diff options
| author | Bruce Hill <bruce@bruce-hill.com> | 2024-08-03 14:40:56 -0400 |
|---|---|---|
| committer | Bruce Hill <bruce@bruce-hill.com> | 2024-08-03 14:40:56 -0400 |
| commit | 2b9bec18a4b3f2aa5065489389261583acb1c163 (patch) | |
| tree | 22f0aabb84bfbd04c3c85609120a6b51bebb0f64 /builtins/array.c | |
| parent | b2e752ee3257e967fa4796b39054a7f32629291d (diff) | |
Fix for stride overflows in arrays
Diffstat (limited to 'builtins/array.c')
| -rw-r--r-- | builtins/array.c | 31 |
1 files changed, 29 insertions, 2 deletions
diff --git a/builtins/array.c b/builtins/array.c index 4e8bf20c..28349c3d 100644 --- a/builtins/array.c +++ b/builtins/array.c @@ -298,8 +298,28 @@ public array_t Array$to(array_t array, int64_t last) }; } -public array_t Array$by(array_t array, int64_t stride) +public array_t Array$by(array_t array, int64_t stride, const TypeInfo *type) { + // In the unlikely event that the stride value would be too large to fit in + // a 15-bit integer, fall back to creating a copy of the array: + if (__builtin_expect(array.stride*stride < MIN_STRIDE || array.stride*stride > MAX_STRIDE, 0)) { + void *copy = NULL; + int64_t item_size = get_item_size(type); + int64_t len = (stride < 0 ? array.length / -stride : array.length / stride) + ((array.length % stride) != 0); + if (len > 0) { + copy = array.atomic ? GC_MALLOC_ATOMIC(len * item_size) : GC_MALLOC(len * item_size); + void *start = (stride < 0 ? array.data + (array.stride * (array.length - 1)) : array.data); + for (int64_t i = 0; i < len; i++) + memcpy(copy + i*item_size, start + array.stride*stride*i, item_size); + } + return (array_t){ + .data=copy, + .length=len, + .stride=item_size, + .atomic=array.atomic, + }; + } + if (stride == 0) return (array_t){.atomic=array.atomic}; @@ -312,8 +332,15 @@ public array_t Array$by(array_t array, int64_t stride) }; } -public array_t Array$reversed(array_t array) +public array_t Array$reversed(array_t array, const TypeInfo *type) { + // Just in case negating the stride gives a value that doesn't fit into a + // 15-bit integer, fall back to Array$by()'s more general method of copying + // the array. This should only happen if array.stride is MIN_STRIDE to + // begin with (very unlikely). + if (__builtin_expect(-array.stride < MIN_STRIDE || -array.stride > MAX_STRIDE, 0)) + return Array$by(array, -1, type); + array_t reversed = array; reversed.stride = -array.stride; reversed.data = array.data + (array.length-1)*array.stride; |