-24 17:22:12 +0100 |
commit | c01a38b3441b7a638137aa99c4ddd410a8dc4468 (patch) | |
tree | 4e1698f3df21873d1017e7ab2d2988ad5f938fc9 /ubi-utils/tests | |
parent | 117efd252bc485084a609c405c312f5a9229e25a (diff) |
Report of the static analyzer:
The value of an arithmetic expression 'datsize + oobsize' is a subject to overflow because its operands are not cast to a larger data type before performing arithmetic.
Corrections explained:
- Added a check to validate datsize and oobsize to ensure they are non-negative and within a safe range.
- Cast datsize and oobsize to long before performing arithmetic to prevent potential integer overflow.
This change ensures safe computation of offsets and prevents undefined behavior caused by overflow.
Signed-off-by: Anton Moryakov <ant.v.moryakov@gmail.com>
Reviewed-by: Zhihao Cheng <chengzhihao1@huawei.com>
Signed-off-by: David Oberhollenzer <david.oberhollenzer@sigma-star.at>
Diffstat (limited to 'ubi-utils/tests')
0 files changed, 0 insertions, 0 deletions