diff options
| author | David Chalco <59750547+dachalco@users.noreply.github.com> | 2020-06-30 21:03:30 +0300 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-06-30 21:03:30 +0300 |
| commit | 4a61f9ff7e2ad058c578952e2a615a123dadeba2 (patch) | |
| tree | 4c0962b606a0b8d31878c031049b1254211630f5 /queue.c | |
| parent | b47ca712d863cb8512cbf295b2e4fb163a50b2e1 (diff) | |
Improvement to O.F. protections (#75)
* Added protection for xQueueGenericCreate
* prevent eventual invalid state change from int8 overflow
* Append period at end of comment. To be consistent with file.
* check operand, not destination
* parantheses -- to not show assumptive precendence
* Per request, less dependence on stdint by defining and checking against queueINT8_MAX instead
Diffstat (limited to 'queue.c')
| -rw-r--r-- | queue.c | 12 |
1 files changed, 12 insertions, 0 deletions
@@ -51,6 +51,7 @@ correct privileged Vs unprivileged linkage and placement. */ /* Constants used with the cRxLock and cTxLock structure members. */
#define queueUNLOCKED ( ( int8_t ) -1 )
#define queueLOCKED_UNMODIFIED ( ( int8_t ) 0 )
+#define queueINT8_MAX ( ( int8_t ) 127 )
/* When the Queue_t structure is used to represent a base queue its pcHead and
pcTail members are used as pointers into the queue storage area. When the
@@ -378,6 +379,9 @@ Queue_t * const pxQueue = xQueue; zero in the case the queue is used as a semaphore. */
xQueueSizeInBytes = ( size_t ) ( uxQueueLength * uxItemSize ); /*lint !e961 MISRA exception as the casts are only redundant for some ports. */
+ /* Check for multiplication overflow. */
+ configASSERT( ( uxItemSize == 0 ) || ( uxQueueLength == ( xQueueSizeInBytes / uxItemSize ) ) );
+
/* Allocate the queue and storage area. Justification for MISRA
deviation as follows: pvPortMalloc() always ensures returned memory
blocks are aligned per the requirements of the MCU stack. In this case
@@ -1092,6 +1096,8 @@ Queue_t * const pxQueue = xQueue; {
/* Increment the lock count so the task that unlocks the queue
knows that data was posted while it was locked. */
+ configASSERT( cTxLock != queueINT8_MAX);
+
pxQueue->cTxLock = ( int8_t ) ( cTxLock + 1 );
}
@@ -1257,6 +1263,8 @@ Queue_t * const pxQueue = xQueue; {
/* Increment the lock count so the task that unlocks the queue
knows that data was posted while it was locked. */
+ configASSERT( cTxLock != queueINT8_MAX);
+
pxQueue->cTxLock = ( int8_t ) ( cTxLock + 1 );
}
@@ -1856,6 +1864,8 @@ Queue_t * const pxQueue = xQueue; {
/* Increment the lock count so the task that unlocks the queue
knows that data was removed while it was locked. */
+ configASSERT( cRxLock != queueINT8_MAX);
+
pxQueue->cRxLock = ( int8_t ) ( cRxLock + 1 );
}
@@ -2919,6 +2929,8 @@ Queue_t * const pxQueue = xQueue; }
else
{
+ configASSERT( cTxLock != queueINT8_MAX);
+
pxQueueSetContainer->cTxLock = ( int8_t ) ( cTxLock + 1 );
}
}
|