search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge Chromium + Blink git repositories
[chromium-blink-merge.git] / third_party / WebKit / Source / wtf / CheckedArithmetic.h
blob7fe15a7716ce4ead251a0638499059d099c1766d
1 /*
2 * Copyright (C) 2011 Apple Inc. All rights reserved.
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions
6 * are met:
7 * 1. Redistributions of source code must retain the above copyright
8 * notice, this list of conditions and the following disclaimer.
9 * 2. Redistributions in binary form must reproduce the above copyright
10 * notice, this list of conditions and the following disclaimer in the
11 * documentation and/or other materials provided with the distribution.
12 *
13 * THIS SOFTWARE IS PROVIDED BY APPLE INC. ``AS IS'' AND ANY
14 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
15 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
16 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR
17 * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
18 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
19 * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
20 * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
21 * OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
22 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
23 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
24 */
25
26 #ifndef CheckedArithmetic_h
27 #define CheckedArithmetic_h
28
29 #include "wtf/Assertions.h"
30 #include "wtf/TypeTraits.h"
31
32 #include <limits>
33 #include <stdint.h>
34
35 /* Checked<T>
36 *
37 * This class provides a mechanism to perform overflow-safe integer arithmetic
38 * without having to manually ensure that you have all the required bounds checks
39 * directly in your code.
40 *
41 * There are two modes of operation:
42 * - The default is Checked<T, CrashOnOverflow>, and crashes at the point
43 * and overflow has occurred.
44 * - The alternative is Checked<T, RecordOverflow>, which uses an additional
45 * byte of storage to track whether an overflow has occurred, subsequent
46 * unchecked operations will crash if an overflow has occured
47 *
48 * It is possible to provide a custom overflow handler, in which case you need
49 * to support these functions:
50 * - void overflowed();
51 * This function is called when an operation has produced an overflow.
52 * - bool hasOverflowed();
53 * This function must return true if overflowed() has been called on an
54 * instance and false if it has not.
55 * - void clearOverflow();
56 * Used to reset overflow tracking when a value is being overwritten with
57 * a new value.
58 *
59 * Checked<T> works for all integer types, with the following caveats:
60 * - Mixing signedness of operands is only supported for types narrower than
61 * 64bits.
62 * - It does have a performance impact, so tight loops may want to be careful
63 * when using it.
64 *
65 */
66
67 namespace WTF {
68
69 enum class CheckedState
70 {
71 DidOverflow,
72 DidNotOverflow
73 };
74
75 class CrashOnOverflow {
76 protected:
77 NO_RETURN_DUE_TO_CRASH void overflowed()
78 {
79 CRASH();
80 }
81
82 void clearOverflow() { }
83
84 public:
85 bool hasOverflowed() const { return false; }
86 };
87
88 class RecordOverflow {
89 protected:
90 RecordOverflow()
91 : m_overflowed(false)
92 {
93 }
94
95 void overflowed()
96 {
97 m_overflowed = true;
98 }
99
100 void clearOverflow()
101 {
102 m_overflowed = false;
103 }
104
105 public:
106 bool hasOverflowed() const { return m_overflowed; }
107
108 private:
109 unsigned char m_overflowed;
110 };
111
112 template <typename T, class OverflowHandler = CrashOnOverflow> class Checked;
113 template <typename T> struct RemoveChecked;
114 template <typename T> struct RemoveChecked<Checked<T>>;
115
116 template <typename Target, typename Source, bool targetSigned = std::numeric_limits<Target>::is_signed, bool sourceSigned = std::numeric_limits<Source>::is_signed> struct BoundsChecker;
117 template <typename Target, typename Source> struct BoundsChecker<Target, Source, false, false> {
118 static bool inBounds(Source value)
119 {
120 // Same signedness so implicit type conversion will always increase precision
121 // to widest type
122 return value <= std::numeric_limits<Target>::max();
123 }
124 };
125
126 template <typename Target, typename Source> struct BoundsChecker<Target, Source, true, true> {
127 static bool inBounds(Source value)
128 {
129 // Same signedness so implicit type conversion will always increase precision
130 // to widest type
131 return std::numeric_limits<Target>::min() <= value && value <= std::numeric_limits<Target>::max();
132 }
133 };
134
135 template <typename Target, typename Source> struct BoundsChecker<Target, Source, false, true> {
136 static bool inBounds(Source value)
137 {
138 // Target is unsigned so any value less than zero is clearly unsafe
139 if (value < 0)
140 return false;
141 // If our (unsigned) Target is the same or greater width we can
142 // convert value to type Target without losing precision
143 if (sizeof(Target) >= sizeof(Source))
144 return static_cast<Target>(value) <= std::numeric_limits<Target>::max();
145 // The signed Source type has greater precision than the target so
146 // max(Target) -> Source will widen.
