This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX

From: Joseph Myers <joseph at codesourcery dot com>
To: Paul Eggert <eggert at cs dot ucla dot edu>
Cc: Adhemerval Zanella <adhemerval dot zanella at linaro dot org>, <libc-alpha at sourceware dot org>
Date: Fri, 21 Dec 2018 22:37:44 +0000
Subject: Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
References: <20181221183813.16245-1-adhemerval.zanella@linaro.org> <20181221183813.16245-2-adhemerval.zanella@linaro.org> <alpine.DEB.2.21.1812211841010.10148@digraph.polyomino.org.uk> <683a19d2-8a4d-9932-ac92-cd2df2afe193@linaro.org> <alpine.DEB.2.21.1812211932250.27070@digraph.polyomino.org.uk> <ea2acca5-2d32-9bad-b68a-bd92dddb397e@linaro.org> <bd7385c4-3909-0e82-195c-6355df2b8481@cs.ucla.edu>

On Fri, 21 Dec 2018, Paul Eggert wrote:

> The patch assumes that PTRDIFF_MAX is well under SIZE_MAX. A while ago Joseph
> wrote that m32c sometimes has ptrdiff_t wider than size_t
> <https://gcc.gnu.org/ml/gcc-patches/2011-07/msg00483.html> and if someone ever
> does a glibc port to such a platform this issue will come up in unlikely
> cases. Perhaps add something like the following to malloc/malloc.c, to make
> sure the problem is harder to ignore on such platforms?

Such platforms are well outside the scope of glibc.  We can assume that 
PTRDIFF_MAX == SIZE_MAX / 2 (and that ptrdiff_t, size_t and pointers have 
the same power-of-2 width, which is at least 32).

> #include <verify.h>
> verify (PTRDIFF_MAX <= SIZE_MAX / 2);

Using verify.h in any glibc code not coming from gnulib would be odd; just 
use _Static_assert.

-- 
Joseph S. Myers
joseph@codesourcery.com

Follow-Ups:
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Paul Eggert

References:
- [PATCH 1/2] Replace check_mul_overflow_size_t with INT_MULTIPLY_WRAPV
  - From: Adhemerval Zanella
- [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Adhemerval Zanella
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Joseph Myers
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Adhemerval Zanella
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Joseph Myers
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Adhemerval Zanella
- Re: [PATCH 2/2] malloc: make malloc fail with requests larger than PTRDIFF_MAX
  - From: Paul Eggert

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]