From: Antonio Larrosa <larrosa@kde.org>
Date: Mon, 6 Mar 2017 13:54:52 +0100
Subject: Check for multiplication overflow in sfconvert

Checks that a multiplication doesn't overflow when
calculating the buffer size, and if it overflows,
reduce the buffer size instead of failing.

This fixes the 00192-audiofile-signintoverflow-sfconvert case
in #41
---
 sfcommands/sfconvert.c | 34 ++++++++++++++++++++++++++++++++--
 1 file changed, 32 insertions(+), 2 deletions(-)

diff --git a/sfcommands/sfconvert.c b/sfcommands/sfconvert.c
index 80a1bc4..970a3e4 100644
--- a/sfcommands/sfconvert.c
+++ b/sfcommands/sfconvert.c
@@ -45,6 +45,33 @@ void printusage (void);
 void usageerror (void);
 bool copyaudiodata (AFfilehandle infile, AFfilehandle outfile, int trackid);
 
+int firstBitSet(int x)
+{
+        int position=0;
+        while (x!=0)
+        {
+                x>>=1;
+                ++position;
+        }
+        return position;
+}
+
+#ifndef __has_builtin
+#define __has_builtin(x) 0
+#endif
+
+int multiplyCheckOverflow(int a, int b, int *result)
+{
+#if (defined __GNUC__ && __GNUC__ >= 5) || ( __clang__ && __has_builtin(__builtin_mul_overflow))
+	return __builtin_mul_overflow(a, b, result);
+#else
+	if (firstBitSet(a)+firstBitSet(b)>31) // int is signed, so we can't use 32 bits
+		return true;
+	*result = a * b;
+	return false;
+#endif
+}
+
 int main (int argc, char **argv)
 {
 	if (argc == 2)
@@ -323,8 +350,11 @@ bool copyaudiodata (AFfilehandle infile, AFfilehandle outfile, int trackid)
 {
 	int frameSize = afGetVirtualFrameSize(infile, trackid, 1);
 
-	const int kBufferFrameCount = 65536;
-	void *buffer = malloc(kBufferFrameCount * frameSize);
+	int kBufferFrameCount = 65536;
+	int bufferSize;
+	while (multiplyCheckOverflow(kBufferFrameCount, frameSize, &bufferSize))
+		kBufferFrameCount /= 2;
+	void *buffer = malloc(bufferSize);
 
 	AFframecount totalFrames = afGetFrameCount(infile, AF_DEFAULT_TRACK);
 	AFframecount totalFramesWritten = 0;
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=d9f733ad8b8e782bae68869e742664458e0d68e6'>root</a>/<a href='/guix/log/gnu?id=d9f733ad8b8e782bae68869e742664458e0d68e6'>gnu</a>/<a href='/guix/log/gnu/packages?id=d9f733ad8b8e782bae68869e742664458e0d68e6'>packages</a>/<a href='/guix/log/gnu/packages/kerberos.scm?id=d9f733ad8b8e782bae68869e742664458e0d68e6'>kerberos.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/kerberos.scm?id=d9f733ad8b8e782bae68869e742664458e0d68e6&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2020-10-08 21:25:20 -0400'>2020-10-08</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=b843f62aad4c3ed23d92d2e0dfa3d184e857932a'>gnu: mit-krb5: Enable TLS support.</a><span class='msg-avail'>...<span class='msg-tooltip'>Also enable more tests.

* gnu/packages/kerberos.scm (mit-krb5)[native-inputs]: Add tcl.
[inputs]: Add openssl.
</span></span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2020-05-17 15:16:55 +0200'>2020-05-17</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=cb6d4aff4454e65a039642f44204e7c892dc9d56'>gnu: heimdal: Update to 7.7.0.</a><span class='msg-avail'>...<span class='msg-tooltip'>And fix the test suite failures as a side effect.

