Skip to content

Commit

Permalink
feat: add data section check when limiting Wasm heap memory (#72)
Browse files Browse the repository at this point in the history 
* add data segments check
* validate only against heap memory
* panic instead of logging the error
  • Loading branch information
@venkkatesh-sekar
venkkatesh-sekar committed Sep 23, 2024
1 parent 9f3c746 commit 8c26f83
Showing 1 changed file with 37 additions and 1 deletion.
38 changes: 37 additions & 1 deletion src/limit_resource.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -175,7 +175,43 @@ fn limit_heap_memory(m: &mut Module, limit: u32) {
let memory = m.memories.get_mut(memory_id);
let limit = limit as u64;
if memory.initial > limit {
memory.initial = limit
// If memory.initial is greater than the provided limit, it is
// possible there is an active data segment with an offset in the
// range [limit, memory.initial].
//
// In that case, we don't restrict the heap memory limit as it could
// have undefined behaviour.

if m.data
.iter()
.filter_map(|data| {
match data.kind {
DataKind::Passive => None,
DataKind::Active {
memory: data_memory_id,
offset,
} => {
if data_memory_id == memory_id {
match offset {
ConstExpr::Value(Value::I32(offset)) => Some(offset as u64),
ConstExpr::Value(Value::I64(offset)) => Some(offset as u64),
_ => {
// It wouldn't pass IC wasm validation
None
}
}
} else {
None
}
}
}
})
.all(|offset| offset < limit * 65536)
{
memory.initial = limit;
} else {
panic!("Unable to restrict Wasm heap memory to {} pages", limit);
}
}
memory.maximum = Some(limit);
}
Expand Down

0 comments on commit 8c26f83

Please sign in to comment.