be more robust what we accept

Author: Asmod4n

mrblib/msgpack.rb

@@ -1,9 +1,9 @@
 module MessagePack
   def self.register_ext_type(type, klass, pack:, unpack:)
     pack = pack.to_proc if pack.respond_to?(:to_proc)
-    raise ArgumentError unless pack.is_a?(Proc)
+    raise ArgumentError, "packer is no proc" unless pack.is_a?(Proc)
     unpack = unpack.to_proc if unpack.respond_to?(:to_proc)
-    raise ArgumentError unless unpack.is_a?(Proc)
+    raise ArgumentError, "unpacker is no proc" unless unpack.is_a?(Proc)
 
     register_pack_type(type, klass, &pack)
     register_unpack_type(type, &unpack)

src/mrb_msgpack.cpp

@@ -29,6 +29,23 @@ MRB_END_DECL
 #include <string_view>
 #include <atomic>
 #include <cstdint>
+#include <mrbconf.h>
+
+#ifndef MRB_STR_LENGTH_MAX
+# define MRB_STR_LENGTH_MAX 1048576
+#endif
+
+#ifndef MRB_ARY_LENGTH_MAX
+# define MRB_ARY_LENGTH_MAX 131072
+#endif
+
+#define MSGPACK_STR_LIMIT  MRB_STR_LENGTH_MAX
+#define MSGPACK_BIN_LIMIT  MRB_STR_LENGTH_MAX
+#define MSGPACK_EXT_LIMIT  MRB_STR_LENGTH_MAX
+#define MSGPACK_ARY_LIMIT  MRB_ARY_LENGTH_MAX
+#define MSGPACK_MAP_LIMIT  MRB_ARY_LENGTH_MAX
+#define MSGPACK_DEPTH_LIMIT 128
+
 
 
 /* ------------------------------------------------------------------------
@@ -861,8 +878,17 @@ MRB_API mrb_value
 mrb_msgpack_unpack(mrb_state *mrb, mrb_value data)
 {
   data = mrb_str_to_str(mrb, data);
+  msgpack::unpack_limit limit(
+    MSGPACK_ARY_LIMIT,   // array
+    MSGPACK_MAP_LIMIT,   // map
+    MSGPACK_STR_LIMIT,   // str
+    MSGPACK_BIN_LIMIT,   // bin
+    MSGPACK_EXT_LIMIT,   // ext
+    MSGPACK_DEPTH_LIMIT  // depth
+  );
+
   msgpack::object_handle oh =
-    msgpack::unpack(RSTRING_PTR(data), RSTRING_LEN(data));
+    msgpack::unpack(RSTRING_PTR(data), RSTRING_LEN(data), nullptr, nullptr, limit);
   return mrb_unpack_msgpack_obj(mrb, oh.get());
 }
 
@@ -877,11 +903,20 @@ mrb_msgpack_unpack_m(mrb_state* mrb, mrb_value self)
   std::size_t len = RSTRING_LEN(data);
   std::size_t off = 0;
 
+  msgpack::unpack_limit limit(
+    MSGPACK_ARY_LIMIT,   // array
+    MSGPACK_MAP_LIMIT,   // map
+    MSGPACK_STR_LIMIT,   // str
+    MSGPACK_BIN_LIMIT,   // bin
+    MSGPACK_EXT_LIMIT,   // ext
+    MSGPACK_DEPTH_LIMIT  // depth
+  );
+
   try {
     if (mrb_type(block) == MRB_TT_PROC) {
       while (off < len) {
         try {
-          msgpack::object_handle oh = msgpack::unpack(buf, len, off);
+          msgpack::object_handle oh = msgpack::unpack(buf, len, off, nullptr, nullptr, limit);
           mrb_yield(mrb, block, mrb_unpack_msgpack_obj(mrb, oh.get()));
         }
         catch (const msgpack::insufficient_bytes&) {
@@ -891,7 +926,7 @@ mrb_msgpack_unpack_m(mrb_state* mrb, mrb_value self)
       return mrb_convert_number(mrb, (mrb_int)off);
     }
     else {
-      msgpack::object_handle oh = msgpack::unpack(buf, len, off);
+      msgpack::object_handle oh = msgpack::unpack(buf, len, off, nullptr, nullptr, limit);
       return mrb_unpack_msgpack_obj(mrb, oh.get());
     }
   }
@@ -951,7 +986,7 @@ mrb_msgpack_unpack_lazy_m(mrb_state *mrb, mrb_value self)
   try {
     mrb_value object_handle =
       mrb_obj_new(mrb,
-                  mrb_class_get_under_id(mrb, mrb_class_ptr(self), MRB_SYM(ObjectHandle)),
+                  mrb_class_get_under_id(mrb, mrb_class_ptr(self), MRB_SYM(_ObjectHandle)),
                   1, &data);
 
     auto* handle = (msgpack_object_handle*)mrb_data_get_ptr(mrb, object_handle, &msgpack_object_handle_type);
@@ -1662,7 +1697,7 @@ mrb_mruby_simplemsgpack_gem_init(mrb_state* mrb)
 
   mrb_object_handle_class =
     mrb_define_class_under_id(mrb, msgpack_mod,
-                              MRB_SYM(ObjectHandle), mrb->object_class);
+                              MRB_SYM(_ObjectHandle), mrb->object_class);
 
   MRB_SET_INSTANCE_TT(mrb_object_handle_class, MRB_TT_DATA);
 

test/msgpack.rb

@@ -424,7 +424,7 @@ class HTTP2; end
 
 assert("LFU: eviction removes least frequently used") do
   # Wir erzeugen mehr Klassen als MAX_SIZE (128)
-  150.times do |i|
+  1500.times do |i|
     Object.const_set("LFUTest#{i}", Class.new)
     assert_equal Object.const_get("LFUTest#{i}"), "LFUTest#{i}".constantize
   end
@@ -434,11 +434,11 @@ class HTTP2; end
   class HotA; end
   class HotB; end
 
-  50.times { assert_equal HotA, "HotA".constantize }
-  50.times { assert_equal HotB, "HotB".constantize }
+  500.times { assert_equal HotA, "HotA".constantize }
+  500.times { assert_equal HotB, "HotB".constantize }
 
   # Jetzt Cache fluten
-  200.times do |i|
+  2000.times do |i|
     Object.const_set("Cold#{i}", Class.new)
     assert_equal Object.const_get("Cold#{i}"), "Cold#{i}".constantize
   end
@@ -459,7 +459,7 @@ class HotB; end
 
 assert("LFU: index overflow does not crash") do
   base = "AA"
-  300.times do |i|
+  3000.times do |i|
     key = base + i.to_s
     Object.const_set(key, Class.new)
     assert_equal Object.const_get(key), key.constantize
@@ -469,7 +469,7 @@ class HotB; end
 end
 
 assert("LFU: GC stress does not break cache") do
-  200.times do |i|
+  2000.times do |i|
     key = "GCStress#{i}"
     Object.const_set(key, Class.new)
     assert_equal Object.const_get(key), key.constantize
@@ -481,13 +481,13 @@ class HotB; end
 
 assert("LFU: entry slot reuse is safe") do
   # Fülle Cache
-  128.times do |i|
+  1280.times do |i|
     Object.const_set("Reuse#{i}", Class.new)
     assert_equal Object.const_get("Reuse#{i}"), "Reuse#{i}".constantize
   end
 
   # Erzeuge Evictions
-  50.times do |i|
+  5000.times do |i|
     Object.const_set("ReuseEvict#{i}", Class.new)
     assert_equal Object.const_get("ReuseEvict#{i}"), "ReuseEvict#{i}".constantize
   end
@@ -499,7 +499,7 @@ class HotB; end
 assert("LFU: constantize correctness under pressure") do
   module A; module B; class C; end; end; end
 
-  200.times do |i|
+  2000.times do |i|
     Object.const_set("Spam#{i}", Class.new)
     assert_equal Object.const_get("Spam#{i}"), "Spam#{i}".constantize
   end
@@ -511,10 +511,10 @@ module A; module B; class C; end; end; end
   class HotX; end
   class HotY; end
 
-  100.times { assert_equal HotX, "HotX".constantize }
-  100.times { assert_equal HotY, "HotY".constantize }
+  1000.times { assert_equal HotX, "HotX".constantize }
+  1000.times { assert_equal HotY, "HotY".constantize }
 
-  200.times do |i|
+  2000.times do |i|
     if i % 5 == 0
       assert_raise(NameError) { "Miss#{i}".constantize }
     else
@@ -523,3 +523,81 @@ class HotY; end
     end
   end
 end
+
+assert("MessagePack: register_ext_type invalid callbacks") do
+  # pack kein Proc
+  assert_raise(ArgumentError) do
+    MessagePack.register_ext_type(1, String,
+      pack: 123,
+      unpack: ->(x) { x }
+    )
+  end
+
+  # unpack kein Proc
+  assert_raise(ArgumentError) do
+    MessagePack.register_ext_type(1, String,
+      pack: ->(x) { x },
+      unpack: 123
+    )
+  end
+end
+
+assert("MessagePack: unpack invalid bytes") do
+  assert_raise(MessagePack::Error) { MessagePack.unpack("\xA5hel") }
+  assert_raise(MessagePack::Error) { MessagePack.unpack("\x92\x01") }
+  assert_raise(MessagePack::Error) { MessagePack.unpack("\x81\xA1a") }
+end
+
+
+assert("MessagePack: JSON Pointer syntax errors") do
+  data = { "a" => 1 }
+  lazy = MessagePack.unpack_lazy(MessagePack.pack(data))
+
+  assert_raise(ArgumentError) { lazy.at_pointer("a") }
+
+  assert_raise(KeyError) { lazy.at_pointer("//a") }
+
+  assert_raise(KeyError) { lazy.at_pointer("/~2") }
+
+  assert_raise(KeyError) { lazy.at_pointer("/~") }
+end
+
+
+assert("MessagePack: JSON Pointer extreme tokens") do
+  data = { "a/b" => 1, "~x" => 2 }
+  lazy = MessagePack.unpack_lazy(MessagePack.pack(data))
+
+  assert_equal 1, lazy.at_pointer("/a~1b")
+  assert_equal 2, lazy.at_pointer("/~0x")
+
+  long_key = "x" * 10_000
+  lazy2 = MessagePack.unpack_lazy(MessagePack.pack({ long_key => 5 }))
+
+  assert_equal 5, lazy2.at_pointer("/" + long_key)
+end
+
+assert("MessagePack: JSON Pointer semantic errors") do
+  data = { "a" => [1, 2, 3] }
+  lazy = MessagePack.unpack_lazy(MessagePack.pack(data))
+
+  assert_raise(KeyError) { lazy.at_pointer("/b") }
+
+  assert_raise(IndexError) { lazy.at_pointer("/a/foo") }
+
+  assert_raise(IndexError) { lazy.at_pointer("/a/-1") }
+
+  assert_raise(IndexError) { lazy.at_pointer("/a/999") }
+end
+
+assert("MessagePack: unpack ext without unpacker") do
+  class Foo2; end
+
+  MessagePack.register_pack_type(42, Foo2) { "X" }
+
+  foo = Foo2.new
+  packed = foo.to_msgpack
+
+  assert_raise(MessagePack::Error) do
+    MessagePack.unpack(packed)
+  end
+end