mirror of
https://github.com/LadybirdBrowser/ladybird.git
synced 2025-07-29 12:19:54 +00:00
LibWasm: Limit the number of function locals
It's possible for the module to request too many locals, we now reject such modules instead of trying to allocate space for them. The value itself is chosen arbitrarily, so future tweaks _might_ be necessary. Found by OSS-Fuzz: https://oss-fuzz.com/testcase?key=4755809098661888
This commit is contained in:
Ali Mohammad Pur
Andreas Kling
parent
05c65f9b5d
commit
b64d6bb3a3
Notes:
sideshowbarker
2024-07-18 05:01:32 +09:00
Author: https://github.com/alimpfard
Commit: b64d6bb3a3
Pull-request: https://github.com/SerenityOS/serenity/pull/9694
Reviewed-by: https://github.com/awesomekling
2 changed files with 5 additions and 1 deletions
|
|
@ -1091,7 +1091,10 @@ ParseResult<Locals> Locals::parse(InputStream& stream)
|
|||
size_t count;
|
||||
if (!LEB128::read_unsigned(stream, count))
|
||||
return with_eof_check(stream, ParseError::InvalidSize);
|
||||
// TODO: Disallow too many entries.
|
||||
|
||||
if (count > Constants::max_allowed_function_locals_per_type)
|
||||
return with_eof_check(stream, ParseError::HugeAllocationRequested);
|
||||
|
||||
auto type = ValueType::parse(stream);
|
||||
if (type.is_error())
|
||||
return type.error();
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue