ART: Fix read-out-of-bounds in the compiler In case of a wide dalvik register, asking for the constant value can lead to a read out of bounds. Bug: 17302671 Change-Id: Ie1849cd67cc418c97cbd7a8524f027f9b66e4c96

commit: ade731854d18839823e57fb2d3d67238c5467d15 [log] [tgz]
author: Andreas Gampe <agampe@google.com> Wed Aug 27 14:24:42 2014 -0700
committer: Andreas Gampe <agampe@google.com> Wed Aug 27 14:24:42 2014 -0700
tree: 2995b38a7642d85bc95b167d33e80d80c045c8d4
parent: f59b605f82c0e2b7bfc6019ee7bd650628f50d3a [diff] [blame]
diff --git a/compiler/dex/mir_graph.h b/compiler/dex/mir_graph.h
index 491d72e..5817f92 100644
--- a/compiler/dex/mir_graph.h
+++ b/compiler/dex/mir_graph.h

@@ -726,6 +726,8 @@
 
   int64_t ConstantValueWide(RegLocation loc) const {
     DCHECK(IsConst(loc));
+    DCHECK(!loc.high_word);  // Do not allow asking for the high partner.
+    DCHECK_LT(loc.orig_sreg + 1, GetNumSSARegs());
     return (static_cast<int64_t>(constant_values_[loc.orig_sreg + 1]) << 32) |
         Low32Bits(static_cast<int64_t>(constant_values_[loc.orig_sreg]));
   }
commit	ade731854d18839823e57fb2d3d67238c5467d15	[log] [tgz]
author	Andreas Gampe <agampe@google.com>	Wed Aug 27 14:24:42 2014 -0700
committer	Andreas Gampe <agampe@google.com>	Wed Aug 27 14:24:42 2014 -0700
tree	2995b38a7642d85bc95b167d33e80d80c045c8d4
parent	f59b605f82c0e2b7bfc6019ee7bd650628f50d3a [diff] [blame]