RubyGems - immunio - Versions diffs - 0.15.2 - Mend

immunio 0.15.2

Files changed (157) hide show

checksums.yaml +7 -0
data/LICENSE +234 -0
data/README.md +147 -0
data/bin/immunio +5 -0
data/lib/immunio.rb +29 -0
data/lib/immunio/agent.rb +260 -0
data/lib/immunio/authentication.rb +96 -0
data/lib/immunio/blocked_app.rb +38 -0
data/lib/immunio/channel.rb +432 -0
data/lib/immunio/cli.rb +39 -0
data/lib/immunio/context.rb +114 -0
data/lib/immunio/errors.rb +43 -0
data/lib/immunio/immunio_ca.crt +45 -0
data/lib/immunio/logger.rb +87 -0
data/lib/immunio/plugins/action_dispatch.rb +45 -0
data/lib/immunio/plugins/action_view.rb +431 -0
data/lib/immunio/plugins/active_record.rb +707 -0
data/lib/immunio/plugins/active_record_relation.rb +370 -0
data/lib/immunio/plugins/authlogic.rb +80 -0
data/lib/immunio/plugins/csrf.rb +24 -0
data/lib/immunio/plugins/devise.rb +40 -0
data/lib/immunio/plugins/environment_reporter.rb +69 -0
data/lib/immunio/plugins/eval.rb +51 -0
data/lib/immunio/plugins/exception_handler.rb +55 -0
data/lib/immunio/plugins/gems_tracker.rb +5 -0
data/lib/immunio/plugins/haml.rb +36 -0
data/lib/immunio/plugins/http_finisher.rb +50 -0
data/lib/immunio/plugins/http_tracker.rb +203 -0
data/lib/immunio/plugins/io.rb +96 -0
data/lib/immunio/plugins/redirect.rb +42 -0
data/lib/immunio/plugins/warden.rb +66 -0
data/lib/immunio/processor.rb +234 -0
data/lib/immunio/rails.rb +26 -0
data/lib/immunio/request.rb +139 -0
data/lib/immunio/rufus_lua_ext/ref.rb +27 -0
data/lib/immunio/rufus_lua_ext/state.rb +157 -0
data/lib/immunio/rufus_lua_ext/table.rb +137 -0
data/lib/immunio/rufus_lua_ext/utils.rb +13 -0
data/lib/immunio/version.rb +5 -0
data/lib/immunio/vm.rb +291 -0
data/lua-hooks/ext/all.c +78 -0
data/lua-hooks/ext/bitop/README +22 -0
data/lua-hooks/ext/bitop/bit.c +189 -0
data/lua-hooks/ext/extconf.rb +38 -0
data/lua-hooks/ext/libinjection/COPYING +37 -0
data/lua-hooks/ext/libinjection/libinjection.h +65 -0
data/lua-hooks/ext/libinjection/libinjection_html5.c +847 -0
data/lua-hooks/ext/libinjection/libinjection_html5.h +54 -0
data/lua-hooks/ext/libinjection/libinjection_sqli.c +2301 -0
data/lua-hooks/ext/libinjection/libinjection_sqli.h +295 -0
data/lua-hooks/ext/libinjection/libinjection_sqli_data.h +9349 -0
data/lua-hooks/ext/libinjection/libinjection_xss.c +531 -0
data/lua-hooks/ext/libinjection/libinjection_xss.h +21 -0
data/lua-hooks/ext/libinjection/lualib.c +109 -0
data/lua-hooks/ext/lpeg/HISTORY +90 -0
data/lua-hooks/ext/lpeg/lpcap.c +537 -0
data/lua-hooks/ext/lpeg/lpcap.h +43 -0
data/lua-hooks/ext/lpeg/lpcode.c +986 -0
data/lua-hooks/ext/lpeg/lpcode.h +34 -0
data/lua-hooks/ext/lpeg/lpeg-128.gif +0 -0
data/lua-hooks/ext/lpeg/lpeg.html +1429 -0
data/lua-hooks/ext/lpeg/lpprint.c +244 -0
data/lua-hooks/ext/lpeg/lpprint.h +35 -0
data/lua-hooks/ext/lpeg/lptree.c +1238 -0
data/lua-hooks/ext/lpeg/lptree.h +77 -0
data/lua-hooks/ext/lpeg/lptypes.h +149 -0
data/lua-hooks/ext/lpeg/lpvm.c +355 -0
data/lua-hooks/ext/lpeg/lpvm.h +58 -0
data/lua-hooks/ext/lpeg/makefile +55 -0
data/lua-hooks/ext/lpeg/re.html +498 -0
data/lua-hooks/ext/lpeg/test.lua +1409 -0
data/lua-hooks/ext/lua-cmsgpack/CMakeLists.txt +45 -0
data/lua-hooks/ext/lua-cmsgpack/README.md +115 -0
data/lua-hooks/ext/lua-cmsgpack/lua_cmsgpack.c +957 -0
data/lua-hooks/ext/lua-cmsgpack/test.lua +570 -0
data/lua-hooks/ext/lua-snapshot/LICENSE +7 -0
data/lua-hooks/ext/lua-snapshot/Makefile +12 -0
data/lua-hooks/ext/lua-snapshot/README.md +18 -0
data/lua-hooks/ext/lua-snapshot/dump.lua +15 -0
data/lua-hooks/ext/lua-snapshot/snapshot.c +455 -0
data/lua-hooks/ext/lua/COPYRIGHT +34 -0
data/lua-hooks/ext/lua/lapi.c +1087 -0
data/lua-hooks/ext/lua/lapi.h +16 -0
data/lua-hooks/ext/lua/lauxlib.c +652 -0
data/lua-hooks/ext/lua/lauxlib.h +174 -0
data/lua-hooks/ext/lua/lbaselib.c +659 -0
data/lua-hooks/ext/lua/lcode.c +831 -0
data/lua-hooks/ext/lua/lcode.h +76 -0
data/lua-hooks/ext/lua/ldblib.c +398 -0
data/lua-hooks/ext/lua/ldebug.c +638 -0
data/lua-hooks/ext/lua/ldebug.h +33 -0
data/lua-hooks/ext/lua/ldo.c +519 -0
data/lua-hooks/ext/lua/ldo.h +57 -0
data/lua-hooks/ext/lua/ldump.c +164 -0
data/lua-hooks/ext/lua/lfunc.c +174 -0
data/lua-hooks/ext/lua/lfunc.h +34 -0
data/lua-hooks/ext/lua/lgc.c +710 -0
data/lua-hooks/ext/lua/lgc.h +110 -0
data/lua-hooks/ext/lua/linit.c +38 -0
data/lua-hooks/ext/lua/liolib.c +556 -0
data/lua-hooks/ext/lua/llex.c +463 -0
data/lua-hooks/ext/lua/llex.h +81 -0
data/lua-hooks/ext/lua/llimits.h +128 -0
data/lua-hooks/ext/lua/lmathlib.c +263 -0
data/lua-hooks/ext/lua/lmem.c +86 -0
data/lua-hooks/ext/lua/lmem.h +49 -0
data/lua-hooks/ext/lua/loadlib.c +705 -0
data/lua-hooks/ext/lua/loadlib_rel.c +760 -0
data/lua-hooks/ext/lua/lobject.c +214 -0
data/lua-hooks/ext/lua/lobject.h +381 -0
data/lua-hooks/ext/lua/lopcodes.c +102 -0
data/lua-hooks/ext/lua/lopcodes.h +268 -0
data/lua-hooks/ext/lua/loslib.c +243 -0
data/lua-hooks/ext/lua/lparser.c +1339 -0
data/lua-hooks/ext/lua/lparser.h +82 -0
data/lua-hooks/ext/lua/lstate.c +214 -0
data/lua-hooks/ext/lua/lstate.h +169 -0
data/lua-hooks/ext/lua/lstring.c +111 -0
data/lua-hooks/ext/lua/lstring.h +31 -0
data/lua-hooks/ext/lua/lstrlib.c +871 -0
data/lua-hooks/ext/lua/ltable.c +588 -0
data/lua-hooks/ext/lua/ltable.h +40 -0
data/lua-hooks/ext/lua/ltablib.c +287 -0
data/lua-hooks/ext/lua/ltm.c +75 -0
data/lua-hooks/ext/lua/ltm.h +54 -0
data/lua-hooks/ext/lua/lua.c +392 -0
data/lua-hooks/ext/lua/lua.def +131 -0
data/lua-hooks/ext/lua/lua.h +388 -0
data/lua-hooks/ext/lua/lua.rc +28 -0
data/lua-hooks/ext/lua/lua_dll.rc +26 -0
data/lua-hooks/ext/lua/luac.c +200 -0
data/lua-hooks/ext/lua/luac.rc +1 -0
data/lua-hooks/ext/lua/luaconf.h +763 -0
data/lua-hooks/ext/lua/luaconf.h.in +724 -0
data/lua-hooks/ext/lua/luaconf.h.orig +763 -0
data/lua-hooks/ext/lua/lualib.h +53 -0
data/lua-hooks/ext/lua/lundump.c +227 -0
data/lua-hooks/ext/lua/lundump.h +36 -0
data/lua-hooks/ext/lua/lvm.c +767 -0
data/lua-hooks/ext/lua/lvm.h +36 -0
data/lua-hooks/ext/lua/lzio.c +82 -0
data/lua-hooks/ext/lua/lzio.h +67 -0
