Add bounds check and get rid of allocation for set_{user,owner}_password (#142)

ginnyTheCat · web-flow · commit b15384820bd0 · 2025-05-24T12:10:04.000+08:00
diff --git a/src/pdf/document.rs b/src/pdf/document.rs
@@ -10,8 +10,8 @@ use num_enum::TryFromPrimitive;
 
 use crate::pdf::{PdfGraftMap, PdfObject, PdfPage};
 use crate::{
-    context, Buffer, CjkFontOrdering, Destination, DestinationKind, Document, Error, Font, Image,
-    Outline, Point, SimpleFontEncoding, Size, WriteMode,
+    context, Buffer, CjkFontOrdering, Destination, DestinationKind, Document, Error, FilePath,
+    Font, Image, Outline, Point, SimpleFontEncoding, Size, WriteMode,
 };
 
 bitflags! {
@@ -202,11 +202,15 @@ impl PdfWriteOptions {
     }
 
     pub fn set_owner_password(&mut self, pwd: &str) -> &mut Self {
-        let len = pwd.len() + 1;
-        let c_pwd = CString::new(pwd).unwrap();
+        assert!(pwd.len() < self.inner.opwd_utf8.len());
         unsafe {
-            ptr::copy_nonoverlapping(c_pwd.as_ptr(), self.inner.opwd_utf8.as_mut_ptr(), len);
+            ptr::copy_nonoverlapping(
+                pwd.as_ptr().cast(),
+                self.inner.opwd_utf8.as_mut_ptr(),
+                pwd.len(),
+            );
         }
+        self.inner.opwd_utf8[pwd.len()] = 0;
         self
     }
 
@@ -216,11 +220,15 @@ impl PdfWriteOptions {
     }
 
     pub fn set_user_password(&mut self, pwd: &str) -> &mut Self {
-        let len = pwd.len() + 1;
-        let c_pwd = CString::new(pwd).unwrap();
+        assert!(pwd.len() < self.inner.upwd_utf8.len());
         unsafe {
-            ptr::copy_nonoverlapping(c_pwd.as_ptr(), self.inner.upwd_utf8.as_mut_ptr(), len);
+            ptr::copy_nonoverlapping(
+                pwd.as_ptr().cast(),
+                self.inner.upwd_utf8.as_mut_ptr(),
+                pwd.len(),
+            );
         }
+        self.inner.upwd_utf8[pwd.len()] = 0;
         self
     }
 }
@@ -245,8 +253,8 @@ impl PdfDocument {
         }
     }
 
-    pub fn open(filename: &str) -> Result<Self, Error> {
-        let doc = Document::open(filename)?;
+    pub fn open<P: AsRef<FilePath> + ?Sized>(p: &P) -> Result<Self, Error> {
+        let doc = Document::open(p)?;
         Self::try_from(doc)
     }
 

Original file line number	Diff line number	Diff line change
`@@ -10,8 +10,8 @@ use num_enum::TryFromPrimitive;`
`10`	`10`
`11`	`11`	`use crate::pdf::{PdfGraftMap, PdfObject, PdfPage};`
`12`	`12`	`use crate::{`
`13`		`- context, Buffer, CjkFontOrdering, Destination, DestinationKind, Document, Error, Font, Image,`
`14`		`- Outline, Point, SimpleFontEncoding, Size, WriteMode,`
	`13`	`+ context, Buffer, CjkFontOrdering, Destination, DestinationKind, Document, Error, FilePath,`
	`14`	`+ Font, Image, Outline, Point, SimpleFontEncoding, Size, WriteMode,`
`15`	`15`	`};`
`16`	`16`
`17`	`17`	`bitflags! {`
`@@ -202,11 +202,15 @@ impl PdfWriteOptions {`
`202`	`202`	`}`
`203`	`203`
`204`	`204`	`pub fn set_owner_password(&mut self, pwd: &str) -> &mut Self {`
`205`		`- let len = pwd.len() + 1;`
`206`		`- let c_pwd = CString::new(pwd).unwrap();`
	`205`	`+ assert!(pwd.len() < self.inner.opwd_utf8.len());`
`207`	`206`	`unsafe {`
`208`		`- ptr::copy_nonoverlapping(c_pwd.as_ptr(), self.inner.opwd_utf8.as_mut_ptr(), len);`
	`207`	`+ ptr::copy_nonoverlapping(`
	`208`	`+ pwd.as_ptr().cast(),`
	`209`	`+ self.inner.opwd_utf8.as_mut_ptr(),`
	`210`	`+ pwd.len(),`
	`211`	`+ );`
`209`	`212`	`}`
	`213`	`+ self.inner.opwd_utf8[pwd.len()] = 0;`
`210`	`214`	`self`
`211`	`215`	`}`
`212`	`216`
`@@ -216,11 +220,15 @@ impl PdfWriteOptions {`
`216`	`220`	`}`
`217`	`221`
`218`	`222`	`pub fn set_user_password(&mut self, pwd: &str) -> &mut Self {`
`219`		`- let len = pwd.len() + 1;`
`220`		`- let c_pwd = CString::new(pwd).unwrap();`
	`223`	`+ assert!(pwd.len() < self.inner.upwd_utf8.len());`
`221`	`224`	`unsafe {`
`222`		`- ptr::copy_nonoverlapping(c_pwd.as_ptr(), self.inner.upwd_utf8.as_mut_ptr(), len);`
	`225`	`+ ptr::copy_nonoverlapping(`
	`226`	`+ pwd.as_ptr().cast(),`
	`227`	`+ self.inner.upwd_utf8.as_mut_ptr(),`
	`228`	`+ pwd.len(),`
	`229`	`+ );`
`223`	`230`	`}`
	`231`	`+ self.inner.upwd_utf8[pwd.len()] = 0;`
`224`	`232`	`self`
`225`	`233`	`}`
`226`	`234`	`}`
`@@ -245,8 +253,8 @@ impl PdfDocument {`
`245`	`253`	`}`
`246`	`254`	`}`
`247`	`255`
`248`		`- pub fn open(filename: &str) -> Result<Self, Error> {`
`249`		`- let doc = Document::open(filename)?;`
	`256`	`+ pub fn open<P: AsRef<FilePath> + ?Sized>(p: &P) -> Result<Self, Error> {`
	`257`	`+ let doc = Document::open(p)?;`
`250`	`258`	`Self::try_from(doc)`
`251`	`259`	`}`
`252`	`260`