2018-08-22 16:52:01 -03:00
|
|
|
// Copyright 2018 The Rust Project Developers. See the COPYRIGHT
|
|
|
|
|
// file at the top-level directory of this distribution and at
|
|
|
|
|
// http://rust-lang.org/COPYRIGHT.
|
|
|
|
|
//
|
|
|
|
|
// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
|
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
|
|
|
|
|
// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
|
|
|
|
|
// option. This file may not be copied, modified, or distributed
|
|
|
|
|
// except according to those terms.
|
|
|
|
|
|
2018-08-17 12:18:02 +02:00
|
|
|
use std::fmt::Write;
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
use syntax_pos::symbol::Symbol;
|
2018-10-02 16:06:50 +02:00
|
|
|
use rustc::ty::layout::{self, Size};
|
2018-08-17 12:18:02 +02:00
|
|
|
use rustc::ty::{self, Ty};
|
|
|
|
|
use rustc_data_structures::fx::FxHashSet;
|
|
|
|
|
use rustc::mir::interpret::{
|
2018-10-02 18:07:40 +02:00
|
|
|
Scalar, AllocType, EvalResult, EvalErrorKind
|
2018-08-17 12:18:02 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
use super::{
|
2018-10-02 16:06:50 +02:00
|
|
|
OpTy, MPlaceTy, Machine, EvalContext, ScalarMaybeUndef
|
2018-08-17 12:18:02 +02:00
|
|
|
};
|
|
|
|
|
|
2018-10-02 17:02:58 +02:00
|
|
|
macro_rules! validation_failure {
|
2018-08-17 12:18:02 +02:00
|
|
|
($what:expr, $where:expr, $details:expr) => {{
|
2018-08-18 13:46:52 +02:00
|
|
|
let where_ = path_format($where);
|
|
|
|
|
let where_ = if where_.is_empty() {
|
2018-08-17 12:18:02 +02:00
|
|
|
String::new()
|
|
|
|
|
} else {
|
2018-08-18 13:46:52 +02:00
|
|
|
format!(" at {}", where_)
|
2018-08-17 12:18:02 +02:00
|
|
|
};
|
|
|
|
|
err!(ValidationFailure(format!(
|
|
|
|
|
"encountered {}{}, but expected {}",
|
|
|
|
|
$what, where_, $details,
|
|
|
|
|
)))
|
|
|
|
|
}};
|
|
|
|
|
($what:expr, $where:expr) => {{
|
2018-08-18 13:46:52 +02:00
|
|
|
let where_ = path_format($where);
|
|
|
|
|
let where_ = if where_.is_empty() {
|
2018-08-17 12:18:02 +02:00
|
|
|
String::new()
|
|
|
|
|
} else {
|
2018-08-18 13:46:52 +02:00
|
|
|
format!(" at {}", where_)
|
2018-08-17 12:18:02 +02:00
|
|
|
};
|
|
|
|
|
err!(ValidationFailure(format!(
|
|
|
|
|
"encountered {}{}",
|
|
|
|
|
$what, where_,
|
|
|
|
|
)))
|
|
|
|
|
}};
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-02 17:02:58 +02:00
|
|
|
macro_rules! try_validation {
|
2018-10-02 18:07:40 +02:00
|
|
|
($e:expr, $what:expr, $where:expr, $details:expr) => {{
|
|
|
|
|
match $e {
|
|
|
|
|
Ok(x) => x,
|
|
|
|
|
Err(_) => return validation_failure!($what, $where, $details),
|
|
|
|
|
}
|
|
|
|
|
}};
|
|
|
|
|
|
2018-10-02 17:02:58 +02:00
|
|
|
($e:expr, $what:expr, $where:expr) => {{
|
|
|
|
|
match $e {
|
|
|
|
|
Ok(x) => x,
|
|
|
|
|
Err(_) => return validation_failure!($what, $where),
|
|
|
|
|
}
|
|
|
|
|
}}
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
/// We want to show a nice path to the invalid field for diagnotsics,
|
|
|
|
|
/// but avoid string operations in the happy case where no error happens.
|
|
|
|
|
/// So we track a `Vec<PathElem>` where `PathElem` contains all the data we
|
|
|
|
|
/// need to later print something for the user.
