mirror of
https://github.com/gfx-rs/wgpu.git
synced 2024-11-25 16:24:24 +00:00
fix(wgsl-in)!: limit brace recursion
This commit is contained in:
Erich Gubler
parent
d4b673c88a
commit
b21a3265de
@ -155,6 +155,7 @@ Bottom level categories:
|
|||||||
- In spv-in, remove unnecessary "gl_PerVertex" name check so unused builtins will always be skipped. By @Imberflur in [#5227](https://github.com/gfx-rs/wgpu/pull/5227).
|
- In spv-in, remove unnecessary "gl_PerVertex" name check so unused builtins will always be skipped. By @Imberflur in [#5227](https://github.com/gfx-rs/wgpu/pull/5227).
|
||||||
- GLSL 410 does not support layout(binding = ...), enable only for GLSL 420. By @bes in [#5357](https://github.com/gfx-rs/wgpu/pull/5357)
|
- GLSL 410 does not support layout(binding = ...), enable only for GLSL 420. By @bes in [#5357](https://github.com/gfx-rs/wgpu/pull/5357)
|
||||||
- In spv-out, check for acceleration and ray-query types when enabling ray-query extension to prevent validation error. By @Vecvec in [#5463](https://github.com/gfx-rs/wgpu/pull/5463)
|
- In spv-out, check for acceleration and ray-query types when enabling ray-query extension to prevent validation error. By @Vecvec in [#5463](https://github.com/gfx-rs/wgpu/pull/5463)
|
||||||
|
- Add a limit for curly brace nesting in WGSL parsing. By @ErichDonGubler in [#5447](https://github.com/gfx-rs/wgpu/pull/5447).
|
||||||
|
|
||||||
#### Tests
|
#### Tests
|
||||||
|
|
||||||
|
|||||||
@ -269,6 +269,10 @@ pub enum Error<'a> {
|
|||||||
scalar: String,
|
scalar: String,
|
||||||
inner: ConstantEvaluatorError,
|
inner: ConstantEvaluatorError,
|
||||||
},
|
},
|
||||||
|
ExceededLimitForNestedBraces {
|
||||||
|
span: Span,
|
||||||
|
limit: u8,
|
||||||
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
impl<'a> Error<'a> {
|
impl<'a> Error<'a> {
|
||||||
@ -770,6 +774,13 @@ impl<'a> Error<'a> {
|
|||||||
format!("the expression should have been converted to have {} scalar type", scalar),
|
format!("the expression should have been converted to have {} scalar type", scalar),
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
|
Error::ExceededLimitForNestedBraces { span, limit } => ParseError {
|
||||||
|
message: "brace nesting limit reached".into(),
|
||||||
|
labels: vec![(span, "limit reached at this brace".into())],
|
||||||
|
notes: vec![
|
||||||
|
format!("nesting limit is currently set to {limit}"),
|
||||||
|
],
|
||||||
|
},
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@ -1619,6 +1619,7 @@ impl Parser {
|
|||||||
lexer: &mut Lexer<'a>,
|
lexer: &mut Lexer<'a>,
|
||||||
ctx: &mut ExpressionContext<'a, '_, '_>,
|
ctx: &mut ExpressionContext<'a, '_, '_>,
|
||||||
block: &mut ast::Block<'a>,
|
block: &mut ast::Block<'a>,
|
||||||
|
brace_nesting_level: u8,
|
||||||
) -> Result<(), Error<'a>> {
|
) -> Result<(), Error<'a>> {
|
||||||
self.push_rule_span(Rule::Statement, lexer);
|
self.push_rule_span(Rule::Statement, lexer);
|
||||||
match lexer.peek() {
|
match lexer.peek() {
|
||||||
@ -1627,7 +1628,7 @@ impl Parser {
|
|||||||
self.pop_rule_span(lexer);
|
self.pop_rule_span(lexer);
|
||||||
}
|
}
|
||||||
(Token::Paren('{'), _) => {
|
(Token::Paren('{'), _) => {
|
||||||
