[BitcodeReader] Make sure the type of the inserted value matches the type of the aggregate at those indices

Bug found with AFL-fuzz. git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@237628 91177308-0d34-0410-b5e6-96231b3b80d8
2024-06-26 10:29:57 +00:00 · 2015-05-18 22:27:11 +00:00 · 2015-05-18 22:27:11 +00:00 · b2bf278152
commit b2bf278152
parent 4d632b44e2
3 changed files with 8 additions and 0 deletions
--- a/lib/Bitcode/Reader/BitcodeReader.cpp
+++ b/lib/Bitcode/Reader/BitcodeReader.cpp
@ -3644,6 +3644,9 @@ std::error_code BitcodeReader::ParseFunctionBody(Function *F) {
          CurTy = CurTy->subtypes()[0];
      }

+      if (CurTy != Val->getType())
+        return Error("Inserted value type doesn't match aggregate type");
+
      I = InsertValueInst::Create(Agg, Val, INSERTVALIdx);
      InstructionList.push_back(I);
      break;
--- a/test/Bitcode/Inputs/invalid-inserted-value-type-mismatch.bc
+++ b/test/Bitcode/Inputs/invalid-inserted-value-type-mismatch.bc
--- a/test/Bitcode/invalid.test
+++ b/test/Bitcode/invalid.test
@ -142,3 +142,8 @@ RUN: not llvm-dis -disable-output %p/Inputs/invalid-load-ptr-type.bc 2>&1 | \
 RUN:   FileCheck --check-prefix=BAD-LOAD-PTR-TYPE %s

 BAD-LOAD-PTR-TYPE: Cannot load/store from pointer
+
+RUN: not llvm-dis -disable-output %p/Inputs/invalid-inserted-value-type-mismatch.bc 2>&1 | \
+RUN:   FileCheck --check-prefix=INSERT-TYPE-MISMATCH %s
+
+INSERT-TYPE-MISMATCH: Inserted value type doesn't match aggregate type