Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Fix some errors from -fanalyzer.#2697

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Open
Wren6991 wants to merge1 commit intodevelop
base:develop
Choose a base branch
Loading
fromfix-fanalyze-1
Open

Conversation

@Wren6991
Copy link
Contributor

These are from buildingkitchen_sink with-fanalyzer on GCC 14.3.

  • Panic on failed allocation inpico_time
  • Remove+ 1 on claim bit for second core inmulticore_doorbell_claim() -- besides being OOB this also seems to just be looking at the wrong bit as it doesn't match the one used inmulticore_doorbell_unclaim()
  • Use a constant initialiser forlocal_rng_state ininitialise_rand -- this looked like it was trying to be deliberately uninitialised but this doesn't garner much entropy for a stack variable, and it's undefined behaviour

There are some remaining errors in the SHA-256 which look pessimistic to me. It would still be good to clean that up so that people can use-fanalyzer when building against the SDK.

Includes a genuine bug in multicore_doorbell_claim() which seemed to use the wrong bit for the second core.
@Wren6991Wren6991 added this to the2.2.1 milestoneOct 15, 2025
@Wren6991
Copy link
ContributorAuthor

The SHA-256 errors are OOB reads inwrite_to_hardware() from constant-sized buffers passed in throughwrite_padding() andadd_zero_bytes(). It doesn't seem to propagate the bounds on the byte counts (constant1 and<= 4 respectively) so assumes you can read past the end. The errors can be suppressed with:

diff --git a/src/rp2_common/pico_sha256/sha256.c b/src/rp2_common/pico_sha256/sha256.cindex 91009c8..53dfaab 100644--- a/src/rp2_common/pico_sha256/sha256.c+++ b/src/rp2_common/pico_sha256/sha256.c@@ -75,6 +75,8 @@ int pico_sha256_start_blocking_until(pico_sha256_state_t *state, enum sha256_end     return rc; }+#pragma GCC diagnostic push+#pragma GCC diagnostic ignored "-Wanalyzer-out-of-bounds" static void write_to_hardware(pico_sha256_state_t *state, const uint8_t *data, size_t data_size_bytes) {     if (state->channel >= 0) {         dma_channel_wait_for_finish_blocking(state->channel);@@ -111,6 +113,7 @@ static void write_to_hardware(pico_sha256_state_t *state, const uint8_t *data, s         }     } }+#pragma GCC diagnostic pop  static void update_internal(pico_sha256_state_t *state, const uint8_t *data, size_t data_size_bytes) {     assert(state->locked);

...but there is a lot of other scary buffer handling in there which we want to be analysed.

@lurch
Copy link
Contributor

  • Remove+ 1 on claim bit for second core inmulticore_doorbell_claim() -- besides being OOB this also seems to just be looking at the wrong bit as it doesn't match the one used inmulticore_doorbell_unclaim()

Same thing as#2667 ?

@Wren6991
Copy link
ContributorAuthor

Yes, same fix.

Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment

Reviewers

@kilograhamkilograhamAwaiting requested review from kilograham

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

2.2.1

Development

Successfully merging this pull request may close these issues.

3 participants

@Wren6991@lurch
[8]ページ先頭
©2009-2025 Movatter.jp