url: fix port overflow checking#15794
Closed
rmisev wants to merge 5 commits into
Closed
Conversation
This patch adds (port > 0xffff) check after each digit in the loop and prevents integer overflow.
Contributor
|
Maybe only bother checking if the buffer length is > 4? I think that will avoid having to check for most common ports. |
Contributor
Author
|
@mscdex I think your proposal complicates code a bit, and a gain is minimal - only three comparisons less for 4-digit port : int port = 0;
if (buffer.size() <= 4) {
// port overflow will not occur
for (size_t i = 0; i < buffer.size(); i++)
port = port * 10 + buffer[i] - '0';
} else {
for (size_t i = 0; i < buffer.size(); i++) {
port = port * 10 + buffer[i] - '0';
// prevent integer overflow
if (port > 0xffff) break;
}
}What do you think? |
addaleax
approved these changes
Oct 6, 2017
| @@ -1598,9 +1598,12 @@ void URL::Parse(const char* input, | |||
| special_back_slash) { | |||
| if (buffer.size() > 0) { | |||
| int port = 0; | |||
Member
There was a problem hiding this comment.
I think it might even get a little clearer now if you make this unsigned
Contributor
Author
There was a problem hiding this comment.
Yes, makes sense. Changed.
watilde
approved these changes
Oct 7, 2017
TimothyGu
approved these changes
Oct 7, 2017
| port = port * 10 + buffer[i] - '0'; | ||
| if (port < 0 || port > 0xffff) { | ||
| // prevent integer overflow | ||
| if (port > 0xffff) break; |
Member
There was a problem hiding this comment.
nit: the port > 0xffff could be moved into the for-loop head
Contributor
Author
There was a problem hiding this comment.
Seems reasonable, moved.
cjihrig
approved these changes
Oct 7, 2017
joyeecheung
approved these changes
Oct 8, 2017
Member
TimothyGu
approved these changes
Oct 8, 2017
Member
|
There are CI failures like this: I guess that’s just a mismatched test counter that needs to be updated or something like that? |
joyeecheung
reviewed
Oct 9, 2017
Member
There was a problem hiding this comment.
I think the counter here is just failureTests.length, there is no need to hard-code this
f43d979 to
5d3cc27
Compare
TimothyGu
approved these changes
Oct 9, 2017
Member
joyeecheung
approved these changes
Oct 10, 2017
Member
|
Landed in 92146e0. |
TimothyGu
pushed a commit
that referenced
this pull request
Oct 10, 2017
This patch adds (port > 0xffff) check after each digit in the loop and prevents integer overflow. PR-URL: #15794 Refs: web-platform-tests/wpt#7602 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Daijiro Wachi <daijiro.wachi@gmail.com> Reviewed-By: Timothy Gu <timothygu99@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Joyee Cheung <joyeec9h3@gmail.com>
addaleax
pushed a commit
to addaleax/ayo
that referenced
this pull request
Oct 12, 2017
This patch adds (port > 0xffff) check after each digit in the loop and prevents integer overflow. PR-URL: nodejs/node#15794 Refs: web-platform-tests/wpt#7602 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Daijiro Wachi <daijiro.wachi@gmail.com> Reviewed-By: Timothy Gu <timothygu99@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Joyee Cheung <joyeec9h3@gmail.com>
targos
pushed a commit
that referenced
this pull request
Oct 18, 2017
This patch adds (port > 0xffff) check after each digit in the loop and prevents integer overflow. PR-URL: #15794 Refs: web-platform-tests/wpt#7602 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Daijiro Wachi <daijiro.wachi@gmail.com> Reviewed-By: Timothy Gu <timothygu99@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Joyee Cheung <joyeec9h3@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
8 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This patch adds
(port > 0xffff)check after each digit in the loop and prevents integer overflow.In the current implementation a result can be incorrect if an integer overflow occurs. For example:
Refs: web-platform-tests/wpt#7602
Checklist
make -j4 test(UNIX), orvcbuild test(Windows) passesAffected core subsystem(s)
url