strtoofft: reduce integer overflow risks globally

... make sure we bail out on overflows. Reported-by: Brian Carpenter Closes #1758
author: Daniel Stenberg <daniel@haxx.se> 2017-08-14 23:33:23 +0200
committer: Daniel Stenberg <daniel@haxx.se> 2017-08-14 23:33:41 +0200
commit: ff50fe0348466cae1a9f9f759b362c03f7060c34 (patch)
tree: 6a5a6efbe7bd7b00e49982e09a5da8f8341de28c /src/tool_paramhlp.c
parent: b53b4e44241415c0a7ad857c72ec323109d2a7c0 (diff)
download: curl-ff50fe0348466cae1a9f9f759b362c03f7060c34.tar.gz
1 files changed, 7 insertions, 3 deletions
diff --git a/src/tool_paramhlp.c b/src/tool_paramhlp.c
index 85c5e79a7..86a3fe6b0 100644
--- a/src/tool_paramhlp.c
+++ b/src/tool_paramhlp.c
@@ -400,9 +400,13 @@ ParameterError str2offset(curl_off_t *val, const char *str)
     return PARAM_NEGATIVE_NUMERIC;
 
 #if(CURL_SIZEOF_CURL_OFF_T > CURL_SIZEOF_LONG)
-  *val = curlx_strtoofft(str, &endptr, 0);
-  if((*val == CURL_OFF_T_MAX || *val == CURL_OFF_T_MIN) && (errno == ERANGE))
-    return PARAM_NUMBER_TOO_LARGE;
+  {
+    CURLofft offt = curlx_strtoofft(str, &endptr, 0, val);
+    if(CURL_OFFT_FLOW == offt)
+      return PARAM_NUMBER_TOO_LARGE;
+    else if(CURL_OFFT_INVAL == offt)
+      return PARAM_BAD_NUMERIC;
+  }
 #else
   errno = 0;
   *val = strtol(str, &endptr, 0);
author	Daniel Stenberg <daniel@haxx.se>	2017-08-14 23:33:23 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2017-08-14 23:33:41 +0200
commit	ff50fe0348466cae1a9f9f759b362c03f7060c34 (patch)
tree	6a5a6efbe7bd7b00e49982e09a5da8f8341de28c /src/tool_paramhlp.c
parent	b53b4e44241415c0a7ad857c72ec323109d2a7c0 (diff)
download	curl-ff50fe0348466cae1a9f9f759b362c03f7060c34.tar.gz