let (inner, span) = self.block(lexer, ctx)?;
|
let (inner, span) = self.block(lexer, ctx, brace_nesting_level)?;
|
||||||
block.stmts.push(ast::Statement {
|
block.stmts.push(ast::Statement {
|
||||||
kind: ast::StatementKind::Block(inner),
|
kind: ast::StatementKind::Block(inner),
|
||||||
span,
|
span,
|
||||||
@ -1709,7 +1710,7 @@ impl Parser {
|
|||||||
let _ = lexer.next();
|
let _ = lexer.next();
|
||||||
let condition = self.general_expression(lexer, ctx)?;
|
let condition = self.general_expression(lexer, ctx)?;
|
||||||
|
|
||||||
let accept = self.block(lexer, ctx)?.0;
|
let accept = self.block(lexer, ctx, brace_nesting_level)?.0;
|
||||||
|
|
||||||
let mut elsif_stack = Vec::new();
|
let mut elsif_stack = Vec::new();
|
||||||
let mut elseif_span_start = lexer.start_byte_offset();
|
let mut elseif_span_start = lexer.start_byte_offset();
|
||||||
@ -1720,12 +1721,12 @@ impl Parser {
|
|||||||
|
|
||||||
if !lexer.skip(Token::Word("if")) {
|
if !lexer.skip(Token::Word("if")) {
|
||||||
// ... else { ... }
|
// ... else { ... }
|
||||||
break self.block(lexer, ctx)?.0;
|
break self.block(lexer, ctx, brace_nesting_level)?.0;
|
||||||
}
|
}
|
||||||
|
|
||||||
// ... else if (...) { ... }
|
// ... else if (...) { ... }
|
||||||
let other_condition = self.general_expression(lexer, ctx)?;
|
let other_condition = self.general_expression(lexer, ctx)?;
|
||||||
let other_block = self.block(lexer, ctx)?;
|
let other_block = self.block(lexer, ctx, brace_nesting_level)?;
|
||||||
elsif_stack.push((elseif_span_start, other_condition, other_block));
|
elsif_stack.push((elseif_span_start, other_condition, other_block));
|
||||||
elseif_span_start = lexer.start_byte_offset();
|
elseif_span_start = lexer.start_byte_offset();
|
||||||
};
|
};
|
||||||
@ -1757,7 +1758,9 @@ impl Parser {
|
|||||||
"switch" => {
|
"switch" => {
|
||||||
let _ = lexer.next();
|
let _ = lexer.next();
|
||||||
let selector = self.general_expression(lexer, ctx)?;
|
let selector = self.general_expression(lexer, ctx)?;
|
||||||
lexer.expect(Token::Paren('{'))?;
|
let brace_span = lexer.expect_span(Token::Paren('{'))?;
|
||||||
|
let brace_nesting_level =
|
||||||
|
Self::increase_brace_nesting(brace_nesting_level, brace_span)?;
|
||||||
let mut cases = Vec::new();
|
let mut cases = Vec::new();
|
||||||
|
|
||||||
loop {
|
loop {
|
||||||
@ -1782,7 +1785,7 @@ impl Parser {
|
|||||||
});
|
});
|
||||||
};
|
};
|
||||||
|
|
||||||
let body = self.block(lexer, ctx)?.0;
|
let body = self.block(lexer, ctx, brace_nesting_level)?.0;
|
||||||
|
|
||||||
cases.push(ast::SwitchCase {
|
cases.push(ast::SwitchCase {
|
||||||
value,
|
value,
|
||||||
@ -1792,7 +1795,7 @@ impl Parser {
|
|||||||
}
|
}
|
||||||
(Token::Word("default"), _) => {
|
(Token::Word("default"), _) => {
|
||||||
lexer.skip(Token::Separator(':'));
|
lexer.skip(Token::Separator(':'));
|
||||||
let body = self.block(lexer, ctx)?.0;
|
let body = self.block(lexer, ctx, brace_nesting_level)?.0;
|
||||||
cases.push(ast::SwitchCase {
|
cases.push(ast::SwitchCase {
|
||||||
value: ast::SwitchValue::Default,
|
value: ast::SwitchValue::Default,
|
||||||
body,
|
body,
|
||||||
@ -1808,7 +1811,7 @@ impl Parser {
|
|||||||
|
|
||||||
ast::StatementKind::Switch { selector, cases }
