Avoid signed overflow in fmt_scaled

mirror of https://github.com/openbsd/src.git synced 2026-06-18 07:13:36 +02:00

Adding the scaled fractional part to whole may result in a signed overflow.
Guard against this by adding checks before subtracting or adding.

problem pointed out by a friend of claudio's
fix looks good to claudio, ok djm

This commit is contained in:

2026-06-09 06:00:13 +00:00

parent 7399bf8369

commit fcb5a24fd8

1 changed files with 12 additions and 3 deletions

									
										lib/libutil/fmt_scaled.c
									
		+12
		-3
	
												View File
												
				@@ -1,4 +1,4 @@

				/*	$OpenBSD: fmt_scaled.c,v 1.25 2026/06/06 23:53:59 djm Exp $	*/

				/*	$OpenBSD: fmt_scaled.c,v 1.26 2026/06/09 06:00:13 tb Exp $	*/

				/*

				 * Copyright (c) 2001, 2002, 2003 Ian F. Darwin.  All rights reserved.

				@@ -210,10 +210,19 @@ scan_scaled(char *scaled, long long *result)

								fpart /= 10;

								divs--;

							}

							if (sign == -1)

							if (sign == -1) {

								if (whole < LLONG_MIN + fpart) {

									errno = ERANGE;

									return -1;

								}

								whole -= fpart;

							else

							} else {

								if (whole > LLONG_MAX - fpart) {

									errno = ERANGE;

									return -1;

								}

								whole += fpart;

							}

							*result = whole;

							return 0;

						}