Suppress unsigned-integer-overflow in code using libc++ (#13452)

should fix a number of currently opened (false positive) ossfuzz issues

Author: rouault

frmts/pcidsk/sdk/channel/cpcidskchannel.cpp

@@ -123,20 +123,27 @@ void CPCIDSKChannel::InvalidateOverviewInfo()
 }
 
 /************************************************************************/
-/*                         SortOverviewComp()                           */
+/*                           SortOverviews()                            */
 /************************************************************************/
 
-static bool SortOverviewComp(const std::string &first,
-                             const std::string &second)
+// recent libc++ std::sort() involve unsigned integer overflow in some
+// situation
+CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW
+static void SortOverviews(std::vector<std::string>& keys)
 {
-    if( !STARTS_WITH(first.c_str(), "_Overview_") ||
-        !STARTS_WITH(second.c_str(), "_Overview_") )
-    {
-        return false;
-    }
-    int nFirst = atoi(first.c_str() + 10);
-    int nSecond = atoi(second.c_str() + 10);
-    return nFirst < nSecond;
+    std::sort(keys.begin(), keys.end(),
+              [] (const std::string &first,
+                             const std::string &second)
+                {
+                    if( !STARTS_WITH(first.c_str(), "_Overview_") ||
+                        !STARTS_WITH(second.c_str(), "_Overview_") )
+                    {
+                        return false;
+                    }
+                    int nFirst = atoi(first.c_str() + 10);
+                    int nSecond = atoi(second.c_str() + 10);
+                    return nFirst < nSecond;
+                });
 }
 
 /************************************************************************/
@@ -151,7 +158,7 @@ void CPCIDSKChannel::EstablishOverviewInfo() const
     overviews_initialized = true;
 
     std::vector<std::string> keys = GetMetadataKeys();
-    std::sort(keys.begin(), keys.end(), SortOverviewComp); // sort overviews
+    SortOverviews(keys);
     size_t i;
 
     for( i = 0; i < keys.size(); i++ )

frmts/pdf/gdal_pdf.h

@@ -321,6 +321,8 @@ class PDFDataset final : public GDALPamDataset
     std::vector<LayerStruct> m_oLayerNameSet{};
     CPLStringList m_aosLayerNames{};
 
+    void SortLayerList();
+
     struct LayerWithRef
     {
         CPLString osName{};

frmts/pdf/pdfdataset.cpp

@@ -3575,10 +3575,13 @@ void PDFDataset::AddLayer(const std::string &osName, int iPage)
 }
 
 /************************************************************************/
-/*                           CreateLayerList()                          */
+/*                            SortLayerList()                           */
 /************************************************************************/
 
-void PDFDataset::CreateLayerList()
+// recent libc++ std::sort() involve unsigned integer overflow in some
+// situation
+CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW
+void PDFDataset::SortLayerList()
 {
     // Sort layers by prioritizing page number and then insertion index
     std::sort(m_oLayerNameSet.begin(), m_oLayerNameSet.end(),
@@ -3590,6 +3593,15 @@ void PDFDataset::CreateLayerList()
                       return false;
                   return a.nInsertIdx < b.nInsertIdx;
               });
+}
+
+/************************************************************************/
+/*                           CreateLayerList()                          */
+/************************************************************************/
+
+void PDFDataset::CreateLayerList()
+{
+    SortLayerList();
 
     if (m_oLayerNameSet.size() >= 100)
     {

frmts/wcs/wcsutils.cpp

@@ -457,9 +457,12 @@ bool SetupCache(std::string &cache, bool clear)
     return true;
 }
 
-static bool CompareStrings(const std::string &a, const std::string &b)
+// recent libc++ std::sort() involve unsigned integer overflow in some
+// situation
+CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW
+static void SortStringList(std::vector<std::string> &strList)
 {
-    return a.compare(b) < 0;
+    std::sort(strList.begin(), strList.end());
 }
 
 std::vector<std::string> ReadCache(const std::string &cache)
@@ -483,7 +486,7 @@ std::vector<std::string> ReadCache(const std::string &cache)
         }
         CSLDestroy(data);
     }
-    std::sort(contents.begin(), contents.end(), CompareStrings);
+    SortStringList(contents);
     return contents;
 }
 

