Skip to content

aws_base64_compute_encoded_len() is now exact, doesn't add 1 extra for null-terminator #1188

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Feb 21, 2025
Merged

aws_base64_compute_encoded_len() is now exact, doesn't add 1 extra for null-terminator #1188

merged 6 commits into from
Feb 21, 2025

Conversation

graebm
Copy link
Contributor

@graebm graebm commented Feb 14, 2025

Issue:

One of the core principles of aws_byte_buf and aws_byte_cursor, is you DO NOT assume there's a null-terminator, because null-terminators, and the resulting confusion between string "length" and "size" have led to so many bugs in the long history of C.

But aws_base64_encode() tried to be "nice" and add a secret null-terminator after .len, but before .capacity. To achieve this, aws_base64_compute_encoded_len() would say it needed 1 more byte than necessary. This caused trouble, catching Dmitriy off guard the other day. Searching for uses, I see aws-crt-cpp also once had a bug due to this (fixed in this PR)

In changing this, I found that aws_hex_encode() did similar, but even worse. It always added a null-terminator, and included the null-terminator in the .len! Bad! Fortunately, this function was never used except in generating random data for tests. When Bret needed a function like this in 2019 for signing, he avoided this function entirely and built his own alternate version that doesn't add a null-terminator (it has other differences too).

Description of changes:

  • aws_hex_encode() doesn't add null-terminator anymore
    • aws_hex_compute_encoded_len() updated to account for this
  • aws_base64_encode() doesn't add null-terminator anymore
    • aws_base64_compute_encoded_len() updated to account for this
  • aws_base64_compute_decoded_len() math adjusted so that overflow is impossible
  • document some math that confused me
  • stop using the term "size" in tests, we care about "len"

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@graebm graebm changed the title Knock it off with this null terminator nonsense aws_base64_compute_encoded_len() is now exact, doesn't add 1 extra for null-terminator Feb 14, 2025
@graebm graebm mentioned this pull request Feb 14, 2025
Merged
TingDaoK
TingDaoK approved these changes Feb 14, 2025
View reviewed changes
@codecov-commenter
Copy link

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 84.21%. Comparing base (6401c83) to head (f1676e8).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #1188   +/-   ##
=======================================
  Coverage   84.21%   84.21%           
=======================================
  Files          57       57           
  Lines        5979     5973    -6     
=======================================
- Hits         5035     5030    -5     
+ Misses        944      943    -1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

This was referenced Feb 15, 2025
Merged
Merged
@DmitriyMusatkin DmitriyMusatkin merged commit 9fd58f9 into main Feb 21, 2025
56 checks passed
@DmitriyMusatkin DmitriyMusatkin deleted the knock-it-off-with-this-null-terminator-nonsense branch February 21, 2025 22:41
graebm added a commit to awslabs/aws-crt-cpp that referenced this pull request Mar 17, 2025
@graebm
Adapt to aws_base64_compute_encoded_len() no longer adding 1 extra fo…
ce35bed 
…r null terminator.

See: awslabs/aws-c-common#1188
@graebm graebm mentioned this pull request Mar 17, 2025
Merged
graebm added a commit to awslabs/aws-crt-cpp that referenced this pull request Mar 17, 2025
@graebm
HTTP/1: Support streaming requests of unknown length (#714)
0a27f74 
**Issue:**

aws-sdk-cpp needs to send streaming requests of unknown content length. This isn't currently supported in our HTTP/1 client.

**Description of changes:**
- Update submodules:

        aws-c-auth         v0.8.5 -> v0.8.6
        aws-c-cal          v0.8.3 -> v0.8.7
        aws-c-common       v0.11.1 -> v0.12.0
        aws-c-event-stream v0.5.2 -> v0.5.4
        aws-c-http         v0.9.3 -> v0.9.5
        aws-c-io           v0.16.0 -> v0.17.0
        aws-c-s3           v0.7.11 -> v0.7.13
        aws-lc             v1.46.1 -> v1.48.4
        s2n                v1.5.13 -> v1.5.14

  - Bring in change that allows HTTP/1 streams of unknown length:
    - awslabs/aws-c-http#506
- Remove hack in Base64 decoded logic, which is no longer necessary due to this change:
  - awslabs/aws-c-common#1188
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TingDaoK TingDaoK TingDaoK approved these changes

@DmitriyMusatkin DmitriyMusatkin DmitriyMusatkin approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@graebm @codecov-commenter @TingDaoK @DmitriyMusatkin