Shihao Xia issues

Results 27 issues of


                                            Shihao Xia

deep stack issue at malformed input

For given input file in the zip, Email::parse will cause very deep stack issue (to trigger stack-overflow) Input [in.zip](https://github.com/Mubelotix/email-parser/files/6813481/in.zip) Output ``` AddressSanitizer:DEADLYSIGNAL ================================================================= ==4247==ERROR: AddressSanitizer: stack-overflow on address 0x7fff6bf82f58 (pc...

panicked at 'attempt to add with overflow'

Input [in.zip](https://github.com/qmonnet/rbpf/files/6827728/in.zip) Code ```rust fn main() { // let filepath = input file in the zip let data = std::fs::read(filepath).unwrap(); if let Ok(vm) = rbpf::EbpfVmNoData::new(Some(&data)) { vm.execute_program(); } } ```...

panicked at 'attempt to divide by zero'

Input [in.zip](https://github.com/qmonnet/rbpf/files/6827761/in.zip) Code ```rust fn main() { // let filepath = input file in the zip let data = std::fs::read(filepath).unwrap(); if let Ok(vm) = rbpf::EbpfVmNoData::new(Some(&data)) { vm.execute_program(); } } ```...

panicked at 'attempt to calculate the remainder with a divisor of zero'

Input [in.zip](https://github.com/qmonnet/rbpf/files/6827753/in.zip) Code ```rust fn main() { // let filepath = input file in the zip let data = std::fs::read(filepath).unwrap(); if let Ok(vm) = rbpf::EbpfVmNoData::new(Some(&data)) { vm.execute_program(); } } ```...

panicked at 'attempt to shift left with overflow

Input [in.zip](https://github.com/qmonnet/rbpf/files/6827739/in.zip) Code ```rust fn main() { // let filepath = input file in the zip let data = std::fs::read(filepath).unwrap(); if let Ok(vm) = rbpf::EbpfVmNoData::new(Some(&data)) { vm.execute_program(); } } ```...

panicked at 'attempt to multiply with overflow'

This happens in image-rs 0.24.2 ## Expected return error properly instead of panic ## Actual behaviour ``` thread 'main' panicked at 'attempt to multiply with overflow', /home/szx5097/.cargo/registry/src/github.com-1ecc6299db9ec823/image-0.24.2/./src/codecs/pnm/decoder.rs:651:39 stack backtrace: 0:...

requested allocation size exceeds maximum supported size

[crate version] 0.23.14 [env] x86_64-unknown-linux-gnu + Address Sanitizer ## Expected Should return error about malformed input ## Actual behaviour Allocation size is controlled by input without checks (integer overflow, max...

segmentation fault at BreakConstantExpr.cpp:144

SVF/lib/SVF-FE/BreakConstantExpr.cpp ``` return (GetElementPtrInst::Create (nullptr,CE->getOperand(0), arrayIdices, CE->getName(), InsertPt)); ``` will have segmentation fault: Program received signal SIGSEGV, Segmentation fault. gdb bt: ``` 0 0x00007ffff270b62d in llvm::GetElementPtrInst::getTypeAtIndex(llvm::Type*, llvm::Value*) [clone .localalias] ()...

In ConstraintEdge, is there a way to find corresponding LLVM instruction?

I am trying to analyzing a LLVM IR file with ``` Andersen pta(pag); pta.analyze(); ``` I know in PAG each edge/node can find corresponding LLVM value, is there a way...

stack-overflow caused by deep call stack

**Describe the bug** stack-overflow caused by deep call stack **To Reproduce** Input: `+[4446 **Expected behavior** eval should return error properly instead of panic **Build environment (please complete the following information):**...

bug

help wanted