diff options
author | Lennart Poettering <lennart@poettering.net> | 2021-08-20 18:11:14 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2021-08-20 22:00:48 +0200 |
commit | c7ed7187203ca0b348a0bb8a355b01332c446101 (patch) | |
tree | 0868c624ad647bd89280e7e168ee9053e48b4b65 /src/basic/macro.h | |
parent | eeed637fea380c59e90e707c684e8db32714baa4 (diff) | |
download | systemd-c7ed7187203ca0b348a0bb8a355b01332c446101.tar.gz |
macro: handle overflow in ALIGN_TO() somewhat reasonably
The helper call rounds up to next multiple of specified boundary. If one
passes a very large value as first argument, then there might not be a
next multiple. So far we ignored that. Let's handle this now and return
SIZE_MAX in this case, as special indicator that we reached the end.
Of course, IRL this should not happen. With this new change we at least
do something somewhat reasonable, leaving it to the caller to handle it
further.
Diffstat (limited to 'src/basic/macro.h')
-rw-r--r-- | src/basic/macro.h | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/src/basic/macro.h b/src/basic/macro.h index 280f302864..6977a1ddd9 100644 --- a/src/basic/macro.h +++ b/src/basic/macro.h @@ -146,6 +146,20 @@ #define ALIGN8_PTR(p) ((void*) ALIGN8((unsigned long) (p))) static inline size_t ALIGN_TO(size_t l, size_t ali) { + /* Check that alignment is exponent of 2 */ +#if SIZE_MAX == UINT_MAX + assert(__builtin_popcount(ali) == 1); +#elif SIZE_MAX == ULONG_MAX + assert(__builtin_popcountl(ali) == 1); +#elif SIZE_MAX == ULONGLONG_MAX + assert(__builtin_popcountll(ali) == 1); +#else +#error "Unexpected size_t" +#endif + + if (l > SIZE_MAX - (ali - 1)) + return SIZE_MAX; /* indicate overflow */ + return ((l + ali - 1) & ~(ali - 1)); } |