Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Integer overflow in consume_integer() #29

Open
ligurio opened this issue Mar 27, 2025 · 0 comments · May be fixed by #30
Open

Integer overflow in consume_integer() #29

ligurio opened this issue Mar 27, 2025 · 0 comments · May be fixed by #30

Comments

@ligurio
Copy link
Owner

ligurio commented Mar 27, 2025 

[0] ~/sources/luzer $ tarantool
Tarantool 2.11.5-0-g12a9ceb870c
type 'help' for interactive help
tarantool> luzer = require('luzer')
---
...

tarantool> fdp = luzer.FuzzedDataProvider("12093810923801928309128309128021983")
---
...

tarantool> fdp:consume_integer(1, 2^51)
---
- error: min must be less than or equal to max
...

tarantool>

Version: 59877a2
ligurio added a commit that referenced this issue Mar 27, 2025
@ligurio
luzer: fix integer overflow in consume_integer()
ed7d697 
The implementation of FDP methods `consume_integer()` and
`consume_integers()` have used type `int` for passed arguments in
aforementioned functions. This leads to integer overflow.

Fixes #29
ligurio added a commit that referenced this issue Mar 27, 2025
@ligurio
luzer: fix type in consume_number()
Loading
Loading status checks…
51d0216 
The implementation of FDP methods `consume_number()` and
`consume_numbers()` are used type `double` for arguments of
aforementioned functions. The Lua type `lua_Number` can be not a
`double` and it is defined compile-time. The patch replaces
`double` with `lua_Number` to avoid overflows.

Follows up #29
@ligurio ligurio linked a pull request Mar 27, 2025 that will close this issue
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix integer overflow in consume_integer() ligurio/luzer
1 participant
@ligurio