Fix buffer overruns in fast OutputStream implementaion

aaltay · aaltay · commit c731121c2d51 · 2016-06-10T08:55:14.000-07:00
----Release Notes---- [] ------------- Created by MOE: https://github.com/google/moe MOE_MIGRATED_REVID=124285266
diff --git a/google/cloud/dataflow/coders/stream.pyx b/google/cloud/dataflow/coders/stream.pyx
@@ -25,6 +25,7 @@ cdef class OutputStream(object):
     self.size = 1024
     self.pos = 0
     self.data = <char*>libc.stdlib.malloc(self.size)
+    assert self.data, "OutputStream malloc failed."
 
   def __dealloc__(self):
     if self.data:
@@ -34,13 +35,13 @@ cdef class OutputStream(object):
     cdef size_t blen = len(b)
     if nested:
       self.write_var_int64(blen)
-    if blen > self.size - self.pos:
+    if self.size < self.pos + blen:
       self.extend(blen)
     libc.string.memcpy(self.data + self.pos, <char*>b, blen)
     self.pos += blen
 
   cpdef write_byte(self, unsigned char val):
-    if  self.size <= self.pos:
+    if  self.size < self.pos + 1:
       self.extend(1)
     self.data[self.pos] = val
     self.pos += 1
@@ -60,7 +61,7 @@ cdef class OutputStream(object):
 
   cpdef write_bigendian_int64(self, libc.stdint.int64_t signed_v):
     cdef libc.stdint.uint64_t v = signed_v
-    if  self.size < self.pos - 8:
+    if  self.size < self.pos + 8:
       self.extend(8)
     self.data[self.pos    ] = <unsigned char>(v >> 56)
     self.data[self.pos + 1] = <unsigned char>(v >> 48)
@@ -74,7 +75,7 @@ cdef class OutputStream(object):
 
   cpdef write_bigendian_int32(self, libc.stdint.int32_t signed_v):
     cdef libc.stdint.uint32_t v = signed_v
-    if  self.size < self.pos - 4:
+    if  self.size < self.pos + 4:
       self.extend(4)
     self.data[self.pos    ] = <unsigned char>(v >> 24)
     self.data[self.pos + 1] = <unsigned char>(v >> 16)
@@ -92,6 +93,7 @@ cdef class OutputStream(object):
     while missing > self.size - self.pos:
       self.size *= 2
     self.data = <char*>libc.stdlib.realloc(self.data, self.size)
+    assert self.data, "OutputStream realloc failed."
 
 
 cdef class ByteCountingOutputStream(OutputStream):
diff --git a/google/cloud/dataflow/coders/stream_test.py b/google/cloud/dataflow/coders/stream_test.py
@@ -56,6 +56,15 @@ def test_read_write_byte(self):
     self.assertEquals(0, in_s.read_byte())
     self.assertEquals(0xFF, in_s.read_byte())
 
+  def test_read_write_large(self):
+    values = range(4 * 1024)
+    out_s = self.OutputStream()
+    for v in values:
+      out_s.write_bigendian_int64(v)
+    in_s = self.InputStream(out_s.get())
+    for v in values:
+      self.assertEquals(v, in_s.read_bigendian_int64())
+
   def run_read_write_var_int64(self, values):
     out_s = self.OutputStream()
     for v in values:
