Fix shifting integers bits and a NULL pointer dereferce in pcretest tool

2020-02-12 10:45:36 +01:00 · 2020-02-12 10:45:36 +01:00 · 5ae2593c3e
commit 5ae2593c3e
parent 77fe299a07
2 changed files with 207 additions and 0 deletions
--- a/pcre-8.43-Tidies-to-get-rid-of-sanitize-warnings-mostly-about-.patch
+++ b/pcre-8.43-Tidies-to-get-rid-of-sanitize-warnings-mostly-about-.patch
@ -0,0 +1,202 @@
 From be73d3747c3b2c0dab935279484bf96d55221106 Mon Sep 17 00:00:00 2001
 From: ph10 <ph10@2f5784b3-3f2a-0410-8824-cb99058d5e15>
 Date: Tue, 11 Feb 2020 18:13:46 +0000
 Subject: [PATCH] Tidies to get rid of sanitize warnings (mostly about left
 shifts).
 MIME-Version: 1.0
 Content-Type: text/plain; charset=UTF-8
 Content-Transfer-Encoding: 8bit
 git-svn-id: svn://vcs.exim.org/pcre/code/trunk@1762 2f5784b3-3f2a-0410-8824-cb99058d5e15
 Petr Písař: Ported to 8.43.
 ---
 pcre_compile.c       | 16 ++++++++--------
 pcre_jit_compile.c   |  6 +++---
 pcretest.c           | 12 ++++++------
 testdata/testinput2  |  2 +-
 testdata/testoutput2 |  3 +--
 diff --git a/pcre_compile.c b/pcre_compile.c
 index 1e3d6c3..32e5b91 100644
 --- a/pcre_compile.c
 +++ b/pcre_compile.c
@@ -68,7 +68,7 @@ COMPILE_PCREx macro will already be appropriately set. */
 /* Macro for setting individual bits in class bitmaps. */
 -#define SETBIT(a,b) a[(b)/8] |= (1 << ((b)&7))
 +#define SETBIT(a,b) a[(b)/8] |= (1U << ((b)&7))
 /* Maximum length value to check against when making sure that the integer that
 holds the compiled pattern length does not overflow. We make it a bit less than
@@ -129,8 +129,8 @@ overrun before it actually does run off the end of the data block. */
 /* Private flags added to firstchar and reqchar. */
 -#define REQ_CASELESS    (1 << 0)        /* Indicates caselessness */
 -#define REQ_VARY        (1 << 1)        /* Reqchar followed non-literal item */
 +#define REQ_CASELESS    (1U << 0)        /* Indicates caselessness */
 +#define REQ_VARY        (1U << 1)        /* Reqchar followed non-literal item */
 /* Negative values for the firstchar and reqchar flags */
 #define REQ_UNSET       (-2)
 #define REQ_NONE        (-1)
@@ -3611,7 +3611,7 @@ for(;;)
       if (chr > 255) break;
       class_bitset = (pcre_uint8 *)
         ((list_ptr == list ? code : base_end) - list_ptr[2]);
 -      if ((class_bitset[chr >> 3] & (1 << (chr & 7))) != 0) return FALSE;
 +      if ((class_bitset[chr >> 3] & (1U << (chr & 7))) != 0) return FALSE;
       break;
 #if defined SUPPORT_UTF || !defined COMPILE_PCRE8
@@ -7458,7 +7458,7 @@ for (;; ptr++)
               {
               open_capitem *oc;
               recno = GET2(slot, 0);
 -              cd->backref_map |= (recno < 32)? (1 << recno) : 1;
 +              cd->backref_map |= (recno < 32)? (1U << recno) : 1;
               if (recno > cd->top_backref) cd->top_backref = recno;
               /* Check to see if this back reference is recursive, that it, it
@@ -8069,7 +8069,7 @@ for (;; ptr++)
         item_hwm_offset = cd->hwm - cd->start_workspace;
         *code++ = ((options & PCRE_CASELESS) != 0)? OP_REFI : OP_REF;
         PUT2INC(code, 0, recno);
 -        cd->backref_map |= (recno < 32)? (1 << recno) : 1;
 +        cd->backref_map |= (recno < 32)? (1U << recno) : 1;
         if (recno > cd->top_backref) cd->top_backref = recno;
         /* Check to see if this back reference is recursive, that it, it
@@ -8682,7 +8682,7 @@ do {
             op == OP_SCBRA || op == OP_SCBRAPOS)
      {
      int n = GET2(scode, 1+LINK_SIZE);
 -     int new_map = bracket_map | ((n < 32)? (1 << n) : 1);
 +     int new_map = bracket_map | ((n < 32)? (1U << n) : 1);
      if (!is_anchored(scode, new_map, cd, atomcount)) return FALSE;
      }
@@ -8810,7 +8810,7 @@ do {
             op == OP_SCBRA || op == OP_SCBRAPOS)
      {
      int n = GET2(scode, 1+LINK_SIZE);
 -     int new_map = bracket_map | ((n < 32)? (1 << n) : 1);
 +     int new_map = bracket_map | ((n < 32)? (1U << n) : 1);
      if (!is_startline(scode, new_map, cd, atomcount, inassert)) return FALSE;
      }
 diff --git a/pcre_jit_compile.c b/pcre_jit_compile.c
 index bc5f9c0..4dcf8fc 100644
 --- a/pcre_jit_compile.c
 +++ b/pcre_jit_compile.c
@@ -3938,10 +3938,10 @@ static sljit_s32 character_to_int32(pcre_uchar chr)
 sljit_s32 value = (sljit_s32)chr;
 #if defined COMPILE_PCRE8
 #define SSE2_COMPARE_TYPE_INDEX 0
 -return (value << 24) | (value << 16) | (value << 8) | value;
 +return ((unsigned int)value << 24) | ((unsigned int)value << 16) | ((unsigned int)value << 8) | (unsigned int)value;
 #elif defined COMPILE_PCRE16
 #define SSE2_COMPARE_TYPE_INDEX 1
 -return (value << 16) | value;
 +return ((unsigned int)value << 16) | value;
 #elif defined COMPILE_PCRE32
 #define SSE2_COMPARE_TYPE_INDEX 2
 return value;
@@ -8507,7 +8507,7 @@ if (opcode == OP_ONCE)
   /* We temporarily encode the needs_control_head in the lowest bit.
      Note: on the target architectures of SLJIT the ((x << 1) >> 1) returns
      the same value for small signed numbers (including negative numbers). */
 -  BACKTRACK_AS(bracket_backtrack)->u.framesize = (BACKTRACK_AS(bracket_backtrack)->u.framesize << 1) | (needs_control_head ? 1 : 0);
 +  BACKTRACK_AS(bracket_backtrack)->u.framesize = ((unsigned int)BACKTRACK_AS(bracket_backtrack)->u.framesize << 1) | (needs_control_head ? 1 : 0);
   }
 return cc + repeat_length;
 }
 diff --git a/pcretest.c b/pcretest.c
 index f130303..c1ee128 100644
 --- a/pcretest.c
 +++ b/pcretest.c
@@ -500,7 +500,7 @@ enum {
 #if (defined (SUPPORT_PCRE8) + defined (SUPPORT_PCRE16) + \
      defined (SUPPORT_PCRE32)) >= 2
 -#define CHAR_SIZE (1 << pcre_mode)
 +#define CHAR_SIZE (1U << pcre_mode)
 /* There doesn't seem to be an easy way of writing these macros that can cope
 with the 3 pairs of bit sizes plus all three bit sizes. So just handle all the
@@ -4443,7 +4443,7 @@ while (!done)
           /* If there is study data, write it. */
 -          if (extra != NULL)
 +          if (extra != NULL && (extra->flags & PCRE_EXTRA_STUDY_DATA) != 0)
             {
             if (fwrite(extra->study_data, 1, true_study_size, f) <
                 true_study_size)
@@ -4735,7 +4735,7 @@ while (!done)
         if (isdigit(*p))    /* Set copy string */
           {
           while(isdigit(*p)) n = n * 10 + *p++ - '0';
 -          copystrings |= 1 << n;
 +          copystrings |= 1U << n;
           }
         else if (isalnum(*p))
           {
@@ -4798,7 +4798,7 @@ while (!done)
         if (isdigit(*p))
           {
           while(isdigit(*p)) n = n * 10 + *p++ - '0';
 -          getstrings |= 1 << n;
 +          getstrings |= 1U << n;
           }
         else if (isalnum(*p))
           {
@@ -5335,7 +5335,7 @@ while (!done)
         for (i = 0; i < 32; i++)
           {
 -          if ((copystrings & (1 << i)) != 0)
 +          if ((copystrings & (1U << i)) != 0)
             {
             int rc;
             char copybuffer[256];
@@ -5400,7 +5400,7 @@ while (!done)
         for (i = 0; i < 32; i++)
           {
 -          if ((getstrings & (1 << i)) != 0)
 +          if ((getstrings & (1U << i)) != 0)
             {
             int rc;
             const char *substring;
 diff --git a/testdata/testinput2 b/testdata/testinput2
 index 3528de1..53c9825 100644
 --- a/testdata/testinput2
 +++ b/testdata/testinput2
@@ -1380,7 +1380,7 @@
     1X
     123456\P
 -//KF>testsavedregex
 +//S-KF>testsavedregex
 /abc/IS>testsavedregex
 <testsavedregex
 diff --git a/testdata/testoutput2 b/testdata/testoutput2
 index 4ccda27..f5d32d6 100644
 --- a/testdata/testoutput2
 +++ b/testdata/testoutput2
@@ -5614,9 +5614,8 @@ No match
     123456\P
 No match
 -//KF>testsavedregex
 +//S-KF>testsavedregex
 Compiled pattern written to testsavedregex
 -Study data written to testsavedregex
 /abc/IS>testsavedregex
 Capturing subpattern count = 0
 -- 
 2.21.1
--- a/pcre.spec
+++ b/pcre.spec
@ -49,6 +49,9 @@ Patch5:     pcre-8.43-Minor-fix-to-avoid-sanitizer-complaint-in-POSIX-wrap.patch
 # Fix an integer overflow when parsing numbers after "(?C",
 # upstream bug #2463, in upstream after 8.43
 Patch6:     pcre-8.43-Check-the-size-of-the-number-after-C-as-it-is-read-i.patch
 # Fix shifting integers bits and a NULL pointer dereferce in pcretest tool,
 # in upstream after 8.43
 Patch7:     pcre-8.43-Tidies-to-get-rid-of-sanitize-warnings-mostly-about-.patch
 BuildRequires:  readline-devel
 BuildRequires:  autoconf
 BuildRequires:  automake
@ -137,6 +140,7 @@ Utilities demonstrating PCRE capabilities like pcregrep or pcretest.
 %patch4 -p1
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
 # Because of rpath patch
 libtoolize --copy --force
 autoreconf -vif
@ -240,6 +244,7 @@ make %{?_smp_mflags} check VERBOSE=yes
 - Make erroroffset initializion in a POSIX wrapper thread-safe
  (upstream bug #2447)
 - Fix an integer overflow when parsing numbers after "(?C" (upstream bug #2463)
 - Fix shifting integers bits and a NULL pointer dereferce in pcretest tool
 * Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 8.43-2.2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild