feedc0de/boost_beast
1
0
Fork 0
forked from boostorg/beast
Code Pull Requests Activity

Fix UB in decorator:

Browse Source 
- don't assume layout or size overhead of classes with
  virtual members (use split vtable)
- don't use SOO for types with throwing move

Signed-off-by: Damian Jarek <damian.jarek93@gmail.com>
This commit is contained in:
Damian Jarek
2019-03-04 14:54:50 +01:00
committed by Vinnie Falco
parent dc239fbb39
commit 8f83b4e611
3 changed files with 207 additions and 186 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
CHANGELOG.md
View File

@@ -1,7 +1,12 @@
Version 228:
* Fix UB in decorator:
--------------------------------------------------------------------------------
Version 227: Version 227:
* Fix decorator for certain sizes * Fix decorator for certain sizes
* Fix warning on Mac OS clang
-------------------------------------------------------------------------------- --------------------------------------------------------------------------------

363
include/boost/beast/websocket/detail/decorator.hpp
View File

@@ -12,7 +12,6 @@
#include <boost/beast/websocket/rfc6455.hpp> #include <boost/beast/websocket/rfc6455.hpp>
#include <boost/beast/core/detail/type_traits.hpp> #include <boost/beast/core/detail/type_traits.hpp>
#include <boost/core/empty_value.hpp>
#include <boost/core/exchange.hpp> #include <boost/core/exchange.hpp>
#include <boost/type_traits/make_void.hpp> #include <boost/type_traits/make_void.hpp>
#include <algorithm> #include <algorithm>
@@ -34,240 +33,256 @@ class decorator
struct exemplar struct exemplar
{ {
void(incomplete::*mf)(); void (incomplete::*mf)();
std::shared_ptr<incomplete> sp; std::shared_ptr<incomplete> sp;
void* param; void* param;
}; };
static std::size_t constexpr Bytes = union storage
beast::detail::max_sizeof<
void*,
void const*,
void(*)(),
void(incomplete::*)(),
exemplar
>();
struct base
{ {
virtual ~base() = default; void* p_;
void (*fn_)();
virtual typename std::aligned_storage<
base* sizeof(exemplar),
move(void* to) = 0; alignof(exemplar)>::type buf_;
virtual
void
invoke(request_type&) = 0;
virtual
void
invoke(response_type&) = 0;
}; };
using type = typename struct vtable
std::aligned_storage<Bytes>::type;
type buf_;
base* base_;
struct none
{ {
void void (*move)(
operator()(request_type&) storage& dst, storage& src) noexcept;
void (*destroy)(storage& dst) noexcept;
void (*invoke_req)(
storage& dst, request_type& req);
void (*invoke_res)(
storage& dst, response_type& req);
static void move_fn(
storage&, storage&) noexcept
{ {
} }
void static void destroy_fn(
operator()(response_type&) storage&) noexcept
{ {
} }
static void invoke_req_fn(
storage&, request_type&)
{
}
static void invoke_res_fn(
storage&, response_type&)
{
}
static vtable const* get_default()
{
static const vtable impl{
&move_fn,
&destroy_fn,
&invoke_req_fn,
&invoke_res_fn
}; };
return &impl;
}
};
template<class F, bool Inline =
(sizeof(F) <= sizeof(storage) &&
alignof(F) <= alignof(storage) &&
std::is_nothrow_move_constructible<F>::value)>
struct vtable_impl;
storage storage_;
vtable const* vtable_ = vtable::get_default();
// VFALCO NOTE: When this is two traits, one for // VFALCO NOTE: When this is two traits, one for
// request and one for response, // request and one for response,
// Visual Studio 2015 fails. // Visual Studio 2015 fails.
template<class T, class U, class = void> template<class T, class U, class = void>
struct is_op_of : std::false_type struct maybe_invoke
{ {
};
template<class T, class U>
struct is_op_of<T, U, boost::void_t<decltype(
std::declval<T&>()(std::declval<U&>())
)>> : std::true_type
{
};
template<class F>
struct impl : base,
boost::empty_value<F>
{
impl(impl&&) = default;
template<class F_>
explicit
impl(F_&& f)
: boost::empty_value<F>(
boost::empty_init_t{},
std::forward<F_>(f))
{
}
base*
move(void* to) override
{
return ::new(to) impl(
std::move(this->get()));
}
void void
invoke(request_type& req) override operator()(T&, U&)
{
this->invoke(req,
is_op_of<F, request_type>{});
}
void
invoke(request_type& req, std::true_type)
{
this->get()(req);
}
void
invoke(request_type&, std::false_type)
{
}
void
invoke(response_type& res) override
{
this->invoke(res,
is_op_of<F, response_type>{});
}
void
invoke(response_type& res, std::true_type)
{
this->get()(res);
}
void
invoke(response_type&, std::false_type)
{ {
} }
}; };
template<class T, class U>
struct maybe_invoke<T, U, boost::void_t<decltype(
std::declval<T&>()(std::declval<U&>()))>>
{
void void
destroy() operator()(T& t, U& u)
{ {
if(is_inline()) t(u);
base_->~base();
else if(base_)
delete base_;
}
template<class F>
base*
construct(F&& f, std::true_type)
{
return ::new(&buf_) impl<
typename std::decay<F>::type>(
std::forward<F>(f));
}
template<class F>
base*
construct(F&& f, std::false_type)
{
return new impl<
typename std::decay<F>::type>(
std::forward<F>(f));
} }
};
public: public:
decorator() = default;
decorator(decorator const&) = delete; decorator(decorator const&) = delete;
decorator& operator=(decorator const&) = delete; decorator& operator=(decorator const&) = delete;
~decorator() ~decorator()
{ {
destroy(); vtable_->destroy(storage_);
} }
decorator() decorator(decorator&& other) noexcept
: decorator(none{}) : vtable_(boost::exchange(
other.vtable_, vtable::get_default()))
{ {
} vtable_->move(
storage_, other.storage_);
decorator(
decorator&& other)
{
if(other.is_inline())
{
base_ = other.base_->move(&buf_);
other.base_->~base();
}
else
{
base_ = other.base_;
}
other.base_ = ::new(&other.buf_)
impl<none>(none{});
} }
template<class F, template<class F,
class = typename std::enable_if< class = typename std::enable_if<
! std::is_convertible<F, decorator>::value>::type> ! std::is_convertible<
F, decorator>::value>::type>
explicit explicit
decorator(F&& f) decorator(F&& f)
: base_(construct(std::forward<F>(f), : vtable_(vtable_impl<
std::integral_constant<bool, typename std::decay<F>::type>::
sizeof(F) <= Bytes>{})) construct(storage_, std::forward<F>(f)))
{ {
} }
decorator& decorator&
operator=(decorator&& other) operator=(decorator&& other) noexcept
{ {
this->destroy(); vtable_->destroy(storage_);
base_ = nullptr; vtable_ = boost::exchange(
if(other.is_inline()) other.vtable_, vtable::get_default());
{ vtable_->move(storage_, other.storage_);
base_ = other.base_->move(&buf_);
other.base_->~base();
}
else
{
base_ = other.base_;
}
other.base_ = ::new(&other.buf_)
impl<none>(none{});
return *this; return *this;
} }
bool
is_inline() const noexcept
{
return
! std::less<void const*>()(
reinterpret_cast<void const*>(base_),
reinterpret_cast<void const*>(&buf_)) &&
std::less<void const*>()(
reinterpret_cast<void const*>(base_),
reinterpret_cast<void const*>(&buf_ + 1));
}
void void
operator()(request_type& req) operator()(request_type& req)
{ {
base_->invoke(req); vtable_->invoke_req(storage_, req);
} }
void void
operator()(response_type& res) operator()(response_type& res)
{ {
base_->invoke(res); vtable_->invoke_res(storage_, res);
}
};
template<class F>
struct decorator::vtable_impl<F, true>
{
template<class Arg>
static
vtable const*
construct(storage& dst, Arg&& arg)
{
::new (static_cast<void*>(&dst.buf_)) F(
std::forward<Arg>(arg));
return get();
}
static
void
move(storage& dst, storage& src) noexcept
{
auto& f = *reinterpret_cast<F*>(&src.buf_);
::new (&dst.buf_) F(std::move(f));
}
static
void
destroy(storage& dst) noexcept
{
reinterpret_cast<F*>(&dst.buf_)->~F();
}
static
void
invoke_req(storage& dst, request_type& req)
{
maybe_invoke<F, request_type>{}(
*reinterpret_cast<F*>(&dst.buf_), req);
}
static
void
invoke_res(storage& dst, response_type& res)
{
maybe_invoke<F, response_type>{}(
*reinterpret_cast<F*>(&dst.buf_), res);
}
static
vtable
const* get()
{
static constexpr vtable impl{
&move,
&destroy,
&invoke_req,
&invoke_res};
return &impl;
}
};
template<class F>
struct decorator::vtable_impl<F, false>
{
template<class Arg>
static
vtable const*
construct(storage& dst, Arg&& arg)
{
dst.p_ = new F(std::forward<Arg>(arg));
return get();
}
static
void
move(storage& dst, storage& src) noexcept
{
dst.p_ = src.p_;
}
static
void
destroy(storage& dst) noexcept
{
delete static_cast<F*>(dst.p_);
}
static
void
invoke_req(
storage& dst, request_type& req)
{
maybe_invoke<F, request_type>{}(
*static_cast<F*>(dst.p_), req);
}
static
void
invoke_res(
storage& dst, response_type& res)
{
maybe_invoke<F, response_type>{}(
*static_cast<F*>(dst.p_), res);
}
static
vtable const*
get()
{
static constexpr vtable impl{&move,
&destroy, &invoke_req, &invoke_res};
return &impl;
} }
}; };

19
test/beast/websocket/_detail_decorator.cpp
View File

@@ -31,7 +31,7 @@ public:
BEAST_EXPECT(pass_); BEAST_EXPECT(pass_);
} }
req_t(req_t&& other) req_t(req_t&& other) noexcept
: pass_(boost::exchange(other.pass_, true)) : pass_(boost::exchange(other.pass_, true))
{ {
} }
@@ -44,9 +44,6 @@ public:
} }
}; };
BOOST_STATIC_ASSERT(decorator::is_op_of<
req_t, request_type>::value);
struct res_t struct res_t
{ {
bool pass_ = false; bool pass_ = false;
@@ -58,7 +55,7 @@ public:
BEAST_EXPECT(pass_); BEAST_EXPECT(pass_);
} }
res_t(res_t&& other) res_t(res_t&& other) noexcept
: pass_(boost::exchange(other.pass_, true)) : pass_(boost::exchange(other.pass_, true))
{ {
} }
@@ -71,9 +68,6 @@ public:
} }
}; };
BOOST_STATIC_ASSERT(decorator::is_op_of<
res_t, response_type>::value);
struct both_t : res_t , req_t struct both_t : res_t , req_t
{ {
using req_t::operator(); using req_t::operator();
@@ -88,7 +82,11 @@ public:
struct goldi // just right struct goldi // just right
{ {
std::array<char, 48> a; struct incomplete;
std::shared_ptr<incomplete> sp1;
std::shared_ptr<incomplete> sp2;
void* param;
void operator()(request_type &) const void operator()(request_type &) const
{ {
} }
@@ -132,6 +130,9 @@ public:
{ {
decorator d{goldi{}}; decorator d{goldi{}};
bool is_inline = d.vtable_ ==
decorator::vtable_impl<goldi, true>::get();
BEAST_EXPECT(is_inline);
} }
} }