base/time/time_win.cc - Issue 2405453002: Fix Integer-overflow in base::Time::FromExploded.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: base/time/time_win.cc

Issue 2405453002: Fix Integer-overflow in base::Time::FromExploded. (Closed)

Patch Set: rebased and fixed net unittest Created 4 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: base/time/time_win.cc

diff --git a/base/time/time_win.cc b/base/time/time_win.cc

index 631eb3a292bbce00286ac8682242dde5be3eb42d..19144cb2792e376c648f30bde3b2f3757645dbfb 100644

--- a/base/time/time_win.cc

+++ b/base/time/time_win.cc

@@ -110,6 +110,12 @@ uint64_t QPCNowRaw() {

return perf_counter_now.QuadPart;

}

+bool SafeConvertToWord(int in, WORD* out) {

+ base::CheckedNumeric<WORD> result = in;

+ *out = result.ValueOrDefault(std::numeric_limits<WORD>::max());

+ return result.IsValid();

} // namespace

// Time -----------------------------------------------------------------------

@@ -238,16 +244,20 @@ bool Time::IsHighResolutionTimerInUse() {

// static

bool Time::FromExploded(bool is_local, const Exploded& exploded, Time* time) {

// Create the system struct representing our exploded time. It will either be

- // in local time or UTC.

+ // in local time or UTC.If casting from int to WORD results in overflow,

+ // fail and return Time(0).

SYSTEMTIME st;

- st.wYear = static_cast<WORD>(exploded.year);

- st.wMonth = static_cast<WORD>(exploded.month);

- st.wDayOfWeek = static_cast<WORD>(exploded.day_of_week);

- st.wDay = static_cast<WORD>(exploded.day_of_month);

- st.wHour = static_cast<WORD>(exploded.hour);

- st.wMinute = static_cast<WORD>(exploded.minute);

- st.wSecond = static_cast<WORD>(exploded.second);

- st.wMilliseconds = static_cast<WORD>(exploded.millisecond);

+ if (!SafeConvertToWord(exploded.year, &st.wYear) ||

+ !SafeConvertToWord(exploded.month, &st.wMonth) ||

+ !SafeConvertToWord(exploded.day_of_week, &st.wDayOfWeek) ||

+ !SafeConvertToWord(exploded.day_of_month, &st.wDay) ||

+ !SafeConvertToWord(exploded.hour, &st.wHour) ||

+ !SafeConvertToWord(exploded.minute, &st.wMinute) ||

+ !SafeConvertToWord(exploded.second, &st.wSecond) ||

+ !SafeConvertToWord(exploded.millisecond, &st.wMilliseconds)) {

+ *time = base::Time(0);

+ return false;

+ }

FILETIME ft;

bool success = true;

« no previous file with comments | « base/time/time_unittest.cc ('k') | components/data_reduction_proxy/core/browser/data_usage_store_unittest.cc » ('j') | no next file with comments »