CR Fixes

Use new utf8 DecodingOption to throw when using invalid character instead of rechecking the whole buffer

Author: Cellule

lib/Common/Codex/Utf8Codex.cpp

@@ -70,12 +70,20 @@ namespace utf8
         return ((0x5B >> (((prefix ^ 0xF0) >> 3) & 0x1E)) & 0x03) + 1;
     }
 
-    const char16 g_chUnknown = char16(UNICODE_UNKNOWN_CHAR_MARK);
     const char16 WCH_UTF16_HIGH_FIRST  =  char16(0xd800);
     const char16 WCH_UTF16_HIGH_LAST   =  char16(0xdbff);
     const char16 WCH_UTF16_LOW_FIRST   =  char16(0xdc00);
     const char16 WCH_UTF16_LOW_LAST    =  char16(0xdfff);
 
+    char16 GetUnknownCharacter(DecodeOptions options = doDefault)
+    {
+        if ((options & doThrowOnInvalidWCHARs) != 0)
+        {
+            throw InvalidWideCharException();
+        }
+        return char16(UNICODE_UNKNOWN_CHAR_MARK);
+    }
+
     inline BOOL InRange(const char16 ch, const char16 chMin, const char16 chMax)
     {
         return (unsigned)(ch - chMin) <= (unsigned)(chMax - chMin);
@@ -122,7 +130,7 @@ namespace utf8
             }
 
             // 10xxxxxx (trail byte appearing in a lead byte position
-            return g_chUnknown;
+            return GetUnknownCharacter(options);
 
         case 2:
             // Look for an overlong utf-8 sequence.
@@ -138,7 +146,7 @@ namespace utf8
                         *chunkEndsAtTruncatedSequence = true;
                     }
                 }
-                return g_chUnknown;
+                return GetUnknownCharacter(options);
             }
             c2 = *ptr++;
             // 110XXXXx 10xxxxxx
@@ -152,12 +160,14 @@ namespace utf8
                 ch |= WCHAR(c1 & 0x1f) << 6;     // 0x0080 - 0x07ff
                 ch |= WCHAR(c2 & 0x3f);
                 if (!IsValidWideChar(ch) && ((options & doAllowInvalidWCHARs) == 0))
-                    ch = g_chUnknown;
+                {
+                    ch = GetUnknownCharacter(options);
+                }
             }
             else
             {
                 ptr--;
-                ch = g_chUnknown;
+                ch = GetUnknownCharacter(options);
             }
             break;
 
@@ -177,7 +187,7 @@ namespace utf8
                     }
                 }
 
-                return g_chUnknown;
+                return GetUnknownCharacter(options);
             }
 
             //      UTF16       |   UTF8 1st byte  2nd byte 3rd byte
@@ -217,12 +227,14 @@ namespace utf8
                 ch |= WCHAR(c2 & 0x3f) << 6;     // 0x0080 - 0x07ff
                 ch |= WCHAR(c3 & 0x3f);
                 if (!IsValidWideChar(ch) && ((options & (doAllowThreeByteSurrogates | doAllowInvalidWCHARs)) == 0))
-                    ch = g_chUnknown;
+                {
+                    ch = GetUnknownCharacter(options);
+                }
                 ptr += 2;
             }
             else
             {
-                ch = g_chUnknown;
+                ch = GetUnknownCharacter(options);
                 // Windows OS 1713952. Only drop the illegal leading byte
                 // Retry next byte.
                 // ptr is already advanced.
@@ -246,7 +258,7 @@ namespace utf8
                     }
                 }
 
-                ch = g_chUnknown;
+                ch = GetUnknownCharacter(options);
                 break;
             }
 
@@ -281,7 +293,7 @@ namespace utf8
                 // Windows OS 1713952. Only drop the illegal leading byte.
                 // Retry next byte.
                 // ptr is already advanced 1.
-                ch = g_chUnknown;
+                ch = GetUnknownCharacter(options);
                 break;
             }
 

lib/Common/Codex/Utf8Codex.h

@@ -95,6 +95,7 @@ typedef const utf8char_t *LPCUTF8;
 
 namespace utf8
 {
+    class InvalidWideCharException {};
 
     // Terminology -
     //   Code point      - A ordinal value mapped to a standard ideograph as defined by ISO/IEC 10646-1. Here
@@ -138,6 +139,7 @@ namespace utf8
                                             // surrogate pair. The second call will return the second word and reset
                                             // this 'option'.
         doAllowInvalidWCHARs        = 0x08, // Don't replace invalid wide chars with 0xFFFD
+        doThrowOnInvalidWCHARs      = 0x10, // throw InvalidWideCharException if an invalid wide char is seen. Incompatible with doAllowInvalidWCHARs
     };
     DEFINE_ENUM_FLAG_OPERATORS(DecodeOptions);
 

lib/WasmReader/WasmBinaryReader.cpp

@@ -1012,24 +1012,23 @@ const char16* WasmBinaryReader::ReadInlineName(uint32& length, uint32& nameLengt
     m_pc += rawNameLength;
     length += rawNameLength;
 
-    utf8::DecodeOptions decodeOptions = utf8::doDefault;
-    nameLength = (uint32)utf8::ByteIndexIntoCharacterIndex(rawName, rawNameLength, decodeOptions);
-    char16* contents = AnewArray(m_alloc, char16, nameLength + 1);
-    size_t decodedLength = utf8::DecodeUnitsIntoAndNullTerminate(contents, rawName, rawName + rawNameLength, decodeOptions);
-    if (decodedLength != nameLength)
+    utf8::DecodeOptions decodeOptions = utf8::doThrowOnInvalidWCHARs;
+    try
     {
-        AssertMsg(UNREACHED, "We calculated the length before decoding, what happened ?");
-        ThrowDecodingError(_u("Error while decoding utf8 string"));
-    }
-    for (size_t i = 0; i < decodedLength; ++i)
-    {
-        const char16 c = contents[i];
-        if (!utf8::IsValidWideChar(c) || c == UNICODE_UNKNOWN_CHAR_MARK)
+        nameLength = (uint32)utf8::ByteIndexIntoCharacterIndex(rawName, rawNameLength, decodeOptions);
+        char16* contents = AnewArray(m_alloc, char16, nameLength + 1);
+        size_t decodedLength = utf8::DecodeUnitsIntoAndNullTerminate(contents, rawName, rawName + rawNameLength, decodeOptions);
+        if (decodedLength != nameLength)
         {
-            ThrowDecodingError(_u("Invalid UTF-8 encoding"));
+            AssertMsg(UNREACHED, "We calculated the length before decoding, what happened ?");
+            ThrowDecodingError(_u("Error while decoding utf8 string"));
         }
+        return contents;
+    }
+    catch (utf8::InvalidWideCharException)
+    {
+        ThrowDecodingError(_u("Invalid UTF-8 encoding"));
     }
-    return contents;
 }
 
 void WasmBinaryReader::ReadImportSection()

lib/WasmReader/WasmByteCodeGenerator.cpp

@@ -1181,18 +1181,18 @@ void WasmBytecodeGenerator::EmitBrTable()
     EmitInfo scrutineeInfo = PopEvalStack(WasmTypes::I32, _u("br_table expression must be of type i32"));
 
     m_writer->AsmReg2(Js::OpCodeAsmJs::BeginSwitch_Int, scrutineeInfo.location, scrutineeInfo.location);
-    EmitInfo yieldvalue;
+    EmitInfo yieldValue;
     BlockInfo defaultBlockInfo = GetBlockInfo(defaultEntry);
     if (defaultBlockInfo.HasYield())
     {
         // If the scrutinee is any then check the stack before popping
         if (scrutineeInfo.type == WasmTypes::Any && m_evalStack.Peek().type == WasmTypes::Limit)
         {
-            yieldvalue = scrutineeInfo;
+            yieldValue = scrutineeInfo;
         }
         else
         {
-            yieldvalue = PopEvalStack();
+            yieldValue = PopEvalStack();
         }
     }
 
@@ -1207,14 +1207,14 @@ void WasmBytecodeGenerator::EmitBrTable()
             WasmTypes::WasmType type = blockInfo.yieldInfo ? blockInfo.yieldInfo->info.type : WasmTypes::Void;
             throw WasmCompilationException(_u("br_table target %u signature mismatch. Expected ()->%s, got ()->%s"), target, GetTypeName(defaultType), GetTypeName(type));
         }
-        YieldToBlock(blockInfo, yieldvalue);
+        YieldToBlock(blockInfo, yieldValue);
         m_writer->AsmBrReg1Const1(Js::OpCodeAsmJs::Case_IntConst, blockInfo.label, scrutineeInfo.location, i);
     }
 
-    YieldToBlock(defaultBlockInfo, yieldvalue);
+    YieldToBlock(defaultBlockInfo, yieldValue);
     m_writer->AsmBr(defaultBlockInfo.label, Js::OpCodeAsmJs::EndSwitch_Int);
     ReleaseLocation(&scrutineeInfo);
-    ReleaseLocation(&yieldvalue);
+    ReleaseLocation(&yieldValue);
 
     SetUnreachableState(true);
 }