|
ast::StatementKind::Switch { selector, cases }
|
||||||
}
|
}
|
||||||
"loop" => self.r#loop(lexer, ctx)?,
|
"loop" => self.r#loop(lexer, ctx, brace_nesting_level)?,
|
||||||
"while" => {
|
"while" => {
|
||||||
let _ = lexer.next();
|
let _ = lexer.next();
|
||||||
let mut body = ast::Block::default();
|
let mut body = ast::Block::default();
|
||||||
@ -1832,7 +1835,7 @@ impl Parser {
|
|||||||
span,
|
span,
|
||||||
});
|
});
|
||||||
|
|
||||||
let (block, span) = self.block(lexer, ctx)?;
|
let (block, span) = self.block(lexer, ctx, brace_nesting_level)?;
|
||||||
body.stmts.push(ast::Statement {
|
body.stmts.push(ast::Statement {
|
||||||
kind: ast::StatementKind::Block(block),
|
kind: ast::StatementKind::Block(block),
|
||||||
span,
|
span,
|
||||||
@ -1855,7 +1858,9 @@ impl Parser {
|
|||||||
let (_, span) = {
|
let (_, span) = {
|
||||||
let ctx = &mut *ctx;
|
let ctx = &mut *ctx;
|
||||||
let block = &mut *block;
|
let block = &mut *block;
|
||||||
lexer.capture_span(|lexer| self.statement(lexer, ctx, block))?
|
lexer.capture_span(|lexer| {
|
||||||
|
self.statement(lexer, ctx, block, brace_nesting_level)
|
||||||
|
})?
|
||||||
};
|
};
|
||||||
|
|
||||||
if block.stmts.len() != num_statements {
|
if block.stmts.len() != num_statements {
|
||||||
@ -1900,7 +1905,7 @@ impl Parser {
|
|||||||
lexer.expect(Token::Paren(')'))?;
|
lexer.expect(Token::Paren(')'))?;
|
||||||
}
|
}
|
||||||
|
|
||||||
let (block, span) = self.block(lexer, ctx)?;
|
let (block, span) = self.block(lexer, ctx, brace_nesting_level)?;
|
||||||
body.stmts.push(ast::Statement {
|
body.stmts.push(ast::Statement {
|
||||||
kind: ast::StatementKind::Block(block),
|
kind: ast::StatementKind::Block(block),
|
||||||
span,
|
span,
|
||||||
@ -1962,13 +1967,15 @@ impl Parser {
|
|||||||
&mut self,
|
&mut self,
|
||||||
lexer: &mut Lexer<'a>,
|
lexer: &mut Lexer<'a>,
|
||||||
ctx: &mut ExpressionContext<'a, '_, '_>,
|
ctx: &mut ExpressionContext<'a, '_, '_>,
|
||||||
|
brace_nesting_level: u8,
|
||||||
) -> Result<ast::StatementKind<'a>, Error<'a>> {
|
) -> Result<ast::StatementKind<'a>, Error<'a>> {
|
||||||
let _ = lexer.next();
|
let _ = lexer.next();
|
||||||
let mut body = ast::Block::default();
|
let mut body = ast::Block::default();
|
||||||
let mut continuing = ast::Block::default();
|
let mut continuing = ast::Block::default();
|
||||||
let mut break_if = None;
|
let mut break_if = None;
|
||||||
|
|
||||||
lexer.expect(Token::Paren('{'))?;
|
let brace_span = lexer.expect_span(Token::Paren('{'))?;
|
||||||
|
let brace_nesting_level = Self::increase_brace_nesting(brace_nesting_level, brace_span)?;
|
||||||
|
|
||||||
ctx.local_table.push_scope();
|
ctx.local_table.push_scope();
|
||||||
|
|
||||||
@ -1978,7 +1985,9 @@ impl Parser {
|
|||||||
// the last thing in the loop body
|
// the last thing in the loop body
|
||||||
|
|
||||||
// Expect a opening brace to start the continuing block
|
// Expect a opening brace to start the continuing block
|
||||||
lexer.expect(Token::Paren('{'))?;
|
let brace_span = lexer.expect_span(Token::Paren('{'))?;
|
||||||
|
let brace_nesting_level =
|
||||||
|
Self::increase_brace_nesting(brace_nesting_level, brace_span)?;
|
||||||
loop {
|
