annotate jdk/src/share/native/sun/awt/medialib/safe_alloc.h @ 5187:2358d9e7ca64

6914866: Sun JRE ImagingLib arbitrary code execution vulnerability Reviewed-by: prr, hawtin
author bae
date Wed, 17 Feb 2010 12:49:41 +0300
parents 90ce3da70b43
children 202f599c92aa
rev   line source
duke@2 1 /*
duke@2 2 * Copyright 2006 Sun Microsystems, Inc. All Rights Reserved.
duke@2 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
duke@2 4 *
duke@2 5 * This code is free software; you can redistribute it and/or modify it
duke@2 6 * under the terms of the GNU General Public License version 2 only, as
duke@2 7 * published by the Free Software Foundation. Sun designates this
duke@2 8 * particular file as subject to the "Classpath" exception as provided
duke@2 9 * by Sun in the LICENSE file that accompanied this code.
duke@2 10 *
duke@2 11 * This code is distributed in the hope that it will be useful, but WITHOUT
duke@2 12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
duke@2 13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
duke@2 14 * version 2 for more details (a copy is included in the LICENSE file that
duke@2 15 * accompanied this code).
duke@2 16 *
duke@2 17 * You should have received a copy of the GNU General Public License version
duke@2 18 * 2 along with this work; if not, write to the Free Software Foundation,
duke@2 19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
duke@2 20 *
duke@2 21 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
duke@2 22 * CA 95054 USA or visit www.sun.com if you need additional information or
duke@2 23 * have any questions.
duke@2 24 */
duke@2 25
duke@2 26 #ifndef __SAFE_ALLOC_H__
duke@2 27 #define __SAFE_ALLOC_H__
duke@2 28
duke@2 29 #include "j2d_md.h"
duke@2 30
duke@2 31 /*
duke@2 32 * Macroses defined below are wrappers for alloc functions
duke@2 33 * that perform buffer size calculation with integer overflow
duke@2 34 * check.
duke@2 35 */
duke@2 36 #define SAFE_TO_ALLOC_2(c, sz) \
duke@2 37 (((c) > 0) && ((sz) > 0) && \
bae@5187 38 ((0xffffffffu / ((juint)(c))) > ((juint)(sz))))
duke@2 39
duke@2 40 #define SAFE_TO_ALLOC_3(w, h, sz) \
duke@2 41 (((w) > 0) && ((h) > 0) && ((sz) > 0) && \
bae@5187 42 (((0xffffffffu / ((juint)(w))) / ((juint)(h))) > ((juint)(sz))))
duke@2 43
duke@2 44
duke@2 45 #endif // __SAFE_ALLOC_H__