github-repos/tinycc
1
0
Fork 0
mirror of https://github.com/mirror/tinycc.git synced 2025-01-01 04:20:09 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix data overflow with init_putv

Browse Source 
The simplest code to reproduce this bug seems to be
    int a[][] = {{1,1,1,1,1,1,1}};
This commit is contained in:
grischka 2008-12-02 02:34:58 +01:00
parent aa8d22e38e
commit 7c3f19c079
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
tcc.c
View File

@ -8808,6 +8808,10 @@ static void init_putv(CType *type, Section *sec, unsigned long c,
/* XXX: generate error if incorrect relocation */
gen_assign_cast(&dtype);
bt = type->t & VT_BTYPE;
/* we'll write at most 12 bytes */
if (c + 12 > sec->data_allocated) {
section_realloc(sec, c + 12);
}
ptr = sec->data + c;
/* XXX: make code faster ? */
if (!(type->t & VT_BITFIELD)) {