[demangler] Fix another oss-fuzz bug

author Erik Pilkington <erik.pilkington@gmail.com>

Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)

committer Erik Pilkington <erik.pilkington@gmail.com>

Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)
author Erik Pilkington <erik.pilkington@gmail.com>
Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)
committer Erik Pilkington <erik.pilkington@gmail.com>
Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)
diff --git a/libcxxabi/src/cxa_demangle.cpp b/libcxxabi/src/cxa_demangle.cpp

index 88990a2..0281b50 100644 (file)
--- a/libcxxabi/src/cxa_demangle.cpp
+++ b/libcxxabi/src/cxa_demangle.cpp
@@ -2896,7 +2896,7 @@ parse_new_expr(const char* first, const char* last, Db& db)
                      return first;
                  init_list = db.popTrailingNodeArray(init_list_begin);
              }
-            if (*t != 'E')
+            if (*t != 'E' || db.names.empty())
                  return first;
              auto type = db.names.back();
              db.names.pop_back();
diff --git a/libcxxabi/test/test_demangle.pass.cpp b/libcxxabi/test/test_demangle.pass.cpp

index 3b712f0..18bbbba 100644 (file)
--- a/libcxxabi/test/test_demangle.pass.cpp
+++ b/libcxxabi/test/test_demangle.pass.cpp
@@ -29677,6 +29677,7 @@ const char* invalid_cases[] =
      "FSiIJEENT_IoE ",
      "ZTVSiIZTVSiIZTVSiIZTVSiINIJEET_T_T_T_T_ ",
      "_ZSiIJEvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvttvvvvvvET_v",
+    "Ana_T_E_T_IJEffffffffffffffersfffffrsrsffffffbgE",
  };
  
  const unsigned NI = sizeof(invalid_cases) / sizeof(invalid_cases[0]);
author	Erik Pilkington <erik.pilkington@gmail.com>
	Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)
committer	Erik Pilkington <erik.pilkington@gmail.com>
	Sun, 6 Aug 2017 20:46:33 +0000 (20:46 +0000)
libcxxabi/src/cxa_demangle.cpp		patch \| blob \| history
libcxxabi/test/test_demangle.pass.cpp		patch \| blob \| history