Add sanitation and make tests parametric.

JimBobSquarePants · JimBobSquarePants · commit 91a978336b52 · 2020-07-26T15:27:06.000+01:00
diff --git a/src/ImageSharp/Formats/Jpeg/JpegDecoderCore.cs b/src/ImageSharp/Formats/Jpeg/JpegDecoderCore.cs
@@ -514,6 +514,11 @@ private void ProcessApplicationHeaderMarker(BufferedReadStream stream, int remai
             // TODO: thumbnail
             if (remaining > 0)
             {
+                if (stream.Position + remaining >= stream.Length)
+                {
+                    JpegThrowHelper.ThrowInvalidImageContentException("Bad App0 Marker length.");
+                }
+
                 stream.Skip(remaining);
             }
         }
@@ -533,6 +538,11 @@ private void ProcessApp1Marker(BufferedReadStream stream, int remaining)
                 return;
             }
 
+            if (stream.Position + remaining >= stream.Length)
+            {
+                JpegThrowHelper.ThrowInvalidImageContentException("Bad App1 Marker length.");
+            }
+
             var profile = new byte[remaining];
             stream.Read(profile, 0, remaining);
 
@@ -550,6 +560,7 @@ private void ProcessApp1Marker(BufferedReadStream stream, int remaining)
                     this.ExtendProfile(ref this.exifData, profile.AsSpan(Exif00).ToArray());
                 }
             }
+
         }
 
         /// <summary>
diff --git a/src/ImageSharp/IO/BufferedReadStream.cs b/src/ImageSharp/IO/BufferedReadStream.cs
@@ -50,8 +50,8 @@ public BufferedReadStream(Configuration configuration, Stream stream)
             }
 
             this.BaseStream = stream;
-            this.Position = (int)stream.Position;
             this.Length = stream.Length;
+            this.Position = (int)stream.Position;
             this.BufferSize = configuration.StreamProcessingBufferSize;
             this.maxBufferIndex = this.BufferSize - 1;
             this.readBuffer = ArrayPool<byte>.Shared.Rent(this.BufferSize);
@@ -86,6 +86,9 @@ public override long Position
             [MethodImpl(MethodImplOptions.NoInlining)]
             set
             {
+                Guard.MustBeGreaterThanOrEqualTo(value, 0, nameof(this.Position));
+                Guard.MustBeLessThan(value, this.Length, nameof(this.Position));
+
                 // Only reset readBufferIndex if we are out of bounds of our working buffer
                 // otherwise we should simply move the value by the diff.
                 if (this.IsInReadBuffer(value, out long index))
diff --git a/tests/ImageSharp.Tests/IO/BufferedReadStreamTests.cs b/tests/ImageSharp.Tests/IO/BufferedReadStreamTests.cs

Original file line number	Diff line number	Diff line change
`@@ -514,6 +514,11 @@ private void ProcessApplicationHeaderMarker(BufferedReadStream stream, int remai`
`514`	`514`	`// TODO: thumbnail`
`515`	`515`	`if (remaining > 0)`
`516`	`516`	`{`
	`517`	`+ if (stream.Position + remaining >= stream.Length)`
	`518`	`+ {`
	`519`	`+ JpegThrowHelper.ThrowInvalidImageContentException("Bad App0 Marker length.");`
	`520`	`+ }`
	`521`	`+`
`517`	`522`	`stream.Skip(remaining);`
`518`	`523`	`}`
`519`	`524`	`}`
`@@ -533,6 +538,11 @@ private void ProcessApp1Marker(BufferedReadStream stream, int remaining)`
`533`	`538`	`return;`
`534`	`539`	`}`
`535`	`540`
	`541`	`+ if (stream.Position + remaining >= stream.Length)`
	`542`	`+ {`
	`543`	`+ JpegThrowHelper.ThrowInvalidImageContentException("Bad App1 Marker length.");`
	`544`	`+ }`
	`545`	`+`
`536`	`546`	`var profile = new byte[remaining];`
`537`	`547`	`stream.Read(profile, 0, remaining);`
`538`	`548`
`@@ -550,6 +560,7 @@ private void ProcessApp1Marker(BufferedReadStream stream, int remaining)`
`550`	`560`	`this.ExtendProfile(ref this.exifData, profile.AsSpan(Exif00).ToArray());`
`551`	`561`	`}`
`552`	`562`	`}`
	`563`	`+`
`553`	`564`	`}`
`554`	`565`
`555`	`566`	`/// <summary>`