[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Emacs-diffs] /srv/bzr/emacs/trunk r105654: Integer overflow fixes for s
|
From: |
Paul Eggert |
|
Subject: |
[Emacs-diffs] /srv/bzr/emacs/trunk r105654: Integer overflow fixes for scrolling, etc. |
|
Date: |
Sun, 04 Sep 2011 12:14:54 -0700 |
|
User-agent: |
Bazaar (2.3.1) |
------------------------------------------------------------
revno: 105654 [merge]
committer: Paul Eggert <address@hidden>
branch nick: trunk
timestamp: Sun 2011-09-04 12:14:54 -0700
message:
Integer overflow fixes for scrolling, etc.
modified:
src/ChangeLog
src/indent.c
src/print.c
src/search.c
src/window.c
src/xdisp.c
=== modified file 'src/ChangeLog'
--- a/src/ChangeLog 2011-09-03 22:20:00 +0000
+++ b/src/ChangeLog 2011-09-04 19:14:54 +0000
@@ -1,3 +1,39 @@
+2011-09-04 Paul Eggert <address@hidden>
+
+ Integer overflow fixes for scrolling, etc.
+ Without this fix, Emacs silently mishandles large integers sometimes.
+ For example, "C-u 4294967297 M-x recenter" was be treated as if
+ it were "C-u 1 M-x recenter" on a typical 64-bit host.
+
+ * xdisp.c: Integer overflow fix.
+ (try_window_id): Check Emacs fixnum range before converting to 'int'.
+
+ * window.c: Integer overflow fixes.
+ (window_scroll_line_based, Frecenter):
+ Check that an Emacs fixnum is in range before assigning it to 'int'.
+ (Frecenter, Fmove_to_window_line): Use EMACS_INT, not int, for
+ values converted from Emacs fixnums.
+ (Frecenter): Don't wrap around a line count if it is out of 'int'
+ range; instead, treat it as an extreme value.
+ (Fset_window_configuration, compare_window_configurations):
+ Use ptrdiff_t, not int, for index that might exceed 2 GiB.
+
+ * search.c: Integer overflow fixes
+ (Freplace_match): Use ptrdiff_t, not int, for indexes that can
+ exceed INT_MAX. Check that EMACS_INT value is in range before
+ assigning it to the (possibly-narrower) index.
+ (match_limit): Don't assume that a fixnum can fit in 'int'.
+
+ * print.c: Integer overflow fix.
+ (print_object): Use ptrdiff_t, not int, for index that can
+ exceed INT_MAX.
+
+ * indent.c: Integer overflow fixes.
+ (position_indentation): Now takes ptrdiff_t, not int.
+ (Fvertical_motion): Don't wrap around LINES values that don't fit
+ in 'int'. Instead, treat them as extreme values. This is good
+ enough for windows, which can't have more than INT_MAX lines anyway.
+
2011-09-03 Lars Magne Ingebrigtsen <address@hidden>
* Require libxml/parser.h to avoid compilation warning.
=== modified file 'src/indent.c'
--- a/src/indent.c 2011-08-05 23:35:10 +0000
+++ b/src/indent.c 2011-09-04 17:24:12 +0000
@@ -56,7 +56,7 @@
static int last_known_column_modified;
static EMACS_INT current_column_1 (void);
-static EMACS_INT position_indentation (int);
+static EMACS_INT position_indentation (ptrdiff_t);
/* Cache of beginning of line found by the last call of
current_column. */
@@ -855,7 +855,7 @@
}
static EMACS_INT
-position_indentation (register int pos_byte)
+position_indentation (ptrdiff_t pos_byte)
{
register EMACS_INT column = 0;
int tab_width = SANE_TAB_WIDTH (current_buffer);
@@ -2063,7 +2063,7 @@
/* Do this even if LINES is 0, so that we move back to the
beginning of the current line as we ought. */
if (XINT (lines) == 0 || IT_CHARPOS (it) > 0)
- move_it_by_lines (&it, XINT (lines));
+ move_it_by_lines (&it, max (INT_MIN, XINT (lines)));
}
else
{
@@ -2083,7 +2083,7 @@
&& it.c == '\n'))
move_it_by_lines (&it, -1);
it.vpos = 0;
- move_it_by_lines (&it, XINT (lines));
+ move_it_by_lines (&it, min (INT_MAX, XINT (lines)));
}
else
{
@@ -2099,12 +2099,12 @@
move_it_by_lines (&it, 1);
}
if (XINT (lines) > 1)
- move_it_by_lines (&it, XINT (lines) - 1);
+ move_it_by_lines (&it, min (INT_MAX, XINT (lines) - 1));
}
else
{
it.vpos = 0;
- move_it_by_lines (&it, XINT (lines));
+ move_it_by_lines (&it, min (INT_MAX, XINT (lines)));
}
}
}
=== modified file 'src/print.c'
--- a/src/print.c 2011-07-28 20:23:19 +0000
+++ b/src/print.c 2011-09-04 17:25:23 +0000
@@ -1697,7 +1697,7 @@
}
else if (BOOL_VECTOR_P (obj))
{
- register int i;
+ ptrdiff_t i;
register unsigned char c;
struct gcpro gcpro1;
