Sync from gnulib.

2026-04-21 11:16:16 +02:00 · 2004-10-04 04:09:41 +00:00
parent 14f5062c30
commit 55fbe6686a
13 changed files with 244 additions and 102 deletions
--- a/lib/vasnprintf.c
+++ b/lib/vasnprintf.c
@@ -40,7 +40,7 @@
 #include <stdlib.h>	/* abort(), malloc(), realloc(), free() */
 #include <string.h>	/* memcpy(), strlen() */
 #include <errno.h>	/* errno */
-#include <limits.h>	/* CHAR_BIT */
+#include <limits.h>	/* CHAR_BIT, INT_MAX */
 #include <float.h>	/* DBL_MAX_EXP, LDBL_MAX_EXP */
 #if WIDE_CHAR_VERSION
 # include "wprintf-parse.h"
@@ -875,8 +875,19 @@ VASNPRINTF (CHAR_T *resultbuf, size_t *lengthp, const CHAR_T *format, va_list ar
      free (buf_malloced);
    CLEANUP ();
    *lengthp = length;
+    if (length > INT_MAX)
+      goto length_overflow;
    return result;

+  length_overflow:
+    /* We could produce such a big string, but its length doesn't fit into
+       an 'int'.  POSIX says that snprintf() fails with errno = EOVERFLOW in
+       this case.  */
+    if (result != resultbuf)
+      free (result);
+    errno = EOVERFLOW;
+    return NULL;
+
  out_of_memory:
    if (!(result == resultbuf || result == NULL))
      free (result);