Check for overflow/underflow in parse_signed_integer

2022-12-17 14:42:56 +01:00 · 2022-12-17 14:42:56 +01:00 · 97cb57d521
commit 97cb57d521
parent 59c9d8f119
1 changed files with 7 additions and 3 deletions
--- a/luna/src/NumberParsing.cpp
+++ b/luna/src/NumberParsing.cpp
@ -1,3 +1,4 @@
+#include <limits.h>
 #include <luna/CType.h>
 #include <luna/NumberParsing.h>

@ -47,6 +48,9 @@ usize parse_unsigned_integer(const char* str, const char** endptr, int base)
    return val;
 }

+#define SSIZE_MAX LONG_MAX
+#define SSIZE_MIN (-SSIZE_MAX - (isize)1)
+
 isize parse_signed_integer(const char* str, const char** endptr, int base)
 {
    bool negative = false;
@ -59,9 +63,9 @@ isize parse_signed_integer(const char* str, const char** endptr, int base)
        str++;
    }

-    usize rc = parse_unsigned_integer(
-        str, endptr,
-        base); // FIXME: Check for overflow (the unsigned usize value might not fit into a signed isize)
+    usize rc = parse_unsigned_integer(str, endptr, base);
+
+    if (rc > SSIZE_MAX) { return negative ? SSIZE_MIN : SSIZE_MAX; }

    return negative ? -(isize)rc : (isize)rc;
 }