Fixed positive seek bounds checking

geky · geky · commit aea3d3db4663 · 2018-01-03T15:00:04.000-06:00
This bug was a result of an annoying corner case around intermingling
signed and unsigned offsets. The boundary check that prevents seeking
a file to a position before the file was preventing valid seeks with
positive offsets.

This corner case is a bit more complicated than it looks because the
offset is signed, while the size of the file is unsigned. Simply
casting both to signed or unsigned offsets won't handle large files.
diff --git a/lfs.c b/lfs.c
@@ -1635,13 +1635,13 @@ lfs_soff_t lfs_file_seek(lfs_t *lfs, lfs_file_t *file,
     if (whence == LFS_SEEK_SET) {
         file->pos = off;
     } else if (whence == LFS_SEEK_CUR) {
-        if ((lfs_off_t)-off > file->pos) {
+        if (off < 0 && (lfs_off_t)-off > file->pos) {
             return LFS_ERR_INVAL;
         }
 
         file->pos = file->pos + off;
     } else if (whence == LFS_SEEK_END) {
-        if ((lfs_off_t)-off > file->size) {
+        if (off < 0 && (lfs_off_t)-off > file->size) {
             return LFS_ERR_INVAL;
         }
 
diff --git a/tests/test_seek.sh b/tests/test_seek.sh
@@ -133,6 +133,14 @@ tests/test.py << TEST
     lfs_file_read(&lfs, &file[0], buffer, size) => size;
     memcmp(buffer, "kittycatcat", size) => 0;
 
+    lfs_file_seek(&lfs, &file[0], 0, LFS_SEEK_CUR) => size;
+    lfs_file_read(&lfs, &file[0], buffer, size) => size;
+    memcmp(buffer, "kittycatcat", size) => 0;
+
+    lfs_file_seek(&lfs, &file[0], size, LFS_SEEK_CUR) => 3*size;
+    lfs_file_read(&lfs, &file[0], buffer, size) => size;
+    memcmp(buffer, "kittycatcat", size) => 0;
+
     lfs_file_seek(&lfs, &file[0], pos, LFS_SEEK_SET) => pos;
     lfs_file_read(&lfs, &file[0], buffer, size) => size;
     memcmp(buffer, "kittycatcat", size) => 0;
@@ -174,6 +182,14 @@ tests/test.py << TEST
     lfs_file_read(&lfs, &file[0], buffer, size) => size;
     memcmp(buffer, "kittycatcat", size) => 0;
 
+    lfs_file_seek(&lfs, &file[0], 0, LFS_SEEK_CUR) => size;
+    lfs_file_read(&lfs, &file[0], buffer, size) => size;
+    memcmp(buffer, "kittycatcat", size) => 0;
+
+    lfs_file_seek(&lfs, &file[0], size, LFS_SEEK_CUR) => 3*size;
+    lfs_file_read(&lfs, &file[0], buffer, size) => size;
+    memcmp(buffer, "kittycatcat", size) => 0;
+
     lfs_file_seek(&lfs, &file[0], pos, LFS_SEEK_SET) => pos;
     lfs_file_read(&lfs, &file[0], buffer, size) => size;
     memcmp(buffer, "kittycatcat", size) => 0;

Original file line number	Diff line number	Diff line change
`@@ -1635,13 +1635,13 @@ lfs_soff_t lfs_file_seek(lfs_t lfs, lfs_file_t file,`
`1635`	`1635`	`if (whence == LFS_SEEK_SET) {`
`1636`	`1636`	`file->pos = off;`
`1637`	`1637`	`} else if (whence == LFS_SEEK_CUR) {`
`1638`		`- if ((lfs_off_t)-off > file->pos) {`
	`1638`	`+ if (off < 0 && (lfs_off_t)-off > file->pos) {`
`1639`	`1639`	`return LFS_ERR_INVAL;`
`1640`	`1640`	`}`
`1641`	`1641`
`1642`	`1642`	`file->pos = file->pos + off;`
`1643`	`1643`	`} else if (whence == LFS_SEEK_END) {`
`1644`		`- if ((lfs_off_t)-off > file->size) {`
	`1644`	`+ if (off < 0 && (lfs_off_t)-off > file->size) {`
`1645`	`1645`	`return LFS_ERR_INVAL;`
`1646`	`1646`	`}`
`1647`	`1647`