diff options
| author | Paul Eggert | 2015-11-08 22:47:01 -0800 |
|---|---|---|
| committer | Paul Eggert | 2015-11-08 22:48:28 -0800 |
| commit | 1087305574fd61256d66eb0c995f8bb74bd91afe (patch) | |
| tree | 9f0052e41a56c785575727931ff4abb8e7dfa7e0 /src/casefiddle.c | |
| parent | bcca6a2a028d05af3cb5b31a5a2c997f3f1f1d31 (diff) | |
| download | emacs-1087305574fd61256d66eb0c995f8bb74bd91afe.tar.gz emacs-1087305574fd61256d66eb0c995f8bb74bd91afe.zip | |
Use INT_ADD_WRAPV etc. to check integer overflow
* src/alloc.c (xnmalloc, xnrealloc, xpalloc, Fmake_string):
* src/buffer.c (record_overlay_string, overlay_strings):
* src/casefiddle.c (casify_object):
* src/ccl.c (Fccl_execute_on_string):
* src/character.c (char_width, c_string_width, lisp_string_width)
(count_size_as_multibyte, string_escape_byte8):
* src/coding.c (coding_alloc_by_realloc, produce_chars):
* src/data.c (arith_driver):
* src/dispnew.c (realloc_glyph_pool, init_display):
* src/editfns.c (styled_format):
* src/fns.c (Ffillarray):
* src/ftfont.c (ftfont_shape_by_flt):
* src/gnutls.c (gnutls_hex_string):
* src/gtkutil.c (get_utf8_string):
* src/image.c (x_to_xcolors, x_detect_edges, png_load_body):
* src/keymap.c (Fkey_description):
* src/lisp.h (SAFE_ALLOCA_LISP):
* src/term.c (encode_terminal_code):
* src/tparam.c (tparam1):
* src/xselect.c (x_property_data_to_lisp):
* src/xsmfns.c (smc_save_yourself_CB):
* src/xterm.c (x_term_init):
When checking for integer overflow, prefer INT_MULTIPLY_WRAPV to
more-complicated code involving division and/or
INT_MULTIPLY_OVERFLOW, and similarly for INT_ADD_WRAPV and
subtraction and/or INT_ADD_OVERFLOW.
* src/casefiddle.c (casify_object): Simplify multibyte size check.
* src/character.c: Remove some obsolete ‘#ifdef emacs’s.
* src/data.c (arith_driver): Also check for division overflow,
as that’s now possible given that the accumulator can now contain
any Emacs integer.
* src/lisp.h (lisp_word_count): Remove; no longer used.
Diffstat (limited to 'src/casefiddle.c')
| -rw-r--r-- | src/casefiddle.c | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/src/casefiddle.c b/src/casefiddle.c index 8755353240a..b94ea8e212e 100644 --- a/src/casefiddle.c +++ b/src/casefiddle.c | |||
| @@ -114,15 +114,15 @@ casify_object (enum case_action flag, Lisp_Object obj) | |||
| 114 | ptrdiff_t i, i_byte, size = SCHARS (obj); | 114 | ptrdiff_t i, i_byte, size = SCHARS (obj); |
| 115 | int len; | 115 | int len; |
| 116 | USE_SAFE_ALLOCA; | 116 | USE_SAFE_ALLOCA; |
| 117 | ptrdiff_t o_size = (size < STRING_BYTES_BOUND / MAX_MULTIBYTE_LENGTH | 117 | ptrdiff_t o_size; |
| 118 | ? size * MAX_MULTIBYTE_LENGTH | 118 | if (INT_MULTIPLY_WRAPV (size, MAX_MULTIBYTE_LENGTH, &o_size)) |
| 119 | : STRING_BYTES_BOUND); | 119 | o_size = PTRDIFF_MAX; |
| 120 | unsigned char *dst = SAFE_ALLOCA (o_size); | 120 | unsigned char *dst = SAFE_ALLOCA (o_size); |
| 121 | unsigned char *o = dst; | 121 | unsigned char *o = dst; |
| 122 | 122 | ||
| 123 | for (i = i_byte = 0; i < size; i++, i_byte += len) | 123 | for (i = i_byte = 0; i < size; i++, i_byte += len) |
| 124 | { | 124 | { |
| 125 | if (o_size - (o - dst) < MAX_MULTIBYTE_LENGTH) | 125 | if (o_size - MAX_MULTIBYTE_LENGTH < o - dst) |
| 126 | string_overflow (); | 126 | string_overflow (); |
| 127 | c = STRING_CHAR_AND_LENGTH (SDATA (obj) + i_byte, len); | 127 | c = STRING_CHAR_AND_LENGTH (SDATA (obj) + i_byte, len); |
| 128 | if (inword && flag != CASE_CAPITALIZE_UP) | 128 | if (inword && flag != CASE_CAPITALIZE_UP) |