inventree/InvenTree
2
0
Fork 0
mirror of https://github.com/inventree/InvenTree.git synced 2025-04-28 11:36:44 +00:00
Code

Catch invalid decimal conversion (#8470)

Browse Source 
- Thanks to  fuzzers reported by sentry.io
This commit is contained in:
Oliver 2024-11-12 19:56:00 +11:00 committed by GitHub
parent 9ab532a067
commit 1eae56ff1e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/backend/InvenTree/InvenTree/fields.py
View File

@ -4,6 +4,7 @@ import sys
from decimal import Decimal
from django import forms
from django.core.exceptions import ValidationError
from django.db import models
from django.utils.translation import gettext_lazy as _
@ -152,7 +153,10 @@ class DatePickerFormField(forms.DateField):
def round_decimal(value, places, normalize=False):
"""Round value to the specified number of places."""
if type(value) in [Decimal, float]:
try:
value = round(value, places)
except Exception:
raise ValidationError(_('Invalid decimal value') + f' ({value})')
if normalize:
# Remove any trailing zeroes