Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Arithmetic overflow occurs while using API LineRange::from() #2674

Closed
HeeillWang opened this issue Sep 22, 2023 · 2 comments · Fixed by #2698
Closed

Arithmetic overflow occurs while using API LineRange::from() #2674

HeeillWang opened this issue Sep 22, 2023 · 2 comments · Fixed by #2698
Labels
bug Something isn't working

Comments

@HeeillWang
Copy link

What steps will reproduce the bug?
I executed fuzz testing with bat public APIs and found crash case.

let fuzz_arg1 = "18446744073709551615:+1";
LineRange::from(fuzz_arg1);

What happens?

Thread '<unnamed>' panicked at 'attempt to add with overflow', /rustc/871b5952023139738f72eba235063575062bc2e9/library/core/src/ops/arith.rs:109

The overflow occurs with this statement :

bat/src/line_range.rs

Line 56 in 5a240f3

new_range.lower + more_lines

What did you expect to happen instead?
Need assertion to prevent arith overflow, or need to explicitly mention panic condition.
@HeeillWang HeeillWang added the bug Something isn't working label Sep 22, 2023
@sohang3112
Copy link

Maybe saturating_add(new_range.lower, more_lines) can be done here to avoid panicking.

@HeeillWang
Copy link
Author

Maybe saturating_add(new_range.lower, more_lines) can be done here to avoid panicking.

Looks nice, better than assert!.

@skoriop skoriop mentioned this issue Oct 4, 2023
Merged
@github-actions github-actions bot mentioned this issue Jul 18, 2024
Merged
This was referenced Aug 16, 2024
Closed
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix arithmetic overflow in LineRange::parse_range skoriop/bat
2 participants
@HeeillWang @sohang3112