Thanks Thomas, makes sense.
> -----Original Message-----
> From: Thomas Monjalon <[email protected]>
> Sent: Wednesday, November 22, 2023 4:38 PM
> To: Dooley, Brian <[email protected]>
> Cc: [email protected]; [email protected]; Nicolau, Radu
> <[email protected]>; Akhil Goyal <[email protected]>; Power, Ciara
> <[email protected]>
> Subject: Re: [PATCH] examples/ipsec-secgw: fix partial overflow
>
> > > Case of partial overflow detected with ASan. Added extra padding to
> > > cdev_key structure.
> > >
> > > This structure is used for the key in hash table.
> > > Padding is added to force the struct to use 8 bytes, to ensure
> > > memory is notread past this structs boundary (the hash key
> > > calculation reads 8 bytes if this struct is size 5 bytes).
> > > The padding should be zeroed.
> > > If fields are modified in this struct, the padding must be updated
> > > to ensure multiple of 8 bytes size overall.
> > >
> > > Fixes: d299106e8e31 ("examples/ipsec-secgw: add IPsec sample
> > > application")
> > > Cc: [email protected]
> > > Cc: [email protected]
> > >
> > > Signed-off-by: Brian Dooley <[email protected]>
> >
> > Acked-by: Ciara Power <[email protected]>
>
> Applied and made the comment simpler with this:
>
> uint8_t padding[3]; /* padding to 8-byte size should be zeroed */
>
>