data/lua-hooks/ext/lua/print.c +227 -0
data/lua-hooks/ext/luautf8/README.md +152 -0
data/lua-hooks/ext/luautf8/lutf8lib.c +1274 -0
data/lua-hooks/ext/luautf8/unidata.h +3064 -0
data/lua-hooks/lib/boot.lua +254 -0
data/lua-hooks/lib/encode.lua +4 -0
data/lua-hooks/lib/lexers/LICENSE +21 -0
data/lua-hooks/lib/lexers/bash.lua +134 -0
data/lua-hooks/lib/lexers/bash_dqstr.lua +62 -0
data/lua-hooks/lib/lexers/css.lua +216 -0
data/lua-hooks/lib/lexers/html.lua +106 -0
data/lua-hooks/lib/lexers/javascript.lua +68 -0
data/lua-hooks/lib/lexers/lexer.lua +1575 -0
data/lua-hooks/lib/lexers/markers.lua +33 -0
metadata +308 -0

@@ -0,0 +1,638 @@
+/*
+** $Id: ldebug.c,v 2.29.1.6 2008/05/08 16:56:26 roberto Exp $
+** Debug Interface
+** See Copyright Notice in lua.h
+*/
+#include <stdarg.h>
+#include <stddef.h>
+#include <string.h>
+#define ldebug_c
+#define LUA_CORE
+#include "lua.h"
+#include "lapi.h"
+#include "lcode.h"
+#include "ldebug.h"
+#include "ldo.h"
+#include "lfunc.h"
+#include "lobject.h"
+#include "lopcodes.h"
+#include "lstate.h"
+#include "lstring.h"
+#include "ltable.h"
+#include "ltm.h"
+#include "lvm.h"
+static const char *getfuncname (lua_State *L, CallInfo *ci, const char **name);
+static int currentpc (lua_State *L, CallInfo *ci) {
+  if (!isLua(ci)) return -1;  /* function is not a Lua function? */
+  if (ci == L->ci)
+    ci->savedpc = L->savedpc;
+  return pcRel(ci->savedpc, ci_func(ci)->l.p);
+}
+static int currentline (lua_State *L, CallInfo *ci) {
+  int pc = currentpc(L, ci);
+  if (pc < 0)
+    return -1;  /* only active lua functions have current-line information */
+  else
+    return lgetline(ci_func(ci)->l.p, pc);
+}
+/*
+** this function can be called asynchronous (e.g. during a signal)
+*/
+LUA_API int lua_sethook (lua_State *L, lua_Hook func, int mask, int count) {
+  if (func == NULL || mask == 0) {  /* turn off hooks? */
+    mask = 0;
+    func = NULL;
+  }
+  L->hook = func;
+  L->basehookcount = count;
+  resethookcount(L);
+  L->hookmask = cast_byte(mask);
+  return 1;
+}
+LUA_API lua_Hook lua_gethook (lua_State *L) {
+  return L->hook;
+}
+LUA_API int lua_gethookmask (lua_State *L) {
+  return L->hookmask;
+}
+LUA_API int lua_gethookcount (lua_State *L) {
+  return L->basehookcount;
+}
+LUA_API int lua_getstack (lua_State *L, int level, lua_Debug *ar) {
+  int status;
+  CallInfo *ci;
+  lua_lock(L);
+  for (ci = L->ci; level > 0 && ci > L->base_ci; ci--) {
+    level--;
+    if (f_isLua(ci))  /* Lua function? */
+      level -= ci->tailcalls;  /* skip lost tail calls */
+  }
+  if (level == 0 && ci > L->base_ci) {  /* level found? */
+    status = 1;
+    ar->i_ci = cast_int(ci - L->base_ci);
+  }
+  else if (level < 0) {  /* level is of a lost tail call? */
+    status = 1;
+    ar->i_ci = 0;
+  }
+  else status = 0;  /* no such level */
+  lua_unlock(L);
+  return status;
+}
+static Proto *getluaproto (CallInfo *ci) {
+  return (isLua(ci) ? ci_func(ci)->l.p : NULL);
+}
