static_array_ref::assign_range assert has to be moved up

Question

static_array_ref::assign_range assert has to be moved up

Closed this issue 5 months ago · 1 comments

In the following code the boundary check assert must be moved before the copy. Otherwise in case of buffer overrun the further application behaviour is undefined.

    SBEPP_CPP20_CONSTEXPR iterator assign_range(R&& r) const
    {
#if SBEPP_HAS_RANGES
        auto res = std::ranges::copy(std::forward<R>(r), begin()).out;
#else
        auto res = std::copy(std::begin(r), std::end(r), begin());
#endif
        SBEPP_ASSERT(res <= end());
        return res;
    }

Answer 1 · 2024-05-10T10:11:24.000Z

Right, it's intentionally UB. The check can't be moved up because res position can be known only after incoming range is consumed because it can be input range whose size can't be efficiently calculated before copy. It's user's responsibility to verify that input fits into the array.