147 return value <= static_cast<Source>(std::numeric_limits<Target>::max());
148 }
149 };
150
151 template <typename Target, typename Source> struct BoundsChecker<Target, Source, true, false> {
152 static bool inBounds(Source value)
153 {
154 // Signed target with an unsigned source
155 if (sizeof(Target) <= sizeof(Source))
156 return value <= static_cast<Source>(std::numeric_limits<Target>::max());
157 // Target is Wider than Source so we're guaranteed to fit any value in
158 // unsigned Source
159 return true;
160 }
161 };
162
163 template <typename Target, typename Source, bool CanElide = IsSameType<Target, Source>::value || (sizeof(Target) > sizeof(Source)) > struct BoundsCheckElider;
164 template <typename Target, typename Source> struct BoundsCheckElider<Target, Source, true> {
165 static bool inBounds(Source) { return true; }
166 };
167 template <typename Target, typename Source> struct BoundsCheckElider<Target, Source, false> : public BoundsChecker<Target, Source> {
168 };
169
170 template <typename Target, typename Source> static inline bool isInBounds(Source value)
171 {
172 return BoundsCheckElider<Target, Source>::inBounds(value);
173 }
174
175 template <typename T> struct RemoveChecked {
176 typedef T CleanType;
177 static const CleanType DefaultValue = 0;
178 };
179
180 template <typename T> struct RemoveChecked<Checked<T, CrashOnOverflow>> {
181 typedef typename RemoveChecked<T>::CleanType CleanType;
182 static const CleanType DefaultValue = 0;
183 };
184
185 template <typename T> struct RemoveChecked<Checked<T, RecordOverflow>> {
186 typedef typename RemoveChecked<T>::CleanType CleanType;
187 static const CleanType DefaultValue = 0;
188 };
189
190 // The ResultBase and SignednessSelector are used to workaround typeof not being
191 // available in MSVC
192 template <typename U, typename V, bool uIsBigger = (sizeof(U) > sizeof(V)), bool sameSize = (sizeof(U) == sizeof(V))> struct ResultBase;
193 template <typename U, typename V> struct ResultBase<U, V, true, false> {
194 typedef U ResultType;
195 };
196
197 template <typename U, typename V> struct ResultBase<U, V, false, false> {
198 typedef V ResultType;
199 };
200
201 template <typename U> struct ResultBase<U, U, false, true> {
202 typedef U ResultType;
203 };
204
205 template <typename U, typename V, bool uIsSigned = std::numeric_limits<U>::is_signed, bool vIsSigned = std::numeric_limits<V>::is_signed> struct SignednessSelector;
206 template <typename U, typename V> struct SignednessSelector<U, V, true, true> {
207 typedef U ResultType;
208 };
209
210 template <typename U, typename V> struct SignednessSelector<U, V, false, false> {
211 typedef U ResultType;
212 };
213
214 template <typename U, typename V> struct SignednessSelector<U, V, true, false> {
215 typedef V ResultType;
216 };
217
218 template <typename U, typename V> struct SignednessSelector<U, V, false, true> {
219 typedef U ResultType;
220 };
221
222 template <typename U, typename V> struct ResultBase<U, V, false, true> {
223 typedef typename SignednessSelector<U, V>::ResultType ResultType;
224 };
225
226 template <typename U, typename V> struct Result : ResultBase<typename RemoveChecked<U>::CleanType, typename RemoveChecked<V>::CleanType> {
227 };
228
229 template <typename LHS, typename RHS, typename ResultType = typename Result<LHS, RHS>::ResultType,
230 bool lhsSigned = std::numeric_limits<LHS>::is_signed, bool rhsSigned = std::numeric_limits<RHS>::is_signed> struct ArithmeticOperations;
