Comments (7)
vladimir1899
commented on June 8, 2024
1
Hello, @tbeu , I continue the Ri0n's mission. So, 0adfda6 does not work for us, since the problem arises later in the code, when we invoke function:
if ( matvar->class_type == MAT_C_STRUCT ) (void)ReadNextStructField(mat, matvar);
mat5.c:5479 in this commit
In ReadNextStructField we have matvar->data = calloc(nelems_x_nfields, matvar->data_size); were nelems_x_nfields comes from our corrupted file and is unrealistically big.
I tried to open this file in the Matlab and it immediately throw the error kinda: "you need 45 GB of memory to open the file, but only 32 GB are available".
May be it is good idea to follow the Matlab way and implement such check, something like that ?
// Get total memory ram in bytes
#if ( defined(_WIN64) || defined(_WIN32) ) && !defined(__CYGWIN__)
#include <windows.h>
long long getPhysMemSize()
{
MEMORYSTATUSEX status;
status.dwLength = sizeof(status);
GlobalMemoryStatusEx(&status);
return status.ullTotalPhys;
}
#define physRamVolumeBytes true;
#else
#include <sys/sysinfo.h>
long long getPhysMemSize()
{
struct sysinfo info;
sysinfo(&info);
return info.totalram;
}
#define physRamVolumeBytes true;
#endif
// check before allocation
#ifdef physRamVolumeBytes
if ( getPhysMemSize() < nelems_x_nfields * matvar->data_size )
{
Mat_Critical("Couldn't allocate memory for the data. Not enough memory");
return bytesread;
}
#endif
matvar->data = calloc(nelems_x_nfields, matvar->data_size);
from matio.
Ri0n
commented on June 8, 2024
ah I just realized the line above allocates nelems_x_nfields of pointers to variables and for the actual data. Then it's definitely can be limited, most likely even in runtime.
from matio.
Ri0n
commented on June 8, 2024
Just an example which works for me.
diff --git a/src/mat.c b/src/mat.c
index 9c48578..20370db 100644
--- a/src/mat.c
+++ b/src/mat.c
@@ -506,6 +506,7 @@ Mat_Open(const char *matname, int mode)
mat->version = 0;
mat->byteswap = 0;
mat->num_datasets = 0;
+ mat->struct_vars_limit = 0;
#if defined(MAT73) && MAT73
mat->refs_id = -1;
#endif
@@ -2967,3 +2968,17 @@ Mat_VarWriteAppend(mat_t *mat, matvar_t *matvar, enum matio_compression compress
return err;
}
+
+/** @brief Limit max number of variables to allocate memory for
+ *
+ * This sets a limit on maximum number of variables which may be allocated for a struct.
+ * max number of variables is number of struct members * number of elements per member.
+ * By default there is not limit.
+ * @ingroup MAT
+ * @param mat MAT file
+ * @param limit max number of variables in the struct
+ */
+void Mat_VarSetSrtuctVarsLimit(mat_t *mat, size_t limit)
+{
+ mat->struct_vars_limit = limit;
+}
diff --git a/src/mat5.c b/src/mat5.c
index eb4b384..258b0d7 100644
--- a/src/mat5.c
+++ b/src/mat5.c
@@ -1468,6 +1468,10 @@ ReadNextStructField(mat_t *mat, matvar_t *matvar)
if ( !matvar->nbytes )
return bytesread;
+ if (mat->struct_vars_limit && nelems_x_nfields > mat->struct_vars_limit) {
+ Mat_Critical("Struct vars limit exceeded. Allocation failed");
+ return bytesread;
+ }
matvar->data = calloc(nelems_x_nfields, matvar->data_size);
if ( NULL == matvar->data ) {
Mat_Critical("Couldn't allocate memory for the data");
@@ -1739,6 +1743,10 @@ ReadNextStructField(mat_t *mat, matvar_t *matvar)
if ( !matvar->nbytes )
return bytesread;
+ if (mat->struct_vars_limit && nelems_x_nfields > mat->struct_vars_limit) {
+ Mat_Critical("Struct vars limit exceeded. Allocation failed");
+ return bytesread;
+ }
matvar->data = calloc(nelems_x_nfields, matvar->data_size);
if ( NULL == matvar->data ) {
Mat_Critical("Couldn't allocate memory for the data");
diff --git a/src/matio.h b/src/matio.h
index 8a4caeb..78e7168 100644
--- a/src/matio.h
+++ b/src/matio.h
@@ -347,6 +347,7 @@ EXTERN int Mat_VarWriteAppend(mat_t *mat, matvar_t *matvar, enum matio_compressi
EXTERN int Mat_VarWriteInfo(mat_t *mat, matvar_t *matvar);
EXTERN int Mat_VarWriteData(mat_t *mat, matvar_t *matvar, void *data, int *start, int *stride,
int *edge);
+EXTERN void Mat_VarSetSrtuctVarsLimit(mat_t *mat, size_t limit);
/* Other functions */
EXTERN int Mat_CalcSingleSubscript(int rank, int *dims, int *subs);
diff --git a/src/matio_private.h b/src/matio_private.h
index d6d22b6..51f9594 100644
--- a/src/matio_private.h
+++ b/src/matio_private.h
@@ -113,6 +113,7 @@ struct _mat_t
mat_off_t bof; /**< Beginning of file not including any header */
size_t next_index; /**< Index/File position of next variable to read */
size_t num_datasets; /**< Number of datasets in the file */
+ size_t struct_vars_limit; /**< A limit to max number of variable in a struct. n_members * n_elems_per_member */
#if defined(MAT73) && MAT73
hid_t refs_id; /**< Id of the /#refs# group in HDF5 */
#endiffrom matio.
tbeu
commented on June 8, 2024
I wonder where you get those corrupted MAT files. I doubt it can be created by MATLAB save command.
from matio.
Ri0n
commented on June 8, 2024
I don't really know. Those come to me from other people. Maybe they have special software to generate all sort of invalid stuff just to check software stability.
from matio.
tbeu
commented on June 8, 2024
@Ri0n Do you think somethink like 0adfda6 could also work here?
from matio.
Ri0n
commented on June 8, 2024
@tbeu
I'm just worried about compressed stuff inside of mat files, which may trigger false positives for failure. But I'm not an expert to say where it's the case for this commit
from matio.
Related Issues (20)
- How to append data to a mat file? HOT 7
- Request for using test data HOT 4
- interleaved complex array HOT 1
- Appending data ocurs error
- Not able to build on Ubuntu 22.04.2 LTS HOT 1
- Compression failure caused by incorrect ChunkSize HOT 2
- Buliding with afl++ gives linker error `ld: unknown option: --retain-symbols-file` HOT 6
- Microsoft Windows minimal CMake configuration HOT 2
- HDF5 error on reading compressed v7.3 matfiles HOT 1
- cmake can not verify HDF5 version when building with VS 2022 HOT 1
- Methods to access data stored in nested variables in.mat file. HOT 2
- Failed to read from 7.3 mat file generated from hdf5storage python package HOT 6
- Does matio have documents just like API HOT 1
- Is matio capable of handle GBK string? HOT 1
- Using undefined types “matvar_internal” HOT 1
- cannot compile successfully on Windows HOT 1
- MinGW Build Regression HOT 4
- LFS support on MinGW broken HOT 4
- `READ_DATA` macro needs checks before float to int casts HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from matio.