Y
Hacker News
new
|
ask
|
show
|
jobs
by
dullcrisp
609 days ago
You think no one checks if their arithmetic overflows?
1 comments
Spivak
609 days ago
I'm sure it's not literally no one but I bet the percent of additions that have explicit checks for overflow is for all practical purposes indistinguishable from 0.
link
nox101
609 days ago
Lots of secure code checks for overflow
fillBufferWithData(buffer, data, offset, size)
You want to know that offset + size don't wrap past 32bits (or 64) and end up with nonsense and a security vulnerability.
link