* gnu/packages/kerberos.scm (heimdal): Update to 7.7.0.
</span></span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2020-03-26 12:59:35 +0100'>2020-03-26</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=770ea94c9cde701ae3b45f313799b9d95154c267'>gnu: mit-krb5: Supprt for the Hurd.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/patches/mit-krb5-hurd.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/kerberos.scm (mit-krb5): Use it.
</span></span></td><td>Jan Nieuwenhuizen</td></tr>
<tr><td><span title='2020-03-14 12:02:53 +0100'>2020-03-14</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=e59d958a9c9a509ce34ca553a5b1b03e406d561f'>gnu: mit-krb5: Fix segfault in gsasl test suite.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/patches/mit-krb5-qualify-short-hostnames.patch: New file.
* gnu/local.mk (dist_patch_DATA): Adjust accordingly.
* gnu/packages/kerberos.scm (mit-krb5)[source](patches): New field.
</span></span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-03-10 20:50:02 +0100'>2020-03-10</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=50b99c90c87642f664f9c9523a6e40fc8542ddcf'>Merge branch 'master' into core-updates</a></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-03-09 16:01:18 +0100'>2020-03-09</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=a0087cf58d1172bcb9267d349bfc8497721bc15d'>gnu: mit-krb5: Use HTTPS home page.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/kerberos.scm (mit-krb5)[home-page]: Use HTTPS.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2020-02-15 22:02:56 +0100'>2020-02-15</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=32d3f81a494e4b37c96ddbc23ff9a5a8140e8591'>gnu: mit-krb5: Update to 1.18.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/kerberos.scm (mit-krb5): Update to 1.18.
</span></span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-01-17 12:57:32 +0100'>2020-01-17</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=4798554038271f1a6d1319313ca68ea99ddaabbe'>gnu: mit-krb5: Set localstatedir to /var.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/kerberos.scm (mit-krb5)[arguments]: Set localstatedir.
</span></span></td><td>Ricardo Wurmus</td></tr>
<tr><td><span title='2020-01-08 21:56:03 +0100'>2020-01-08</span></td><td><a href='/guix/commit/gnu/packages/kerberos.scm?id=972a3e0b1e40eeb58350fa322122890bd776f3d7'>gnu: mit-krb5: Update to 1.17.1.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/kerberos.scm (mit-krb5): Update to 1.17.1.
</span></span></td><td>Marius Bakke</td></tr>

Age	Commit message (Expand)	Author
2020-10-08	gnu: mit-krb5: Enable TLS support....Also enable more tests. * gnu/packages/kerberos.scm (mit-krb5)[native-inputs]: Add tcl. [inputs]: Add openssl.	Maxim Cournoyer
2020-05-17	gnu: heimdal: Update to 7.7.0....And fix the test suite failures as a side effect. * gnu/packages/kerberos.scm (heimdal): Update to 7.7.0.	Maxim Cournoyer
2020-03-26	gnu: mit-krb5: Supprt for the Hurd....* gnu/packages/patches/mit-krb5-hurd.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/kerberos.scm (mit-krb5): Use it.	Jan Nieuwenhuizen
2020-03-14	gnu: mit-krb5: Fix segfault in gsasl test suite....* gnu/packages/patches/mit-krb5-qualify-short-hostnames.patch: New file. * gnu/local.mk (dist_patch_DATA): Adjust accordingly. * gnu/packages/kerberos.scm (mit-krb5)[source](patches): New field.	Marius Bakke
2020-03-10	Merge branch 'master' into core-updates	Marius Bakke
2020-03-09	gnu: mit-krb5: Use HTTPS home page....* gnu/packages/kerberos.scm (mit-krb5)[home-page]: Use HTTPS.	Tobias Geerinckx-Rice
2020-02-15	gnu: mit-krb5: Update to 1.18....* gnu/packages/kerberos.scm (mit-krb5): Update to 1.18.	Marius Bakke
2020-01-17	gnu: mit-krb5: Set localstatedir to /var....* gnu/packages/kerberos.scm (mit-krb5)[arguments]: Set localstatedir.	Ricardo Wurmus
2020-01-08	gnu: mit-krb5: Update to 1.17.1....* gnu/packages/kerberos.scm (mit-krb5): Update to 1.17.1.	Marius Bakke