alloca: add an overflow check too

Of course, alloca() shouldn't be used with anything that can grow without bounds anyway, but let's better safe than sorry, and catch this early. Since alloca() is not supposed to return an error we trigger an assert() instead, which is still better than heap trickery.
2024-11-06 16:59:03 +03:00 · 2018-04-27 14:27:14 +02:00 · 2018-04-27 14:27:14 +02:00 · 1232c44718
commit 1232c44718
parent da6053d0a7
1 changed files with 10 additions and 2 deletions
--- a/src/basic/alloc-util.h
+++ b/src/basic/alloc-util.h
@ -18,9 +18,17 @@

 #define new0(t, n) ((t*) calloc((n), sizeof(t)))

-#define newa(t, n) ((t*) alloca(sizeof(t)*(n)))
+#define newa(t, n)                                              \
+        ({                                                      \
+                assert(!size_multiply_overflow(sizeof(t), n));  \
+                (t*) alloca(sizeof(t)*(n));                     \
+        })

-#define newa0(t, n) ((t*) alloca0(sizeof(t)*(n)))
+#define newa0(t, n)                                             \
+        ({                                                      \
+                assert(!size_multiply_overflow(sizeof(t), n));  \
+                (t*) alloca0(sizeof(t)*(n));                    \
+        })

 #define newdup(t, p, n) ((t*) memdup_multiply(p, sizeof(t), (n)))