teco_memory_check() now checks for addition overflows and negative searches (<S>) for multiplication overflows

* Since the numbers come from "outside" (SciTECO scripts) this is easily possible, resulting either in missed checks or even memory corruption. * In particular, this fixes the "Searching with large counts" test case on 32-bit builds. Perhaps at least one CI build should be 32-bit?
author: Robin Haberkorn <robin.haberkorn@googlemail.com> 2021-06-05 17:43:58 +0200
committer: Robin Haberkorn <robin.haberkorn@googlemail.com> 2021-06-05 17:43:58 +0200
commit: ae913ab6275ff746439a2d99f8a1550ec2e511ff (patch)
tree: fade465796b86ab17b0d7d1bc6862386f685524e /src/memory.c
parent: a5733728560d300774a4322ed18fc75b5946d4de (diff)
download: sciteco-ae913ab6275ff746439a2d99f8a1550ec2e511ff.tar.gz
1 files changed, 9 insertions, 1 deletions
diff --git a/src/memory.c b/src/memory.c
index 9846753..2d93b12 100644
--- a/src/memory.c
+++ b/src/memory.c
@@ -678,7 +678,15 @@ teco_memory_check(gsize request, GError **error)
 {
 	gsize memory_usage = g_atomic_int_get(&teco_memory_usage) + request;
 
-	if (G_UNLIKELY(teco_memory_limit && memory_usage > teco_memory_limit)) {
+	/*
+	 * Check for overflows.
+	 * NOTE: Glib 2.48 has g_size_checked_add().
+	 */
+	if (G_UNLIKELY(memory_usage < request))
+		/* guaranteed to fail if memory limiting is enabled */
+		memory_usage = G_MAXSIZE;
+
+	if (G_UNLIKELY(teco_memory_limit && memory_usage >= teco_memory_limit)) {
 		g_autofree gchar *limit_str = g_format_size(memory_usage);
 
 		g_set_error(error, TECO_ERROR, TECO_ERROR_MEMLIMIT,
author	Robin Haberkorn <robin.haberkorn@googlemail.com>	2021-06-05 17:43:58 +0200
committer	Robin Haberkorn <robin.haberkorn@googlemail.com>	2021-06-05 17:43:58 +0200
commit	ae913ab6275ff746439a2d99f8a1550ec2e511ff (patch)
tree	fade465796b86ab17b0d7d1bc6862386f685524e /src/memory.c
parent	a5733728560d300774a4322ed18fc75b5946d4de (diff)
download	sciteco-ae913ab6275ff746439a2d99f8a1550ec2e511ff.tar.gz