+static const char *findlocal (lua_State *L, CallInfo *ci, int n) {
+  const char *name;
+  Proto *fp = getluaproto(ci);
+  if (fp && (name = luaF_getlocalname(fp, n, currentpc(L, ci))) != NULL)
+    return name;  /* is a local variable in a Lua function */
+  else {
+    StkId limit = (ci == L->ci) ? L->top : (ci+1)->func;
+    if (limit - ci->base >= n && n > 0)  /* is 'n' inside 'ci' stack? */
+      return "(*temporary)";
+    else
+      return NULL;
+  }
+}
+LUA_API const char *lua_getlocal (lua_State *L, const lua_Debug *ar, int n) {
+  CallInfo *ci = L->base_ci + ar->i_ci;
+  const char *name = findlocal(L, ci, n);
+  lua_lock(L);
+  if (name)
+      luaA_pushobject(L, ci->base + (n - 1));
+  lua_unlock(L);
+  return name;
+}
+LUA_API const char *lua_setlocal (lua_State *L, const lua_Debug *ar, int n) {
+  CallInfo *ci = L->base_ci + ar->i_ci;
+  const char *name = findlocal(L, ci, n);
+  lua_lock(L);
+  if (name)
+      setobjs2s(L, ci->base + (n - 1), L->top - 1);
+  L->top--;  /* pop value */
+  lua_unlock(L);
+  return name;
+}
+static void funcinfo (lua_Debug *ar, Closure *cl) {
+  if (cl->c.isC) {
+    ar->source = "=[C]";
+    ar->linedefined = -1;
+    ar->lastlinedefined = -1;
+    ar->what = "C";
+  }
+  else {
+    ar->source = getstr(cl->l.p->source);
+    ar->linedefined = cl->l.p->linedefined;
+    ar->lastlinedefined = cl->l.p->lastlinedefined;
+    ar->what = (ar->linedefined == 0) ? "main" : "Lua";
+  }
+  luaO_chunkid(ar->short_src, ar->source, LUA_IDSIZE);
+}
+static void info_tailcall (lua_Debug *ar) {
+  ar->name = ar->namewhat = "";
+  ar->what = "tail";
+  ar->lastlinedefined = ar->linedefined = ar->currentline = -1;
+  ar->source = "=(tail call)";
+  luaO_chunkid(ar->short_src, ar->source, LUA_IDSIZE);
+  ar->nups = 0;
+}
+static void collectvalidlines (lua_State *L, Closure *f) {
+  if (f == NULL || f->c.isC) {
+    setnilvalue(L->top);
+  }
+  else {
+    Table *t = luaH_new(L, 0, 0);
+    int *lineinfo = f->l.p->lineinfo;
+    int i;
+    for (i=0; i<f->l.p->sizelineinfo; i++)
+      setbvalue(luaH_setnum(L, t, lineinfo[i]), 1);
+    sethvalue(L, L->top, t);
+  }
+  incr_top(L);
+}
+static int auxgetinfo (lua_State *L, const char *what, lua_Debug *ar,
+                    Closure *f, CallInfo *ci) {
+  int status = 1;
+  if (f == NULL) {
+    info_tailcall(ar);
+    return status;
+  }
+  for (; *what; what++) {
+    switch (*what) {
+      case 'S': {
+        funcinfo(ar, f);
+        break;
+      }
+      case 'l': {
+        ar->currentline = (ci) ? currentline(L, ci) : -1;
+        break;
+      }
+      case 'u': {
+        ar->nups = f->c.nupvalues;
+        break;
+      }
+      case 'n': {
+        ar->namewhat = (ci) ? getfuncname(L, ci, &ar->name) : NULL;
+        if (ar->namewhat == NULL) {
+          ar->namewhat = "";  /* not found */
+          ar->name = NULL;
+        }
+        break;
+      }
+      case 'L':
+      case 'f':  /* handled by lua_getinfo */
+        break;
+      default: status = 0;  /* invalid option */
