diff options
| author | Jonas Devlieghere <jonas@devlieghere.com> | 2017-09-05 11:21:38 +0000 |
|---|---|---|
| committer | Jonas Devlieghere <jonas@devlieghere.com> | 2017-09-05 11:21:38 +0000 |
| commit | 0992d3827739efeb8a6466dd5002aa31264ecb43 (patch) | |
| tree | 587de06ce6f6270e27a536cc50d9772a8641fb12 | |
| parent | 108f36d5b96d0cbf5bfa51b98a2e22c4cb476bdc (diff) | |
| download | bcm5719-llvm-0992d3827739efeb8a6466dd5002aa31264ecb43.tar.gz bcm5719-llvm-0992d3827739efeb8a6466dd5002aa31264ecb43.zip | |
[Decompression] Fail gracefully when out of memory
This patch adds failing gracefully when running out of memory when
allocating a buffer for decompression.
This provides a work-around for:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3224
Differential revision: https://reviews.llvm.org/D37447
llvm-svn: 312526
| -rw-r--r-- | llvm/include/llvm/Object/Decompressor.h | 8 | ||||
| -rw-r--r-- | llvm/lib/Object/Decompressor.cpp | 14 | ||||
| -rw-r--r-- | llvm/test/DebugInfo/Inputs/dwarfdump-decompression-invalid-size.elf-x86-64 | bin | 0 -> 6853 bytes | |||
| -rw-r--r-- | llvm/test/DebugInfo/dwarfdump-decompression-invalid-size.test | 13 |
4 files changed, 31 insertions, 4 deletions
diff --git a/llvm/include/llvm/Object/Decompressor.h b/llvm/include/llvm/Object/Decompressor.h index c8e888d285e..8fc5dc3e9bf 100644 --- a/llvm/include/llvm/Object/Decompressor.h +++ b/llvm/include/llvm/Object/Decompressor.h @@ -13,6 +13,7 @@ #include "llvm/ADT/SmallString.h" #include "llvm/ADT/StringRef.h" #include "llvm/Object/ObjectFile.h" +#include "llvm/Support/ErrorHandling.h" namespace llvm { namespace object { @@ -31,7 +32,9 @@ public: /// @brief Resize the buffer and uncompress section data into it. /// @param Out Destination buffer. template <class T> Error resizeAndDecompress(T &Out) { + install_bad_alloc_error_handler(outOfMemoryHandler, this); Out.resize(DecompressedSize); + remove_bad_alloc_error_handler(); return decompress({Out.data(), (size_t)DecompressedSize}); } @@ -52,11 +55,14 @@ public: static bool isGnuStyle(StringRef Name); private: - Decompressor(StringRef Data); + static void outOfMemoryHandler(void *Data, const std::string &Message, bool); + + Decompressor(StringRef Name, StringRef Data); Error consumeCompressedGnuHeader(); Error consumeCompressedZLibHeader(bool Is64Bit, bool IsLittleEndian); + StringRef SectionName; StringRef SectionData; uint64_t DecompressedSize; }; diff --git a/llvm/lib/Object/Decompressor.cpp b/llvm/lib/Object/Decompressor.cpp index 53f084d7620..89821822484 100644 --- a/llvm/lib/Object/Decompressor.cpp +++ b/llvm/lib/Object/Decompressor.cpp @@ -23,7 +23,7 @@ Expected<Decompressor> Decompressor::create(StringRef Name, StringRef Data, if (!zlib::isAvailable()) return createError("zlib is not available"); - Decompressor D(Data); + Decompressor D(Name, Data); Error Err = isGnuStyle(Name) ? D.consumeCompressedGnuHeader() : D.consumeCompressedZLibHeader(Is64Bit, IsLE); if (Err) @@ -31,8 +31,8 @@ Expected<Decompressor> Decompressor::create(StringRef Name, StringRef Data, return D; } -Decompressor::Decompressor(StringRef Data) - : SectionData(Data), DecompressedSize(0) {} +Decompressor::Decompressor(StringRef Name, StringRef Data) + : SectionName(Name), SectionData(Data), DecompressedSize(0) {} Error Decompressor::consumeCompressedGnuHeader() { if (!SectionData.startswith("ZLIB")) @@ -92,3 +92,11 @@ Error Decompressor::decompress(MutableArrayRef<char> Buffer) { size_t Size = Buffer.size(); return zlib::uncompress(SectionData, Buffer.data(), Size); } + +void Decompressor::outOfMemoryHandler(void *Data, const std::string &Message, + bool) { + const auto *D = static_cast<const Decompressor *>(Data); + report_fatal_error("decompression of '" + Twine(D->SectionName) + + "' failed: unable to allocate " + + Twine(D->DecompressedSize) + " bytes."); +} diff --git a/llvm/test/DebugInfo/Inputs/dwarfdump-decompression-invalid-size.elf-x86-64 b/llvm/test/DebugInfo/Inputs/dwarfdump-decompression-invalid-size.elf-x86-64 Binary files differnew file mode 100644 index 00000000000..7e6efcf1f5b --- /dev/null +++ b/llvm/test/DebugInfo/Inputs/dwarfdump-decompression-invalid-size.elf-x86-64 diff --git a/llvm/test/DebugInfo/dwarfdump-decompression-invalid-size.test b/llvm/test/DebugInfo/dwarfdump-decompression-invalid-size.test new file mode 100644 index 00000000000..967e7ce6186 --- /dev/null +++ b/llvm/test/DebugInfo/dwarfdump-decompression-invalid-size.test @@ -0,0 +1,13 @@ +// dwarfdump-decompression-invalid-size.elf-x86-64 is prepared using following +// source code and invocation: +// test.cpp: +// int main() { return 0; } +// +// gcc test.cpp -o out -g -Wl,--compress-debug-sections,zlib +// +// After that result object was modified manually. Decompressed size of +// .debug_frame section was changed to 0xffffffffffffffff in compression +// header. +RUN: not llvm-dwarfdump %p/Inputs/dwarfdump-decompression-invalid-size.elf-x86-64 2>&1 | FileCheck %s + +CHECK: decompression of '.debug_frame' failed: unable to allocate 18446744073709551615 bytes. |
