Check AREF and aref_addr subscripts

* src/lisp.h (gc_asize): Move before first use. (AREF, aref_addr): Check subscripts. Co-authored-by: Tino Calancha <tino.calancha@gmail.com>
author: Paul Eggert 2020-06-18 14:01:56 -0700
committer: Paul Eggert 2020-06-18 14:02:42 -0700
commit: fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd (patch)
tree: fb9f54fe04fc6dedb6a95cee4ea77c03c76f19e4
parent: b6c7780bb02465e3af2ccec332fc2d8b79fe7a2a (diff)
download: emacs-fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd.tar.gz
emacs-fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd.zip
1 files changed, 9 insertions, 7 deletions
diff --git a/src/lisp.h b/src/lisp.h
index 34426990882..7b4f484b9b7 100644
--- a/src/lisp.h
+++ b/src/lisp.h
@@ -1672,6 +1672,13 @@ ASIZE (Lisp_Object array)
 }
 INLINE ptrdiff_t
+gc_asize (Lisp_Object array)
+{
+  /* Like ASIZE, but also can be used in the garbage collector.  */
+  return XVECTOR (array)->header.size & ~ARRAY_MARK_FLAG;
+}
+INLINE ptrdiff_t
 PVSIZE (Lisp_Object pv)
 {
  return ASIZE (pv) & PSEUDOVECTOR_SIZE_MASK;
@@ -1853,22 +1860,17 @@ bool_vector_set (Lisp_Object a, EMACS_INT i, bool b)
 INLINE Lisp_Object
 AREF (Lisp_Object array, ptrdiff_t idx)
 {
+  eassert (0 <= idx && idx < gc_asize (array));
  return XVECTOR (array)->contents[idx];
 }
 INLINE Lisp_Object *
 aref_addr (Lisp_Object array, ptrdiff_t idx)
 {
+  eassert (0 <= idx && idx <= gc_asize (array));
  return & XVECTOR (array)->contents[idx];
 }
-INLINE ptrdiff_t
-gc_asize (Lisp_Object array)
-{
-  /* Like ASIZE, but also can be used in the garbage collector.  */
-  return XVECTOR (array)->header.size & ~ARRAY_MARK_FLAG;
-}
 INLINE void
 ASET (Lisp_Object array, ptrdiff_t idx, Lisp_Object val)
 {
author	Paul Eggert	2020-06-18 14:01:56 -0700
committer	Paul Eggert	2020-06-18 14:02:42 -0700
commit	fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd (patch)
tree	fb9f54fe04fc6dedb6a95cee4ea77c03c76f19e4
parent	b6c7780bb02465e3af2ccec332fc2d8b79fe7a2a (diff)
download	emacs-fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd.tar.gz emacs-fbf40c1d903d18286ecd7d2c1d7b117c88a1d5dd.zip