ref: 98724b90936c46e457234a0189bb09242fc727d1
parent: d60192531e3ee6b492151f6aa8edd481ebddcdf7
author: Ben Harris <bjh21@bjh21.me.uk>
date: Tue Jan 10 19:04:59 EST 2023
Last-ditch grid-size limit for Inertia At least prevent integer overflow when constructing the grid.
--- a/inertia.c
+++ b/inertia.c
@@ -11,6 +11,7 @@
#include <string.h>
#include <assert.h>
#include <ctype.h>
+#include <limits.h>
#include <math.h>
#include "puzzles.h"
@@ -202,6 +203,8 @@
*/
if (params->w < 2 || params->h < 2)
return "Width and height must both be at least two";
+ if (params->w > INT_MAX / params->h)
+ return "Width times height must not be unreasonably large";
/*
* The grid construction algorithm creates 1/5 as many gems as