231
232 template <typename LHS, typename RHS, typename ResultType> struct ArithmeticOperations<LHS, RHS, ResultType, true, true> {
233 // LHS and RHS are signed types
234
235 // Helper function
236 static inline bool signsMatch(LHS lhs, RHS rhs)
237 {
238 return (lhs ^ rhs) >= 0;
239 }
240
241 static inline bool add(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
242 {
243 if (signsMatch(lhs, rhs)) {
244 if (lhs >= 0) {
245 if ((std::numeric_limits<ResultType>::max() - rhs) < lhs)
246 return false;
247 } else {
248 ResultType temp = lhs - std::numeric_limits<ResultType>::min();
249 if (rhs < -temp)
250 return false;
251 }
252 } // if the signs do not match this operation can't overflow
253 result = static_cast<ResultType>(lhs + rhs);
254 return true;
255 }
256
257 static inline bool sub(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
258 {
259 if (!signsMatch(lhs, rhs)) {
260 if (lhs >= 0) {
261 if (lhs > std::numeric_limits<ResultType>::max() + rhs)
262 return false;
263 } else {
264 if (rhs > std::numeric_limits<ResultType>::max() + lhs)
265 return false;
266 }
267 } // if the signs match this operation can't overflow
268 result = static_cast<ResultType>(lhs - rhs);
269 return true;
270 }
271
272 static inline bool multiply(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
273 {
274 if (signsMatch(lhs, rhs)) {
275 if (lhs >= 0) {
276 if (lhs && (std::numeric_limits<ResultType>::max() / lhs) < rhs)
277 return false;
278 } else {
279 if (static_cast<ResultType>(lhs) == std::numeric_limits<ResultType>::min() || static_cast<ResultType>(rhs) == std::numeric_limits<ResultType>::min())
280 return false;
281 if ((std::numeric_limits<ResultType>::max() / -lhs) < -rhs)
282 return false;
283 }
284 } else {
285 if (lhs < 0) {
286 if (rhs && lhs < (std::numeric_limits<ResultType>::min() / rhs))
287 return false;
288 } else {
289 if (lhs && rhs < (std::numeric_limits<ResultType>::min() / lhs))
290 return false;
291 }
292 }
293 result = static_cast<ResultType>(lhs * rhs);
294 return true;
295 }
296
297 static inline bool equals(LHS lhs, RHS rhs) { return lhs == rhs; }
298
299 };
300
301 template <typename LHS, typename RHS, typename ResultType> struct ArithmeticOperations<LHS, RHS, ResultType, false, false> {
302 // LHS and RHS are unsigned types so bounds checks are nice and easy
303 static inline bool add(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
304 {
305 ResultType temp = lhs + rhs;
306 if (temp < lhs)
307 return false;
308 result = temp;
309 return true;
310 }
311
312 static inline bool sub(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
313 {
314 ResultType temp = lhs - rhs;
315 if (temp > lhs)
316 return false;
317 result = temp;
318 return true;
319 }
320
321 static inline bool multiply(LHS lhs, RHS rhs, ResultType& result) WARN_UNUSED_RETURN
322 {
323 if (!lhs || !rhs) {
324 result = 0;
325 return true;
326 }
327 if (std::numeric_limits<ResultType>::max() / lhs < rhs)
328 return false;
329 result = lhs * rhs;
330 return true;
331 }
332
333 static inline bool equals(LHS lhs, RHS rhs) { return lhs == rhs; }
334
335 };
336
337 template <typename ResultType> struct ArithmeticOperations<int, unsigned, ResultType, true, false> {
338 static inline bool add(int64_t lhs, int64_t rhs, ResultType& result)
339 {
340 int64_t temp = lhs + rhs;
341 if (temp < std::numeric_limits<ResultType>::min())
342 return false;