|
|
|
|
|
#[derive(Copy, Clone, Debug)]
|
|
|
|
|
pub enum PathElem {
|
|
|
|
|
Field(Symbol),
|
|
|
|
|
ClosureVar(Symbol),
|
|
|
|
|
ArrayElem(usize),
|
|
|
|
|
TupleElem(usize),
|
|
|
|
|
Deref,
|
|
|
|
|
Tag,
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-02 16:06:50 +02:00
|
|
|
/// State for tracking recursive validation of references
|
|
|
|
|
pub struct RefTracking<'tcx> {
|
|
|
|
|
pub seen: FxHashSet<(OpTy<'tcx>)>,
|
|
|
|
|
pub todo: Vec<(OpTy<'tcx>, Vec<PathElem>)>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<'tcx> RefTracking<'tcx> {
|
|
|
|
|
pub fn new(op: OpTy<'tcx>) -> Self {
|
|
|
|
|
let mut ref_tracking = RefTracking {
|
|
|
|
|
seen: FxHashSet(),
|
|
|
|
|
todo: vec![(op, Vec::new())],
|
|
|
|
|
};
|
|
|
|
|
ref_tracking.seen.insert(op);
|
|
|
|
|
ref_tracking
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// Adding a Deref and making a copy of the path to be put into the queue
|
|
|
|
|
// always go together. This one does it with only new allocation.
|
|
|
|
|
fn path_clone_and_deref(path: &Vec<PathElem>) -> Vec<PathElem> {
|
|
|
|
|
let mut new_path = Vec::with_capacity(path.len()+1);
|
|
|
|
|
new_path.clone_from(path);
|
|
|
|
|
new_path.push(PathElem::Deref);
|
|
|
|
|
new_path
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Format a path
|
|
|
|
|
fn path_format(path: &Vec<PathElem>) -> String {
|
|
|
|
|
use self::PathElem::*;
|
|
|
|
|
|
|
|
|
|
let mut out = String::new();
|
|
|
|
|
for elem in path.iter() {
|
|
|
|
|
match elem {
|
|
|
|
|
Field(name) => write!(out, ".{}", name).unwrap(),
|
|
|
|
|
ClosureVar(name) => write!(out, ".<closure-var({})>", name).unwrap(),
|
|
|
|
|
TupleElem(idx) => write!(out, ".{}", idx).unwrap(),
|
|
|
|
|
ArrayElem(idx) => write!(out, "[{}]", idx).unwrap(),
|
|
|
|
|
Deref =>
|
|
|
|
|
// This does not match Rust syntax, but it is more readable for long paths -- and
|
|
|
|
|
// some of the other items here also are not Rust syntax. Actually we can't
|
|
|
|
|
// even use the usual syntax because we are just showing the projections,
|
|
|
|
|
// not the root.
|
|
|
|
|
write!(out, ".<deref>").unwrap(),
|
|
|
|
|
Tag => write!(out, ".<enum-tag>").unwrap(),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
out
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-02 18:07:40 +02:00
|
|
|
fn scalar_format(value: ScalarMaybeUndef) -> String {
|
|
|
|
|
match value {
|
|
|
|
|
ScalarMaybeUndef::Undef =>
|
|
|
|
|
"uninitialized bytes".to_owned(),
|
|
|
|
|
ScalarMaybeUndef::Scalar(Scalar::Ptr(_)) =>
|
|
|
|
|
"a pointer".to_owned(),
|
|
|
|
|
ScalarMaybeUndef::Scalar(Scalar::Bits { bits, .. }) =>
|
|
|
|
|
bits.to_string(),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-20 10:12:21 +02:00
|
|
|
impl<'a, 'mir, 'tcx, M: Machine<'a, 'mir, 'tcx>> EvalContext<'a, 'mir, 'tcx, M> {
|
2018-08-17 12:18:02 +02:00
|
|
|
fn validate_scalar(
|
|
|
|
|
&self,
|
|
|
|
|
value: ScalarMaybeUndef,
|
|
|
|
|
size: Size,
|
2018-08-18 13:46:52 +02:00
|
|
|
path: &Vec<PathElem>,
|
2018-08-17 12:18:02 +02:00
|
|
|
ty: Ty,
|
|
|
|
|
) -> EvalResult<'tcx> {
|
2018-10-02 18:07:40 +02:00
|
|
|
trace!("validate scalar: {:#?}, {:#?}, {}", value, size, ty);
|
2018-08-30 17:08:13 +01:00
|
|
|
|
2018-10-02 18:07:40 +02:00
|
|
|
// Go over all the primitive types
|
2018-08-17 12:18:02 +02:00
|
|
|
match ty.sty {
|
2018-10-02 18:07:40 +02:00
|
|
|
ty::Bool => {
|
|
|
|
|
try_validation!(value.to_bool(),
|
|
|
|
|
scalar_format(value), path, "a boolean");
|
|
|
|
|
},
|
2018-08-22 11:54:46 +01:00
|
|
|
ty::Char => {
|
2018-10-02 18:07:40 +02:00
|
|
|
try_validation!(value.to_char(),
|
|
|
|
|
scalar_format(value), path, "a valid unicode codepoint");
|
|
|
|
|
},
|
|
|
|
|
ty::Float(_) | ty::Int(_) | ty::Uint(_) => {
|
|
|
|
|
// Must be scalar bits
|
|
|
|
|
try_validation!(value.to_bits(size),
|
|
|
|
|
scalar_format(value), path, "initialized plain bits");
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
2018-10-02 18:07:40 +02:00
|
|
|
ty::RawPtr(_) => {
|
|
|
|
|
// Anything but undef goes
|
|
|
|
|
try_validation!(value.not_undef(),
|
|
|
|
|
scalar_format(value), path, "a raw pointer");
|
|
|
|
|
},
|
|
|
|
|
ty::Ref(..) => {
|
|
|
|
|
// This is checked by the recursive reference handling, nothing to do here.
|
|
|
|
|
debug_assert!(ty.builtin_deref(true).is_some() && !ty.is_unsafe_ptr());
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
2018-10-02 18:07:40 +02:00
|
|
|
ty::FnPtr(_sig) => {
|
|
|
|
|
let ptr = try_validation!(value.to_ptr(),
|
|
|
|
|
scalar_format(value), path, "a pointer");
|
|
|
|
|
let _fn = try_validation!(self.memory.get_fn(ptr),
|
|
|
|
|
scalar_format(value), path, "a function pointer");
|
|
|
|
|
// TODO: Check if the signature matches
|
|
|
|
|
}
|
|
|
|
|
ty::FnDef(..) => {
|
|
|
|
|
// This is a zero-sized type with all relevant data sitting in the type.
|
|
|
|
|
// There is nothing to validate.
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
2018-10-02 18:07:40 +02:00
|
|
|
_ => bug!("Unexpected primitive type {}", ty)
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
2018-10-02 18:07:40 +02:00
|
|
|
Ok(())
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
|
2018-10-02 16:06:50 +02:00
|
|
|
/// Validate a reference, potentially recursively. `place` is assumed to already be
|
|
|
|
|
/// dereferenced, i.e. it describes the target.
|
|
|
|
|
fn validate_ref(
|
|
|
|
|
&self,
|
|
|
|
|
place: MPlaceTy<'tcx>,
|
|
|
|
|
path: &mut Vec<PathElem>,
|
|
|
|
|
ref_tracking: Option<&mut RefTracking<'tcx>>,
|
|
|
|
|
) -> EvalResult<'tcx> {
|
2018-10-02 17:02:58 +02:00
|
|
|
// Before we do anything else, make sure this is entirely in-bounds.
|
2018-10-02 18:07:40 +02:00
|
|
|
let (size, align) = self.size_and_align_of(place.extra, place.layout)?;
|
|
|
|
|
try_validation!(self.memory.check_align(place.ptr, align),
|
|
|
|
|
"unaligned reference", path);
|
2018-10-02 17:02:58 +02:00
|
|
|
if !place.layout.is_zst() {
|
|
|
|
|
let ptr = try_validation!(place.ptr.to_ptr(),
|
|
|
|
|
"integer pointer in non-ZST reference", path);
|
|
|
|
|
try_validation!(self.memory.check_bounds(ptr, size, false),
|
|
|
|
|
"dangling reference (not entirely in bounds)", path);
|
|
|
|
|
// Skip recursion for some external statics
|
2018-10-02 16:06:50 +02:00
|
|
|
let alloc_kind = self.tcx.alloc_map.lock().get(ptr.alloc_id);
|
|
|
|
|
if let Some(AllocType::Static(did)) = alloc_kind {
|
|
|
|
|
// statics from other crates are already checked.
|
|
|
|
|
// they might be checked at a different type, but for now we want
|
|
|
|
|
// to avoid recursing too deeply.
|
|
|
|
|
// extern statics cannot be validated as they have no body.
|
|
|
|
|
if !did.is_local() || self.tcx.is_foreign_item(did) {
|
|
|
|
|
return Ok(());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Check if we have encountered this pointer+layout combination
|
|
|
|
|
// before. Proceed recursively even for integer pointers, no
|
|
|
|
|
// reason to skip them! They are valid for some ZST, but not for others
|
|
|
|
|
// (e.g. `!` is a ZST).
|
|
|
|
|
let op = place.into();
|
|
|
|
|
if let Some(ref_tracking) = ref_tracking {
|
|
|
|
|
if ref_tracking.seen.insert(op) {
|
|
|
|
|
trace!("Recursing below ptr {:#?}", *op);
|
|
|
|
|
ref_tracking.todo.push((op, path_clone_and_deref(path)));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Ok(())
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-02 17:02:58 +02:00
|
|
|
/// This function checks the data at `op`. `op` is assumed to cover valid memory if it
|
|
|
|
|
/// is an indirect operand.
|
2018-08-17 12:18:02 +02:00
|
|
|
/// It will error if the bits at the destination do not match the ones described by the layout.
|
2018-08-18 13:46:52 +02:00
|
|
|
/// The `path` may be pushed to, but the part that is present when the function
|
|
|
|
|
/// starts must not be changed!
|
2018-10-02 18:07:40 +02:00
|
|
|
///
|
|
|
|
|
/// `ref_tracking` can be None to avoid recursive checking below references.
|
|
|
|
|
/// This also toggles between "run-time" (no recursion) and "compile-time" (with recursion)
|
|
|
|
|
/// validation (e.g., pointer values are fine in integers at runtime).
|
2018-08-24 15:27:05 +02:00
|
|
|
pub fn validate_operand(
|
2018-08-17 12:18:02 +02:00
|
|
|
&self,
|
2018-08-24 15:27:05 +02:00
|
|
|
dest: OpTy<'tcx>,
|
2018-08-18 13:46:52 +02:00
|
|
|
path: &mut Vec<PathElem>,
|
2018-10-02 16:06:50 +02:00
|
|
|
mut ref_tracking: Option<&mut RefTracking<'tcx>>,
|
2018-08-17 12:18:02 +02:00
|
|
|
) -> EvalResult<'tcx> {
|
2018-08-25 11:07:03 +02:00
|
|
|
trace!("validate_operand: {:?}, {:#?}", *dest, dest.layout);
|
2018-08-17 12:18:02 +02:00
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// Find the right variant. We have to handle this as a prelude, not via
|
|
|
|
|
// proper recursion with the new inner layout, to be able to later nicely
|
|
|
|
|
// print the field names of the enum field that is being accessed.
|
2018-08-17 12:18:02 +02:00
|
|
|
let (variant, dest) = match dest.layout.variants {
|
2018-08-25 11:07:03 +02:00
|
|
|
layout::Variants::NicheFilling { .. } |
|
|
|
|
|
layout::Variants::Tagged { .. } => {
|
|
|
|
|
let variant = match self.read_discriminant(dest) {
|
|
|
|
|
Ok(res) => res.1,
|
2018-08-26 14:22:59 +02:00
|
|
|
Err(err) => match err.kind {
|
|
|
|
|
EvalErrorKind::InvalidDiscriminant(val) =>
|
|
|
|
|
return validation_failure!(
|
|
|
|
|
format!("invalid enum discriminant {}", val), path
|
|
|
|
|
),
|
|
|
|
|
_ =>
|
|
|
|
|
return validation_failure!(
|
|
|
|
|
format!("non-integer enum discriminant"), path
|
|
|
|
|
),
|
|
|
|
|
}
|
2018-08-25 11:07:03 +02:00
|
|
|
};
|
2018-08-24 15:27:05 +02:00
|
|
|
let inner_dest = self.operand_downcast(dest, variant)?;
|
2018-08-18 13:46:52 +02:00
|
|
|
// Put the variant projection onto the path, as a field
|
2018-08-22 16:59:14 -03:00
|
|
|
path.push(PathElem::Field(dest.layout.ty
|
|
|
|
|
.ty_adt_def()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.variants[variant].name));
|
2018-08-17 12:18:02 +02:00
|
|
|
trace!("variant layout: {:#?}", dest.layout);
|
2018-08-18 13:46:52 +02:00
|
|
|
(variant, inner_dest)
|
2018-08-17 12:18:02 +02:00
|
|
|
},
|
|
|
|
|
layout::Variants::Single { index } => {
|
2018-08-25 14:36:24 +02:00
|
|
|
// Pre-processing for trait objects: Treat them at their real type.
|
|
|
|
|
// (We do not do this for slices and strings: For slices it is not needed,
|
|
|
|
|
// `mplace_array_fields` does the right thing, and for strings there is no
|
|
|
|
|
// real type that would show the actual length.)
|
|
|
|
|
let dest = match dest.layout.ty.sty {
|
|
|
|
|
ty::Dynamic(..) => {
|
|
|
|
|
let dest = dest.to_mem_place(); // immediate trait objects are not a thing
|
2018-10-02 17:02:58 +02:00
|
|
|
try_validation!(self.unpack_dyn_trait(dest),
|
|
|
|
|
"invalid vtable in fat pointer", path).1.into()
|
2018-08-25 14:36:24 +02:00
|
|
|
}
|
|
|
|
|
_ => dest
|
|
|
|
|
};
|
2018-08-17 12:18:02 +02:00
|
|
|
(index, dest)
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// Remember the length, in case we need to truncate
|
|
|
|
|
let path_len = path.len();
|
|
|
|
|
|
2018-08-17 12:18:02 +02:00
|
|
|
// Validate all fields
|
|
|
|
|
match dest.layout.fields {
|
2018-10-02 16:06:50 +02:00
|
|
|
// Primitives appear as Union with 0 fields -- except for fat pointers.
|
2018-08-20 22:39:08 +02:00
|
|
|
// We still check `layout.fields`, not `layout.abi`, because `layout.abi`
|
|
|
|
|
// is `Scalar` for newtypes around scalars, but we want to descend through the
|
|
|
|
|
// fields to get a proper `path`.
|
2018-08-17 12:18:02 +02:00
|
|
|
layout::FieldPlacement::Union(0) => {
|
|
|
|
|
match dest.layout.abi {
|
|
|
|
|
// nothing to do, whatever the pointer points to, it is never going to be read
|
2018-08-18 13:46:52 +02:00
|
|
|
layout::Abi::Uninhabited =>
|
|
|
|
|
return validation_failure!("a value of an uninhabited type", path),
|
2018-08-17 12:18:02 +02:00
|
|
|
// check that the scalar is a valid pointer or that its bit range matches the
|
|
|
|
|
// expectation.
|
2018-10-02 18:07:40 +02:00
|
|
|
layout::Abi::Scalar(_) => {
|
2018-10-02 17:02:58 +02:00
|
|
|
let value = try_validation!(self.read_value(dest),
|
|
|
|
|
"uninitialized or unrepresentable data", path);
|
2018-08-17 12:18:02 +02:00
|
|
|
let scalar = value.to_scalar_or_undef();
|
2018-10-02 18:07:40 +02:00
|
|
|
self.validate_scalar(scalar, dest.layout.size, &path, dest.layout.ty)?;
|
2018-10-02 16:06:50 +02:00
|
|
|
// Recursively check *safe* references
|
|
|
|
|
if dest.layout.ty.builtin_deref(true).is_some() &&
|
|
|
|
|
!dest.layout.ty.is_unsafe_ptr()
|
|
|
|
|
{
|
|
|
|
|
self.validate_ref(self.ref_to_mplace(value)?, path, ref_tracking)?;
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
_ => bug!("bad abi for FieldPlacement::Union(0): {:#?}", dest.layout.abi),
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-10-02 16:06:50 +02:00
|
|
|
layout::FieldPlacement::Arbitrary { .. }
|
|
|
|
|
if dest.layout.ty.builtin_deref(true).is_some() =>
|
|
|
|
|
{
|
2018-10-02 18:07:40 +02:00
|
|
|
// This is a fat pointer. We also check fat raw pointers, their metadata must
|
|
|
|
|
// be valid!
