Gracefully throw an error when parser runs out of memory.

zherczeg · zherczeg · commit b6f174cce76b · 2016-08-14T23:08:26.000-07:00
JerryScript-DCO-1.0-Signed-off-by: Zoltan Herczeg zherczeg.u-szeged@partner.samsung.com
diff --git a/jerry-core/parser/js/js-parser-mem.c b/jerry-core/parser/js/js-parser-mem.c
@@ -39,8 +39,9 @@ parser_malloc (parser_context_t *context_p, /**< context */
   void *result;
 
   JERRY_ASSERT (size > 0);
-  result = jmem_heap_alloc_block (size);
-  if (result == 0)
+  result = jmem_heap_alloc_block_null_on_error (size);
+
+  if (result == NULL)
   {
     parser_raise_error (context_p, PARSER_ERR_OUT_OF_MEMORY);
   }
diff --git a/jerry-core/parser/js/js-parser.c b/jerry-core/parser/js/js-parser.c
@@ -2241,6 +2241,13 @@ parser_parse_script (const uint8_t *source_p, /**< source code */
 
   if (!*bytecode_data_p)
   {
+    if (parse_error.error == PARSER_ERR_OUT_OF_MEMORY)
+    {
+      /* It is unlikely that memory can be allocated in an out-of-memory
+       * situation. However, a simple value can still be thrown. */
+      return ecma_make_error_value (ecma_make_simple_value (ECMA_SIMPLE_VALUE_NULL));
+    }
+
     return ecma_raise_syntax_error (parser_error_to_string (parse_error.error));
   }
 
diff --git a/tests/jerry/parser-oom.js b/tests/jerry/parser-oom.js
@@ -0,0 +1,40 @@
+// Copyright 2016 Samsung Electronics Co., Ltd.
+// Copyright 2016 University of Szeged.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+/* String which is 32 bytes long. */
+var str = "1+1+1+1+1+1+1+1+1+1+1+1+1+1+1+1+";
+
+for (var i = 0; i < 10; i++) {
+  str = str + str;
+}
+
+str = "(function() { return " + str + "1 })";
+
+/* Eat memory. */
+var array = [];
+
+try
+{
+  for (var i = 0; i < 15; i++)
+  {
+    array[i] = eval(str);
+  }
+  assert (false);
+}
+catch (err)
+{
+  array = null;
+  assert (err === null);
+}

Original file line number	Diff line number	Diff line change
`@@ -39,8 +39,9 @@ parser_malloc (parser_context_t context_p, /< context /`
`39`	`39`	`void *result;`
`40`	`40`
`41`	`41`	`JERRY_ASSERT (size > 0);`
`42`		`- result = jmem_heap_alloc_block (size);`
`43`		`- if (result == 0)`
	`42`	`+ result = jmem_heap_alloc_block_null_on_error (size);`
	`43`	`+`
	`44`	`+ if (result == NULL)`
`44`	`45`	`{`
`45`	`46`	`parser_raise_error (context_p, PARSER_ERR_OUT_OF_MEMORY);`
`46`	`47`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2241,6 +2241,13 @@ parser_parse_script (const uint8_t source_p, /< source code /`
`2241`	`2241`
`2242`	`2242`	`if (!*bytecode_data_p)`
`2243`	`2243`	`{`
	`2244`	`+ if (parse_error.error == PARSER_ERR_OUT_OF_MEMORY)`
	`2245`	`+ {`
	`2246`	`+ /* It is unlikely that memory can be allocated in an out-of-memory`
	`2247`	`+ * situation. However, a simple value can still be thrown. */`
	`2248`	`+ return ecma_make_error_value (ecma_make_simple_value (ECMA_SIMPLE_VALUE_NULL));`
	`2249`	`+ }`
	`2250`	`+`
`2244`	`2251`	`return ecma_raise_syntax_error (parser_error_to_string (parse_error.error));`
`2245`	`2252`	`}`
`2246`	`2253`