diff options
author | Patrick Steinhardt <ps@pks.im> | 2018-10-18 11:37:10 +0200 |
---|---|---|
committer | Patrick Steinhardt <ps@pks.im> | 2018-10-18 11:49:23 +0200 |
commit | 68deb2cc80ef19bf3a1915c26b5308b283a6d69a (patch) | |
tree | 341c986f2e7790fc28fdf33d207b4787a772be42 | |
parent | 1a2efd10bde66f798375e2f47ba57ef00ad5c193 (diff) | |
download | libgit2-68deb2cc80ef19bf3a1915c26b5308b283a6d69a.tar.gz |
util: remove unsafe `git__strtol64` function
The function `git__strtol64` does not take a maximum buffer length as
parameter. This has led to some unsafe usages of this function, and as
such we may consider it as being unsafe to use. As we have now
eradicated all usages of this function, let's remove it completely to
avoid future misuse.
-rw-r--r-- | src/util.c | 6 | ||||
-rw-r--r-- | src/util.h | 1 | ||||
-rw-r--r-- | tests/core/strtol.c | 38 |
3 files changed, 16 insertions, 29 deletions
diff --git a/src/util.c b/src/util.c index 79b362f7f..099a28a2a 100644 --- a/src/util.c +++ b/src/util.c @@ -68,12 +68,6 @@ int git_strarray_copy(git_strarray *tgt, const git_strarray *src) return 0; } -int git__strtol64(int64_t *result, const char *nptr, const char **endptr, int base) -{ - - return git__strntol64(result, nptr, (size_t)-1, endptr, base); -} - int git__strntol64(int64_t *result, const char *nptr, size_t nptr_len, const char **endptr, int base) { const char *p; diff --git a/src/util.h b/src/util.h index b6f5b7519..646631bcf 100644 --- a/src/util.h +++ b/src/util.h @@ -60,7 +60,6 @@ GIT_INLINE(int) git__signum(int val) extern int git__strtol32(int32_t *n, const char *buff, const char **end_buf, int base); extern int git__strntol32(int32_t *n, const char *buff, size_t buff_len, const char **end_buf, int base); -extern int git__strtol64(int64_t *n, const char *buff, const char **end_buf, int base); extern int git__strntol64(int64_t *n, const char *buff, size_t buff_len, const char **end_buf, int base); diff --git a/tests/core/strtol.c b/tests/core/strtol.c index 0d3b6a5e6..30109b438 100644 --- a/tests/core/strtol.c +++ b/tests/core/strtol.c @@ -17,29 +17,23 @@ void test_core_strtol__int32(void) cl_git_fail(git__strtol32(&i, " -2147483657 ", NULL, 10)); } -void test_core_strtol__int64(void) +static void assert_l64_parses(const char *string, int64_t expected, int base) { int64_t i; - - cl_git_pass(git__strtol64(&i, "123", NULL, 10)); - cl_assert(i == 123); - cl_git_pass(git__strtol64(&i, " +123 ", NULL, 10)); - cl_assert(i == 123); - cl_git_pass(git__strtol64(&i, " +2147483647 ", NULL, 10)); - cl_assert(i == 2147483647); - cl_git_pass(git__strtol64(&i, " -2147483648 ", NULL, 10)); - cl_assert(i == -2147483648LL); - cl_git_pass(git__strtol64(&i, " 2147483657 ", NULL, 10)); - cl_assert(i == 2147483657LL); - cl_git_pass(git__strtol64(&i, " -2147483657 ", NULL, 10)); - cl_assert(i == -2147483657LL); - cl_git_pass(git__strtol64(&i, " 9223372036854775807 ", NULL, 10)); - cl_assert(i == INT64_MAX); - cl_git_pass(git__strtol64(&i, " -9223372036854775808 ", NULL, 10)); - cl_assert(i == INT64_MIN); - cl_git_pass(git__strtol64(&i, " 0x7fffffffffffffff ", NULL, 16)); - cl_assert(i == INT64_MAX); - cl_git_pass(git__strtol64(&i, " -0x8000000000000000 ", NULL, 16)); - cl_assert(i == INT64_MIN); + cl_git_pass(git__strntol64(&i, string, strlen(string), NULL, base)); + cl_assert_equal_i(i, expected); } +void test_core_strtol__int64(void) +{ + assert_l64_parses("123", 123, 10); + assert_l64_parses(" +123 ", 123, 10); + assert_l64_parses(" +2147483647 ", 2147483647, 10); + assert_l64_parses(" -2147483648 ", -2147483648LL, 10); + assert_l64_parses(" 2147483657 ", 2147483657LL, 10); + assert_l64_parses(" -2147483657 ", -2147483657LL, 10); + assert_l64_parses(" 9223372036854775807 ", INT64_MAX, 10); + assert_l64_parses(" -9223372036854775808 ", INT64_MIN, 10); + assert_l64_parses(" 0x7fffffffffffffff ", INT64_MAX, 16); + assert_l64_parses(" -0x8000000000000000 ", INT64_MIN, 16); +} |