ogr/ogrgeometryfactory.cpp

@@ -1556,6 +1556,17 @@ struct sPolyExtended
         pBounds->maxx = poPolyEx->sEnvelope.MaxX;
         pBounds->maxy = poPolyEx->sEnvelope.MaxY;
     }
+
+    // recent libc++ std::sort() involve unsigned integer overflow in some
+    // situation
+    CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW
+    static void SortByIncreasingEra(const sPolyExtended **pStart,
+                                    const sPolyExtended **pEnd)
+    {
+        std::sort(pStart, pEnd,
+                  [](const sPolyExtended *psPoly1, const sPolyExtended *psPoly2)
+                  { return psPoly1->dfArea < psPoly2->dfArea; });
+    }
 };
 
 static bool OGRGeometryFactoryCompareAreaDescending(const sPolyExtended &sPoly1,
@@ -2026,24 +2037,21 @@ OGRGeometry *OGRGeometryFactory::organizePolygons(OGRGeometry **papoPolygons,
         aoi.maxx = thisPoly.sEnvelope.MaxX;
         aoi.maxy = thisPoly.sEnvelope.MaxY;
         int nCandidates = 0;
-        std::unique_ptr<void *, decltype(&CPLFree)> aphCandidateShells(
-            CPLQuadTreeSearch(poQuadTree.get(), &aoi, &nCandidates), CPLFree);
+        std::unique_ptr<const sPolyExtended *, decltype(&CPLFree)>
+            aphCandidateShells(
+                const_cast<const sPolyExtended **>(
+                    reinterpret_cast<sPolyExtended **>(CPLQuadTreeSearch(
+                        poQuadTree.get(), &aoi, &nCandidates))),
+                CPLFree);
 
         // Sort candidate outer rings by increasing area
-        std::sort(
-            aphCandidateShells.get(), aphCandidateShells.get() + nCandidates,
-            [](void *hFeature1, void *hFeature2)
-            {
-                const auto &sPoly1 = *(static_cast<sPolyExtended *>(hFeature1));
-                const auto &sPoly2 = *(static_cast<sPolyExtended *>(hFeature2));
-                return sPoly1.dfArea < sPoly2.dfArea;
-            });
+        sPolyExtended::SortByIncreasingEra(
+            aphCandidateShells.get(), aphCandidateShells.get() + nCandidates);
 
         int j = 0;
         for (; bValidTopology && j < nCandidates; j++)
         {
-            const auto &otherPoly = *static_cast<const sPolyExtended *>(
-                (aphCandidateShells.get())[j]);
+            const auto &otherPoly = *(aphCandidateShells.get()[j]);
 
             if (method == METHOD_ONLY_CCW && otherPoly.bIsCW == false)
             {

ogr/ogrsf_frmts/geojson/ogrjsoncollectionstreamingparser.cpp

@@ -401,6 +401,8 @@ void OGRJSONCollectionStreamingParser::String(std::string_view sValue)
 /*                              Number()                                */
 /************************************************************************/
 
+// recent libc++ std::from_chars() involve unsigned integer overflow
+CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW
 void OGRJSONCollectionStreamingParser::Number(std::string_view sValue)
 {
     if (m_nMaxObjectSize > 0 && m_nCurObjMemEstimate > m_nMaxObjectSize)

ogr/ogrsf_frmts/openfilegdb/filegdbindex_write.cpp

@@ -420,6 +420,23 @@ void FileGDBTable::ComputeOptimalSpatialIndexGridResolution()
     }
 }
 
+/************************************************************************/
+/*                     SortByAscendingValuesAndOID()                    */
+/************************************************************************/
+
+// recent libc++ std::sort() involve unsigned integer overflow in some
+// situation
+template <class ValueOIDPair>
+CPL_NOSANITIZE_UNSIGNED_INT_OVERFLOW static void
+SortByAscendingValuesAndOID(std::vector<ValueOIDPair> &asValues)
+{
+    std::sort(asValues.begin(), asValues.end(),
+              [](const ValueOIDPair &a, const ValueOIDPair &b) {
+                  return a.first < b.first ||
+                         (a.first == b.first && a.second < b.second);
+              });
+}
+
 /************************************************************************/
 /*                           WriteIndex()                               */
 /************************************************************************/
@@ -476,11 +493,7 @@ static bool WriteIndex(
     }
 
     // Sort by ascending values, and for same value by ascending OID
-    std::sort(asValues.begin(), asValues.end(),
-              [](const ValueOIDPair &a, const ValueOIDPair &b) {
-                  return a.first < b.first ||
-                         (a.first == b.first && a.second < b.second);
-              });
+    SortByAscendingValuesAndOID(asValues);
 
     bool bRet = true;
     std::vector<GByte> abyPage;