343 if (temp > std::numeric_limits<ResultType>::max())
344 return false;
345 result = static_cast<ResultType>(temp);
346 return true;
347 }
348
349 static inline bool sub(int64_t lhs, int64_t rhs, ResultType& result)
350 {
351 int64_t temp = lhs - rhs;
352 if (temp < std::numeric_limits<ResultType>::min())
353 return false;
354 if (temp > std::numeric_limits<ResultType>::max())
355 return false;
356 result = static_cast<ResultType>(temp);
357 return true;
358 }
359
360 static inline bool multiply(int64_t lhs, int64_t rhs, ResultType& result)
361 {
362 int64_t temp = lhs * rhs;
363 if (temp < std::numeric_limits<ResultType>::min())
364 return false;
365 if (temp > std::numeric_limits<ResultType>::max())
366 return false;
367 result = static_cast<ResultType>(temp);
368 return true;
369 }
370
371 static inline bool equals(int lhs, unsigned rhs)
372 {
373 return static_cast<int64_t>(lhs) == static_cast<int64_t>(rhs);
374 }
375 };
376
377 template <typename ResultType> struct ArithmeticOperations<unsigned, int, ResultType, false, true> {
378 static inline bool add(int64_t lhs, int64_t rhs, ResultType& result)
379 {
380 return ArithmeticOperations<int, unsigned, ResultType>::add(rhs, lhs, result);
381 }
382
383 static inline bool sub(int64_t lhs, int64_t rhs, ResultType& result)
384 {
385 return ArithmeticOperations<int, unsigned, ResultType>::sub(lhs, rhs, result);
386 }
387
388 static inline bool multiply(int64_t lhs, int64_t rhs, ResultType& result)
389 {
390 return ArithmeticOperations<int, unsigned, ResultType>::multiply(rhs, lhs, result);
391 }
392
393 static inline bool equals(unsigned lhs, int rhs)
394 {
395 return ArithmeticOperations<int, unsigned, ResultType>::equals(rhs, lhs);
396 }
397 };
398
399 template <typename U, typename V, typename R> static inline bool safeAdd(U lhs, V rhs, R& result)
400 {
401 return ArithmeticOperations<U, V, R>::add(lhs, rhs, result);
402 }
403
404 template <typename U, typename V, typename R> static inline bool safeSub(U lhs, V rhs, R& result)
405 {
406 return ArithmeticOperations<U, V, R>::sub(lhs, rhs, result);
407 }
408
409 template <typename U, typename V, typename R> static inline bool safeMultiply(U lhs, V rhs, R& result)
410 {
411 return ArithmeticOperations<U, V, R>::multiply(lhs, rhs, result);
412 }
413
414 template <typename U, typename V> static inline bool safeEquals(U lhs, V rhs)
415 {
416 return ArithmeticOperations<U, V>::equals(lhs, rhs);
417 }
418
419 enum ResultOverflowedTag { ResultOverflowed };
420
421 template <typename T, class OverflowHandler> class Checked : public OverflowHandler {
422 public:
423 template <typename _T, class _OverflowHandler> friend class Checked;
424 Checked()
425 : m_value(0)
426 {
427 }
428
429 Checked(ResultOverflowedTag)
430 : m_value(0)
431 {
432 this->overflowed();
433 }
434
435 template <typename U> Checked(U value)
436 {
437 if (!isInBounds<T>(value))
438 this->overflowed();
439 m_value = static_cast<T>(value);
440 }
441
442 template <typename V> Checked(const Checked<T, V>& rhs)
443 : m_value(rhs.m_value)
444 {
445 if (rhs.hasOverflowed())
446 this->overflowed();
447 }
448
449 template <typename U> Checked(const Checked<U, OverflowHandler>& rhs)
450 : OverflowHandler(rhs)
451 {
452 if (!isInBounds<T>(rhs.m_value))
453 this->overflowed();
454 m_value = static_cast<T>(rhs.m_value);
455 }
456
457 template <typename U, typename V> Checked(const Checked<U, V>& rhs)
458 {
459 if (rhs.hasOverflowed())
460 this->overflowed();
461 if (!isInBounds<T>(rhs.m_value))
462 this->overflowed();
463 m_value = static_cast<T>(rhs.m_value);
464 }
465
466 const Checked& operator=(Checked rhs)
467 {
468 this->clearOverflow();
469 if (rhs.hasOverflowed())
470 this->overflowed();
471 m_value = static_cast<T>(rhs.m_value);
472 return *this;
473 }
474
475 template <typename U> const Checked& operator=(U value)
476 {
477 return *this = Checked(value);
478 }
479
480 template <typename U, typename V> const Checked& operator=(const Checked<U, V>& rhs)
481 {
482 return *this = Checked(rhs);
483 }
484
485 // prefix
486 const Checked& operator++()
487 {
488 if (m_value == std::numeric_limits<T>::max())
489 this->overflowed();
490 m_value++;
491 return *this;
492 }
493
494 const Checked& operator--()
495 {
496 if (m_value == std::numeric_limits<T>::min())
497 this->overflowed();
498 m_value--;
499 return *this;
500 }
501
502 // postfix operators
503 const Checked operator++(int)
504 {
505 if (m_value == std::numeric_limits<T>::max())
506 this->overflowed();
507 return Checked(m_value++);
508 }
509
510 const Checked operator--(int)
511 {
512 if (m_value == std::numeric_limits<T>::min())
513 this->overflowed();
514 return Checked(m_value--);
515 }
516
517 // Boolean operators
518 bool operator!() const
519 {
520 if (this->hasOverflowed())
521 CRASH();
522 return !m_value;
523 }
524
525 typedef void* (Checked::*UnspecifiedBoolType);
526 operator UnspecifiedBoolType*() const
527 {
528 if (this->hasOverflowed())
529 CRASH();
530 return (m_value) ? reinterpret_cast<UnspecifiedBoolType*>(1) : 0;
531 }
532
533 // Value accessors. unsafeGet() will crash if there's been an overflow.
534 T unsafeGet() const
535 {
536 if (this->hasOverflowed())
537 CRASH();
538 return m_value;
539 }
540
541 inline CheckedState safeGet(T& value) const WARN_UNUSED_RETURN
542 {
543 value = m_value;
544 if (this->hasOverflowed())
545 return CheckedState::DidOverflow;
546 return CheckedState::DidNotOverflow;
547 }
548
549 // Mutating assignment
550 template <typename U> const Checked operator+=(U rhs)
551 {
552 if (!safeAdd(m_value, rhs, m_value))
553 this->overflowed();
554 return *this;
555 }
556
557 template <typename U> const Checked operator-=(U rhs)
558 {
559 if (!safeSub(m_value, rhs, m_value))
560 this->overflowed();
561 return *this;
562 }
563
564 template <typename U> const Checked operator*=(U rhs)
565 {
566 if (!safeMultiply(m_value, rhs, m_value))
567 this->overflowed();
568 return *this;
569 }
570
571 const Checked operator*=(double rhs)
572 {
573 double result = rhs * m_value;
574 // Handle +/- infinity and NaN
575 if (!(std::numeric_limits<T>::min() <= result && std::numeric_limits<T>::max() >= result))
576 this->overflowed();
577 m_value = (T)result;
578 return *this;
579 }
580
581 const Checked operator*=(float rhs)
582 {
583 return *this *= (double)rhs;
584 }
585
586 template <typename U, typename V> const Checked operator+=(Checked<U, V> rhs)
587 {
588 if (rhs.hasOverflowed())
589 this->overflowed();
590 return *this += rhs.m_value;
591 }
592
593 template <typename U, typename V> const Checked operator-=(Checked<U, V> rhs)
594 {
595 if (rhs.hasOverflowed())
596 this->overflowed();
597 return *this -= rhs.m_value;
598 }
599
600 template <typename U, typename V> const Checked operator*=(Checked<U, V> rhs)
601 {
602 if (rhs.hasOverflowed())
603 this->overflowed();
604 return *this *= rhs.m_value;