loop {
|
||||||
if lexer.skip(Token::Word("break")) {
|
if lexer.skip(Token::Word("break")) {
|
||||||
// Branch for the `break if` statement, this statement
|
// Branch for the `break if` statement, this statement
|
||||||
@ -2007,7 +2016,7 @@ impl Parser {
|
|||||||
break;
|
break;
|
||||||
} else {
|
} else {
|
||||||
// Otherwise try to parse a statement
|
// Otherwise try to parse a statement
|
||||||
self.statement(lexer, ctx, &mut continuing)?;
|
self.statement(lexer, ctx, &mut continuing, brace_nesting_level)?;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
// Since the continuing block must be the last part of the loop body,
|
// Since the continuing block must be the last part of the loop body,
|
||||||
@ -2021,7 +2030,7 @@ impl Parser {
|
|||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
// Otherwise try to parse a statement
|
// Otherwise try to parse a statement
|
||||||
self.statement(lexer, ctx, &mut body)?;
|
self.statement(lexer, ctx, &mut body, brace_nesting_level)?;
|
||||||
}
|
}
|
||||||
|
|
||||||
ctx.local_table.pop_scope();
|
ctx.local_table.pop_scope();
|
||||||
@ -2038,15 +2047,17 @@ impl Parser {
|
|||||||
&mut self,
|
&mut self,
|
||||||
lexer: &mut Lexer<'a>,
|
lexer: &mut Lexer<'a>,
|
||||||
ctx: &mut ExpressionContext<'a, '_, '_>,
|
ctx: &mut ExpressionContext<'a, '_, '_>,
|
||||||
|
brace_nesting_level: u8,
|
||||||
) -> Result<(ast::Block<'a>, Span), Error<'a>> {
|
) -> Result<(ast::Block<'a>, Span), Error<'a>> {
|
||||||
self.push_rule_span(Rule::Block, lexer);
|
self.push_rule_span(Rule::Block, lexer);
|
||||||
|
|
||||||
ctx.local_table.push_scope();
|
ctx.local_table.push_scope();
|
||||||
|
|
||||||
lexer.expect(Token::Paren('{'))?;
|
let brace_span = lexer.expect_span(Token::Paren('{'))?;
|
||||||
|
let brace_nesting_level = Self::increase_brace_nesting(brace_nesting_level, brace_span)?;
|
||||||
let mut block = ast::Block::default();
|
let mut block = ast::Block::default();
|
||||||
while !lexer.skip(Token::Paren('}')) {
|
while !lexer.skip(Token::Paren('}')) {
|
||||||
self.statement(lexer, ctx, &mut block)?;
|
self.statement(lexer, ctx, &mut block, brace_nesting_level)?;
|
||||||
}
|
}
|
||||||
|
|
||||||
ctx.local_table.pop_scope();
|
ctx.local_table.pop_scope();
|
||||||
@ -2133,9 +2144,10 @@ impl Parser {
|
|||||||
|
|
||||||
// do not use `self.block` here, since we must not push a new scope
|
// do not use `self.block` here, since we must not push a new scope
|
||||||
lexer.expect(Token::Paren('{'))?;
|
lexer.expect(Token::Paren('{'))?;
|
||||||
|
let brace_nesting_level = 1;
|
||||||
let mut body = ast::Block::default();
|
let mut body = ast::Block::default();
|
||||||
while !lexer.skip(Token::Paren('}')) {
|
while !lexer.skip(Token::Paren('}')) {
|
||||||
self.statement(lexer, &mut ctx, &mut body)?;
|
self.statement(lexer, &mut ctx, &mut body, brace_nesting_level)?;
|
||||||
}
|
}
|
||||||
|
|
||||||
ctx.local_table.pop_scope();
|
ctx.local_table.pop_scope();
|
||||||
@ -2345,4 +2357,30 @@ impl Parser {
|
|||||||
|
|
||||||
Ok(tu)
|
Ok(tu)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
const fn increase_brace_nesting(
|
||||||
|
brace_nesting_level: u8,
|
||||||
|
brace_span: Span,
|
||||||
|
