Emscripten: preamble.js: Pointer_stringify() does not respect length when string is non-ASCII
Regarding: Pointer_stringify(ptr, length)
When the string that ptr points is found to be non-ASCII (the local variable hasUtf is true), UTF8ToString(ptr) is called. Note that the length argument is disregarded in this case. If ptr is not zero terminated, UTF8ToString will basically read outside of the bounds of the buffer.
Related issue: #4693
martijnthe
All 5 comments
Thanks for filing, this does indeed look wrong.
A concrete testcase showing the problem would be useful, if you or someone else wants to make one - we'll want to check that in with the fix anyhow, when we have that.
kripken
on 2 Jan 2018
I think we probably don't want to fix Pointer_stringify at all, but deprecate it and fix the locations that call to it to instead call AsciiToString() or UTF8ToString() directly. Pointer_stringify has a bit of an antipattern of attempting to guess whether the string is 7-bit ASCII or not (and if not, it assumes it would be UTF-8). It's better to directly call either AsciiToString() or UTF8ToString() (or UTF16ToString() or UTF32ToString()) to convert a string with specific encoding to a JS string.
juj
on 3 Jan 2018
AsciiToString doesn't seem to be documented.
I can't quite tell from the code (and can't test now), but is AsciiToString safe for Latin 1 as well? If not could we get a function for that? I've been calling AsciiToString assuming it's safe for Latin 1, which is probably unwise.
curiousdannii
on 3 Jan 2018
How about PointerToString("ascii")? The function then can internally use TextDecoder to support various encodings, and if no TextDecoder then it can fallback to AsciiToString and UTF8ToString.
saschanaz
on 8 Jan 2018
This issue has been automatically marked as stale because there has been no activity in the past year. It will be closed automatically if no further activity occurs in the next 7 days. Feel free to re-open at any time if this issue is still relevant.
![stale[bot] picture](https://avatars.githubusercontent.com/in/1724?v=4&s=40)
stale[bot]
on 19 Sep 2019
Related issues
id01
路
3Comments
juj
路
3Comments
HolgerStrauss
路
4Comments
yahsaves
路
4Comments
lokpoi888
路
4Comments
Most helpful comment
I think we probably don't want to fix
Pointer_stringifyat all, but deprecate it and fix the locations that call to it to instead callAsciiToString()orUTF8ToString()directly.Pointer_stringifyhas a bit of an antipattern of attempting to guess whether the string is 7-bit ASCII or not (and if not, it assumes it would be UTF-8). It's better to directly call eitherAsciiToString()orUTF8ToString()(orUTF16ToString()orUTF32ToString()) to convert a string with specific encoding to a JS string.