AK: Correct ByteBuffer::{overwrite,slice*} bounds check

2025-07-27 07:07:34 +00:00 · 2020-04-27 21:53:39 +04:30 · 2020-04-27 21:53:39 +04:30 · cf5941c972
commit cf5941c972
parent 7f1d3f6d62
1 changed files with 11 additions and 11 deletions
--- a/AK/ByteBuffer.h
+++ b/AK/ByteBuffer.h
@ -94,9 +94,9 @@ private:
        Wrap,
        Adopt
    };
-    explicit ByteBufferImpl(size_t);                       // For ConstructionMode=Uninitialized
+    explicit ByteBufferImpl(size_t); // For ConstructionMode=Uninitialized
    ByteBufferImpl(const void*, size_t, ConstructionMode); // For ConstructionMode=Copy
-    ByteBufferImpl(void*, size_t, ConstructionMode);       // For ConstructionMode=Wrap/Adopt
+    ByteBufferImpl(void*, size_t, ConstructionMode); // For ConstructionMode=Wrap/Adopt
    ByteBufferImpl() {}
    u8* m_data { nullptr };
@ -183,10 +183,10 @@ public:
    {
        if (is_null())
            return {};
-        if (offset >= this->size())
+
-            return {};
+        // I cannot hand you a slice I don't have
-        if (offset + size >= this->size())
+        ASSERT(offset + size <= this->size());
-            size = this->size() - offset;
+
        return wrap(offset_pointer(offset), size);
    }
@ -194,10 +194,10 @@ public:
    {
        if (is_null())
            return {};
-        if (offset >= this->size())
+
-            return {};
+        // I cannot hand you a slice I don't have
-        if (offset + size >= this->size())
+        ASSERT(offset + size <= this->size());
-            size = this->size() - offset;
+
        return copy(offset_pointer(offset), size);
    }
@ -222,7 +222,7 @@ public:
    void overwrite(size_t offset, const void* data, size_t data_size)
    {
        // make sure we're not told to write past the end
-        ASSERT(offset + data_size < size());
+        ASSERT(offset + data_size <= size());
        __builtin_memcpy(this->data() + offset, data, data_size);
    }