) -> Result<u8, Error<'static>> {
|
||||||
|
// From [spec.](https://gpuweb.github.io/gpuweb/wgsl/#limits):
|
||||||
|
//
|
||||||
|
// > § 2.4. Limits
|
||||||
|
// >
|
||||||
|
// > …
|
||||||
|
// >
|
||||||
|
// > Maximum nesting depth of brace-enclosed statements in a function[:] 127
|
||||||
|
//
|
||||||
|
// _However_, we choose 64 instead because (a) it avoids stack overflows in CI and
|
||||||
|
// (b) we expect the limit to be decreased to 63 based on this conversation in
|
||||||
|
// WebGPU CTS upstream:
|
||||||
|
// <https://github.com/gpuweb/cts/pull/3389#discussion_r1543742701>
|
||||||
|
const BRACE_NESTING_MAXIMUM: u8 = 64;
|
||||||
|
if brace_nesting_level + 1 > BRACE_NESTING_MAXIMUM {
|
||||||
|
return Err(Error::ExceededLimitForNestedBraces {
|
||||||
|
span: brace_span,
|
||||||
|
limit: BRACE_NESTING_MAXIMUM,
|
||||||
|
});
|
||||||
|
}
|
||||||
|
Ok(brace_nesting_level + 1)
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@ -2151,3 +2151,129 @@ fn compaction_preserves_spans() {
|
|||||||
panic!("Error message has wrong span:\n\n{err:#?}");
|
panic!("Error message has wrong span:\n\n{err:#?}");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#[test]
|
||||||
|
fn limit_braced_statement_nesting() {
|
||||||
|
let too_many_braces = "fn f() {{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{";
|
||||||
|
|
||||||
|
let expected_diagnostic = r###"error: brace nesting limit reached
|
||||||
|
┌─ wgsl:1:72
|
||||||
|
│
|
||||||
|
1 │ fn f() {{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{
|
||||||
|
│ ^ limit reached at this brace
|
||||||
|
│
|
||||||
|
= note: nesting limit is currently set to 64
|
||||||
|
|
||||||
|
"###;
|
||||||
|
|
||||||
|
// In debug builds, we might actually overflow the stack before exercising this error case,
|
||||||
|
// depending on the platform and the `RUST_MIN_STACK` env. var. Use a thread with a custom
|
||||||
|
// stack size that works on all platforms.
|
||||||
|
std::thread::Builder::new()
|
||||||
|
.stack_size(1024 * 1024 * 2 /* MB */)
|
||||||
|
.spawn(|| check(too_many_braces, expected_diagnostic))
|
||||||
|
.unwrap()
|
||||||
|
.join()
|
||||||
|
.unwrap()
|
||||||
|
}
|
||||||
|
|
||||||
|
#[test]
|
||||||
|
fn too_many_unclosed_loops() {
|
||||||
|
let too_many_braces = "fn f() {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
loop {
|
||||||
|
";
|
||||||
|
|
||||||
|
let expected_diagnostic = r###"error: brace nesting limit reached
|
||||||
|
┌─ wgsl:65:13
|
||||||
|
│
|
||||||
|
65 │ loop {
|
||||||
|
│ ^ limit reached at this brace
|
||||||
|
│
|
||||||
|
= note: nesting limit is currently set to 64
|
||||||
|
|
||||||
|
"###;
|
||||||
|
|
||||||
|
// In debug builds, we might actually overflow the stack before exercising this error case,
|
||||||
|
// depending on the platform and the `RUST_MIN_STACK` env. var. Use a thread with a custom
|
||||||
|
// stack size that works on all platforms.
|
||||||
|
std::thread::Builder::new()
|
||||||
|
.stack_size(1024 * 1024 * 2 /* MB */)
|
||||||
|
.spawn(|| check(too_many_braces, expected_diagnostic))
|
||||||
|
.unwrap()
|
||||||
|
.join()
|
||||||
|
.unwrap()
|
||||||
|
}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user