From 0b39c613a8f25a21dd645d027994cabc11c43d6e Mon Sep 17 00:00:00 2001
From: Romain Vimont <rom@rom1v.com>
Date: Tue, 28 Feb 2023 21:48:18 +0100
Subject: [PATCH] Add sc_allocarray() util

Add a function to allocate an array, which fails safely in the case
where the multiplication would overflow.
---
 app/meson.build       |  1 +
 app/src/util/memory.c | 14 ++++++++++++++
 app/src/util/memory.h | 12 ++++++++++++
 3 files changed, 27 insertions(+)
 create mode 100644 app/src/util/memory.c
 create mode 100644 app/src/util/memory.h

diff --git a/app/meson.build b/app/meson.build
index acb238cf..1f6fc370 100644
--- a/app/meson.build
+++ b/app/meson.build
@@ -37,6 +37,7 @@ src = [
     'src/util/intmap.c',
     'src/util/intr.c',
     'src/util/log.c',
+    'src/util/memory.c',
     'src/util/net.c',
     'src/util/net_intr.c',
     'src/util/process.c',
diff --git a/app/src/util/memory.c b/app/src/util/memory.c
new file mode 100644
index 00000000..64ee616e
--- /dev/null
+++ b/app/src/util/memory.c
@@ -0,0 +1,14 @@
+#include "memory.h"
+
+#include <stdlib.h>
+#include <errno.h>
+
+void *
+sc_allocarray(size_t nmemb, size_t size) {
+    size_t bytes;
+    if (__builtin_mul_overflow(nmemb, size, &bytes)) {
+      errno = ENOMEM;
+      return NULL;
+    }
+    return malloc(bytes);
+}
diff --git a/app/src/util/memory.h b/app/src/util/memory.h
new file mode 100644
index 00000000..2136ccad
--- /dev/null
+++ b/app/src/util/memory.h
@@ -0,0 +1,12 @@
+#ifndef SC_MEMORY_H
+#define SC_MEMORY_H
+
+#include <stddef.h>
+
+/* Like calloc(), but without initialization.
+ * Like reallocarray(), but without reallocation.
+ */
+void *
+sc_allocarray(size_t nmemb, size_t size);
+
+#endif