+    }
+  }
+  return status;
+}
+LUA_API int lua_getinfo (lua_State *L, const char *what, lua_Debug *ar) {
+  int status;
+  Closure *f = NULL;
+  CallInfo *ci = NULL;
+  lua_lock(L);
+  if (*what == '>') {
+    StkId func = L->top - 1;
+    luai_apicheck(L, ttisfunction(func));
+    what++;  /* skip the '>' */
+    f = clvalue(func);
+    L->top--;  /* pop function */
+  }
+  else if (ar->i_ci != 0) {  /* no tail call? */
+    ci = L->base_ci + ar->i_ci;
+    lua_assert(ttisfunction(ci->func));
+    f = clvalue(ci->func);
+  }
+  status = auxgetinfo(L, what, ar, f, ci);
+  if (strchr(what, 'f')) {
+    if (f == NULL) setnilvalue(L->top);
+    else setclvalue(L, L->top, f);
+    incr_top(L);
+  }
+  if (strchr(what, 'L'))
+    collectvalidlines(L, f);
+  lua_unlock(L);
+  return status;
+}
+/*
+** {======================================================
+** Symbolic Execution and code checker
+** =======================================================
+*/
+#define check(x)		if (!(x)) return 0;
+#define checkjump(pt,pc)	check(0 <= pc && pc < pt->sizecode)
+#define checkreg(pt,reg)	check((reg) < (pt)->maxstacksize)
+static int precheck (const Proto *pt) {
+  check(pt->maxstacksize <= MAXSTACK);
+  check(pt->numparams+(pt->is_vararg & VARARG_HASARG) <= pt->maxstacksize);
+  check(!(pt->is_vararg & VARARG_NEEDSARG) ||
+              (pt->is_vararg & VARARG_HASARG));
+  check(pt->sizeupvalues <= pt->nups);
+  check(pt->sizelineinfo == pt->sizecode || pt->sizelineinfo == 0);
+  check(pt->sizecode > 0 && GET_OPCODE(pt->code[pt->sizecode-1]) == OP_RETURN);
+  return 1;
+}
+#define checkopenop(pt,pc)	luaG_checkopenop((pt)->code[(pc)+1])
+int luaG_checkopenop (Instruction i) {
+  switch (GET_OPCODE(i)) {
+    case OP_CALL:
+    case OP_TAILCALL:
+    case OP_RETURN:
+    case OP_SETLIST: {
+      check(GETARG_B(i) == 0);
+      return 1;
+    }
+    default: return 0;  /* invalid instruction after an open call */
+  }
+}
+static int checkArgMode (const Proto *pt, int r, enum OpArgMask mode) {
+  switch (mode) {
+    case OpArgN: check(r == 0); break;
+    case OpArgU: break;
+    case OpArgR: checkreg(pt, r); break;
+    case OpArgK:
+      check(ISK(r) ? INDEXK(r) < pt->sizek : r < pt->maxstacksize);
+      break;
+  }
+  return 1;
+}
+static Instruction symbexec (const Proto *pt, int lastpc, int reg) {
+  int pc;
+  int last;  /* stores position of last instruction that changed `reg' */
+  last = pt->sizecode-1;  /* points to final return (a `neutral' instruction) */
+  check(precheck(pt));
+  for (pc = 0; pc < lastpc; pc++) {
+    Instruction i = pt->code[pc];
+    OpCode op = GET_OPCODE(i);
+    int a = GETARG_A(i);
+    int b = 0;
+    int c = 0;
+    check(op < NUM_OPCODES);
+    checkreg(pt, a);
+    switch (getOpMode(op)) {
+      case iABC: {
+        b = GETARG_B(i);
+        c = GETARG_C(i);
+        check(checkArgMode(pt, b, getBMode(op)));
+        check(checkArgMode(pt, c, getCMode(op)));
+        break;
+      }
+      case iABx: {
+        b = GETARG_Bx(i);
+        if (getBMode(op) == OpArgK) check(b < pt->sizek);
+        break;
+      }
+      case iAsBx: {
+        b = GETARG_sBx(i);
+        if (getBMode(op) == OpArgR) {
+          int dest = pc+1+b;
+          check(0 <= dest && dest < pt->sizecode);
+          if (dest > 0) {
+            int j;
+            /* check that it does not jump to a setlist count; this
+               is tricky, because the count from a previous setlist may
+               have the same value of an invalid setlist; so, we must
+               go all the way back to the first of them (if any) */
+            for (j = 0; j < dest; j++) {
+              Instruction d = pt->code[dest-1-j];
+              if (!(GET_OPCODE(d) == OP_SETLIST && GETARG_C(d) == 0)) break;
+            }
+            /* if 'j' is even, previous value is not a setlist (even if
+               it looks like one) */
+            check((j&1) == 0);
+          }
+        }
+        break;
+      }
+    }
+    if (testAMode(op)) {
+      if (a == reg) last = pc;  /* change register `a' */
+    }
+    if (testTMode(op)) {
+      check(pc+2 < pt->sizecode);  /* check skip */
+      check(GET_OPCODE(pt->code[pc+1]) == OP_JMP);
+    }
+    switch (op) {
+      case OP_LOADBOOL: {
+        if (c == 1) {  /* does it jump? */
+          check(pc+2 < pt->sizecode);  /* check its jump */
+          check(GET_OPCODE(pt->code[pc+1]) != OP_SETLIST ||
+                GETARG_C(pt->code[pc+1]) != 0);
+        }
+        break;
+      }
+      case OP_LOADNIL: {
+        if (a <= reg && reg <= b)
+          last = pc;  /* set registers from `a' to `b' */
+        break;
+      }
+      case OP_GETUPVAL:
+      case OP_SETUPVAL: {
+        check(b < pt->nups);
+        break;
+      }
+      case OP_GETGLOBAL:
+      case OP_SETGLOBAL: {
+        check(ttisstring(&pt->k[b]));
+        break;
+      }
+      case OP_SELF: {
+        checkreg(pt, a+1);
+        if (reg == a+1) last = pc;
+        break;
+      }
+      case OP_CONCAT: {
+        check(b < c);  /* at least two operands */
+        break;
+      }
+      case OP_TFORLOOP: {
+        check(c >= 1);  /* at least one result (control variable) */
+        checkreg(pt, a+2+c);  /* space for results */
+        if (reg >= a+2) last = pc;  /* affect all regs above its base */
+        break;
+      }
+      case OP_FORLOOP:
+      case OP_FORPREP:
+        checkreg(pt, a+3);
+        /* go through */
+      case OP_JMP: {
+        int dest = pc+1+b;
+        /* not full check and jump is forward and do not skip `lastpc'? */
+        if (reg != NO_REG && pc < dest && dest <= lastpc)
+          pc += b;  /* do the jump */
+        break;
+      }
+      case OP_CALL:
+      case OP_TAILCALL: {
+        if (b != 0) {
+          checkreg(pt, a+b-1);
+        }
+        c--;  /* c = num. returns */
+        if (c == LUA_MULTRET) {
+          check(checkopenop(pt, pc));
+        }
+        else if (c != 0)
+          checkreg(pt, a+c-1);
+        if (reg >= a) last = pc;  /* affect all registers above base */
+        break;
+      }
+      case OP_RETURN: {
+        b--;  /* b = num. returns */
+        if (b > 0) checkreg(pt, a+b-1);
+        break;
+      }
+      case OP_SETLIST: {
+        if (b > 0) checkreg(pt, a + b);
+        if (c == 0) {
+          pc++;
+          check(pc < pt->sizecode - 1);
+        }
+        break;
+      }
+      case OP_CLOSURE: {
+        int nup, j;
+        check(b < pt->sizep);
+        nup = pt->p[b]->nups;
+        check(pc + nup < pt->sizecode);
+        for (j = 1; j <= nup; j++) {
+          OpCode op1 = GET_OPCODE(pt->code[pc + j]);
+          check(op1 == OP_GETUPVAL || op1 == OP_MOVE);
+        }
+        if (reg != NO_REG)  /* tracing? */
+          pc += nup;  /* do not 'execute' these pseudo-instructions */
+        break;
+      }
+      case OP_VARARG: {
+        check((pt->is_vararg & VARARG_ISVARARG) &&
+             !(pt->is_vararg & VARARG_NEEDSARG));
+        b--;
+        if (b == LUA_MULTRET) check(checkopenop(pt, pc));
+        checkreg(pt, a+b-1);
+        break;
+      }
+      default: break;
+    }
+  }
+  return pt->code[last];
+}
+#undef check
+#undef checkjump
+#undef checkreg
+/* }====================================================== */
+int luaG_checkcode (const Proto *pt) {
+  return (symbexec(pt, pt->sizecode, NO_REG) != 0);
+}
+static const char *kname (Proto *p, int c) {
+  if (ISK(c) && ttisstring(&p->k[INDEXK(c)]))
+    return svalue(&p->k[INDEXK(c)]);
+  else
+    return "?";
+}
+static const char *getobjname (lua_State *L, CallInfo *ci, int stackpos,
+                               const char **name) {
+  if (isLua(ci)) {  /* a Lua function? */
+    Proto *p = ci_func(ci)->l.p;
+    int pc = currentpc(L, ci);
+    Instruction i;
+    *name = luaF_getlocalname(p, stackpos+1, pc);
+    if (*name)  /* is a local? */
+      return "local";
+    i = symbexec(p, pc, stackpos);  /* try symbolic execution */
+    lua_assert(pc != -1);
+    switch (GET_OPCODE(i)) {
+      case OP_GETGLOBAL: {
+        int g = GETARG_Bx(i);  /* global index */
+        lua_assert(ttisstring(&p->k[g]));
+        *name = svalue(&p->k[g]);
+        return "global";
+      }
+      case OP_MOVE: {
+        int a = GETARG_A(i);
+        int b = GETARG_B(i);  /* move from `b' to `a' */
+        if (b < a)
+          return getobjname(L, ci, b, name);  /* get name for `b' */
+        break;
+      }
+      case OP_GETTABLE: {
+        int k = GETARG_C(i);  /* key index */
+        *name = kname(p, k);
+        return "field";
+      }
+      case OP_GETUPVAL: {
+        int u = GETARG_B(i);  /* upvalue index */
+        *name = p->upvalues ? getstr(p->upvalues[u]) : "?";
+        return "upvalue";
+      }
+      case OP_SELF: {
+        int k = GETARG_C(i);  /* key index */
+        *name = kname(p, k);
+        return "method";
+      }
+      default: break;
+    }
+  }
+  return NULL;  /* no useful name found */
+}
+static const char *getfuncname (lua_State *L, CallInfo *ci, const char **name) {
+  Instruction i;
+  if ((isLua(ci) && ci->tailcalls > 0) || !isLua(ci - 1))
+    return NULL;  /* calling function is not Lua (or is unknown) */
+  ci--;  /* calling function */
+  i = ci_func(ci)->l.p->code[currentpc(L, ci)];
+  if (GET_OPCODE(i) == OP_CALL || GET_OPCODE(i) == OP_TAILCALL ||
+      GET_OPCODE(i) == OP_TFORLOOP)
+    return getobjname(L, ci, GETARG_A(i), name);
+  else
+    return NULL;  /* no useful name can be found */
+}
+/* only ANSI way to check whether a pointer points to an array */
+static int isinstack (CallInfo *ci, const TValue *o) {
+  StkId p;
+  for (p = ci->base; p < ci->top; p++)
+    if (o == p) return 1;
+  return 0;
+}
+void luaG_typeerror (lua_State *L, const TValue *o, const char *op) {
+  const char *name = NULL;
+  const char *t = luaT_typenames[ttype(o)];
+  const char *kind = (isinstack(L->ci, o)) ?
+                         getobjname(L, L->ci, cast_int(o - L->base), &name) :
+                         NULL;
+  if (kind)
+    luaG_runerror(L, "attempt to %s %s " LUA_QS " (a %s value)",
+                op, kind, name, t);
+  else
+    luaG_runerror(L, "attempt to %s a %s value", op, t);
+}
+void luaG_concaterror (lua_State *L, StkId p1, StkId p2) {
+  if (ttisstring(p1) || ttisnumber(p1)) p1 = p2;
+  lua_assert(!ttisstring(p1) && !ttisnumber(p1));
+  luaG_typeerror(L, p1, "concatenate");
+}
+void luaG_aritherror (lua_State *L, const TValue *p1, const TValue *p2) {
+  TValue temp;
+  if (luaV_tonumber(p1, &temp) == NULL)
+    p2 = p1;  /* first operand is wrong */
+  luaG_typeerror(L, p2, "perform arithmetic on");
+}
+int luaG_ordererror (lua_State *L, const TValue *p1, const TValue *p2) {
+  const char *t1 = luaT_typenames[ttype(p1)];
+  const char *t2 = luaT_typenames[ttype(p2)];
+  if (t1[2] == t2[2])
+    luaG_runerror(L, "attempt to compare two %s values", t1);
+  else
+    luaG_runerror(L, "attempt to compare %s with %s", t1, t2);
+  return 0;
+}
+static void addinfo (lua_State *L, const char *msg) {
+  CallInfo *ci = L->ci;
+  if (isLua(ci)) {  /* is Lua code? */
+    char buff[LUA_IDSIZE];  /* add file:line information */
+    int line = currentline(L, ci);
+    luaO_chunkid(buff, getstr(getluaproto(ci)->source), LUA_IDSIZE);
+    luaO_pushfstring(L, "%s:%d: %s", buff, line, msg);
+  }
+}
+void luaG_errormsg (lua_State *L) {
+  if (L->errfunc != 0) {  /* is there an error handling function? */
+    StkId errfunc = restorestack(L, L->errfunc);
+    if (!ttisfunction(errfunc)) luaD_throw(L, LUA_ERRERR);
+    setobjs2s(L, L->top, L->top - 1);  /* move argument */
+    setobjs2s(L, L->top - 1, errfunc);  /* push function */
+    incr_top(L);
+    luaD_call(L, L->top - 2, 1);  /* call it */
+  }
+  luaD_throw(L, LUA_ERRRUN);
+}
+void luaG_runerror (lua_State *L, const char *fmt, ...) {
+  va_list argp;
+  va_start(argp, fmt);
+  addinfo(L, luaO_pushvfstring(L, fmt, argp));
+  va_end(argp);
+  luaG_errormsg(L);
+}