Skip to content

Fix seek undefined behavior on signed integer overflow#1027

Merged
geky merged 2 commits into
develfrom
fix-seek-overflow-ub
Dec 6, 2024
Merged

Fix seek undefined behavior on signed integer overflow#1027
geky merged 2 commits into
develfrom
fix-seek-overflow-ub

Conversation

@geky
Copy link
Copy Markdown
Member

@geky geky commented Sep 24, 2024

In the previous implementation of lfs_file_seek, we calculated the new offset using signed arithmetic before checking for possible overflow/underflow conditions. This results in undefined behavior in C.

Fortunately for us, littlefs is now limited to 31-bit file sizes for API reasons, so we don't have to be too clever here. Doing the arithmetic with unsigned integers and just checking if we're in a valid range afterwards should work.

Found by @m-kostrzewa and @lucic71
Original tests showing the issue provided by @m-kostrzewa here: #1002
Alternative fix proposed by @lucic71 here: #1017

geky added 2 commits September 24, 2024 14:01
@geky
Added some tests around seek integer overflow/underflow
f1c430e 
Original tests provided by m-kostrzewa, these identify signed overflow
(undefined behavior) when compiled with -fsanitize=undefined.
@geky
Fixed seek undefined behavior on signed integer overflow
abaec45 
In the previous implementation of lfs_file_seek, we calculated the new
offset using signed arithmetic before checking for possible
overflow/underflow conditions. This results in undefined behavior in C.

Fortunately for us, littlefs is now limited to 31-bit file sizes for API
reasons, so we don't have to be too clever here. Doing the arithmetic
with unsigned integers and just checking if we're in a valid range
afterwards should work.

Found by m-kostrzewa and lucic71
@geky geky mentioned this pull request Sep 24, 2024
Open
@geky-bot
Copy link
Copy Markdown
Collaborator

geky-bot commented Sep 24, 2024

Tests passed ✓, Code: 17060 B, Stack: 1440 B, Structs: 812 B
Code Stack Structs Coverage
Default 17060 B 1440 B 812 B Lines 2391/2571 lines
Readonly 6190 B 448 B 812 B Branches 1242/1580 branches
Threadsafe 17920 B 1440 B 820 B Benchmarks
Multiversion 17120 B 1440 B 816 B Readed 29369693876 B
Migrate 18756 B 1744 B 816 B Proged 1482874766 B
Error-asserts 17744 B 1432 B 812 B Erased 1568888832 B

@geky geky added this to the v2.10 milestone Dec 6, 2024
@geky geky linked an issue Dec 6, 2024 that may be closed by this pull request
Inconsistent / undefined behavoiur of lfs_file_seek around LFS_FILE_MAX #1002
Open
@geky geky removed a link to an issue Dec 6, 2024
Inconsistent / undefined behavoiur of lfs_file_seek around LFS_FILE_MAX #1002
Open
@geky geky merged commit d7a9119 into devel Dec 6, 2024
@geky geky mentioned this pull request Dec 6, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

next patch

Projects

None yet

Milestone

v2.10

Development

Successfully merging this pull request may close these issues.

2 participants

@geky @geky-bot