Skip to content

fix(utils): incorrect buffer length check in slice reader impl #383

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
irakliyk merged 1 commit into from
Jun 13, 2025
Merged

fix(utils): incorrect buffer length check in slice reader impl #383

irakliyk merged 1 commit into from
Jun 13, 2025

Conversation

@bitwalker
Copy link
Contributor

@bitwalker bitwalker commented Jun 6, 2025
edited
Loading

When looking into a deserialization issue in another project, I discovered that we were incorrectly checking the length of the unread buffer when attempting to read N bytes as a slice. As a result, deserialization would fail any time read_slice was called when the current total buffer length as >= N, but the unread portion was < N.

@bitwalker bitwalker force-pushed the bitwalker/slice-reader-fix branch from 4cf85b9 to 9ae2b3d Compare June 6, 2025 22:19
@bitwalker bitwalker mentioned this pull request Jun 6, 2025
Closed
@bitwalker
Copy link
Contributor Author

bitwalker commented Jun 6, 2025

@irakliyk I think it might be problematic to run clippy's nightly version when the MSRV of these crates is much lower, at least as a required check. At least in this case, it causes CI to fail even though I haven't made any changes to the affected code.

irakliyk
irakliyk approved these changes Jun 9, 2025
View reviewed changes
Copy link
Collaborator

@irakliyk irakliyk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! Thank you! Should we also add a test to prevent potential future regressions?

@irakliyk I think it might be problematic to run clippy's nightly version when the MSRV of these crates is much lower, at least as a required check. At least in this case, it causes CI to fail even though I haven't made any changes to the affected code.

No worries - I can merge as is and then fix the lints in a follow-up commit.

@bitwalker
Copy link
Contributor Author

bitwalker commented Jun 9, 2025

Should we also add a test to prevent potential future regressions

Certainly!

No worries - I can merge as is and then fix the lints in a follow-up commit.

This is actually the problem - I would have done that myself, but the issue is that the clippy lint cannot be satisfied without breaking compatibility with the MSRV of the crates involved. I'm also not sure if we can disable those lints using a crate-wide attribute without hitting an error when clippy is run with an older toolchain (e.g. the MSRV version, because the lint won't exist there). I'm not 100% sure on whether unknown lints trigger an error though, and ignoring lints that way might be the solution, but the downside is that one has to remember to remove all of those ignored lints when bumping the MSRV, but that might be the better tradeoff to make.

I'm not sure there is any great options, but figured I would mention it since the CI run failed in this case.

@bitwalker
fix(utils): incorrect buffer length check in slice reader impl
345e5c2 
When determining whether we have sufficient bytes available to read a
slice, we were incorrectly looking at the total length of the current
buffer, not the portion of the buffer that is unread. As a result, we
wouldn't attempt to fill the buffer with more bytes, and a subsequent
attempt to read the requisite bytes from the buffer would fail, because
there weren't in fact enough to fufill the request from the unread
portion of the buffer.
@bitwalker bitwalker force-pushed the bitwalker/slice-reader-fix branch from 9ae2b3d to 345e5c2 Compare June 9, 2025 16:00
@bitwalker
Copy link
Contributor Author

bitwalker commented Jun 9, 2025

@irakliyk I've added a test that reproduced the original issue without the patch, which now passes with this patch. The issue is a bit more subtle than I originally described, in that it only affects cases where we are reading from something that doesn't implement AsRef<[u8]>, such as a File, since only in those cases do we buffer in the ReadAdapter itself, which is why the existing tests didn't catch the bug (that, and the existing file test didn't meet the conditions to trigger it).

Should be good to go now!

@irakliyk irakliyk merged commit 47700ad into facebook:main Jun 13, 2025
7 of 8 checks passed
@irakliyk irakliyk mentioned this pull request Jun 13, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@irakliyk irakliyk irakliyk approved these changes

Assignees

No one assigned

Labels

cla signed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bitwalker @irakliyk @facebook-github-bot