Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide a count-like combinator, without preallocation #1459

Closed
chifflier opened this issue Nov 8, 2021 · 4 comments · Fixed by #1549
Closed

Provide a count-like combinator, without preallocation #1459

chifflier opened this issue Nov 8, 2021 · 4 comments · Fixed by #1549
Milestone
8.0

Comments

@chifflier
Copy link
Contributor

  • Rust version : rustc 1.56.1 (59eed8a2a 2021-11-01)
  • nom version : 7.1.0
  • nom compilation features used: default

Description

Currently, count uses Vec::with_capacity to preallocates the Vec (https://github.com/Geal/nom/blob/7.0.0/src/multi/mod.rs#L537).
While this is best for performance, this makes the count combinator very fragile when using an untrusted count value: any large value will result in a immediate error (fuzzers love the count combinator!).

I don't know if it's possible to check the allocation in Vec (stable API does not seem to allow it :/ ), but maybe adding an upper bound in a new combinator (count_max) could be a workaround?

Test case

Example test case:

    #[test]
    fn count_oom() {

        let input: &[u8] = b"0123456789abcdef";

        let res: IResult<_, _, ()> = count(be_u32, 0xffff_ffff as usize)(input);
        assert!(res.is_err());
    }

Output (debug):

running 1 test
memory allocation of 17179869180 bytes failed
error: test failed, to rerun pass '--lib'
@chifflier
Copy link
Contributor Author

Additional notes:

  • the current preallocation is not exact anyway, since it allocates count bytes, not elements
  • not preallocating is a (weak) workaround. Allocation can still fail in some cases
  • using fold_many_m_n with m == n is a working workaround, but quite verbose and inelegant

@chifflier chifflier mentioned this issue Nov 9, 2021
Closed
3 tasks
@cheako cheako mentioned this issue Dec 11, 2021
Closed
@Geal Geal added this to the 8.0 milestone Mar 14, 2022
@jkugelman jkugelman mentioned this issue Aug 29, 2022
Merged
@jkugelman
Copy link
Contributor

I submitted PR #1545 to clamp Vec::with_capacity to 64KiB. This should fix the issue without necessitating a new combinator. What do you think?

@Nemo157
Copy link
Contributor

Nemo157 commented Sep 12, 2022
edited

  • the current preallocation is not exact anyway, since it allocates count bytes, not elements

Vec::with_capacity is measured in elements, not bytes. So also #1545 is clamping the allocation to 65536 elements rather than 64KiB (probably only really relevant if your element type is at least a few hundred bytes).

jkugelman added a commit to jkugelman/nom that referenced this issue Sep 12, 2022
@jkugelman
Fix clamped capacity to be divided by element size
bb65ad6 
Fixes rust-bakery#1459 (comment)
@jkugelman jkugelman mentioned this issue Sep 12, 2022
Merged
@jkugelman
Copy link
Contributor

jkugelman commented Sep 12, 2022
edited

Vec::with_capacity is measured in elements, not bytes. So also #1545 is clamping the allocation to 65536 elements rather than 64KiB (probably only really relevant if your element type is at least a few hundred bytes).

Good catch. I submitted #1549 to fix this.

jkugelman added a commit to jkugelman/nom that referenced this issue Sep 13, 2022
@jkugelman
Fix clamped capacity to be divided by element size
fbe3482 
Fixes rust-bakery#1459 (comment)
jkugelman added a commit to jkugelman/nom that referenced this issue Sep 13, 2022
@jkugelman
Fix clamped capacity to be divided by element size
64216b8 
- Fixes rust-bakery#1459 (comment)
- Also change `clamp` to `min` so this works on Rust 2018 edition.
Geal added a commit that referenced this issue Dec 28, 2022
@jkugelman @Geal
Fix clamped capacity to be divided by element size (#1549)
400331e 
* Fix clamped capacity to be divided by element size

- Fixes #1459 (comment)
- Also change `clamp` to `min` so this works on Rust 2018 edition.

* Update src/multi/mod.rs

Co-authored-by: Geoffroy Couprie <geo.couprie@gmail.com>
Co-authored-by: Geoffroy Couprie <contact@geoffroycouprie.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
8.0
Development

Successfully merging a pull request may close this issue.

Fix clamped capacity to be divided by element size jkugelman/nom
4 participants
@Nemo157 @Geal @chifflier @jkugelman