diff options
| author |  bunnei | 2020-02-05 22:09:16 -0500 |
|---|---|---|
| committer | bunnei | 2020-02-05 22:52:35 -0500 |
| commit | 9751ccc5e02ae410bf5daa19afe1598f80ee58ce (patch) | |
| tree | bf8b258e10b1edb2a7226860c6bcbf40115703b8 /src/core/hle/kernel | |
| parent | Merge pull request #3377 from ReinUsesLisp/bitset-vk (diff) | |
| download | yuzu-9751ccc5e02ae410bf5daa19afe1598f80ee58ce.tar.gz yuzu-9751ccc5e02ae410bf5daa19afe1598f80ee58ce.tar.xz yuzu-9751ccc5e02ae410bf5daa19afe1598f80ee58ce.zip | |
hle_ipc: Add error checking to read/write buffer access.
Diffstat (limited to 'src/core/hle/kernel')
| -rw-r--r-- | src/core/hle/kernel/hle_ipc.cpp | 50 |
1 files changed, 42 insertions, 8 deletions
diff --git a/src/core/hle/kernel/hle_ipc.cpp b/src/core/hle/kernel/hle_ipc.cpp index 2db28dcf0..ab05788d7 100644 --- a/src/core/hle/kernel/hle_ipc.cpp +++ b/src/core/hle/kernel/hle_ipc.cpp | |||
| @@ -284,13 +284,18 @@ ResultCode HLERequestContext::WriteToOutgoingCommandBuffer(Thread& thread) { | |||
| 284 | 284 | ||
| 285 | std::vector<u8> HLERequestContext::ReadBuffer(int buffer_index) const { | 285 | std::vector<u8> HLERequestContext::ReadBuffer(int buffer_index) const { |
| 286 | std::vector<u8> buffer; | 286 | std::vector<u8> buffer; |
| 287 | const bool is_buffer_a{BufferDescriptorA().size() && BufferDescriptorA()[buffer_index].Size()}; | 287 | const bool is_buffer_a{BufferDescriptorA().size() > buffer_index && |
| 288 | BufferDescriptorA()[buffer_index].Size()}; | ||
| 288 | auto& memory = Core::System::GetInstance().Memory(); | 289 | auto& memory = Core::System::GetInstance().Memory(); |
| 289 | 290 | ||
| 290 | if (is_buffer_a) { | 291 | if (is_buffer_a) { |
| 292 | ASSERT_MSG(BufferDescriptorA().size() > buffer_index, | ||
| 293 | "BufferDescriptorA invalid buffer_index {}", buffer_index); | ||
| 291 | buffer.resize(BufferDescriptorA()[buffer_index].Size()); | 294 | buffer.resize(BufferDescriptorA()[buffer_index].Size()); |
| 292 | memory.ReadBlock(BufferDescriptorA()[buffer_index].Address(), buffer.data(), buffer.size()); | 295 | memory.ReadBlock(BufferDescriptorA()[buffer_index].Address(), buffer.data(), buffer.size()); |
| 293 | } else { | 296 | } else { |
| 297 | ASSERT_MSG(BufferDescriptorX().size() > buffer_index, | ||
| 298 | "BufferDescriptorX invalid buffer_index {}", buffer_index); | ||
| 294 | buffer.resize(BufferDescriptorX()[buffer_index].Size()); | 299 | buffer.resize(BufferDescriptorX()[buffer_index].Size()); |
| 295 | memory.ReadBlock(BufferDescriptorX()[buffer_index].Address(), buffer.data(), buffer.size()); | 300 | memory.ReadBlock(BufferDescriptorX()[buffer_index].Address(), buffer.data(), buffer.size()); |
| 296 | } | 301 | } |
| @@ -305,7 +310,8 @@ std::size_t HLERequestContext::WriteBuffer(const void* buffer, std::size_t size, | |||
| 305 | return 0; | 310 | return 0; |
| 306 | } | 311 | } |
| 307 | 312 | ||
| 308 | const bool is_buffer_b{BufferDescriptorB().size() && BufferDescriptorB()[buffer_index].Size()}; | 313 | const bool is_buffer_b{BufferDescriptorB().size() > buffer_index && |
| 314 | BufferDescriptorB()[buffer_index].Size()}; | ||
| 309 | const std::size_t buffer_size{GetWriteBufferSize(buffer_index)}; | 315 | const std::size_t buffer_size{GetWriteBufferSize(buffer_index)}; |
| 310 | if (size > buffer_size) { | 316 | if (size > buffer_size) { |
| 311 | LOG_CRITICAL(Core, "size ({:016X}) is greater than buffer_size ({:016X})", size, | 317 | LOG_CRITICAL(Core, "size ({:016X}) is greater than buffer_size ({:016X})", size, |
| @@ -315,8 +321,16 @@ std::size_t HLERequestContext::WriteBuffer(const void* buffer, std::size_t size, | |||
| 315 | 321 | ||
| 316 | auto& memory = Core::System::GetInstance().Memory(); | 322 | auto& memory = Core::System::GetInstance().Memory(); |
| 317 | if (is_buffer_b) { | 323 | if (is_buffer_b) { |
| 324 | ASSERT_MSG(BufferDescriptorB().size() > buffer_index, | ||
| 325 | "BufferDescriptorB invalid buffer_index {}", buffer_index); | ||
| 326 | ASSERT_MSG(BufferDescriptorB()[buffer_index].Size() >= size, | ||
| 327 | "BufferDescriptorB buffer_index {} is not large enough", buffer_index); | ||
| 318 | memory.WriteBlock(BufferDescriptorB()[buffer_index].Address(), buffer, size); | 328 | memory.WriteBlock(BufferDescriptorB()[buffer_index].Address(), buffer, size); |
| 319 | } else { | 329 | } else { |
| 330 | ASSERT_MSG(BufferDescriptorC().size() > buffer_index, | ||
| 331 | "BufferDescriptorC invalid buffer_index {}", buffer_index); | ||
| 332 | ASSERT_MSG(BufferDescriptorC()[buffer_index].Size() >= size, | ||
| 333 | "BufferDescriptorC buffer_index {} is not large enough", buffer_index); | ||
| 320 | memory.WriteBlock(BufferDescriptorC()[buffer_index].Address(), buffer, size); | 334 | memory.WriteBlock(BufferDescriptorC()[buffer_index].Address(), buffer, size); |
| 321 | } | 335 | } |
| 322 | 336 | ||
| @@ -324,15 +338,35 @@ std::size_t HLERequestContext::WriteBuffer(const void* buffer, std::size_t size, | |||
| 324 | } | 338 | } |
| 325 | 339 | ||
| 326 | std::size_t HLERequestContext::GetReadBufferSize(int buffer_index) const { | 340 | std::size_t HLERequestContext::GetReadBufferSize(int buffer_index) const { |
| 327 | const bool is_buffer_a{BufferDescriptorA().size() && BufferDescriptorA()[buffer_index].Size()}; | 341 | const bool is_buffer_a{BufferDescriptorA().size() > buffer_index && |
| 328 | return is_buffer_a ? BufferDescriptorA()[buffer_index].Size() | 342 | BufferDescriptorA()[buffer_index].Size()}; |
| 329 | : BufferDescriptorX()[buffer_index].Size(); | 343 | if (is_buffer_a) { |
| 344 | ASSERT_MSG(BufferDescriptorA().size() > buffer_index, | ||
| 345 | "BufferDescriptorA invalid buffer_index {}", buffer_index); | ||
| 346 | ASSERT_MSG(BufferDescriptorA()[buffer_index].Size() > 0, | ||
| 347 | "BufferDescriptorA buffer_index {} is empty", buffer_index); | ||
| 348 | return BufferDescriptorA()[buffer_index].Size(); | ||
| 349 | } else { | ||
| 350 | ASSERT_MSG(BufferDescriptorX().size() > buffer_index, | ||
| 351 | "BufferDescriptorX invalid buffer_index {}", buffer_index); | ||
| 352 | ASSERT_MSG(BufferDescriptorX()[buffer_index].Size() > 0, | ||
| 353 | "BufferDescriptorX buffer_index {} is empty", buffer_index); | ||
| 354 | return BufferDescriptorX()[buffer_index].Size(); | ||
| 355 | } | ||
| 330 | } | 356 | } |
| 331 | 357 | ||
| 332 | std::size_t HLERequestContext::GetWriteBufferSize(int buffer_index) const { | 358 | std::size_t HLERequestContext::GetWriteBufferSize(int buffer_index) const { |
| 333 | const bool is_buffer_b{BufferDescriptorB().size() && BufferDescriptorB()[buffer_index].Size()}; | 359 | const bool is_buffer_b{BufferDescriptorB().size() > buffer_index && |
| 334 | return is_buffer_b ? BufferDescriptorB()[buffer_index].Size() | 360 | BufferDescriptorB()[buffer_index].Size()}; |
| 335 | : BufferDescriptorC()[buffer_index].Size(); | 361 | if (is_buffer_b) { |
| 362 | ASSERT_MSG(BufferDescriptorB().size() > buffer_index, | ||
| 363 | "BufferDescriptorB invalid buffer_index {}", buffer_index); | ||
| 364 | return BufferDescriptorB()[buffer_index].Size(); | ||
| 365 | } else { | ||
| 366 | ASSERT_MSG(BufferDescriptorC().size() > buffer_index, | ||
| 367 | "BufferDescriptorC invalid buffer_index {}", buffer_index); | ||
| 368 | return BufferDescriptorC()[buffer_index].Size(); | ||
| 369 | } | ||
| 336 | } | 370 | } |
| 337 | 371 | ||
| 338 | std::string HLERequestContext::Description() const { | 372 | std::string HLERequestContext::Description() const { |