til_str: handle overflows in til_str_appendf()

In the wholesale transition to til_module_setup_full() there's
been a lot more problematic randomized setups either extremely
deep or plain infinite.

Due to the primitive escaping mechanism performed by
til_settings_as_arg(), where escape patterns grow exponentially
with depth, it's quite realistic (and observed) for these
problematic setups to exceed SIZE_MAX.

So I'm putting some guard rails in to cap a given til_str_t to
SIZE_MAX.  It might make more sense to move the limit well below
SIZE_MAX, but this should at least prevent overflows.

0 files changed, 0 insertions, 0 deletions