Add protection in load_native_symbol_section()

lum1n0us · lum1n0us · commit 7ff3cca33a46 · 2024-06-21T02:05:27.000Z
- #69675
diff --git a/core/iwasm/aot/aot_loader.c b/core/iwasm/aot/aot_loader.c
@@ -660,7 +660,9 @@ load_native_symbol_section(const uint8 *buf, const uint8 *buf_end,
     read_uint32(p, p_end, cnt);
 
     if (cnt > 0) {
-        module->native_symbol_list = wasm_runtime_malloc(cnt * sizeof(void *));
+        uint64 list_size = cnt * (uint64)sizeof(void *);
+        module->native_symbol_list =
+            loader_malloc(list_size, error_buf, error_buf_size);
         if (module->native_symbol_list == NULL) {
             set_error_buf(error_buf, error_buf_size,
                           "malloc native symbol list failed");
@@ -669,6 +671,9 @@ load_native_symbol_section(const uint8 *buf, const uint8 *buf_end,
 
         for (i = cnt - 1; i >= 0; i--) {
             read_string(p, p_end, symbol);
+            if (!strlen(symbol))
+                continue;
+
             if (!strncmp(symbol, "f32#", 4) || !strncmp(symbol, "i32#", 4)) {
                 uint32 u32;
                 /* Resolve the raw int bits of f32 const */
@@ -698,7 +703,7 @@ load_native_symbol_section(const uint8 *buf, const uint8 *buf_end,
             else {
                 module->native_symbol_list[i] =
                     get_native_symbol_by_name(symbol);
-                if (module->native_symbol_list[i] == NULL) {
+                if (!module->native_symbol_list[i]) {
                     set_error_buf_v(error_buf, error_buf_size,
                                     "missing native symbol: %s", symbol);
                     goto fail;