EMACS_INT size_in_chars
=== modified file 'src/search.c'
--- a/src/search.c 2011-08-05 02:15:35 +0000
+++ b/src/search.c 2011-09-04 17:27:38 +0000
@@ -2404,7 +2404,7 @@
int some_uppercase;
int some_nonuppercase_initial;
register int c, prevc;
- int sub;
+ ptrdiff_t sub;
EMACS_INT opoint, newpoint;
CHECK_STRING (newtext);
@@ -2423,9 +2423,9 @@
else
{
CHECK_NUMBER (subexp);
+ if (! (0 <= XINT (subexp) && XINT (subexp) < search_regs.num_regs))
+ args_out_of_range (subexp, make_number (search_regs.num_regs));
sub = XINT (subexp);
- if (sub < 0 || sub >= search_regs.num_regs)
- args_out_of_range (subexp, make_number (search_regs.num_regs));
}
if (NILP (string))
@@ -2662,7 +2662,7 @@
unsigned char str[MAX_MULTIBYTE_LENGTH];
const unsigned char *add_stuff = NULL;
ptrdiff_t add_len = 0;
- int idx = -1;
+ ptrdiff_t idx = -1;
if (str_multibyte)
{
@@ -2813,7 +2813,7 @@
static Lisp_Object
match_limit (Lisp_Object num, int beginningp)
{
- register int n;
+ EMACS_INT n;
CHECK_NUMBER (num);
n = XINT (num);
=== modified file 'src/window.c'
--- a/src/window.c 2011-08-05 23:35:10 +0000
+++ b/src/window.c 2011-09-04 18:46:51 +0000
@@ -4662,14 +4662,9 @@
if (pos < ZV)
{
- int this_scroll_margin = scroll_margin;
-
/* Don't use a scroll margin that is negative or too large. */
- if (this_scroll_margin < 0)
- this_scroll_margin = 0;
-
- if (XINT (w->total_lines) < 4 * scroll_margin)
- this_scroll_margin = XINT (w->total_lines) / 4;
+ int this_scroll_margin =
+ max (0, min (scroll_margin, XINT (w->total_lines) / 4));
set_marker_restricted_both (w->start, w->buffer, pos, pos_byte);
w->start_at_line_beg = bolp;
@@ -5057,7 +5052,7 @@
struct buffer *obuf = current_buffer;
int center_p = 0;
EMACS_INT charpos, bytepos;
- int iarg IF_LINT (= 0);
+ EMACS_INT iarg IF_LINT (= 0);
int this_scroll_margin;
/* If redisplay is suppressed due to an error, try again. */
@@ -5096,9 +5091,8 @@
/* Do this after making BUF current
in case scroll_margin is buffer-local. */
- this_scroll_margin = max (0, scroll_margin);
- this_scroll_margin = min (this_scroll_margin,
- XFASTINT (w->total_lines) / 4);
+ this_scroll_margin =
+ max (0, min (scroll_margin, XFASTINT (w->total_lines) / 4));
/* Handle centering on a graphical frame specially. Such frames can
have variable-height lines and centering point on the basis of
@@ -5122,7 +5116,7 @@
{
struct it it;
struct text_pos pt;
- int nlines = -iarg;
+ int nlines = min (INT_MAX, -iarg);
int extra_line_spacing;
int h = window_box_height (w);
void *itdata = bidi_shelve_cache ();
@@ -5288,15 +5282,14 @@
lines = displayed_window_lines (w);
#if 0
- this_scroll_margin = max (0, scroll_margin);
- this_scroll_margin = min (this_scroll_margin, lines / 4);
+ this_scroll_margin = max (0, min (scroll_margin, lines / 4));
#endif
if (NILP (arg))
XSETFASTINT (arg, lines / 2);
else
{
- int iarg = XINT (Fprefix_numeric_value (arg));
+ EMACS_INT iarg = XINT (Fprefix_numeric_value (arg));
if (iarg < 0)
iarg = iarg + lines;
@@ -5468,7 +5461,8 @@
struct window *root_window;
struct window **leaf_windows;
int n_leaf_windows;
- int k, i, n;
+ ptrdiff_t k;
+ int i, n;
/* If the frame has been resized since this window configuration was
made, we change the frame to the size specified in the
@@ -6344,7 +6338,7 @@
{
register struct save_window_data *d1, *d2;
struct Lisp_Vector *sws1, *sws2;
- int i;
+ ptrdiff_t i;
CHECK_WINDOW_CONFIGURATION (configuration1);
CHECK_WINDOW_CONFIGURATION (configuration2);
=== modified file 'src/xdisp.c'
--- a/src/xdisp.c 2011-08-30 17:32:44 +0000
+++ b/src/xdisp.c 2011-09-04 18:48:35 +0000
@@ -16919,8 +16919,8 @@
{
int this_scroll_margin, cursor_height;
- this_scroll_margin = max (0, scroll_margin);
- this_scroll_margin = min (this_scroll_margin, WINDOW_TOTAL_LINES (w) / 4);
+ this_scroll_margin =
+ max (0, min (scroll_margin, WINDOW_TOTAL_LINES (w) / 4));
this_scroll_margin *= FRAME_LINE_HEIGHT (it.f);
cursor_height = MATRIX_ROW (w->desired_matrix, w->cursor.vpos)->height;
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Emacs-diffs] /srv/bzr/emacs/trunk r105654: Integer overflow fixes for scrolling, etc.,
Paul Eggert <=