Return-Path: Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (Postfix) with ESMTP id B2FA83E9B2; Mon, 17 Dec 2012 18:47:55 -0500 (EST) Received: from pch.mit.edu (pch.mit.edu [127.0.0.1]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id qBHNlt2B024660; Mon, 17 Dec 2012 18:47:55 -0500 Received: from mailhub-dmz-3.mit.edu (MAILHUB-DMZ-3.MIT.EDU [18.9.21.42]) by pch.mit.edu (8.13.6/8.12.8) with ESMTP id qBHNLWe3021153 for ; Mon, 17 Dec 2012 18:21:32 -0500 Received: from dmz-mailsec-scanner-6.mit.edu (DMZ-MAILSEC-SCANNER-6.MIT.EDU [18.7.68.35]) by mailhub-dmz-3.mit.edu (8.13.8/8.9.2) with ESMTP id qBHNLSbi018616 for ; Mon, 17 Dec 2012 18:21:32 -0500 X-Auditid: 12074423-b7fcb6d000000927-af-50cfa8fc8e2f Authentication-Results: symauth.service.identifier Received: from mail-vb0-f53.google.com (mail-vb0-f53.google.com [209.85.212.53]) by dmz-mailsec-scanner-6.mit.edu (Symantec Messaging Gateway) with SMTP id EC.03.02343.CF8AFC05; Mon, 17 Dec 2012 18:21:32 -0500 (EST) Received: by mail-vb0-f53.google.com with SMTP id b23so8139353vbz.40 for ; Mon, 17 Dec 2012 15:21:32 -0800 (PST) Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:from:date:x-google-sender-auth:message-id :subject:to:content-type; bh=t95uxGIKWxAw6fJuYiw+xDnkXwY0djtwcakzmfoYx74=; b=zQ/PZq8v/pSu2YPfAeoJ5XRxTjl35yRvpufZCOg8mG3zQsJqdBgMf4AUIMMrTZ+PAe dvCINIxHXE6D+Csa7W3EaAdLGYeJdgLMvVd7Qw94ZW+o4MTevNgPccW26z9m4WzDRPg4 hTqoxYIBQc1EYKIgaOmaZkbO9CF+QWnmlUtCgyJ66Ni8VqdGp52T1n4BFGDMFC+u+CTC OXvR7iUocJT7/T70WBIrGDmALTn5qEs50opy1frEhao8Ki4DFR3UMvWxZJA7RI6H3qth 2nTW2WsBnEQbLLTHKoGt7cyCx3cgnKSZZ1tR7rON+VdilJUodHWNCrZH/7N7ayNy78UK zb1w== Received: by 10.52.29.175 with SMTP id l15mr85723vdh.2.1355786492386; Mon, 17 Dec 2012 15:21:32 -0800 (PST) MIME-Version: 1.0 Received: by 10.220.70.145 with HTTP; Mon, 17 Dec 2012 15:21:12 -0800 (PST) From: Nickolai Zeldovich Date: Mon, 17 Dec 2012 18:21:12 -0500 X-Google-Sender-Auth: hMLuMv3vNURm8D8z5LPnVYQ5Ab8 Message-ID: Subject: Some more nits To: krb5-bugs@mit.edu Content-Type: text/plain; charset=UTF-8 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprNKsWRWlGSWpSXmKPExsVyMfSKqe6fFecDDM7eMrRoeHic3YHRo+nM UeYAxigum5TUnMyy1CJ9uwSujPdPfrMWbGCvuLC0j62BsYGti5GTQ0LARKKzZTEriM0oYCSx +9wrVoi4mMSFe+uBarg4hARuMkq8er8SyulhlNg9/TMjSBWLwExWiVtrvEFsIYFcicmLToNN 5RUQlDg58wkLiC0soCKx6PscJogab4mOrqNgNpuAocSjRwtZIOaoSsx6fJkRYrOhxPvHzewQ cwIk9l24y9zFyAE0R1zixx2wsIiAqMTLv8dYQMLMAuoS6+cJTWAUnIVk8SyEzAJGplWMsim5 Vbq5iZk5xanJusXJiXl5qUW6Znq5mSV6qSmlmxiB4SjE7qK8g/HPQaVDjAIcjEo8vD/izwcI sSaWFVfmHmKU5GBSEuVVBQazEF9SfkplRmJxRnxRaU5q8SFGCQ5mJRHekglAOd6UxMqq1KJ8 mJQ0B4uSOO+1lJv+QgLpiSWp2ampBalFMFkmDvZDjDIcHEoSvAYgkwWLUtNTK9Iyc0qQ1XCC CC6QNTxAa3hACnmLCxJzizPTIYpOMRpzHHx14ykjx5N5d54yCrHk5eelSonz3l8OVCoAUppR mgc3EpZmLjHKSgnzMjIwMAjxAN0EDApU+VeM4sBgEOZlB1nIk5lXArfvFdApTECnLLc5A3JK SSJCSqqBUfu43qrqdR+LFFKMQk5uuxUQ/65ZP3Ovn7/uy2uxfr/vfbMMYTSK1ds4VzOl8U5j Wde9xIlv/n1gsX39Wuc0q3DN1YY5r06mPF2098lRzn1/nwdPm8q+berd6RXP33/56uq//fGp T32CT74qPo5ZZpDpLPhjzsXJ09ey/aw7OPtY4KRn57IV7mgrsRRnJBpqMRcVJwIAkaVXLC4D AAA= X-Mailman-Approved-At: Mon, 17 Dec 2012 18:47:53 -0500 X-Beenthere: krb5-bugs-incoming@mailman.mit.edu X-Mailman-Version: 2.1.6 Precedence: list Sender: krb5-bugs-incoming-bounces@PCH.mit.edu Errors-To: krb5-bugs-incoming-bounces@PCH.mit.edu Content-Length: 921 On the current git master branch (2af891a5): src/util/support/utf8_conv.c:281: (len + n < len) is never required to be true: len is a signed integer, n is known to be >= 1 (from line 279), and overflow for signed integers is undefined behavior. Many compilers (e.g., gcc) will discard the code from lines 281-282 as a result. src/kdc/do_tgs_req.c:884: if state can be NULL, then it should have been checked before dereferencing state at line 850. src/kdc/fast_util.c:300: if s can be NULL, then it should have been checked before dereferencing s at line 298. src/kdc/fast_util.c:421: if state can be NULL, then it should have been checked before dereferencing state at line 417. src/plugins/kdb/db2/libdb2/btree/bt_seq.c:449: h is guaranteed to be NULL at this point, but it's being dereferenced anyway. Perhaps this was meant to refer to the previous value of h, before it was overwritten on line 447? Nickolai.