mirror of https://github.com/AxioDL/metaforce.git
CStringExtras: Prevent potential out of bounds reads with CompareCaseInsensitive
The strcasecmp and _stricmp functions expect the passed in strings to be null-terminated, however we we're also exposing a std::string_view overload for that function. std::string_view instances aren't required to be null-terminated, so this makes the interface a little unsafe. We can use std::lexicographical_compare() to provide the same behavior and also properly handle the case of non-null-terminated strings.
This commit is contained in:
parent
002ca71104
commit
0d2b2f45a8
|
@ -862,7 +862,7 @@ void CStreamAudioManager::Start(bool oneshot, std::string_view fileName, float v
|
|||
SDSPPlayer& p = s_Players[oneshot];
|
||||
SDSPPlayer& qp = s_QueuedPlayers[oneshot];
|
||||
|
||||
if (p.x10_playState != EPlayerState::Stopped && CStringExtras::CompareCaseInsensitive(fileName, p.x0_fileName)) {
|
||||
if (p.x10_playState != EPlayerState::Stopped && !CStringExtras::CompareCaseInsensitive(fileName, p.x0_fileName)) {
|
||||
/* Enque new stream */
|
||||
qp = SDSPPlayer(EPlayerState::FadeIn, fileName, volume, fadeIn, fadeOut, -1, music);
|
||||
Stop(oneshot, p.x0_fileName);
|
||||
|
@ -900,10 +900,10 @@ void CStreamAudioManager::Stop(bool oneshot, std::string_view fileName) {
|
|||
SDSPPlayer& p = s_Players[oneshot];
|
||||
SDSPPlayer& qp = s_QueuedPlayers[oneshot];
|
||||
|
||||
if (!CStringExtras::CompareCaseInsensitive(fileName, qp.x0_fileName)) {
|
||||
if (CStringExtras::CompareCaseInsensitive(fileName, qp.x0_fileName)) {
|
||||
/* Cancel enqueued file */
|
||||
qp = SDSPPlayer();
|
||||
} else if (!CStringExtras::CompareCaseInsensitive(fileName, p.x0_fileName) && p.x20_internalHandle != -1 &&
|
||||
} else if (CStringExtras::CompareCaseInsensitive(fileName, p.x0_fileName) && p.x20_internalHandle != -1 &&
|
||||
p.x10_playState != EPlayerState::Stopped) {
|
||||
/* Fade out or stop */
|
||||
if (p.x1c_fadeOut <= FLT_EPSILON)
|
||||
|
|
|
@ -18,9 +18,11 @@ CPakFile::~CPakFile() {
|
|||
}
|
||||
|
||||
const SObjectTag* CPakFile::GetResIdByName(std::string_view name) const {
|
||||
for (const std::pair<std::string, SObjectTag>& p : x54_nameList)
|
||||
if (!CStringExtras::CompareCaseInsensitive(p.first.c_str(), name))
|
||||
for (const std::pair<std::string, SObjectTag>& p : x54_nameList) {
|
||||
if (CStringExtras::CompareCaseInsensitive(p.first, name)) {
|
||||
return &p.second;
|
||||
}
|
||||
}
|
||||
return nullptr;
|
||||
}
|
||||
|
||||
|
|
|
@ -9,7 +9,7 @@ CResLoader::CResLoader() { x48_curPak = x18_pakLoadedList.end(); }
|
|||
const std::vector<CAssetId>* CResLoader::GetTagListForFile(std::string_view name) const {
|
||||
const std::string namePak = std::string(name).append(".upak");
|
||||
for (const std::unique_ptr<CPakFile>& pak : x18_pakLoadedList) {
|
||||
if (!CStringExtras::CompareCaseInsensitive(namePak, pak->x18_path)) {
|
||||
if (CStringExtras::CompareCaseInsensitive(namePak, pak->x18_path)) {
|
||||
return &pak->GetDepList();
|
||||
}
|
||||
}
|
||||
|
@ -117,7 +117,7 @@ std::unique_ptr<u8[]> CResLoader::LoadNewResourcePartSync(const urde::SObjectTag
|
|||
void CResLoader::GetTagListForFile(const char* pakName, std::vector<SObjectTag>& out) const {
|
||||
std::string path = std::string(pakName) + ".upak";
|
||||
for (const std::unique_ptr<CPakFile>& file : x18_pakLoadedList) {
|
||||
if (!CStringExtras::CompareCaseInsensitive(file->GetPath(), path)) {
|
||||
if (CStringExtras::CompareCaseInsensitive(file->GetPath(), path)) {
|
||||
auto& depList = file->GetDepList();
|
||||
out.reserve(depList.size());
|
||||
for (const auto& dep : depList) {
|
||||
|
|
|
@ -1,21 +1,30 @@
|
|||
#pragma once
|
||||
|
||||
#include <algorithm>
|
||||
#include <cctype>
|
||||
#include <string>
|
||||
#include <cstring>
|
||||
|
||||
namespace urde {
|
||||
|
||||
class CStringExtras {
|
||||
public:
|
||||
static int CompareCaseInsensitive(const char* a, const char* b) {
|
||||
#if _WIN32
|
||||
return _stricmp(a, b);
|
||||
#else
|
||||
return strcasecmp(a, b);
|
||||
#endif
|
||||
}
|
||||
static int CompareCaseInsensitive(std::string_view a, std::string_view b) {
|
||||
return CompareCaseInsensitive(a.data(), b.data());
|
||||
// Checks if the provided views into string data can be considered equal or not based on
|
||||
// whether or not all their characters are lexicographically equal to one another in
|
||||
// a character insensitive manner.
|
||||
//
|
||||
// NOTE: This differs slightly from the actual version of this function within the game executable
|
||||
// in order to better accomodate string views and potentially non-null-terminated string data.
|
||||
//
|
||||
// In the game executable, the function essentially behaves like strcasecmp in that it returns
|
||||
// an int indicating whether or not the first argument is lexicographically less than, equal to,
|
||||
// or greater than the second argument. Given no usages in the code depend on the less than or
|
||||
// greater than cases, but rather just care about whether or not the strings are equal to one
|
||||
// another, this is a safe change to make.
|
||||
//
|
||||
static bool CompareCaseInsensitive(std::string_view a, std::string_view b) {
|
||||
return std::lexicographical_compare(a.begin(), a.end(), b.begin(), b.end(), [](char lhs, char rhs) {
|
||||
return std::tolower(static_cast<unsigned char>(lhs)) < std::tolower(static_cast<unsigned char>(rhs));
|
||||
});
|
||||
}
|
||||
|
||||
static int IndexOfSubstring(std::string_view haystack, std::string_view needle) {
|
||||
|
|
|
@ -10,8 +10,9 @@
|
|||
namespace urde {
|
||||
|
||||
bool CScriptStreamedMusic::IsDSPFile(std::string_view fileName) {
|
||||
if (!CStringExtras::CompareCaseInsensitive(fileName, "sw"))
|
||||
if (CStringExtras::CompareCaseInsensitive(fileName, "sw")) {
|
||||
return true;
|
||||
}
|
||||
return CStringExtras::IndexOfSubstring(fileName, ".dsp") != -1;
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue