src/wasm · 237f0f3271930c339230f60f5b179b11f14d9a5e · Linshizhi / V8

[wasm] Avoid constructing OOB WireBytesRef · ad014fb6

Clemens Hammacher authored Aug 08, 2017

The {WireBytesRef} constructor checks that {offset + length} does not
overflow. Hence we need to check for illegal sizes before constructing
the {WireBytesRef}.

The {consume_bytes} function already does that, so remove the
redundant hand-written checking.

R=titzer@chromium.org

Bug: chromium:752781
Change-Id: If3a2946a62fa38cc668695ed7186b9751a1f356f
Reviewed-on: https://chromium-review.googlesource.com/605894
Commit-Queue: Clemens Hammacher <clemensh@chromium.org>
Reviewed-by: Ben Titzer <titzer@chromium.org>
Cr-Commit-Position: refs/heads/master@{#47563}

ad014fb6

Name	Last commit	Last update
..
OWNERS		Loading commit data...
compilation-manager.cc		Loading commit data...
compilation-manager.h		Loading commit data...
decoder.h		Loading commit data...
function-body-decoder-impl.h		Loading commit data...
function-body-decoder.cc		Loading commit data...
function-body-decoder.h		Loading commit data...
leb-helper.h		Loading commit data...
local-decl-encoder.cc		Loading commit data...
local-decl-encoder.h		Loading commit data...
module-compiler.cc		Loading commit data...
module-compiler.h		Loading commit data...
module-decoder.cc		Loading commit data...
module-decoder.h		Loading commit data...
signature-map.cc		Loading commit data...
signature-map.h		Loading commit data...
streaming-decoder.cc		Loading commit data...
streaming-decoder.h		Loading commit data...
wasm-api.cc		Loading commit data...
wasm-api.h		Loading commit data...
wasm-code-specialization.cc		Loading commit data...
wasm-code-specialization.h		Loading commit data...
wasm-debug.cc		Loading commit data...
wasm-external-refs.cc		Loading commit data...
wasm-external-refs.h		Loading commit data...
wasm-interpreter.cc		Loading commit data...
wasm-interpreter.h		Loading commit data...
wasm-js.cc		Loading commit data...
wasm-js.h		Loading commit data...
wasm-limits.h		Loading commit data...
wasm-module-builder.cc		Loading commit data...
wasm-module-builder.h		Loading commit data...
wasm-module.cc		Loading commit data...
wasm-module.h		Loading commit data...
wasm-objects.cc		Loading commit data...
wasm-objects.h		Loading commit data...
wasm-opcodes.cc		Loading commit data...
wasm-opcodes.h		Loading commit data...
wasm-result.cc		Loading commit data...
wasm-result.h		Loading commit data...
wasm-text.cc		Loading commit data...
wasm-text.h		Loading commit data...
wasm-value.h		Loading commit data...