fluencelabs/musl
1
0
Fork 0
mirror of https://github.com/fluencelabs/musl synced 2025-06-12 06:21:39 +00:00
Code Issues Projects Releases Wiki Activity

fix twos complement overflow bug in mem streams boundary check

Browse Source 
the expression -off is not safe in case off is the most-negative
value. instead apply - to base which is known to be non-negative and
bounded within sanity.
This commit is contained in:
Rich Felker
2011-09-04 00:06:01 -04:00
parent d4fa6f0e08
commit 32d67e938e
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/stdio/open_wmemstream.c
View File

@ -29,7 +29,7 @@ static off_t wms_seek(FILE *f, off_t off, int whence)
errno = EINVAL;
return -1;
}
if (-off > base || off > SSIZE_MAX/4-base) goto fail;
if (off < -base || off > SSIZE_MAX/4-base) goto fail;
memset(&c->mbs, 0, sizeof c->mbs);
return c->pos = base+off;
}