From d8a1bcd0ade5f9d077383bd9ac7e146886439fb2 Mon Sep 17 00:00:00 2001 From: Filipe Cabecinhas Date: Wed, 29 Apr 2015 02:27:28 +0000 Subject: Check that we have a valid PointerType element type before calling get() Same as r236073 but for PointerType. Bug found with AFL fuzz. llvm-svn: 236079 --- llvm/lib/Bitcode/Reader/BitcodeReader.cpp | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'llvm/lib') diff --git a/llvm/lib/Bitcode/Reader/BitcodeReader.cpp b/llvm/lib/Bitcode/Reader/BitcodeReader.cpp index 8141d5673bd..f11eba51e6c 100644 --- a/llvm/lib/Bitcode/Reader/BitcodeReader.cpp +++ b/llvm/lib/Bitcode/Reader/BitcodeReader.cpp @@ -1360,7 +1360,8 @@ std::error_code BitcodeReader::ParseTypeTableBody() { if (Record.size() == 2) AddressSpace = Record[1]; ResultTy = getTypeByID(Record[0]); - if (!ResultTy) + if (!ResultTy || + !PointerType::isValidElementType(ResultTy)) return Error("Invalid type"); ResultTy = PointerType::get(ResultTy, AddressSpace); break; -- cgit v1.2.3