aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--libsolidity/codegen/LValue.cpp16
-rw-r--r--test/libsolidity/SolidityEndToEndTest.cpp15
2 files changed, 28 insertions, 3 deletions
diff --git a/libsolidity/codegen/LValue.cpp b/libsolidity/codegen/LValue.cpp
index 574d42f8..864f28d0 100644
--- a/libsolidity/codegen/LValue.cpp
+++ b/libsolidity/codegen/LValue.cpp
@@ -103,10 +103,20 @@ void MemoryItem::storeValue(Type const& _sourceType, SourceLocation const&, bool
if (!_move)
{
utils.moveToStackTop(m_dataType->sizeOnStack());
- utils.copyToStackTop(2, m_dataType->sizeOnStack());
+ utils.copyToStackTop(1 + m_dataType->sizeOnStack(), m_dataType->sizeOnStack());
+ }
+ if (!m_padded)
+ {
+ solAssert(m_dataType->calldataEncodedSize(false) == 1, "Invalid non-padded type.");
+ if (m_dataType->category() == Type::Category::FixedBytes)
+ m_context << u256(0) << eth::Instruction::BYTE;
+ m_context << eth::Instruction::SWAP1 << eth::Instruction::MSTORE8;
+ }
+ else
+ {
+ utils.storeInMemoryDynamic(*m_dataType, m_padded);
+ m_context << eth::Instruction::POP;
}
- utils.storeInMemoryDynamic(*m_dataType, m_padded);
- m_context << eth::Instruction::POP;
}
else
{
diff --git a/test/libsolidity/SolidityEndToEndTest.cpp b/test/libsolidity/SolidityEndToEndTest.cpp
index 460396a8..d39f87c9 100644
--- a/test/libsolidity/SolidityEndToEndTest.cpp
+++ b/test/libsolidity/SolidityEndToEndTest.cpp
@@ -5781,6 +5781,21 @@ BOOST_AUTO_TEST_CASE(lone_struct_array_type)
BOOST_CHECK(callContractFunction("f()") == encodeArgs(u256(3)));
}
+BOOST_AUTO_TEST_CASE(memory_overwrite)
+{
+ char const* sourceCode = R"(
+ contract C {
+ function f() returns (bytes x) {
+ x = "12345";
+ x[3] = 0x61;
+ x[0] = 0x62;
+ }
+ }
+ )";
+ compileAndRun(sourceCode);
+ BOOST_CHECK(callContractFunction("f()") == encodeDyn(string("b23a5")));
+}
+
BOOST_AUTO_TEST_SUITE_END()
}
generated by cgit (git 2.34.1) at 2024-09-29 14:21:46 +0800