Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix potential integer overflow in Balance #40

Merged
merged 2 commits into from
Jan 25, 2018
Merged

Fix potential integer overflow in Balance #40

merged 2 commits into from
Jan 25, 2018

Conversation

hawkw
Copy link
Member

@hawkw hawkw commented Jan 25, 2018

An usize overflow can occur in Balance::promote_to_ready when self.not_ready has length 0.

See my comment here: #39 (comment)

Signed-off-by: Eliza Weisman eliza@buoyant.io

@hawkw
Fix potential integer overflow in Balance
ec0c819 
An usize overflow can occur in `Balance::promote_to_ready` when `self.not_ready` has length 0.

See my comment here: #39 (comment)

Signed-off-by: Eliza Weisman <eliza@buoyant.io>
@hawkw hawkw added the C-bug Category: This is a bug. label Jan 25, 2018
@hawkw hawkw self-assigned this Jan 25, 2018
carllerche
carllerche approved these changes Jan 25, 2018
View reviewed changes
Copy link
Member

@carllerche carllerche left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems fine to me, but I would prefer if @olix0r could take a look as well.

olix0r
olix0r reviewed Jan 25, 2018
View reviewed changes
tower-balance/src/lib.rs Outdated
@@ -151,7 +151,7 @@ where
debug!("promoting to ready: {}", n);
// Iterate through the not-ready endpoints from right to left to prevent removals
// from reordering services in a way that could prevent a service from being polled.
for idx in (0..n-1).rev() {
Copy link
Collaborator

@olix0r olix0r Jan 25, 2018
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tioli: i think this would be slightly clearer as:

  return Ok(());
}
for idx in (0..n-1).rev() { 
  ...
}

it makes the intent a bit clearer...

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry, I don't follow? This is the line that was removed.

@hawkw
Review feedback
10242bf 
Signed-off-by: Eliza Weisman <eliza@buoyant.io>
@hawkw hawkw merged commit 251509a into master Jan 25, 2018
@hawkw hawkw mentioned this pull request Jan 26, 2018
Merged
hawkw added a commit that referenced this pull request Jan 26, 2018
@hawkw
Fix off-by-one error in promote_to_ready (#41)
c132a99 
The `..` syntax creates a _half-open_ range (see https://doc.rust-lang.org/std/ops/struct.Range.html), so all that messing about with `n-1` in #39 and #40 was never actually necessary. This actually fixes the Conduit test I mentioned in #39 (comment); it no longer hangs.

Signed-off-by: Eliza Weisman <eliza@buoyant.io>
@carllerche carllerche deleted the eliza/fix-balance-overflow branch February 19, 2018 17:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@carllerche carllerche carllerche approved these changes

@olix0r olix0r olix0r approved these changes

Assignees

@hawkw hawkw

Labels
C-bug Category: This is a bug.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hawkw @carllerche @olix0r