git.ipfire.org Git - thirdparty/bind9.git/commit

author	Aram Sargsyan <aram@isc.org>
	Mon, 17 Oct 2022 08:45:45 +0000 (08:45 +0000)
committer	Aram Sargsyan <aram@isc.org>
	Mon, 17 Oct 2022 08:45:45 +0000 (08:45 +0000)
commit	fddaebb285df4a7d00ff12f8a1bd9beef21a2a9d
tree	d005efc6c3431a1660f866b25c254c53aa626b32	tree \| snapshot
parent	190aab84d7b90e6ebd860494efbd160b76dac6de	commit \| diff

Handle large numbers when parsing/printing a duration

The isccfg_duration_fromtext() function is truncating large numbers
to 32 bits instead of capping or rejecting them, i.e. 64424509445,
which is 0xf00000005, gets parsed as 32-bit value 5 (0x00000005).

Fail parsing a duration if any of its components is bigger than
32 bits. Using those kind of big numbers has no practical use case
for a duration.

The isccfg_duration_toseconds() function can overflow the 32 bit
seconds variable when calculating the duration from its component
parts.

To avoid that, use 64-bit calculation and return UINT32_MAX if the
calculated value is bigger than UINT32_MAX. Again, a number this big
has no practical use case anyway.

The buffer for the generated duration string is limited to 64 bytes,
which, in theory, is smaller than the longest possible generated
duration string.

Use 80 bytes instead, calculated by the '7 x (10 + 1) + 3' formula,
where '7' is the count of the duration's parts (year, month, etc.), '10'
is their maximum length when printed as a decimal number, '1' is their
indicator character (Y, M, etc.), and 3 is two more indicators (P and T)
and the terminating NUL character.

lib/isccfg/duration.c		diff \| blob \| blame \| history
lib/isccfg/include/isccfg/duration.h		diff \| blob \| blame \| history
lib/isccfg/parser.c		diff \| blob \| blame \| history