multi: mention integer overflow risk if using > 500 million sockets

Reported-by: ovidiu-benea@users.noreply.github.com Closes #1675 Closes #1683
2024-12-21 15:48:49 -05:00 · 2017-07-27 01:13:47 +02:00 · 2017-07-27 01:13:47 +02:00 · 02c7a2ccab
commit 02c7a2ccab
parent 60cf84f7f2
1 changed files with 4 additions and 0 deletions
--- a/lib/multi.c
+++ b/lib/multi.c
@ -1022,6 +1022,10 @@ CURLMcode curl_multi_wait(struct Curl_multi *multi,

  if(nfds) {
    if(nfds > NUM_POLLS_ON_STACK) {
+      /* 'nfds' is a 32 bit value and 'struct pollfd' is typically 8 bytes
+         big, so at 2^29 sockets this value might wrap. When a process gets
+         the capability to actually handle over 500 million sockets this
+         calculation needs a integer overflow check. */
      ufds = malloc(nfds * sizeof(struct pollfd));
      if(!ufds)
        return CURLM_OUT_OF_MEMORY;