Re: fs/jffs2/readinode.c:189: faulty logic ?

From: Joakim Tjernlund
Date: Tue Jan 24 2017 - 10:11:52 EST

Next message: Jarkko Nikula: "Re: [PATCH v3 0/3] Init device ids from ACPI of_compatible"
Previous message: Dmitry Vyukov: "Re: net: use-after-free in tw_timer_handler"
In reply to: Marek Vasut: "Re: fs/jffs2/readinode.c:189: faulty logic ?"
Next in thread: Marek Vasut: "Re: fs/jffs2/readinode.c:189: faulty logic ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 2017-01-24 at 15:52 +0100, Marek Vasut wrote:
> On 01/24/2017 09:15 AM, David Binderman wrote:
> > Hello there,
> >
> > fs/jffs2/readinode.c:189]: (style) Condition 'tn.fn.ofs>=offset' is always true
> >
> > Source code is
> >
> > if (tn->fn->ofs < offset)
> > next = tn->rb.rb_right;
> > else if (tn->fn->ofs >= offset)
> > next = tn->rb.rb_left;
> > else
> > break;
> >
> > Maybe better code
> >
> > if (tn->fn->ofs < offset)
> > next = tn->rb.rb_right;
> > else if (tn->fn->ofs > offset)
> > next = tn->rb.rb_left;
> > else
> > break;
>
> This changes the logic of the code for equality case, please elaborate
> why this is OK.

There is something odd with current code:
next = tn_root->rb_node;

while (next) {
tn = rb_entry(next, struct jffs2_tmp_dnode_info, rb);

if (tn->fn->ofs < offset)
next = tn->rb.rb_right;
else if (tn->fn->ofs >= offset)
next = tn->rb.rb_left;
else
break;
}

The else break; is never reached so the above change makes the break work for ==
Weather this is correct or not I cannot say.

Jocke

Next message: Jarkko Nikula: "Re: [PATCH v3 0/3] Init device ids from ACPI of_compatible"
Previous message: Dmitry Vyukov: "Re: net: use-after-free in tw_timer_handler"
In reply to: Marek Vasut: "Re: fs/jffs2/readinode.c:189: faulty logic ?"
Next in thread: Marek Vasut: "Re: fs/jffs2/readinode.c:189: faulty logic ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]