Re: [PATCH] hw/dma: prevent overflow in soc_dma_set

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request

From:	Peter Maydell
Subject:	Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request
Date:	Tue, 9 Apr 2024 13:02:24 +0100

On Tue, 9 Apr 2024 at 12:54, Anastasia Belova <abelova@astralinux.ru> wrote:
>
> ch->num can reach values up to 31. Add casting to
> a larger type before performing left shift to
> prevent integer overflow.

If ch->num can only reach up to 31, then 1 << ch->num
is fine, because QEMU can assume that integers are 32 bits,
and we compile with -fwrapv so there isn't a problem with
shifting into the sign bit.

And I agree that we shouldn't ever have a ch->num greater
than 31, because the worst case here is when we call
soc_dma_init() with an argument of 32, which sets up
soc_dma_ch_s structs with values of num from 0 to 31.

So this doesn't seem to me to be fixing an active bug.
Am I missing something?

thanks
-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH] hw/dma: prevent overflow in soc_dma_set_request, Anastasia Belova, 2024/04/09
- Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request, Peter Maydell <=
  - Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request, Philippe Mathieu-Daudé, 2024/04/09
  - Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request, Anastasia Belova, 2024/04/09
    - Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request, Peter Maydell, 2024/04/09
    - Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request, Peter Maydell, 2024/04/19

Prev by Date: Re: [PATCH v2 0/3] qtest/migration: Fixes around multifd_tcp_channels_none migration qtest
Next by Date: Re: [PATCH-for-9.0? 2/2] hw/net/lan9118: Fix overflow in TX FIFO
Previous by thread: [PATCH] hw/dma: prevent overflow in soc_dma_set_request
Next by thread: Re: [PATCH] hw/dma: prevent overflow in soc_dma_set_request
Index(es):
- Date
- Thread