stackoom
  简体   繁体   中英

Why AND a uint32 value with 0xFFFFFFFF?

 原文  2013-10-21 17:10:58       c/ bit-manipulation

Question

A friend of mine was looking through this open-source SSL code at the functions for handling SHA encryption, and noticed this odd snippet: 

ctx->total[0] += (uint32_t) ilen;         // ilen is of type size_t
ctx->total[0] &= 0xFFFFFFFF;              

if( ctx->total[0] < (uint32_t) ilen )
    ctx->total[1]++;

We can't figure out two things about this code. First, it ANDs ctx->total[0] (of type uint32_t ) with 0xFFFFFFFF , which shouldn't do anything. In binary, that's ANDing with all 1 s, which should yield the same value. In my mind, then, these two lines are identical: 

ctx->total[0] &= 0xFFFFFFFF;
ctx->total[0] =  ctx->total[0];

If I am right, why is this line there? Some security reason? If I am wrong, how and why?

Second, we don't understand when that if would ever be true, assuming the AND doesn't do anything. If the AND does nothing, then the if is essentially: 

if (ctx->total[0] < ctx->total[0])

which should never be true. What are we missing?

If you want to see the header file to convince yourself that ctx->total[0] is of type uint32_t , or for whatever other reason, you can find that here .

Also, my first wild guess is that there's something sneaky happening when we cast ilen from size_t to uint32_t , but I'm still stuck and confused.

2 answers

solution1
 9 ACCPTED  2013-10-21 17:27:17

First question:

You're right that this &ing is not needed for 32bit, my guess is - they're trying to prevent situations when ctx->total[0] is not 32bit (so even if somebody will change it or platform will have 64bit even for uint32_t type), so with this code they are 100% sure, without 99.99999% :)

Second question is easy:

Check how this code will work for values ctx->total[0] == 0xFFFFFFFF and ilen == 1

ctx->total[0] += (uint32_t) ilen; // this will overflow and total[0] now 0 

if( ctx->total[0] < (uint32_t) ilen ) // 0<1 true
    ctx->total[1]++;

solution2
 4  2013-10-21 17:23:30

The if is basically doing: 

if (ctx->total[0] + (uint32_t) ilen < (uint32_t) ilen)
    ctx->total[1]++;

ie if adding ilen to ctx->total[0] is going to cause an overflow, then bump ctx->total[1] . In other words it's performing the carry of the addition.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Why am I getting a return value of -1 (0xFFFFFFFF)? How to assign a value to a Uint32 variable? Reassign new hex value into Uint32 * Addition of uint32* with uint32 Converting a UINT32 value into a UINT8 array[4] Why is ~size_t(0) (== 0xFFFFFFFF in most 32-bit systems) not a valid array index? Why does -1 >> 1 and 0xFFFFFFFF >> 1 produce different results? Why unsigned int 0xFFFFFFFF is equal to int -1? Why convert 0xffffffff to decimal is -1 in C? Why is memcmp(a, b, 4) only sometimes optimized to a uint32 comparison?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM