Fix buffer overflow (#3)

ybastide · web-flow · commit 97ba8a5a4cc3 · 2026-01-09T09:29:25.000+01:00
* 🐛 MaybeEscapePattern: overflow
* ⚡️ use ArrayPool&lt;byte&gt;.Shared
* ✅ add tests suggested by Copilot 🤷
* 👷 update actions, .NET version

---------

Signed-off-by: Yves Bastide &lt;stid@acm.org&gt;
diff --git a/.github/workflows/dotnet.yml b/.github/workflows/dotnet.yml
@@ -15,11 +15,11 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v6
     - name: Setup .NET
-      uses: actions/setup-dotnet@v3
+      uses: actions/setup-dotnet@v5
       with:
-        dotnet-version: 9.0.x
+        dotnet-version: 10
     - name: Restore dependencies
       run: dotnet restore
     - name: Build
diff --git a/RobotsTxt/RobotsTxtParser.cs b/RobotsTxt/RobotsTxtParser.cs
@@ -1,3 +1,5 @@
+using System.Buffers;
+
 namespace RobotsTxt;
 
 public class RobotsTxtParser(byte[] robotsBody, IRobotsParseHandler handler)
@@ -74,8 +76,9 @@ private void ParseAndEmitLine(int currentLine, ReadOnlySpan<byte> line)
         key.Parse(stringKey);
         if (NeedEscapeValueForKey(key))
         {
-            var escapedValue = MaybeEscapePattern(value);
+            var escapedValue = MaybeEscapePattern(value, out var dst);
             EmitKeyValueToHandler(currentLine, key, escapedValue);
+            if (dst != null) ArrayPool<byte>.Shared.Return(dst);
         }
         else
         {
@@ -107,7 +110,7 @@ private void EmitKeyValueToHandler(int currentLine, ParsedRobotsKey key, ReadOnl
         }
     }
 
-    public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)
+    public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src, out byte[]? dst)
     {
         var numToEscape = 0;
         var needCapitalize = false;
@@ -131,19 +134,22 @@ public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)
 
         if (numToEscape == 0 && !needCapitalize)
         {
+            dst = null;
             return src;
         }
 
-        var dst = new byte[numToEscape * 2 + src.Length];
+        dst = ArrayPool<byte>.Shared.Rent(numToEscape * 2 + src.Length);
+
         var j = 0;
         for (var i = 0; i < src.Length; i++)
         {
             var c = src[i];
             if (c == '%' && i + 2 < src.Length && src[i + 1].IsXDigit() && src[i + 2].IsXDigit())
             {
-                dst[j++] = src[i++];
-                dst[j++] = src[i++].ToUpper();
-                dst[j++] = src[i++].ToUpper();
+                dst[j++] = (byte)'%';
+                dst[j++] = src[i + 1].ToUpper();
+                dst[j++] = src[i + 2].ToUpper();
+                i += 2;
             }
             else if (c >= 0x80)
             {
@@ -157,7 +163,7 @@ public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)
             }
         }
 
-        return dst;
+        return dst.AsSpan(0, j);
     }
 
     private static bool NeedEscapeValueForKey(ParsedRobotsKey key)
diff --git a/TestRobotsTxt/GoogleTests.cs b/TestRobotsTxt/GoogleTests.cs
@@ -1,3 +1,4 @@
+using System.Buffers;
 using System.Diagnostics;
 using System.Text;
 using RobotsTxt;
@@ -1011,11 +1012,15 @@ public void TestGetPathParamsQuery(string url, string expected)
         [InlineData("/a/b/c", "/a/b/c")]
         [InlineData("á", "%C3%A1")]
         [InlineData("%aa", "%AA")]
+        [InlineData("%ab%c", "%AB%c")]
+        [InlineData("test%", "test%")]
+        [InlineData("%a", "%a")]
         public void TestMaybeEscapePattern(string url, string expected)
         {
             var actual =
-                Encoding.ASCII.GetString(RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(url)).ToArray());
+                Encoding.ASCII.GetString(RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(url), out var dst).ToArray());
             Assert.Equal(expected, actual);
+            if (dst != null) ArrayPool<byte>.Shared.Return(dst);
         }
     }
 }
diff --git a/TestRobotsTxt/TestRobotsTxtParser.cs b/TestRobotsTxt/TestRobotsTxtParser.cs
@@ -1,5 +1,8 @@
+using System.Buffers;
 using System.Text;
+
 using RobotsTxt;
+
 using Xunit;
 
