git.ipfire.org Git - people/arne

author	Coly Li <colyli@suse.de>
	Sat, 9 Feb 2019 04:52:59 +0000 (12:52 +0800)
committer	Jens Axboe <axboe@kernel.dk>
	Sat, 9 Feb 2019 14:18:31 +0000 (07:18 -0700)
commit	596b5a5dd1bc2fa019fdaaae522ef331deef927f
tree	31f70883b5dc50883ab49db3338ae535f3e93952	tree \| snapshot
parent	58ac323084ebf44f8470eeb8b82660f9d0ee3689	commit \| diff

bcache: improve sysfs_strtoul_clamp()

Currently sysfs_strtoul_clamp() is defined as,
82 #define sysfs_strtoul_clamp(file, var, min, max)                   \
83 do {                                                               \
84         if (attr == &sysfs_ ## file)                               \
85                 return strtoul_safe_clamp(buf, var, min, max)      \
86                         ?: (ssize_t) size;                         \
87 } while (0)

The problem is, if bit width of var is less then unsigned long, min and
max may not protect var from integer overflow, because overflow happens
in strtoul_safe_clamp() before checking min and max.

To fix such overflow in sysfs_strtoul_clamp(), to make min and max take
effect, this patch adds an unsigned long variable, and uses it to macro
strtoul_safe_clamp() to convert an unsigned long value in range defined
by [min, max]. Then assign this value to var. By this method, if bit
width of var is less than unsigned long, integer overflow won't happen
before min and max are checking.

Now sysfs_strtoul_clamp() can properly handle smaller data type like
unsigned int, of cause min and max should be defined in range of
unsigned int too.

Signed-off-by: Coly Li <colyli@suse.de>
Signed-off-by: Jens Axboe <axboe@kernel.dk>