Always terminate native strings with 4 \0 bytes

eregon · eregon · commit 2ff82aafcb32 · 2022-08-12T16:02:13.000+02:00
* So whether the string is UTF-32, UTF-16 or another encoding there are a safe amount of \0 bytes when passed to C functions. * See #2704 (comment)
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -22,6 +22,7 @@ Compatibility:
 * Range literals of integers are now created at parse time like in CRuby (#2622, @aardvark179).
 * Fix `IO.pipe` - allow overriding `IO.new` that is used to create new pipes (#2692, @andykonchin).
 * Fix exception message when there are missing or extra keyword arguments - it contains all the missing/extra keywords now (#1522, @andrykonchin).
+* Always terminate native strings with enough `\0` bytes (#2704, @eregon).
 
 Performance:
 
diff --git a/src/main/java/org/truffleruby/cext/CExtNodes.java b/src/main/java/org/truffleruby/cext/CExtNodes.java
@@ -131,7 +131,10 @@
 public class CExtNodes {
 
     public static Pointer newNativeStringPointer(int capacity, RubyLanguage language) {
-        return Pointer.mallocAutoRelease(capacity + 1, language);
+        // We need up to 4 \0 bytes for UTF-32. Always use 4 for speed rather than checking the encoding min length.
+        Pointer pointer = Pointer.mallocAutoRelease(capacity + 4, language);
+        pointer.writeInt(capacity, 0);
+        return pointer;
     }
 
     private static long getNativeStringCapacity(Pointer pointer) {
@@ -732,13 +735,24 @@ public abstract static class RbStrSetLenNode extends CoreMethodArrayArgumentsNod
         protected RubyString strSetLen(RubyString string, int newByteLength,
                 @Cached RubyStringLibrary libString,
                 @Cached StringToNativeNode stringToNativeNode,
-                @Cached MutableTruffleString.FromNativePointerNode fromNativePointerNode) {
+                @Cached MutableTruffleString.FromNativePointerNode fromNativePointerNode,
+                @Cached ConditionProfile minLengthOneProfile) {
             var pointer = stringToNativeNode.executeToNative(string);
 
-            pointer.writeByte(newByteLength, (byte) 0); // Like MRI
+            var encoding = libString.getEncoding(string);
+            int minLength = encoding.jcoding.minLength();
+            // Like MRI
+            if (minLengthOneProfile.profile(minLength == 1)) {
+                pointer.writeByte(newByteLength, (byte) 0);
+            } else if (minLength == 2) {
+                pointer.writeShort(newByteLength, (short) 0);
+            } else if (minLength == 4) {
+                pointer.writeInt(newByteLength, 0);
+            } else {
+                throw CompilerDirectives.shouldNotReachHere();
+            }
 
-            var newNativeTString = fromNativePointerNode.execute(pointer, 0, newByteLength,
-                    libString.getTEncoding(string), false);
+            var newNativeTString = fromNativePointerNode.execute(pointer, 0, newByteLength, encoding.tencoding, false);
             string.setTString(newNativeTString);
 
             return string;
@@ -802,7 +816,6 @@ static MutableTruffleString resize(Pointer pointer, int newCapacity, int newByte
                 RubyLanguage language) {
             final Pointer newPointer = newNativeStringPointer(newCapacity, language);
             newPointer.writeBytes(0, pointer, 0, Math.min(pointer.getSize(), newCapacity));
-            newPointer.writeByte(newCapacity, (byte) 0); // Like MRI
 
             return fromNativePointerNode.execute(newPointer, 0, newByteLength, tencoding, false);
         }
@@ -1225,7 +1238,6 @@ public static Pointer allocateAndCopyToNative(AbstractTruffleString tstring, Tru
                 int capacity, TruffleString.CopyToNativeMemoryNode copyToNativeMemoryNode, RubyLanguage language) {
             final Pointer pointer = newNativeStringPointer(capacity, language);
             copyToNativeMemoryNode.execute(tstring, 0, pointer, 0, capacity, tencoding);
-            pointer.writeByte(capacity, (byte) 0); // Like MRI
             return pointer;
         }
 