 namespace TestRobotsTxt
@@ -56,8 +59,9 @@ public void TestGetKeyAndValueFrom(string line, bool rc, string expectedKey, str
         [InlineData("é", "%C3%A9")]
         public void TestMaybeEscapePattern(string src, string expected)
         {
-            var actual = RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(src));
+            var actual = RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(src), out var dst);
             Assert.Equal(expected, Encoding.UTF8.GetString(actual.ToArray()));
+            if (dst != null) ArrayPool<byte>.Shared.Return(dst);
         }
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,5 @@`
	`1`	`+using System.Buffers;`
	`2`	`+`
`1`	`3`	`namespace RobotsTxt;`
`2`	`4`
`3`	`5`	`public class RobotsTxtParser(byte[] robotsBody, IRobotsParseHandler handler)`
`@@ -74,8 +76,9 @@ private void ParseAndEmitLine(int currentLine, ReadOnlySpan<byte> line)`
`74`	`76`	`key.Parse(stringKey);`
`75`	`77`	`if (NeedEscapeValueForKey(key))`
`76`	`78`	`{`
`77`		`- var escapedValue = MaybeEscapePattern(value);`
	`79`	`+ var escapedValue = MaybeEscapePattern(value, out var dst);`
`78`	`80`	`EmitKeyValueToHandler(currentLine, key, escapedValue);`
	`81`	`+ if (dst != null) ArrayPool<byte>.Shared.Return(dst);`
`79`	`82`	`}`
`80`	`83`	`else`
`81`	`84`	`{`
`@@ -107,7 +110,7 @@ private void EmitKeyValueToHandler(int currentLine, ParsedRobotsKey key, ReadOnl`
`107`	`110`	`}`
`108`	`111`	`}`
`109`	`112`
`110`		`- public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)`
	`113`	`+ public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src, out byte[]? dst)`
`111`	`114`	`{`
`112`	`115`	`var numToEscape = 0;`
`113`	`116`	`var needCapitalize = false;`
`@@ -131,19 +134,22 @@ public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)`
`131`	`134`
`132`	`135`	`if (numToEscape == 0 && !needCapitalize)`
`133`	`136`	`{`
	`137`	`+ dst = null;`
`134`	`138`	`return src;`
`135`	`139`	`}`
`136`	`140`
`137`		`- var dst = new byte[numToEscape * 2 + src.Length];`
	`141`	`+ dst = ArrayPool<byte>.Shared.Rent(numToEscape * 2 + src.Length);`
	`142`	`+`
`138`	`143`	`var j = 0;`
`139`	`144`	`for (var i = 0; i < src.Length; i++)`
`140`	`145`	`{`
`141`	`146`	`var c = src[i];`
`142`	`147`	`if (c == '%' && i + 2 < src.Length && src[i + 1].IsXDigit() && src[i + 2].IsXDigit())`
`143`	`148`	`{`
`144`		`- dst[j++] = src[i++];`
`145`		`- dst[j++] = src[i++].ToUpper();`
`146`		`- dst[j++] = src[i++].ToUpper();`
	`149`	`+ dst[j++] = (byte)'%';`
	`150`	`+ dst[j++] = src[i + 1].ToUpper();`
	`151`	`+ dst[j++] = src[i + 2].ToUpper();`
	`152`	`+ i += 2;`
`147`	`153`	`}`
`148`	`154`	`else if (c >= 0x80)`
`149`	`155`	`{`
`@@ -157,7 +163,7 @@ public static ReadOnlySpan<byte> MaybeEscapePattern(ReadOnlySpan<byte> src)`
`157`	`163`	`}`
`158`	`164`	`}`
`159`	`165`
`160`		`- return dst;`
	`166`	`+ return dst.AsSpan(0, j);`
`161`	`167`	`}`
`162`	`168`
`163`	`169`	`private static bool NeedEscapeValueForKey(ParsedRobotsKey key)`
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,4 @@`
	`1`	`+using System.Buffers;`
`1`	`2`	`using System.Diagnostics;`
`2`	`3`	`using System.Text;`
`3`	`4`	`using RobotsTxt;`
`@@ -1011,11 +1012,15 @@ public void TestGetPathParamsQuery(string url, string expected)`
`1011`	`1012`	`[InlineData("/a/b/c", "/a/b/c")]`
`1012`	`1013`	`[InlineData("á", "%C3%A1")]`
`1013`	`1014`	`[InlineData("%aa", "%AA")]`
	`1015`	`+ [InlineData("%ab%c", "%AB%c")]`
	`1016`	`+ [InlineData("test%", "test%")]`
	`1017`	`+ [InlineData("%a", "%a")]`
`1014`	`1018`	`public void TestMaybeEscapePattern(string url, string expected)`
`1015`	`1019`	`{`
`1016`	`1020`	`var actual =`
`1017`		`- Encoding.ASCII.GetString(RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(url)).ToArray());`
	`1021`	`+ Encoding.ASCII.GetString(RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(url), out var dst).ToArray());`
`1018`	`1022`	`Assert.Equal(expected, actual);`
	`1023`	`+ if (dst != null) ArrayPool<byte>.Shared.Return(dst);`
`1019`	`1024`	`}`
`1020`	`1025`	`}`
`1021`	`1026`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,8 @@`
	`1`	`+using System.Buffers;`
`1`	`2`	`using System.Text;`
	`3`	`+`
`2`	`4`	`using RobotsTxt;`
	`5`	`+`
`3`	`6`	`using Xunit;`
`4`	`7`
`5`	`8`	`namespace TestRobotsTxt`
`@@ -56,8 +59,9 @@ public void TestGetKeyAndValueFrom(string line, bool rc, string expectedKey, str`
`56`	`59`	`[InlineData("é", "%C3%A9")]`
`57`	`60`	`public void TestMaybeEscapePattern(string src, string expected)`
`58`	`61`	`{`
`59`		`- var actual = RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(src));`
	`62`	`+ var actual = RobotsTxtParser.MaybeEscapePattern(Encoding.UTF8.GetBytes(src), out var dst);`
`60`	`63`	`Assert.Equal(expected, Encoding.UTF8.GetString(actual.ToArray()));`
	`64`	`+ if (dst != null) ArrayPool<byte>.Shared.Return(dst);`
`61`	`65`	`}`
`62`	`66`	`}`
`63`	`67`	`}`