Fixed an integer overflow bug and a read-1-past-the-array.

Author: Alex Huszagh

Cargo.toml

@@ -9,7 +9,7 @@ license = "MIT/Apache-2.0"
 name = "lexical"
 readme = "README.md"
 repository = "https://github.com/Alexhuszagh/rust-lexical"
-version = "1.8.0"
+version = "1.8.1"
 exclude = [
     "data/*",
     "benches/*",

lexical-core/Cargo.toml

@@ -9,7 +9,7 @@ license = "MIT/Apache-2.0"
 name = "lexical-core"
 readme = "README.md"
 repository = "https://github.com/Alexhuszagh/rust-lexical/tree/master/lexical-core"
-version = "0.1.1"
+version = "0.1.2"
 
 [badges]
 travis-ci = { repository = "Alexhuszagh/rust-lexical" }

lexical-core/README.md

@@ -14,7 +14,7 @@ Low-level, FFI-compatible, lexical conversion routines for use in a `no_std` con
   - [Float to String](#float-to-string)
   - [String to Float](#string-to-float)
   - [Arbitrary-Precision Arithmetic](#arbitrary-precision-arithmetic)
-  - [Comparison to Algorithm M and dtoa](#comparison-to-algorithm-m-and-dtoa)
+  - [Algorithm Background and Comparison](#algorithm-background-and-comparison)
 
 # Features
 
@@ -37,13 +37,15 @@ Float parsing is difficult to do correctly, and major bugs have been found in im
 
 Although Lexical may contain bugs leading to rounding error, it is tested against a comprehensive suite of random-data and near-halfway representations, and should be fast and correct for the vast majority of use-cases.
 
+Finally, due to the heavy use of unsafe code, Lexical-core is fuzzed using cargo-fuzz, to avoid memory errors.
+
 # Caveats
 
 Lexical uses unsafe code in the back-end for performance, and therefore may introduce memory-safety issues. Although the code is tested with wide variety of inputs to minimize the risk of memory-safety bugs, and then unittests are run are under Valgrind, no guarantees are made and you should use it at your own risk.
 
 Finally, for non-decimal (base 10) floats, lexical's float-to-string implementation is lossy, resulting in rounding for a small subset of inputs (up to 0.1% of the total value).
 
-# Details
+# Implementation Details
 
 ## Float to String
 
@@ -68,9 +70,9 @@ To use Algorithm M, use the feature `algorithm_m` when compiling lexical.
 
 ## Arbitrary-Precision Arithmetic
 
-Lexical uses arbitrary-precision arithmetic to exactly represent strings between two floating-point representations with more than 36 digits, with various optimizations for multiplication and division relative to Rust's current implementation. The arbitrary-precision arithmetic logic is not independent on memory allocation: the default slow-path algorithm only uses the stack, while Algorithm M uses the heap.
+Lexical uses arbitrary-precision arithmetic to exactly represent strings between two floating-point representations with more than 36 digits, with various optimizations for multiplication and division relative to Rust's current implementation. The arbitrary-precision arithmetic logic is not independent on memory allocation: the default slow-path algorithm only uses the stack, and Algorithm M only uses the heap when the `radix` feature is enabled.
 
-## Comparison to Algorithm M
+## Algorithm Background and Comparison
 
 For close-to-halfway representations of a decimal string `s`, where `s` is close between two representations, `b` and the next float `b+u`, arbitrary-precision arithmetic is used to determine the correct representation. This means `s` is close to `b+h`, where `h` is the halfway point between `b` and `b+u`.
 

lexical-core/fuzz/.gitignore

@@ -0,0 +1,4 @@
+
+target
+corpus
+artifacts

lexical-core/fuzz/Cargo.toml

@@ -0,0 +1,75 @@
+
+[package]
+name = "lexical-core-fuzz"
+version = "0.0.1"
+authors = ["Alex Huszagh <ahuszagh@gmail.com>"]
+publish = false
+
+[package.metadata]
+cargo-fuzz = true
+
+[dependencies.lexical-core]
+path = ".."
+
+[dependencies.libfuzzer-sys]
+git = "https://github.com/rust-fuzz/libfuzzer-sys.git"
+
+# Prevent this from interfering with workspaces
+[workspace]
+members = ["."]
+
+[[bin]]
+name = "atof32"
+path = "fuzz_targets/atof32.rs"
+
+[[bin]]
+name = "atof64"
+path = "fuzz_targets/atof64.rs"
+
+[[bin]]
+name = "atoi8"
+path = "fuzz_targets/atoi8.rs"
+
+[[bin]]
+name = "atoi16"
+path = "fuzz_targets/atoi16.rs"
+
+[[bin]]
+name = "atoi32"
+path = "fuzz_targets/atoi32.rs"
+
+[[bin]]
+name = "atoi64"
+path = "fuzz_targets/atoi64.rs"
+
+[[bin]]
+name = "atoi128"
+path = "fuzz_targets/atoi128.rs"
+
+[[bin]]
+name = "atoisize"
+path = "fuzz_targets/atoisize.rs"
+
+[[bin]]
+name = "atou8"
+path = "fuzz_targets/atou8.rs"
+
+[[bin]]
+name = "atou16"
+path = "fuzz_targets/atou16.rs"
+
+[[bin]]
+name = "atou32"
+path = "fuzz_targets/atou32.rs"
+
+[[bin]]
+name = "atou64"
+path = "fuzz_targets/atou64.rs"
+
+[[bin]]
+name = "atou128"
+path = "fuzz_targets/atou128.rs"
+
+[[bin]]
+name = "atousize"
+path = "fuzz_targets/atousize.rs"

lexical-core/fuzz/fuzz_targets/atof32.rs

@@ -0,0 +1,7 @@
+#![no_main]
+#[macro_use] extern crate libfuzzer_sys;
+extern crate lexical_core;
+
+fuzz_target!(|data: &[u8]| {
+    let _ = lexical_core::atof::try_atof32_slice(10, data);
+});

lexical-core/fuzz/fuzz_targets/atof64.rs

@@ -0,0 +1,7 @@
+#![no_main]
+#[macro_use] extern crate libfuzzer_sys;
+extern crate lexical_core;
+
+fuzz_target!(|data: &[u8]| {
+    let _ = lexical_core::atof::try_atof64_slice(10, data);
+});

lexical-core/fuzz/fuzz_targets/atoi128.rs

@@ -0,0 +1,7 @@
+#![no_main]
+#[macro_use] extern crate libfuzzer_sys;
+extern crate lexical_core;
+
+fuzz_target!(|data: &[u8]| {
+    let _ = lexical_core::atoi::try_atoi128_slice(10, data);
+});

lexical-core/fuzz/fuzz_targets/atoi16.rs

@@ -0,0 +1,7 @@
+#![no_main]
+#[macro_use] extern crate libfuzzer_sys;
+extern crate lexical_core;
+
+fuzz_target!(|data: &[u8]| {
+    let _ = lexical_core::atoi::try_atoi16_slice(10, data);
+});

lexical-core/fuzz/fuzz_targets/atoi32.rs

@@ -0,0 +1,7 @@
+#![no_main]
+#[macro_use] extern crate libfuzzer_sys;
+extern crate lexical_core;
+
+fuzz_target!(|data: &[u8]| {
+    let _ = lexical_core::atoi::try_atoi32_slice(10, data);
+});