605 }
606
607 // Equality comparisons
608 template <typename V> bool operator==(Checked<T, V> rhs)
609 {
610 return unsafeGet() == rhs.unsafeGet();
611 }
612
613 template <typename U> bool operator==(U rhs)
614 {
615 if (this->hasOverflowed())
616 this->overflowed();
617 return safeEquals(m_value, rhs);
618 }
619
620 template <typename U, typename V> const Checked operator==(Checked<U, V> rhs)
621 {
622 return unsafeGet() == Checked(rhs.unsafeGet());
623 }
624
625 template <typename U> bool operator!=(U rhs)
626 {
627 return !(*this == rhs);
628 }
629
630 private:
631 // Disallow implicit conversion of floating point to integer types
632 Checked(float);
633 Checked(double);
634 void operator=(float);
635 void operator=(double);
636 void operator+=(float);
637 void operator+=(double);
638 void operator-=(float);
639 void operator-=(double);
640 T m_value;
641 };
642
643 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator+(Checked<U, OverflowHandler> lhs, Checked<V, OverflowHandler> rhs)
644 {
645 U x = 0;
646 V y = 0;
647 bool overflowed = lhs.safeGet(x) == CheckedState::DidOverflow || rhs.safeGet(y) == CheckedState::DidOverflow;
648 typename Result<U, V>::ResultType result = 0;
649 overflowed |= !safeAdd(x, y, result);
650 if (overflowed)
651 return ResultOverflowed;
652 return result;
653 }
654
655 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator-(Checked<U, OverflowHandler> lhs, Checked<V, OverflowHandler> rhs)
656 {
657 U x = 0;
658 V y = 0;
659 bool overflowed = lhs.safeGet(x) == CheckedState::DidOverflow || rhs.safeGet(y) == CheckedState::DidOverflow;
660 typename Result<U, V>::ResultType result = 0;
661 overflowed |= !safeSub(x, y, result);
662 if (overflowed)
663 return ResultOverflowed;
664 return result;
665 }
666
667 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator*(Checked<U, OverflowHandler> lhs, Checked<V, OverflowHandler> rhs)
668 {
669 U x = 0;
670 V y = 0;
671 bool overflowed = lhs.safeGet(x) == CheckedState::DidOverflow || rhs.safeGet(y) == CheckedState::DidOverflow;
672 typename Result<U, V>::ResultType result = 0;
673 overflowed |= !safeMultiply(x, y, result);
674 if (overflowed)
675 return ResultOverflowed;
676 return result;
677 }
678
679 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator+(Checked<U, OverflowHandler> lhs, V rhs)
680 {
681 return lhs + Checked<V, OverflowHandler>(rhs);
682 }
683
684 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator-(Checked<U, OverflowHandler> lhs, V rhs)
685 {
686 return lhs - Checked<V, OverflowHandler>(rhs);
687 }
688
689 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator*(Checked<U, OverflowHandler> lhs, V rhs)
690 {
691 return lhs * Checked<V, OverflowHandler>(rhs);
692 }
693
694 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator+(U lhs, Checked<V, OverflowHandler> rhs)
695 {
696 return Checked<U, OverflowHandler>(lhs) + rhs;
697 }
698
699 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator-(U lhs, Checked<V, OverflowHandler> rhs)
700 {
701 return Checked<U, OverflowHandler>(lhs) - rhs;
702 }
703
704 template <typename U, typename V, typename OverflowHandler> static inline Checked<typename Result<U, V>::ResultType, OverflowHandler> operator*(U lhs, Checked<V, OverflowHandler> rhs)
705 {
706 return Checked<U, OverflowHandler>(lhs) * rhs;
707 }
708
709 }
710
711 using WTF::Checked;
712 using WTF::CheckedState;
713 using WTF::RecordOverflow;
714
715 #endif