|
2018-10-02 17:02:58 +02:00
|
|
|
let ptr = try_validation!(self.read_value(dest.into()),
|
|
|
|
|
"undefined location in fat pointer", path);
|
|
|
|
|
let ptr = try_validation!(self.ref_to_mplace(ptr),
|
|
|
|
|
"undefined metadata in fat pointer", path);
|
2018-10-02 16:06:50 +02:00
|
|
|
// check metadata early, for better diagnostics
|
|
|
|
|
match self.tcx.struct_tail(ptr.layout.ty).sty {
|
|
|
|
|
ty::Dynamic(..) => {
|
2018-10-02 17:02:58 +02:00
|
|
|
let vtable = try_validation!(ptr.extra.unwrap().to_ptr(),
|
|
|
|
|
"non-pointer vtable in fat pointer", path);
|
|
|
|
|
try_validation!(self.read_drop_type_from_vtable(vtable),
|
|
|
|
|
"invalid drop fn in vtable", path);
|
|
|
|
|
try_validation!(self.read_size_and_align_from_vtable(vtable),
|
|
|
|
|
"invalid size or align in vtable", path);
|
2018-10-02 16:06:50 +02:00
|
|
|
// FIXME: More checks for the vtable.
|
|
|
|
|
}
|
|
|
|
|
ty::Slice(..) | ty::Str => {
|
2018-10-02 17:02:58 +02:00
|
|
|
try_validation!(ptr.extra.unwrap().to_usize(self),
|
|
|
|
|
"non-integer slice length in fat pointer", path);
|
2018-10-02 16:06:50 +02:00
|
|
|
}
|
|
|
|
|
_ =>
|
|
|
|
|
bug!("Unexpected unsized type tail: {:?}",
|
|
|
|
|
self.tcx.struct_tail(ptr.layout.ty)
|
|
|
|
|
),
|
|
|
|
|
}
|
|
|
|
|
// for safe ptrs, recursively check it
|
|
|
|
|
if !dest.layout.ty.is_unsafe_ptr() {
|
|
|
|
|
self.validate_ref(ptr, path, ref_tracking)?;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Compound data structures
|
2018-08-17 12:18:02 +02:00
|
|
|
layout::FieldPlacement::Union(_) => {
|
|
|
|
|
// We can't check unions, their bits are allowed to be anything.
|
|
|
|
|
// The fields don't need to correspond to any bit pattern of the union's fields.
|
|
|
|
|
// See https://github.com/rust-lang/rust/issues/32836#issuecomment-406875389
|
|
|
|
|
},
|
2018-10-02 19:17:30 +02:00
|
|
|
layout::FieldPlacement::Array { stride, .. } => {
|
|
|
|
|
let dest = if dest.layout.is_zst() {
|
|
|
|
|
// it's a ZST, the memory content cannot matter
|
|
|
|
|
MPlaceTy::dangling(dest.layout, self)
|
|
|
|
|
} else {
|
|
|
|
|
// non-ZST array/slice/str cannot be immediate
|
|
|
|
|
dest.to_mem_place()
|
|
|
|
|
};
|
2018-08-25 14:36:24 +02:00
|
|
|
match dest.layout.ty.sty {
|
2018-09-02 17:22:46 +03:00
|
|
|
// Special handling for strings to verify UTF-8
|
2018-08-25 14:36:24 +02:00
|
|
|
ty::Str => {
|
2018-10-02 17:02:58 +02:00
|
|
|
try_validation!(self.read_str(dest),
|
|
|
|
|
"uninitialized or non-UTF-8 data in str", path);
|
2018-08-25 14:36:24 +02:00
|
|
|
}
|
2018-09-02 17:22:46 +03:00
|
|
|
// Special handling for arrays/slices of builtin integer types
|
|
|
|
|
ty::Array(tys, ..) | ty::Slice(tys) if {
|
|
|
|
|
// This optimization applies only for integer types
|
|
|
|
|
match tys.sty {
|
|
|
|
|
ty::Int(..) | ty::Uint(..) => true,
|
|
|
|
|
_ => false,
|
|
|
|
|
}
|
|
|
|
|
} => {
|
|
|
|
|
// This is the length of the array/slice.
|
|
|
|
|
let len = dest.len(self)?;
|
|
|
|
|
// Since primitive types are naturally aligned and tightly packed in arrays,
|
|
|
|
|
// we can use the stride to get the size of the integral type.
|
|
|
|
|
let ty_size = stride.bytes();
|
|
|
|
|
// This is the size in bytes of the whole array.
|
|
|
|
|
let size = Size::from_bytes(ty_size * len);
|
|
|
|
|
|
|
|
|
|
match self.memory.read_bytes(dest.ptr, size) {
|
|
|
|
|
// In the happy case, we needn't check anything else.
|
|
|
|
|
Ok(_) => {},
|
|
|
|
|
// Some error happened, try to provide a more detailed description.
|
|
|
|
|
Err(err) => {
|
|
|
|
|
// For some errors we might be able to provide extra information
|
|
|
|
|
match err.kind {
|
|
|
|
|
EvalErrorKind::ReadUndefBytes(offset) => {
|
|
|
|
|
// Some byte was undefined, determine which
|
|
|
|
|
// element that byte belongs to so we can
|
|
|
|
|
// provide an index.
|
|
|
|
|
let i = (offset.bytes() / ty_size) as usize;
|
|
|
|
|
path.push(PathElem::ArrayElem(i));
|
|
|
|
|
|
|
|
|
|
return validation_failure!(
|
|
|
|
|
"undefined bytes", path
|
|
|
|
|
)
|
|
|
|
|
},
|
2018-10-02 17:02:58 +02:00
|
|
|
// Other errors shouldn't be possible
|
|
|
|
|
_ => return Err(err),
|
2018-09-02 17:22:46 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
},
|
2018-08-25 18:32:01 +02:00
|
|
|
_ => {
|
|
|
|
|
// This handles the unsized case correctly as well, as well as
|
|
|
|
|
// SIMD an all sorts of other array-like types.
|
2018-08-25 14:36:24 +02:00
|
|
|
for (i, field) in self.mplace_array_fields(dest)?.enumerate() {
|
|
|
|
|
let field = field?;
|
|
|
|
|
path.push(PathElem::ArrayElem(i));
|
2018-10-02 16:06:50 +02:00
|
|
|
self.validate_operand(
|
|
|
|
|
field.into(),
|
|
|
|
|
path,
|
|
|
|
|
ref_tracking.as_mut().map(|r| &mut **r)
|
|
|
|
|
)?;
|
2018-08-25 14:36:24 +02:00
|
|
|
path.truncate(path_len);
|
|
|
|
|
}
|
2018-08-24 15:27:05 +02:00
|
|
|
}
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
layout::FieldPlacement::Arbitrary { ref offsets, .. } => {
|
2018-10-02 16:06:50 +02:00
|
|
|
for i in 0..offsets.len() {
|
|
|
|
|
let field = self.operand_field(dest, i as u64)?;
|
|
|
|
|
path.push(self.aggregate_field_path_elem(dest.layout.ty, variant, i));
|
|
|
|
|
self.validate_operand(field, path, ref_tracking.as_mut().map(|r| &mut **r))?;
|
|
|
|
|
path.truncate(path_len);
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-08-18 13:46:52 +02:00
|
|
|
Ok(())
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
fn aggregate_field_path_elem(&self, ty: Ty<'tcx>, variant: usize, field: usize) -> PathElem {
|
2018-08-17 12:18:02 +02:00
|
|
|
match ty.sty {
|
|
|
|
|
// generators and closures.
|
2018-08-22 11:54:46 +01:00
|
|
|
ty::Closure(def_id, _) | ty::Generator(def_id, _, _) => {
|
2018-08-17 12:18:02 +02:00
|
|
|
let node_id = self.tcx.hir.as_local_node_id(def_id).unwrap();
|
2018-08-18 13:46:52 +02:00
|
|
|
let freevar = self.tcx.with_freevars(node_id, |fv| fv[field]);
|
|
|
|
|
PathElem::ClosureVar(self.tcx.hir.name(freevar.var_id()))
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// tuples
|
2018-08-22 11:54:46 +01:00
|
|
|
ty::Tuple(_) => PathElem::TupleElem(field),
|
2018-08-17 12:18:02 +02:00
|
|
|
|
|
|
|
|
// enums
|
2018-08-22 11:54:46 +01:00
|
|
|
ty::Adt(def, ..) if def.is_enum() => {
|
2018-08-17 12:18:02 +02:00
|
|
|
let variant = &def.variants[variant];
|
2018-08-18 13:46:52 +02:00
|
|
|
PathElem::Field(variant.fields[field].ident.name)
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// other ADTs
|
2018-08-22 11:54:46 +01:00
|
|
|
ty::Adt(def, _) => PathElem::Field(def.non_enum_variant().fields[field].ident.name),
|
2018-08-17 12:18:02 +02:00
|
|
|
|
2018-08-18 13:46:52 +02:00
|
|
|
// nothing else has an aggregate layout
|
|
|
|
|
_ => bug!("aggregate_field_path_elem: got non-aggregate type {:?}", ty),
|
2018-08-17 12:18:02 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
