1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
use crate::{
acquires_list_verifier::AcquiresVerifier, control_flow, locals_safety, reference_safety,
stack_usage_verifier::StackUsageVerifier, type_safety,
};
use move_binary_format::{
access::ModuleAccess,
binary_views::{BinaryIndexedView, FunctionView},
errors::{Location, PartialVMResult, VMResult},
file_format::{
CompiledModule, CompiledScript, FunctionDefinition, FunctionDefinitionIndex,
IdentifierIndex, TableIndex,
},
IndexKind,
};
use std::collections::HashMap;
pub struct CodeUnitVerifier<'a> {
resolver: BinaryIndexedView<'a>,
function_view: FunctionView<'a>,
name_def_map: HashMap<IdentifierIndex, FunctionDefinitionIndex>,
}
impl<'a> CodeUnitVerifier<'a> {
pub fn verify_module(module: &'a CompiledModule) -> VMResult<()> {
Self::verify_module_impl(module).map_err(|e| e.finish(Location::Module(module.self_id())))
}
fn verify_module_impl(module: &'a CompiledModule) -> PartialVMResult<()> {
for (idx, function_definition) in module.function_defs().iter().enumerate() {
let index = FunctionDefinitionIndex(idx as TableIndex);
Self::verify_function(index, function_definition, module)
.map_err(|err| err.at_index(IndexKind::FunctionDefinition, index.0))?
}
Ok(())
}
pub fn verify_script(module: &'a CompiledScript) -> VMResult<()> {
Self::verify_script_impl(module).map_err(|e| e.finish(Location::Script))
}
fn verify_script_impl(script: &'a CompiledScript) -> PartialVMResult<()> {
let function_view = FunctionView::script(script);
let resolver = BinaryIndexedView::Script(script);
let code_unit_verifier = CodeUnitVerifier {
resolver,
function_view,
name_def_map: HashMap::new(),
};
code_unit_verifier.verify_common()
}
fn verify_function(
index: FunctionDefinitionIndex,
function_definition: &'a FunctionDefinition,
module: &'a CompiledModule,
) -> PartialVMResult<()> {
let code = match &function_definition.code {
Some(code) => code,
None => return Ok(()),
};
let function_handle = module.function_handle_at(function_definition.function);
let function_view = FunctionView::function(module, index, code, function_handle);
let resolver = BinaryIndexedView::Module(module);
let mut name_def_map = HashMap::new();
for (idx, func_def) in module.function_defs().iter().enumerate() {
let fh = module.function_handle_at(func_def.function);
name_def_map.insert(fh.name, FunctionDefinitionIndex(idx as u16));
}
let code_unit_verifier = CodeUnitVerifier {
resolver,
function_view,
name_def_map,
};
code_unit_verifier.verify_common()?;
AcquiresVerifier::verify(module, index, function_definition)
}
fn verify_common(&self) -> PartialVMResult<()> {
control_flow::verify(self.function_view.index(), self.function_view.code())?;
StackUsageVerifier::verify(&self.resolver, &self.function_view)?;
type_safety::verify(&self.resolver, &self.function_view)?;
locals_safety::verify(&self.resolver, &self.function_view)?;
reference_safety::verify(&self.resolver, &self.function_view, &self.name_def_map)
}
}