diff options
author | matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2005-12-07 08:42:42 +0000 |
---|---|---|
committer | matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2005-12-07 08:42:42 +0000 |
commit | d86f0de09397e9e5342965594e78e261bfca7787 (patch) | |
tree | ac5b8caab42f5329cb1998fefa562ce556791034 /sprintf.c | |
parent | d5e02a7081cef509b3ca0796ba8d624fa039b173 (diff) | |
download | ruby-d86f0de09397e9e5342965594e78e261bfca7787.tar.gz |
* sprintf.c (rb_f_sprintf): [ruby-dev:27967]
* sprintf.c (rb_str_format): integer overflow check added.
* sprintf.c (GETASTER): ditto.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_1_8@9655 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'sprintf.c')
-rw-r--r-- | sprintf.c | 8 |
1 files changed, 5 insertions, 3 deletions
@@ -113,10 +113,11 @@ sign_bits(base, p) t = p++; \ n = 0; \ for (; p < end && ISDIGIT(*p); p++) { \ - if ((n*10) / 10 != n) { \ + int next_n = 10 * n + (*p - '0'); \ + if (next_n / 10 != n) {\ rb_raise(rb_eArgError, #val " too big"); \ } \ - n = 10 * n + (*p - '0'); \ + n = next_n; \ } \ if (p >= end) { \ rb_raise(rb_eArgError, "malformed format string - %%*[0-9]"); \ @@ -312,7 +313,8 @@ rb_f_sprintf(argc, argv) case '5': case '6': case '7': case '8': case '9': n = 0; for (; p < end && ISDIGIT(*p); p++) { - if ((n*10) / 10 != n) { + int next_n = 10 * n + (*p - '0'); + if (next_n / 10 != n) { rb_raise(rb_eArgError, "width too big"); } n = 10 * n + (*p - '0'); |