Skip to content

Commit

Permalink
Fix overflow issue in isEligibleForClockOffsetCalculation function
Browse files Browse the repository at this point in the history
  • Loading branch information
aggarw13 committed May 17, 2021
1 parent 96e663d commit d3632fe
Showing 1 changed file with 21 additions and 10 deletions.
31 changes: 21 additions & 10 deletions source/core_sntp_serializer.c
Original file line number Diff line number Diff line change
Expand Up @@ -229,16 +229,27 @@ static bool isEligibleForClockOffsetCalculation( uint32_t firstOrderDiff )
* = 0x0000000B
* = 11 seconds
*/
bool sameNtpEraCheck = ( ( firstOrderDiff & CLOCK_OFFSET_FIRST_ORDER_DIFF_OVERFLOW_BITS_MASK ) == 0U ) ?
true : false;

/* Note: The (UINT32_MAX - firstOrderDiff + 1U) expression represents
* 2's complement or negation of value.
* This is done to be compliant with both CBMC and MISRA Rule 10.1.
* CBMC flags overflow for (unsigned int = 0U - positive value) whereas
* MISRA rule forbids use of unary minus operator on unsigned integers. */
bool diffNtpEraCheck = ( ( ( UINT32_MAX - firstOrderDiff + 1U )
& CLOCK_OFFSET_FIRST_ORDER_DIFF_OVERFLOW_BITS_MASK ) == 0U ) ? true : false;
bool sameNtpEraCheck = false;
bool diffNtpEraCheck = false;

/* Check if the server and client times are within 34 years of each other, if we assume that they are
in the same NTP era. */
sameNtpEraCheck = ( ( firstOrderDiff & CLOCK_OFFSET_FIRST_ORDER_DIFF_OVERFLOW_BITS_MASK ) == 0U ) ?
true : false;

/* If the same era check does not satisfy the 34 years condition, check
* whether the condition is satisfied when assuming the that the systems are in
* different NTP eras. */
if( sameNtpEraCheck == false )
{
/* Note: The (UINT32_MAX - firstOrderDiff + 1U) expression represents
* 2's complement or negation of value.
* This is done to be compliant with both CBMC and MISRA Rule 10.1.
* CBMC flags overflow for (unsigned int = 0U - positive value) whereas
* MISRA rule forbids use of unary minus operator on unsigned integers. */
diffNtpEraCheck = ( ( ( UINT32_MAX - firstOrderDiff + 1U )
& CLOCK_OFFSET_FIRST_ORDER_DIFF_OVERFLOW_BITS_MASK ) == 0U ) ? true : false;
}

return( sameNtpEraCheck || diffNtpEraCheck );
}
Expand Down

0 comments on commit d3632fe

Please sign in to comment.