Add missing checks for register number

Most other cases that touch savedRegisters[reg] have got this check,
but these three seemed to lack it.

Differential Revision: https://reviews.llvm.org/D39206

llvm-svn: 316415
This commit is contained in:
Martin Storsjo 2017-10-24 07:16:40 +00:00
parent 2555e41b4e
commit d3abd15d8c
1 changed files with 19 additions and 0 deletions

View File

@ -605,6 +605,13 @@ bool CFI_Parser<A>::parseInstructions(A &addressSpace, pint_t instructions,
break; break;
case DW_CFA_val_offset: case DW_CFA_val_offset:
reg = addressSpace.getULEB128(p, instructionsEnd); reg = addressSpace.getULEB128(p, instructionsEnd);
if (reg > kMaxRegisterNumber) {
fprintf(stderr,
"malformed DW_CFA_val_offset DWARF unwind, reg (%" PRIu64
") out of range\n",
reg);
return false;
}
offset = (int64_t)addressSpace.getULEB128(p, instructionsEnd) offset = (int64_t)addressSpace.getULEB128(p, instructionsEnd)
* cieInfo.dataAlignFactor; * cieInfo.dataAlignFactor;
results->savedRegisters[reg].location = kRegisterOffsetFromCFA; results->savedRegisters[reg].location = kRegisterOffsetFromCFA;
@ -668,6 +675,12 @@ bool CFI_Parser<A>::parseInstructions(A &addressSpace, pint_t instructions,
switch (opcode & 0xC0) { switch (opcode & 0xC0) {
case DW_CFA_offset: case DW_CFA_offset:
reg = operand; reg = operand;
if (reg > kMaxRegisterNumber) {
fprintf(stderr, "malformed DW_CFA_offset DWARF unwind, reg (%" PRIu64
") out of range\n",
reg);
return false;
}
offset = (int64_t)addressSpace.getULEB128(p, instructionsEnd) offset = (int64_t)addressSpace.getULEB128(p, instructionsEnd)
* cieInfo.dataAlignFactor; * cieInfo.dataAlignFactor;
results->savedRegisters[reg].location = kRegisterInCFA; results->savedRegisters[reg].location = kRegisterInCFA;
@ -682,6 +695,12 @@ bool CFI_Parser<A>::parseInstructions(A &addressSpace, pint_t instructions,
break; break;
case DW_CFA_restore: case DW_CFA_restore:
reg = operand; reg = operand;
if (reg > kMaxRegisterNumber) {
fprintf(stderr, "malformed DW_CFA_restore DWARF unwind, reg (%" PRIu64
") out of range\n",
reg);
return false;
}
results->savedRegisters[reg] = initialState.savedRegisters[reg]; results->savedRegisters[reg] = initialState.savedRegisters[reg];
_LIBUNWIND_TRACE_DWARF("DW_CFA_restore(reg=%" PRIu64 ")\n", _LIBUNWIND_TRACE_DWARF("DW_CFA_restore(reg=%" PRIu64 ")\n",
static_cast<uint64_t>(operand)); static_cast<uint64_t>(operand));