Skip to content

M
mruby
Commit 1ed4de58 authored by Yukihiro "Matz" Matsumoto's avatar Yukihiro "Matz" Matsumoto
Browse files
Options

str_buf_cat(): better size check added; ref #3342

parent 342b1de6
Hide whitespace changes
Inline Side-by-side
Showing with 9 additions and 4 deletions
src/string.c
View file @ 1ed4de58
...@@ -163,15 +163,20 @@ str_buf_cat(mrb_state *mrb, struct RString *s, const char *ptr, size_t len) ...@@ -163,15 +163,20 @@ str_buf_cat(mrb_state *mrb, struct RString *s, const char *ptr, size_t len)
total = RSTR_LEN(s)+len; total = RSTR_LEN(s)+len;
if (total >= MRB_INT_MAX) { if (total >= MRB_INT_MAX) {
size_error:
mrb_raise(mrb, E_ARGUMENT_ERROR, "string size too big"); mrb_raise(mrb, E_ARGUMENT_ERROR, "string size too big");
} }
if (capa <= total) { if (capa <= total) {
while (total > capa) { while (total > capa) {
if (capa + 1 >= MRB_INT_MAX / 2) { if (capa <= MRB_INT_MAX / 2) {
capa = MRB_INT_MAX; capa *= 2;
break; }
else {
goto size_error;
} }
capa = (capa + 1) * 2; }
if (capa < total || capa > MRB_INT_MAX) {
goto size_error;
} }
resize_capa(mrb, s, capa); resize_capa(mrb, s, capa);
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment