Magic-Mirror/radare2
1
0
Fork 0
mirror of https://github.com/radareorg/radare2.git synced 2024-12-28 00:16:55 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity
f4185a2ec9
radare2/shlr/capstone-patches/capstone-calloc.patch
pancake c69b39798a Fix uninitialization issues in capstone
2017-05-09 14:18:17 +02:00

72 lines
2.3 KiB
Diff
Raw Blame History

diff --git a/MCInst.c b/MCInst.c
index d521845..3f75de3 100644
--- a/MCInst.c
+++ b/MCInst.c
@@ -16,14 +16,7 @@
void MCInst_Init(MCInst *inst)
{
- inst->OpcodePub = 0;
- inst->size = 0;
- inst->has_imm = false;
- inst->op1_size = 0;
- inst->writeback = false;
- inst->ac_idx = 0;
- inst->popcode_adjust = 0;
- inst->assembly[0] = '\0';
+ memset (inst, 0, sizeof (MCInst));
}
void MCInst_clear(MCInst *inst)
diff --git a/cs.c b/cs.c
index 19c65c7..96f9898 100644
--- a/cs.c
+++ b/cs.c
@@ -627,7 +627,7 @@ size_t CAPSTONE_API cs_disasm(csh ud, const uint8_t *buffer, size_t size, uint64
size_org = size;
total_size = sizeof(cs_insn) * cache_size;
- total = cs_mem_malloc(total_size);
+ total = cs_mem_calloc(total_size, 1);
if (total == NULL) {
// insufficient memory
handle->errnum = CS_ERR_MEM;
@@ -645,7 +645,7 @@ size_t CAPSTONE_API cs_disasm(csh ud, const uint8_t *buffer, size_t size, uint64
if (handle->detail) {
// allocate memory for @detail pointer
- insn_cache->detail = cs_mem_malloc(sizeof(cs_detail));
+ insn_cache->detail = cs_mem_calloc(sizeof(cs_detail), 1);
} else {
insn_cache->detail = NULL;
}
@@ -728,6 +728,7 @@ size_t CAPSTONE_API cs_disasm(csh ud, const uint8_t *buffer, size_t size, uint64
if (f == cache_size) {
// full cache, so expand the cache to contain incoming insns
cache_size = cache_size * 8 / 5; // * 1.6 ~ golden ratio
+ unsigned int old_size = total_size;
total_size += (sizeof(cs_insn) * cache_size);
tmp = cs_mem_realloc(total, total_size);
if (tmp == NULL) { // insufficient memory
@@ -742,6 +743,7 @@ size_t CAPSTONE_API cs_disasm(csh ud, const uint8_t *buffer, size_t size, uint64
handle->errnum = CS_ERR_MEM;
return 0;
}
+ memset (total + (sizeof(cs_insn) * old_size), 0, (total_size - old_size));
total = tmp;
// continue to fill in the cache after the last instruction
diff --git a/utils.c b/utils.c
index ca2a7ec..647eb57 100644
--- a/utils.c
+++ b/utils.c
@@ -17,7 +17,7 @@ static unsigned short *make_id2insn(insn_map *insns, unsigned int size)
unsigned short max_id = insns[size - 1].id;
unsigned short i;
- unsigned short *cache = (unsigned short *)cs_mem_malloc(sizeof(*cache) * (max_id + 1));
+ unsigned short *cache = (unsigned short *)cs_mem_calloc(sizeof(*cache), (max_id + 1));
for (i = 1; i < size; i++)
cache[insns[i].id] = i;
Reference in New Issue View Git Blame Copy Permalink