Fix out-of-bounds access.

Return nullptr when input text does not contain 'EOS' line.

Author: syoyo

cpp_cli/jdepp-app.cc

@@ -1,13 +1,75 @@
+#include <cstring>
+#include <iostream>
+#include <string>
+#include <vector>
+
 #define OPTPARSE_IMPLEMENTATION
 #include "optparse.h"
 
 #include "pdep.h"
 
-int main (int argc, char** argv) {
+static void parse_library_options(int &i, const int argc, char **argv,
+                                  std::vector<char *> &lib_args) {
+  if (i < argc) {
+    printf("i = %d, argc = %d\n", i, argc);
+    if (std::strcmp(argv[i], "--") == 0) {  // library options
+      i++;
+      while (i + lib_args.size() < argc &&
+             std::strcmp(argv[i + lib_args.size()], "--") != 0) {
+        lib_args.push_back(argv[i + lib_args.size()]);
+      }
+
+      printf("libsize %d\n", lib_args.size());
+      i += lib_args.size();
+      lib_args.push_back(nullptr);
+    } else {
+      fprintf(stderr, "Type `%s --help' for option details.\n", argv[0]);
+      exit(-1);
+    }
+  }
+}
+
+int main(int argc, char **argv) {
+  std::vector<char *> main_argvs;
+  std::vector<char *> learner_argvs;
+  std::vector<char *> chunk_argvs;
+  std::vector<char *> depend_argvs;
+
+  // main args -- [learner args] -- [chunk_args] -- [depend_args]
+  //
+  // find library options
+  int i = 0;
+  while (i < argc) {
+    if (std::strcmp(argv[i], "--") == 0) {
+      break;
+    }
+
+    main_argvs.push_back(argv[i]);
+    i++;
+  }
+  // optparse use in pdep::option only use argv, so must add null terminator otherwise out-of-bounds access happens
+  main_argvs.push_back(nullptr);
+
+  if (i < argc) {
+    parse_library_options(i, argc, argv, learner_argvs);
+    parse_library_options(i, argc, argv, chunk_argvs);
+    parse_library_options(i, argc, argv, depend_argvs);
+  }
+
+  //for (int i = 0; i < main_argvs.size(); i++) {
+  //  std::cout << "main[" << i << "] = " << main_argvs[i] << "\n";
+  //}
+
+  //for (int i = 0; i < learner_argvs.size(); i++) {
+  //  std::cout << "learner[" << i << "] = " << learner_argvs[i] << "\n";
+  //}
 
-  pdep::option opt (argc, argv);
-  pdep::parser parser (opt);
+  pdep::option opt(int(main_argvs.size()), main_argvs.data(),
+                   int(learner_argvs.size()), learner_argvs.data(),
+                   int(chunk_argvs.size()), chunk_argvs.data(),
+                   int(depend_argvs.size()), depend_argvs.data());
+  pdep::parser parser(opt);
 
-  parser.run ();
+  parser.run();
   return 0;
 }

jdepp/__init__.py

@@ -1,4 +1,4 @@
-from .jdepp_ext import *
+from jdepp_ext import *
 
 # load setptools_scm generated _version.py
 try:
@@ -14,6 +14,8 @@
 
 from .jdepp_tools import *
 
+__all__ = ['to_tree', 'to_dot']
+
 
 class Jdepp:
     def __init__(self):
@@ -24,6 +26,10 @@ def load_model(self, dict_path: Path):
         return self._jdepp.load_model(str(dict_path))
 
     def parse_from_postagged(self, input_postagged: str):
+        if isinstance(input_postagged, list):
+            # Assume each line ends with newline '\n'
+            input_postagged = "".join(input_postagged)
+
         return self._jdepp.parse_from_postagged(input_postagged)
 
     # for internal debugging.

jdepp/jdepp_tools.py

@@ -63,6 +63,9 @@ def to_tree(lines, verbose: bool = False, prob: bool = False, morph: bool = Fals
     tag = set (["D", "A", "P", "I"])
     ww ={'Na':1, 'W':2, 'F':2, 'H':1, 'A':2, 'N':1}
 
+    if isinstance(lines, str):
+        lines = lines.split('\n')
+
     result = ""
     #for line in iter (sys.stdin.readline, ""): # no buffering
     for line in lines:
@@ -88,6 +91,7 @@ def to_tree(lines, verbose: bool = False, prob: bool = False, morph: bool = Fals
                     binfo[-1].morph += pat_s.split (line_, 1)[0]
             for b in binfo:
                 b.len = sum (ww[width (x)] for x in b.morph)
+
             if not quiet or wrong:
                 text = treeify (binfo)
                 result += hader

jdepp/optparse.h

@@ -152,19 +152,19 @@ optparse_init(struct optparse *options, char **argv)
 static int
 optparse_is_dashdash(const char *arg)
 {
-    return arg != 0 && arg[0] == '-' && arg[1] == '-' && arg[2] == '\0';
+    return arg != 0 && (strlen(arg) == 2) && arg[0] == '-' && arg[1] == '-' && arg[2] == '\0';
 }
 
 static int
 optparse_is_shortopt(const char *arg)
 {
-    return arg != 0 && arg[0] == '-' && arg[1] != '-' && arg[1] != '\0';
+    return arg != 0 && (strlen(arg) >= 2) && arg[0] == '-' && arg[1] != '-' && arg[1] != '\0';
 }
 
 static int
 optparse_is_longopt(const char *arg)
 {
-    return arg != 0 && arg[0] == '-' && arg[1] == '-' && arg[2] != '\0';
+    return arg != 0 && (strlen(arg) >= 3) && arg[0] == '-' && arg[1] == '-' && arg[2] != '\0';
 }
 
 static void

jdepp/pa.h

@@ -156,15 +156,15 @@ test    test file           set '-' to skip testing\n\
 
 #ifdef USE_MULTICLASS
 #ifdef _OPENMP
-static const char* opal_opts = "t:d:kpO:o:l:c:i:asn:b:M:h";
+//static const char* opal_opts = "t:d:kpO:o:l:c:i:asn:b:M:h";
 #else
-static const char* opal_opts = "t:d:kpO:o:l:c:i:asb:M:h";
+//static const char* opal_opts = "t:d:kpO:o:l:c:i:asb:M:h";
 #endif
 #else
 #ifdef _OPENMP
-static const char* opal_opts = "t:d:kpO:o:l:c:i:asn:b:M:Ph";
+//static const char* opal_opts = "t:d:kpO:o:l:c:i:asn:b:M:Ph";
 #else
-static const char* opal_opts = "t:d:kpO:o:l:c:i:asb:M:Ph";
+//static const char* opal_opts = "t:d:kpO:o:l:c:i:asb:M:Ph";
 #endif
 #endif
 
@@ -466,7 +466,6 @@ namespace opal {
       if (! splitN) // enable shrinkage
         shrink = true, splitN = (std::numeric_limits <uint>::max) ();
       if (std::strcmp (com, "--") == 0) return;
-      printf("argc = %d, options.optind + 3 %d\n", argc, options.optind);
       if (argc < options.optind + 3) {
         printCredit ();
         my_errx (1, "Type `%s --help' for option details.", com);
@@ -1016,7 +1015,7 @@ namespace opal {
       _fp = lfn ? std::fopen (lfn, "r") : stdin;  // initialize
       if (! _fp) my_errx (1, "no such file: %s", lfn);
       std::setvbuf (_fp, &_buf[0], _IOFBF, BUF_SIZE);
-      _lm = lm; _fm = fm; _flag = flag; _M = M; 
+      _lm = lm; _fm = fm; _flag = flag; _M = M;
       if (_flag) // read data for feature packing / thresholding
         read (_fp, _lm, _fm, _flag, _M), _flag = false;
     }
@@ -1459,14 +1458,14 @@ namespace opal {
       std::fprintf (stderr, "loading..");
 #ifdef USE_STRING_FEATURE
       char* ffn
-        = std::strcat (std::strcpy (new char[std::strlen (mfn) + 10], mfn), 
+        = std::strcat (std::strcpy (new char[std::strlen (mfn) + 10], mfn),
                        ".features");
       _fm.load (ffn);
       delete [] ffn;
 #endif
       FILE* reader = std::fopen (mfn, "r");
       // examine model type
-      if (! reader || std::feof (reader)) 
+      if (! reader || std::feof (reader))
         my_errx (1, "cannot read a model: %s", mfn);
       char buf[BUF_SIZE]; std::setvbuf (reader, &buf[0], _IOFBF, BUF_SIZE);
       const char flag = static_cast <char> (std::fgetc (reader));

jdepp/pdep.cc

@@ -518,11 +518,16 @@ namespace pdep {
     char *r = _s->postagged () + len - 4;
     if (len < 4 || *r != 'E' || *(r+1) != 'O' || *(r+2) != 'S' || *(r+3) != '\n') {
       fprintf(stderr, "%s", "found a tagged sentence that is not EOS-terminated.");
+      return nullptr;
     }
+
     for (char* p (_s->postagged ()), *q (p); p != r; p = ++q) {
-      while (q != r && *q != '\n') ++q;
-      if (! _opt.ignore || std::strncmp (p, _opt.ignore, _opt.ignore_len) != 0)
-        _s->add_token (p, q - p, _dict);
+      while ((*q) && q != r && *q != '\n') ++q;
+      if ((*q)) {
+        if (! _opt.ignore || std::strncmp (p, _opt.ignore, _opt.ignore_len) != 0) {
+          _s->add_token (p, q - p, _dict);
+        }
+      }
     }
     _chunk <PARSE> ();
     _s->setup (_dict);

jdepp/pdep.h

@@ -226,8 +226,6 @@ static struct optparse_long maxent_long_options[] = {
 };
 #endif
 
-//extern char* optarg;
-//extern int   optind;
 #endif
 
 // raw strings for utf8
@@ -337,8 +335,8 @@ namespace pdep {
 
 #if 1
     //
-    option (int argc, char** argv) :
-      com (argv[0]), train ("train.JDP"),
+    option (int main_argc, char** main_argv, int _learner_argc, char **_learner_argv, int _chunk_argc, char **_chunk_argv, int _depend_argc, char **_depend_argv) :
+      com (main_argv[0]), train ("train.JDP"),
 #ifdef USE_STACKING
       model_dir (JDEPP_DEFAULT_MODEL "_stack"),
 #else
@@ -355,12 +353,11 @@ namespace pdep {
 #ifdef USE_AS_STANDALONE
       mecab_dic (MECAB_DICT),
 #endif
-      learner_argv (0), chunk_argv (0), depnd_argv (0), learner_argc (0), chunk_argc (0), depnd_argc (0), verbose (0), ignore (0), ignore_len (0), utf8 (true) {
+      learner_argv (_learner_argv), chunk_argv (_chunk_argv), depnd_argv (_depend_argv), learner_argc (_learner_argc), chunk_argc (_chunk_argc), depnd_argc (_depend_argc), verbose (0), ignore (0), ignore_len (0), utf8 (true) {
       // getOpt
-      if (argc == 0) return;
-      //int optind = 1;
+      if (main_argc == 0) return;
       struct optparse options;
-      optparse_init(&options, argv);
+      optparse_init(&options, main_argv);
       while (1) {
         int opt = optparse_long (&options, jdepp_long_options, NULL);
         if (opt == -1) break;
@@ -436,6 +433,8 @@ namespace pdep {
       if (input == CHUNK && parser != LINEAR) {
         my_warnx ("%s", "NOTE: parsing algorithm [-p] is ignored in training a chunker.\n");
       }
+
+#if 0
       // learner options
       if (std::strcmp (argv[options.optind - 1], "--") == 0) --options.optind;
 
@@ -445,14 +444,15 @@ namespace pdep {
       _set_library_options (options, argc, argv, chunk_argc, chunk_argv);
       // classifier options for dependency parser
       _set_library_options (options, argc, argv, depnd_argc, depnd_argv);
+#endif
 
       valid = true;
     }
     void printCredit () { std::fprintf (stderr, JDEPP_COPYRIGHT, com); }
     void printHelp   () { std::fprintf (stderr, JDEPP_OPT0 JDEPP_OPT1 JDEPP_OPT_TRAIN JDEPP_OPT_TEST JDEPP_OPT_MISC); }
 #endif
   private:
-#if 1
+#if 0
     void _set_library_options (struct optparse &options, const int argc, char** argv,
                                int& largc, char**& largv) {
 

jdepp/python-binding-jdepp.cc

@@ -590,6 +590,7 @@ class PySentence
 
 class PyJdepp {
  public:
+  const uint32_t kMaxChars = IOBUF_SIZE / 4; // Usually UTF-8 Japanese character is 3-bytes. div by 4 is convervative estimate.
   PyJdepp() {}
   PyJdepp(const std::string &model_path)
       : _model_path(model_path)  {
@@ -602,16 +603,22 @@ class PyJdepp {
     // Curently we must set all parameters in options as (argc, argv), then construct parser.
     //
 
-    std::cout << "model_path " << model_path << "\n";
+    //std::cout << "model_path " << model_path << "\n";
     _argv_str.push_back("pyjdepp");
-    _argv_str.push_back("--verbose");
-    _argv_str.push_back("10");
+    //_argv_str.push_back("--verbose");
+    //_argv_str.push_back("10");
     _argv_str.push_back("-m");
     _argv_str.push_back(model_path);
 
+    // TODO: args for learner, chunker, depend
+
     setup_argv();
 
-    pdep::option options(int(_argv.size()), _argv.data());
+    pdep::option options(int(_argv.size()), _argv.data(),
+      int(_learner_argv.size()), _learner_argv.data(),
+      int(_chunk_argv.size()), _chunk_argv.data(),
+      int(_depend_argv.size()), _depend_argv.data()
+    );
 
     if (_parser && _parser->model_loaded()) {
       // discard previous model&instance.
@@ -634,7 +641,16 @@ class PyJdepp {
       return PySentence();
     }
 
+    if (input_postagged.size() > IOBUF_SIZE) {
+      py::print("Input too large. Input bytes must be less than ", IOBUF_SIZE);
+      return PySentence();
+    }
+
     const pdep::sentence_t *sent = _parser->parse_from_postagged(input_postagged.c_str(), input_postagged.size());
+    if (!sent) {
+      py::print("Failed to parse text from POS tagged string");
+      return PySentence();
+    }
 
     PySentence pysent;
 
@@ -722,6 +738,22 @@ class PyJdepp {
     for (auto &v : _argv_str) {
       _argv.push_back(const_cast<char *>(v.c_str()));
     }
+    _argv.push_back(nullptr); // must add 'nullptr' at the end, otherwise out-of-bounds access will happen in optparse 
+
+    for (auto &v : _learner_argv_str) {
+      _learner_argv.push_back(const_cast<char *>(v.c_str()));
+    }
+    _learner_argv.push_back(nullptr);
+
+    for (auto &v : _chunk_argv_str) {
+      _chunk_argv.push_back(const_cast<char *>(v.c_str()));
+    }
+    _chunk_argv.push_back(nullptr);
+
+    for (auto &v : _depend_argv_str) {
+      _depend_argv.push_back(const_cast<char *>(v.c_str()));
+    }
+    _depend_argv.push_back(nullptr);
   }
 
   uint32_t _nthreads{0};  // 0 = use all cores
@@ -731,6 +763,15 @@ class PyJdepp {
   std::vector<char *> _argv;
   std::vector<std::string> _argv_str;
 
+  std::vector<char *> _learner_argv;
+  std::vector<std::string> _learner_argv_str;
+
+  std::vector<char *> _chunk_argv;
+  std::vector<std::string> _chunk_argv_str;
+
+  std::vector<char *> _depend_argv;
+  std::vector<std::string> _depend_argv_str;
+
 };
 
 }  // namespace pyjdepp
@@ -743,6 +784,7 @@ PYBIND11_MODULE(jdepp_ext, m) {
   py::class_<pyjdepp::PyJdepp>(m, "JdeppExt")
       .def(py::init<>())
       //.def(py::init<std::string>())
+      .def_readonly("MAX_CHARS", &pyjdepp::PyJdepp::kMaxChars)
       .def("load_model", &pyjdepp::PyJdepp::load_model)
       .def("parse_from_postagged", [](const pyjdepp::PyJdepp &self, const std::string &str) {
         //if (!self.model_loaded()) {