d0p1/tcc-stupidos
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix data overflow with init_putv

Browse source 
The simplest code to reproduce this bug seems to be
    int a[][] = {{1,1,1,1,1,1,1}};
This commit is contained in:
grischka 2008-12-02 02:34:58 +01:00
parent aa8d22e38e
commit 7c3f19c079
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
tcc.c
View file

@ -8808,6 +8808,10 @@ static void init_putv(CType *type, Section *sec, unsigned long c,
/* XXX: generate error if incorrect relocation */ /* XXX: generate error if incorrect relocation */
gen_assign_cast(&dtype); gen_assign_cast(&dtype);
bt = type->t & VT_BTYPE; bt = type->t & VT_BTYPE;
/* we'll write at most 12 bytes */
if (c + 12 > sec->data_allocated) {
section_realloc(sec, c + 12);
}
ptr = sec->data + c; ptr = sec->data + c;
/* XXX: make code faster ? */ /* XXX: make code faster ? */
if (!(type->t & VT_BITFIELD)) { if (!(type->t & VT_BITFIELD)) {