digraph "sumprod" {
rankdir="LR";
remincross=true;
v0 [ label="a" ];
v1 [ label="b" ];
v2 [ label="$1_Y" ];
c4 [ shape=record, label="{{<p1> A|<p2> B}|$1\n$add|{<p3> Y}}" ];
v3 [ label="$1_Y" ];
v4 [ label="c" ];
v5 [ label="sum" ];
c5 [ shape=record, label="{{<p1> A|<p2> B}|$2\n$add|{<p3> Y}}" ];
v0:e -> c4:p1:w [color="black", style="setlinewidth(3)", label=""];
v1:e -> c4:p2:w [color="black", style="setlinewidth(3)", label=""];
c4:p3:e -> v2:w [color="black", style="setlinewidth(3)", label=""];
v3:e -> c5:p1:w [color="black", style="setlinewidth(3)", label=""];
v4:e -> c5:p2:w [color="black", style="setlinewidth(3)", label=""];
c5:p3:e -> v5:w [color="black", style="setlinewidth(3)", label=""];
};
img src='/cgit.png' alt='cgit logo'/></a></td>
<td class='main'><a href='/cgit/'>index</a> : <a title='openwrt/upstream' href='/cgit/openwrt/upstream/'>openwrt/upstream</a></td><td class='form'><form method='get'>
<input type='hidden' name='id' value='9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'/><select name='h' onchange='this.form.submit();'>
<option value='attitude_adjustment'>attitude_adjustment</option>
<option value='barrier_breaker'>barrier_breaker</option>
<option value='chaos_calmer'>chaos_calmer</option>
<option value='lede-17.01'>lede-17.01</option>
<option value='less-old-master'>less-old-master</option>
<option value='master'>master</option>
<option value='old-master'>old-master</option>
<option value='openwrt-18.06' selected='selected'>openwrt-18.06</option>
<option value='openwrt-19.07'>openwrt-19.07</option>
<option value='upstream'>upstream</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>upstream openwrt</td><td class='sub right'>James</td></tr></table>
<table class='tabs'><tr><td>
<a href='/cgit/openwrt/upstream/about/?h=openwrt-18.06'>about</a><a href='/cgit/openwrt/upstream/?h=openwrt-18.06'>summary</a><a href='/cgit/openwrt/upstream/refs/?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>refs</a><a href='/cgit/openwrt/upstream/log/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06'>log</a><a class='active' href='/cgit/openwrt/upstream/tree/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>tree</a><a href='/cgit/openwrt/upstream/commit/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>commit</a><a href='/cgit/openwrt/upstream/diff/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>diff</a><a href='/cgit/openwrt/upstream/stats/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06'>stats</a></td><td class='form'><form class='right' method='get' action='/cgit/openwrt/upstream/log/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch'>
<input type='hidden' name='h' value='openwrt-18.06'/><input type='hidden' name='id' value='9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/cgit/openwrt/upstream/tree/?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>root</a>/<a href='/cgit/openwrt/upstream/tree/package?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>package</a>/<a href='/cgit/openwrt/upstream/tree/package/boot?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>boot</a>/<a href='/cgit/openwrt/upstream/tree/package/boot/uboot-lantiq?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>uboot-lantiq</a>/<a href='/cgit/openwrt/upstream/tree/package/boot/uboot-lantiq/patches?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>patches</a>/<a href='/cgit/openwrt/upstream/tree/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>0041-lzma-fixup.patch</a></div><div class='content'>blob: 5b16758fa46b154723af34285f4f4e3771b1101a (<a href='/cgit/openwrt/upstream/plain/package/boot/uboot-lantiq/patches/0041-lzma-fixup.patch?h=openwrt-18.06&amp;id=9cf5fbfaf0ab24340b4e85f1dcd8b7fb52f148cf'>plain</a>)
<table summary='blob content' class='blob'>
<tr><td class='linenumbers'><pre><a id='n1' href='#n1'>1</a>
<a id='n2' href='#n2'>2</a>
<a id='n3' href='#n3'>3</a>
<a id='n4' href='#n4'>4</a>
<a id='n5' href='#n5'>5</a>
<a id='n6' href='#n6'>6</a>
<a id='n7' href='#n7'>7</a>
<a id='n8' href='#n8'>8</a>
<a id='n9' href='#n9'>9</a>
<a id='n10' href='#n10'>10</a>
<a id='n11' href='#n11'>11</a>
<a id='n12' href='#n12'>12</a>
<a id='n13' href='#n13'>13</a>
<a id='n14' href='#n14'>14</a>
<a id='n15' href='#n15'>15</a>
<a id='n16' href='#n16'>16</a>
<a id='n17' href='#n17'>17</a>
<a id='n18' href='#n18'>18</a>
<a id='n19' href='#n19'>19</a>
<a id='n20' href='#n20'>20</a>
<a id='n21' href='#n21'>21</a>
<a id='n22' href='#n22'>22</a>
<a id='n23' href='#n23'>23</a>
<a id='n24' href='#n24'>24</a>
<a id='n25' href='#n25'>25</a>
<a id='n26' href='#n26'>26</a>
<a id='n27' href='#n27'>27</a>
<a id='n28' href='#n28'>28</a>
<a id='n29' href='#n29'>29</a>
<a id='n30' href='#n30'>30</a>
<a id='n31' href='#n31'>31</a>
<a id='n32' href='#n32'>32</a>
<a id='n33' href='#n33'>33</a>
<a id='n34' href='#n34'>34</a>
<a id='n35' href='#n35'>35</a>
<a id='n36' href='#n36'>36</a>
<a id='n37' href='#n37'>37</a>
<a id='n38' href='#n38'>38</a>
<a id='n39' href='#n39'>39</a>
<a id='n40' href='#n40'>40</a>
<a id='n41' href='#n41'>41</a>
<a id='n42' href='#n42'>42</a>
<a id='n43' href='#n43'>43</a>
<a id='n44' href='#n44'>44</a>
</pre></td>
<td class='lines'><pre><code><style>pre { line-height: 125%; margin: 0; }
td.linenos pre { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
span.linenos { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
td.linenos pre.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
span.linenos.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
.highlight .hll { background-color: #ffffcc }
.highlight { background: #ffffff; }
.highlight .c { color: #888888 } /* Comment */
.highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */
.highlight .k { color: #008800; font-weight: bold } /* Keyword */
.highlight .ch { color: #888888 } /* Comment.Hashbang */
.highlight .cm { color: #888888 } /* Comment.Multiline */
.highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888888 } /* Comment.Single */
.highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */
.highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .gr { color: #aa0000 } /* Generic.Error */
.highlight .gh { color: #333333 } /* Generic.Heading */
.highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
.highlight .go { color: #888888 } /* Generic.Output */
.highlight .gp { color: #555555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666666 } /* Generic.Subheading */
.highlight .gt { color: #aa0000 } /* Generic.Traceback */
.highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #008800 } /* Keyword.Pseudo */
.highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */
.highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */
.highlight .na { color: #336699 } /* Name.Attribute */
.highlight .nb { color: #003388 } /* Name.Builtin */
.highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */
.highlight .no { color: #003366; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555555 } /* Name.Decorator */
.highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */
.highlight .nl { color: #336699; font-style: italic } /* Name.Label */
.highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #336699; font-weight: bold } /* Name.Property */
.highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #336699 } /* Name.Variable */
.highlight .ow { color: #008800 } /* Operator.Word */
.highlight .w { color: #bbbbbb } /* Text.Whitespace */
.highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */
.highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */
.highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */
.highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */
.highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */
.highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */
.highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */
.highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */
.highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */
.highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */
.highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */
.highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */
.highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */
.highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #336699 } /* Name.Variable.Class */
.highlight .vg { color: #dd7700 } /* Name.Variable.Global */
.highlight .vi { color: #3333bb } /* Name.Variable.Instance */
.highlight .vm { color: #336699 } /* Name.Variable.Magic */
.highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span>From: Antonios Vamporakis &lt;ant@area128.com&gt;
Date: Tue, 31 Dec 2013 01:05:42 +0100
Subject: [PATCH] lzma: fix buffer bound check error

