Last-ditch maximum size limit for Mines

This makes sure that width * height <= INT_MAX, which it rather needs to be. Also a similar check in decode_params when defaulting the number of mines.
2025-04-20 23:51:29 -07:00 · 2023-01-10 00:20:36 +00:00
parent ed75535fc2
commit 5cc9bfb811
1 changed files with 6 additions and 1 deletions
--- a/mines.c
+++ b/mines.c
@ -12,6 +12,7 @@
 #include <string.h>
 #include <assert.h>
 #include <ctype.h>
+#include <limits.h>
 #include <math.h>

 #include "tree234.h"
@ -162,6 +163,8 @@ static void decode_params(game_params *params, char const *string)
 	params->n = atoi(p);
 	while (*p && (*p == '.' || isdigit((unsigned char)*p))) p++;
    } else {
+        if (params->h > 0 && params->w > 0 &&
+            params->w <= INT_MAX / params->h)
            params->n = params->w * params->h / 10;
    }

@ -258,6 +261,8 @@ static const char *validate_params(const game_params *params, bool full)
     */
    if (full && params->unique && (params->w <= 2 || params->h <= 2))
 	return "Width and height must both be greater than two";
+    if (params->w > INT_MAX / params->h)
+        return "Width times height must not be unreasonably large";
    if (params->n < 0)
 	return "Mine count may not be negative";
    if (params->n > params->w * params->h - 9)