Skip to content

Avoid out of bounds access in String::fromCharCode #1254

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Simn merged 1 commit into from
Sep 2, 2025
Merged

Avoid out of bounds access in String::fromCharCode #1254

Simn merged 1 commit into from
Sep 2, 2025

Conversation

@tobil4sk
Copy link
Member

@tobil4sk tobil4sk commented Sep 2, 2025

If c is negative (this can happen if char is signed), then accessing sConstStrings[c] is an out of bounds memory access. This results in a string being created from garbage memory, which can lead to seg faults later on.

Taking the other branch is safer in this case. While the behaviour with negative values is unspecified, it is unsafe to give out of bounds access to memory like this.

This is partly the cause of the crash in #865.

@tobil4sk
Avoid out of bounds access in String::fromCharCode
dc22c25 
If c is negative (this can happen if char is signed), then accessing
sConstStrings[c] is an out of bounds memory access. This results in a
string being created from garbage memory, which can lead to seg faults
later on.

Taking the other branch is safer in this case.
@Simn Simn merged commit 1618253 into HaxeFoundation:master Sep 2, 2025
120 checks passed
@tobil4sk tobil4sk deleted the fix/String-fromCharCode-invalid-array-access branch September 2, 2025 22:57
@tobil4sk tobil4sk mentioned this pull request Sep 9, 2025
Open
mikolka9144 added a commit to Psych-Slice/hxcpp that referenced this pull request Oct 7, 2025
@mikolka9144
Revert "Avoid out of bounds access in String::fromCharCode (HaxeFound…
af90fd2 
…ation#1254)"

This reverts commit 1618253.
@skial skial mentioned this pull request Nov 4, 2025
Open
12 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tobil4sk @Simn