Variable uncompressedSize references the space available, while outSizeFull is
the actual expected uncompressed size. Using the wrong value causes LzmaDecode
to return SZ_ERROR_INPUT_EOF. Problem was introduced in commit afca294. While
at it add additional debug message.

Signed-off-by: Antonios Vamporakis &lt;ant@area128.com&gt;
CC: Kees Cook &lt;keescook@chromium.org&gt;
CC: Simon Glass &lt;sjg@chromium.org&gt;
CC: Daniel Schwierzeck &lt;daniel.schwierzeck@gmail.com&gt;
CC: Luka Perkov &lt;luka@openwrt.org&gt;
<span class="gd">---</span>
 lib/lzma/LzmaTools.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

<span class="gh">diff --git a/lib/lzma/LzmaTools.c b/lib/lzma/LzmaTools.c</span>
<span class="gh">index 0aec2f9..90d31cd 100644</span>
<span class="gd">--- a/lib/lzma/LzmaTools.c</span>
<span class="gi">+++ b/lib/lzma/LzmaTools.c</span>
<span class="gu">@@ -102,7 +102,7 @@ int lzmaBuffToBuffDecompress (unsigned char *outStream, SizeT *uncompressedSize,</span>
         return SZ_ERROR_OUTPUT_EOF;
 
     /* Decompress */
<span class="gd">-    outProcessed = *uncompressedSize;</span>
<span class="gi">+    outProcessed = outSizeFull;</span>
 
     WATCHDOG_RESET();
 
<span class="gu">@@ -111,6 +111,9 @@ int lzmaBuffToBuffDecompress (unsigned char *outStream, SizeT *uncompressedSize,</span>
         inStream + LZMA_DATA_OFFSET, &amp;compressedSize,
         inStream, LZMA_PROPS_SIZE, LZMA_FINISH_END, &amp;state, &amp;g_Alloc);
     *uncompressedSize = outProcessed;
<span class="gi">+</span>
<span class="gi">+    debug(&quot;LZMA: Uncompresed ................ 0x%zx\n&quot;, outProcessed);</span>
<span class="gi">+</span>
     if (res != SZ_OK)  {
         return res;
     }
<span class="gd">-- </span>
1.8.3.2
</pre></div>
</code></pre></td></tr></table>
</div> <!-- class=content -->
<div class='footer'>generated by <a href='https://git.zx2c4.com/cgit/about/'>cgit v1.2.3</a> (<a href='https://git-scm.com/'>git 2.25.1</a>) at 2025-01-08 19:12:53 +0000</div>
</div> <!-- id=cgit -->
</body>
</html>