DAOS-15322 common: fix untrusted loop bound (#14014)

juszhan1 · web-flow · commit cd9228243050 · 2024-04-09T13:26:00.000-06:00
Addresses coverity issue where size is completely unbounded.
This is no good way to really bound it but we can ensure it's not
wholly unreasonable by checking against the size of the pool.

Signed-off-by: Justin Zhang &lt;juszhan@google.com&gt;
diff --git a/src/common/btree.c b/src/common/btree.c
@@ -1,5 +1,5 @@
 /**
- * (C) Copyright 2016-2023 Intel Corporation.
+ * (C) Copyright 2016-2024 Intel Corporation.
  *
  * SPDX-License-Identifier: BSD-2-Clause-Patent
  */
diff --git a/src/vos/vos_tree.c b/src/vos/vos_tree.c
@@ -1,5 +1,5 @@
 /**
- * (C) Copyright 2016-2023 Intel Corporation.
+ * (C) Copyright 2016-2024 Intel Corporation.
  *
  * SPDX-License-Identifier: BSD-2-Clause-Patent
  */
@@ -154,7 +154,9 @@ ktr_hkey_gen(struct btr_instance *tins, d_iov_t *key_iov, void *hkey)
 {
 	struct ktr_hkey		*kkey = (struct ktr_hkey *)hkey;
 	struct umem_pool        *umm_pool = tins->ti_umm.umm_pool;
+	struct vos_pool         *pool     = (struct vos_pool *)tins->ti_priv;
 
+	D_ASSERT(key_iov->iov_len < pool->vp_pool_df->pd_scm_sz);
 	hkey_common_gen(key_iov, hkey);
 
 	if (key_iov->iov_len > KH_INLINE_MAX)

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`	`1`	`/**`
`2`		`- * (C) Copyright 2016-2023 Intel Corporation.`
	`2`	`+ * (C) Copyright 2016-2024 Intel Corporation.`
`3`	`3`	`*`
`4`	`4`	`* SPDX-License-Identifier: BSD-2-Clause-Patent`
`5`	`5`	`*/`