[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Secure Dereference of NULL-Pointer when using list.h

To: Kernel Newbies <kernelnewbies@xxxxxxxxxxxx>
Subject: Re: Secure Dereference of NULL-Pointer when using list.h
From: Ricard Wanderlof <ricard.wanderlof@xxxxxxxx>
Date: Thu, 5 Oct 2006 11:20:20 +0200 (CEST)
In-reply-to: <feb8dc070610050208m38d55aedu9bfc8842ba9e6338@mail.gmail.com>
List-archive: <http://mail.nl.linux.org/kernelnewbies/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <kernelnewbies.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:kernelnewbies@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:kernelnewbies-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:kernelnewbies-request@nl.linux.org?Subject=unsubscribe>
References: <45237C3C.2010602@hangschaf.de> <Pine.LNX.4.64.0610041134500.7554@lnxricardw.se.axis.com> <45239E94.7070909@hangschaf.de> <feb8dc070610041042v4b2ef822i11ce4b752904e3a@mail.gmail.com> <Pine.LNX.4.64.0610050957270.7554@lnxricardw.se.axis.com> <feb8dc070610050208m38d55aedu9bfc8842ba9e6338@mail.gmail.com>
Sender: kernelnewbies-bounce@xxxxxxxxxxxx

On Thu, 5 Oct 2006, Jinesh K J wrote:

But, let us clear things up before leaving the topic off. With
reference to ISO/IEC 9899:1999(E), the following could be observed:
...
-  value of a void expression shall not be used in any way
-  If an expression of any other type(which included our variable 'a')
is evaluated as a void expression, its value or designator is
discarded.
-  Here there are no side effects( no function call, assignments, etc)

I hope my observations are correct.

You may be right. Reading standards is hairy and I would also consider the interpretation "evaluate the expression and discard the value" valid. Although I'm nitpicking here, say if foo were a hardware register which had a side effect of some sorts when reading it, then the statement *foo; would actually do something even though the value wouldn't be used (better declare foo volatile too to make sure the compiler doesn't optimize it away).

In any case, I wouldn't like to let a line like

*( (char *) 0);

pass by the compiler, whether or not the actual compiler conforms to the standard, whichever the interpretation of the standard may be. It's one of the situations that I would imagine a compiler designer could get wrong, regardless what the standard says...

/Ricard
--
Ricard Wolf Wanderlöf                           ricardw(at)axis.com
Axis Communications AB, Lund, Sweden            www.axis.com
Phone +46 46 272 2016                           Fax +46 46 13 61 30

Follow-Ups:
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Jinesh K J

References:
- Secure Dereference of NULL-Pointer when using list.h
  - From: Hendrik Post
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Ricard Wanderlof
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Hendrik Post
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Jinesh K J
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Ricard Wanderlof
- Re: Secure Dereference of NULL-Pointer when using list.h
  - From: Jinesh K J

Prev by Date: Re: Secure Dereference of NULL-Pointer when using list.h
Next by Date: overhead read()
Previous by thread: Re: Secure Dereference of NULL-Pointer when using list.h
Next by thread: Re: Secure Dereference of NULL-Pointer when using list.h
Index(es):
- Date
- Thread