fix #3716: make sure amount-API offers proper checks against overflow and other issues

author: Christian Grothoff <christian@grothoff.org> 2015-03-18 18:56:48 +0100
committer: Christian Grothoff <christian@grothoff.org> 2015-03-18 18:56:48 +0100
commit: 6ba63aab8472aefe85f4b96dd7bab895a46a0889 (patch)
tree: 7be04f8b4efcc50d95dfb6451f3aa2180339a4c1 /src/mint
parent: 1f3f4ed8dd292f1aad0b2ca59dc9c669cafb19e4 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/src/mint/mint_db.c b/src/mint/mint_db.c
index 556d32af2..6832cdac9 100644
--- a/src/mint/mint_db.c
+++ b/src/mint/mint_db.c
@@ -1092,7 +1092,11 @@ TALER_MINT_DB_insert_collectable_blindcoin (PGconn *db_conn,
   if (GNUNET_OK != TALER_MINT_DB_reserve_get (db_conn,
                                               &reserve))
     goto rollback;
-  reserve.balance = TALER_amount_subtract (reserve.balance, withdraw);
+  if (GNUNET_SYSERR ==
+      TALER_amount_subtract (&reserve.balance,
+                             &reserve.balance,
+                             &withdraw))
+    goto rollback;
   if (GNUNET_OK != reserves_update (db_conn, &reserve))
     goto rollback;
   if (GNUNET_OK == TALER_MINT_DB_commit (db_conn))
author	Christian Grothoff <christian@grothoff.org>	2015-03-18 18:56:48 +0100
committer	Christian Grothoff <christian@grothoff.org>	2015-03-18 18:56:48 +0100
commit	6ba63aab8472aefe85f4b96dd7bab895a46a0889 (patch)
tree	7be04f8b4efcc50d95dfb6451f3aa2180339a4c1 /src/mint
parent	1f3f4ed8dd292f1aad0b2ca59dc9c669cafb19e4 (diff)