Skip to content

fix: avoid OOB access if source code unreadable#727

Merged
milianw merged 1 commit intoKDAB:masterfrom
pcc:fix3
Jul 4, 2025
Merged

fix: avoid OOB access if source code unreadable#727
milianw merged 1 commit intoKDAB:masterfrom
pcc:fix3

Conversation

@pcc
Copy link
Contributor

@pcc pcc commented May 26, 2025

We set m_startLine and m_numLines according to the debug info but if the source file is unreadable, or if it is readable but does not have enough lines, this will lead to an OOB access and a crash in SourceCodeModel::data() -> HighlightedText::lineAt(). Fix it by making it so that we only set m_startLine and m_highlightedText once we have successfully read the file and ensure that they are in bounds of the lines array.

@pcc
Copy link
Contributor Author

pcc commented May 26, 2025

(I bet this is the real fix for #702.)

@milianw
Copy link
Collaborator

milianw commented May 26, 2025

Thanks, can you tell me how to reproduce this? IIUC just make the source file unreadable or something like that, yes?

@GitMensch
Copy link
Contributor

GitMensch commented May 26, 2025

According to the title - just change it to be four lines after compile (gdb will show the file and disassembly if requested, but give a note about "source file newer", if missing then it will show "source file not found" or similar, if I'm right).
As both cases are a bit different I suggest to include both options in the automated tests, if possible.

@pcc
fix: avoid OOB access if source code unreadable
21fe019 
We set m_startLine and m_numLines according to the debug info but
if the source file is unreadable, or if it is readable but does not
have enough lines, this will lead to an OOB access and a crash in
SourceCodeModel::data() -> HighlightedText::lineAt(). Fix it by making
it so that we only set m_startLine and m_highlightedText once we have
successfully read the file and ensure that they are in bounds of the
lines array.
@pcc
Copy link
Contributor Author

pcc commented May 26, 2025

Thanks, can you tell me how to reproduce this? IIUC just make the source file unreadable or something like that, yes?

Right, or just delete the source file. I ran into this bug when analyzing a binary that had some prebuilt (by the distribution) object files with debug info statically linked into it, and I noticed while debugging the issue that truncated files would have the same problem.

Showing a warning in this case would be a good idea for a followup change. We should probably just fix the crash to begin with.

milianw
milianw approved these changes May 29, 2025
View reviewed changes
@GitMensch GitMensch mentioned this pull request Jun 11, 2025
Merged
@milianw
Copy link
Collaborator

milianw commented Jul 3, 2025

sorry for the long delay, can you resolve the pre-commit issue (i.e. run clang-format)? then this can go in

@milianw
Copy link
Collaborator

milianw commented Jul 4, 2025

there's another pre-commit issue that crept in elsewhere, let's get this in as-is and I'll fix this afterwards

@milianw milianw merged commit 3a9ea36 into KDAB:master Jul 4, 2025
10 of 13 checks passed
@GitMensch GitMensch mentioned this pull request Aug 8, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@milianw milianw milianw approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@pcc @milianw @GitMensch