[tor-bugs] #30920 [Core Tor/Tor]: Detect uint64 overflow in config_parse_units()
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Jun 19 13:04:22 UTC 2019
#30920: Detect uint64 overflow in config_parse_units()
---------------------------+------------------------------------
Reporter: nickm | Owner: (none)
Type: defect | Status: new
Priority: Low | Milestone: Tor: 0.4.2.x-final
Component: Core Tor/Tor | Version:
Severity: Minor | Resolution:
Keywords: easy overflow | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
---------------------------+------------------------------------
Comment (by teor):
It would be great to have a generic 64-bit multiplication overflow
function in:
https://gitweb.torproject.org/tor.git/tree/src/lib/intmath/muldiv.c
It should look like the overflow checking function in:
https://gitweb.torproject.org/tor.git/tree/src/lib/intmath/addsub.c
But with a note that division is expensive on some platforms.
(Which doesn't matter for a once-off config parse.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/30920#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list