Fix several C6xxx memory warnings in ANCM.

Author: adityamandaleeka

src/Servers/IIS/AspNetCoreModuleV2/DefaultRules.ruleset

@@ -291,8 +291,8 @@
     <Rule Id="C28736" Action="Error" />
     <Rule Id="C28750" Action="Error" />
     <Rule Id="C28751" Action="Error" />
-    <Rule Id="C6001" Action="None" /> <!-- uninitialized memory -->
-    <Rule Id="C6011" Action="None" /> <!-- Possible null deref -->
+    <Rule Id="C6001" Action="Error" />
+    <Rule Id="C6011" Action="Error" />
     <Rule Id="C6014" Action="Error" />
     <Rule Id="C6029" Action="Error" />
     <Rule Id="C6031" Action="None" /> <!-- Return value ignored: '<func>'. -->
@@ -303,7 +303,7 @@
     <Rule Id="C6064" Action="Error" />
     <Rule Id="C6066" Action="Error" />
     <Rule Id="C6067" Action="Error" />
-    <Rule Id="C6101" Action="None" /> <!-- Returning uninitialized memory -->
+    <Rule Id="C6101" Action="Error" />
     <Rule Id="C6200" Action="Error" />
     <Rule Id="C6201" Action="Error" />
     <Rule Id="C6211" Action="Error" />
@@ -347,7 +347,7 @@
     <Rule Id="C6280" Action="Error" />
     <Rule Id="C6281" Action="Error" />
     <Rule Id="C6282" Action="Error" />
-    <Rule Id="C6283" Action="None" /> <!-- array new with scalar delete -->
+    <Rule Id="C6283" Action="Error" />
     <Rule Id="C6284" Action="Error" />
     <Rule Id="C6285" Action="Error" />
     <Rule Id="C6286" Action="Error" />
@@ -396,8 +396,8 @@
     <Rule Id="C6381" Action="Error" />
     <Rule Id="C6383" Action="Error" />
     <Rule Id="C6384" Action="Error" />
-    <Rule Id="C6385" Action="None" /> <!-- Reading invalid data -->
-    <Rule Id="C6386" Action="None" /> <!-- Overrun -->
+    <Rule Id="C6385" Action="Error" />
+    <Rule Id="C6386" Action="Error" />
     <Rule Id="C6387" Action="None" /> <!-- '<expr>' could be '<val>':  this does not adhere to the specification for the function '<func>' -->
     <Rule Id="C6388" Action="None" /> <!-- '<var>' might not be '<val>':  this does not adhere to the specification for the function '<func>' -->
     <Rule Id="C6400" Action="Error" />

src/Servers/IIS/AspNetCoreModuleV2/IISLib/base64.cpp

@@ -56,6 +56,12 @@ Return Values:
     if (cchEncodedStringSize == 0 && pszEncodedString == nullptr) {
         return ERROR_SUCCESS;
     }
+    else if (pszEncodedString == nullptr)
+    {
+        return ERROR_INVALID_PARAMETER;
+    }
+
+    *pszEncodedString = 0;
 
     if (cchEncodedStringSize < cchEncoded) {
         // Given buffer is too small to hold encoded string.
@@ -66,8 +72,16 @@ Return Values:
     ib = ich = 0;
     while (ib < cbDecodedBufferSize) {
         b0 = pbDecodedBuffer[ib++];
-        b1 = (ib < cbDecodedBufferSize) ? pbDecodedBuffer[ib++] : 0;
-        b2 = (ib < cbDecodedBufferSize) ? pbDecodedBuffer[ib++] : 0;
+        b1 = 0;
+        b2 = 0;
+        if (ib < cbDecodedBufferSize)
+        {
+            b1 = pbDecodedBuffer[ib++];
+        }
+        if (ib < cbDecodedBufferSize)
+        {
+            b2 = pbDecodedBuffer[ib++];
+        }
 
         //
         // The checks below for buffer overflow seems redundant to me.
@@ -126,122 +140,6 @@ Return Values:
 }
 
 
-DWORD
-Base64Decode(
-    __in    PCWSTR      pszEncodedString,
-    __out_opt VOID *      pDecodeBuffer,
-    __in    DWORD       cbDecodeBufferSize,
-    __out_opt DWORD *   pcbDecoded
-    )
-/*++
-
-Routine Description:
-
-    Decode a base64-encoded string.
-
-Arguments:
-
-    pszEncodedString (IN) - base64-encoded string to decode.
-    cbDecodeBufferSize (IN) - size in bytes of the decode buffer.
-    pbDecodeBuffer (OUT) - holds the decoded data.
-    pcbDecoded (OUT) - number of data bytes in the decoded data (if success or
-        STATUS_BUFFER_TOO_SMALL).
-
-Return Values:
-
-    0 - success.
-    E_OUTOFMEMORY
-    E_INVALIDARG
-
---*/
-{
-constexpr auto NA = (255);
-#define DECODE(x) (((ULONG)(x) < sizeof(rgbDecodeTable)) ? rgbDecodeTable[x] : NA)
-
-    static BYTE rgbDecodeTable[128] = {
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA,  // 0-15
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA,  // 16-31
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, 62, NA, NA, NA, 63,  // 32-47
-       52, 53, 54, 55, 56, 57, 58, 59, 60, 61, NA, NA, NA,  0, NA, NA,  // 48-63
-       NA,  0,  1,  2,  3,  4,  5,  6,  7,  8,  9, 10, 11, 12, 13, 14,  // 64-79
-       15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, NA, NA, NA, NA, NA,  // 80-95
-       NA, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,  // 96-111
-       41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, NA, NA, NA, NA, NA,  // 112-127
-    };
-
-    DWORD   cbDecoded;
-    DWORD   cchEncodedSize;
-    DWORD   ich;
-    DWORD   ib;
-    BYTE    b0, b1, b2, b3;
-    BYTE *  pbDecodeBuffer = (BYTE *) pDecodeBuffer;
-
-    cchEncodedSize = (DWORD)wcslen(pszEncodedString);
-    if (nullptr != pcbDecoded) {
-        *pcbDecoded = 0;
-    }
-
-    if ((0 == cchEncodedSize) || (0 != (cchEncodedSize % 4))) {
-        // Input string is not sized correctly to be base64.
-        return ERROR_INVALID_PARAMETER;
-    }
-
-    // Calculate decoded buffer size.
-    cbDecoded = (cchEncodedSize + 3) / 4 * 3;
-    if (pszEncodedString[cchEncodedSize-1] == '=') {
-        if (pszEncodedString[cchEncodedSize-2] == '=') {
-            // Only one data byte is encoded in the last cluster.
-            cbDecoded -= 2;
-        }
-        else {
-            // Only two data bytes are encoded in the last cluster.
-            cbDecoded -= 1;
-        }
-    }
-
-    if (nullptr != pcbDecoded) {
-        *pcbDecoded = cbDecoded;
-    }
-
-    if (cbDecodeBufferSize == 0 && pDecodeBuffer == nullptr) {
-        return ERROR_SUCCESS;
-    }
-
-    if (cbDecoded > cbDecodeBufferSize) {
-        // Supplied buffer is too small.
-        return ERROR_INSUFFICIENT_BUFFER;
-    }
-
-    // Decode each four-byte cluster into the corresponding three data bytes.
-    ich = ib = 0;
-    while (ich < cchEncodedSize) {
-        b0 = DECODE(pszEncodedString[ich]); ich++;
-        b1 = DECODE(pszEncodedString[ich]); ich++;
-        b2 = DECODE(pszEncodedString[ich]); ich++;
-        b3 = DECODE(pszEncodedString[ich]); ich++;
-
-        if ((NA == b0) || (NA == b1) || (NA == b2) || (NA == b3)) {
-            // Contents of input string are not base64.
-            return ERROR_INVALID_PARAMETER;
-        }
-
-        pbDecodeBuffer[ib++] = (b0 << 2) | (b1 >> 4);
-
-        if (ib < cbDecoded) {
-            pbDecodeBuffer[ib++] = (b1 << 4) | (b2 >> 2);
-
-            if (ib < cbDecoded) {
-                pbDecodeBuffer[ib++] = (b2 << 6) | b3;
-            }
-        }
-    }
-
-    DBG_ASSERT(ib == cbDecoded);
-
-    return ERROR_SUCCESS;
-}
-
-
 DWORD
 Base64Encode(
     __in_bcount(cbDecodedBufferSize)    VOID *  pDecodedBuffer,
@@ -295,6 +193,12 @@ Return Values:
     if (cchEncodedStringSize == 0 && pszEncodedString == nullptr) {
         return ERROR_SUCCESS;
     }
+    else if (pszEncodedString == nullptr)
+    {
+        return ERROR_INVALID_PARAMETER;
+    }
+
+    *pszEncodedString = 0;
 
     if (cchEncodedStringSize < cchEncoded) {
         // Given buffer is too small to hold encoded string.
@@ -305,8 +209,16 @@ Return Values:
     ib = ich = 0;
     while (ib < cbDecodedBufferSize) {
         b0 = pbDecodedBuffer[ib++];
-        b1 = (ib < cbDecodedBufferSize) ? pbDecodedBuffer[ib++] : 0;
-        b2 = (ib < cbDecodedBufferSize) ? pbDecodedBuffer[ib++] : 0;
+        b1 = 0;
+        b2 = 0;
+        if (ib < cbDecodedBufferSize)
+        {
+            b1 = pbDecodedBuffer[ib++];
+        }
+        if (ib < cbDecodedBufferSize)
+        {
+            b2 = pbDecodedBuffer[ib++];
+        }
 
         //
         // The checks below for buffer overflow seems redundant to me.
@@ -363,120 +275,3 @@ Return Values:
 
     return ERROR_SUCCESS;
 }
-
-
-DWORD
-Base64Decode(
-    __in    PCSTR       pszEncodedString,
-    __out_opt   VOID *      pDecodeBuffer,
-    __in    DWORD       cbDecodeBufferSize,
-    __out_opt DWORD *   pcbDecoded
-    )
-/*++
-
-Routine Description:
-
-    Decode a base64-encoded string.
-
-Arguments:
-
-    pszEncodedString (IN) - base64-encoded string to decode.
-    cbDecodeBufferSize (IN) - size in bytes of the decode buffer.
-    pbDecodeBuffer (OUT) - holds the decoded data.
-    pcbDecoded (OUT) - number of data bytes in the decoded data (if success or
-        STATUS_BUFFER_TOO_SMALL).
-
-Return Values:
-
-    0 - success.
-    E_OUTOFMEMORY
-    E_INVALIDARG
-
---*/
-{
-#define NA (255)
-#define DECODE(x) (((ULONG)(x) < sizeof(rgbDecodeTable)) ? rgbDecodeTable[x] : NA)
-
-    static BYTE rgbDecodeTable[128] = {
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA,  // 0-15
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA,  // 16-31
-       NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, NA, 62, NA, NA, NA, 63,  // 32-47
-       52, 53, 54, 55, 56, 57, 58, 59, 60, 61, NA, NA, NA,  0, NA, NA,  // 48-63
-       NA,  0,  1,  2,  3,  4,  5,  6,  7,  8,  9, 10, 11, 12, 13, 14,  // 64-79
-       15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, NA, NA, NA, NA, NA,  // 80-95
-       NA, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,  // 96-111
-       41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, NA, NA, NA, NA, NA,  // 112-127
-    };
-
-    DWORD   cbDecoded;
-    DWORD   cchEncodedSize;
-    DWORD   ich;
-    DWORD   ib;
-    BYTE    b0, b1, b2, b3;
-    BYTE *  pbDecodeBuffer = (BYTE *) pDecodeBuffer;
-
-    cchEncodedSize = (DWORD)strlen(pszEncodedString);
-    if (nullptr != pcbDecoded) {
-        *pcbDecoded = 0;
-    }
-
-    if ((0 == cchEncodedSize) || (0 != (cchEncodedSize % 4))) {
-        // Input string is not sized correctly to be base64.
-        return ERROR_INVALID_PARAMETER;
-    }
-
-    // Calculate decoded buffer size.
-    cbDecoded = (cchEncodedSize + 3) / 4 * 3;
-    if (pszEncodedString[cchEncodedSize-1] == '=') {
-        if (pszEncodedString[cchEncodedSize-2] == '=') {
-            // Only one data byte is encoded in the last cluster.
-            cbDecoded -= 2;
-        }
-        else {
-            // Only two data bytes are encoded in the last cluster.
-            cbDecoded -= 1;
-        }
-    }
-
-    if (nullptr != pcbDecoded) {
-        *pcbDecoded = cbDecoded;
-    }
-
-    if (cbDecodeBufferSize == 0 && pDecodeBuffer == nullptr) {
-        return ERROR_SUCCESS;
-    }
-
-    if (cbDecoded > cbDecodeBufferSize) {
-        // Supplied buffer is too small.
-        return ERROR_INSUFFICIENT_BUFFER;
-    }
-
-    // Decode each four-byte cluster into the corresponding three data bytes.
-    ich = ib = 0;
-    while (ich < cchEncodedSize) {
-        b0 = DECODE(pszEncodedString[ich]); ich++;
-        b1 = DECODE(pszEncodedString[ich]); ich++;
-        b2 = DECODE(pszEncodedString[ich]); ich++;
-        b3 = DECODE(pszEncodedString[ich]); ich++;
-
-        if ((NA == b0) || (NA == b1) || (NA == b2) || (NA == b3)) {
-            // Contents of input string are not base64.
-            return ERROR_INVALID_PARAMETER;
-        }
-
-        pbDecodeBuffer[ib++] = (b0 << 2) | (b1 >> 4);
-
-        if (ib < cbDecoded) {
-            pbDecodeBuffer[ib++] = (b1 << 4) | (b2 >> 2);
-
-            if (ib < cbDecoded) {
-                pbDecodeBuffer[ib++] = (b2 << 6) | b3;
-            }
-        }
-    }
-
-    DBG_ASSERT(ib == cbDecoded);
-
-    return ERROR_SUCCESS;
-}
-

src/Servers/IIS/AspNetCoreModuleV2/IISLib/base64.h

@@ -15,14 +15,6 @@ Base64Encode(
     __out_opt DWORD *                           pcchEncoded
     );
 
-DWORD
-Base64Decode(
-    __in    PCWSTR                              pszEncodedString,
-    __out_opt   VOID *                              pDecodeBuffer,
-    __in    DWORD                               cbDecodeBufferSize,
-    __out_opt DWORD *                           pcbDecoded
-    );
-
 DWORD
 Base64Encode(
     __in_bcount( cbDecodedBufferSize ) VOID *   pDecodedBuffer,
@@ -32,13 +24,5 @@ Base64Encode(
     __out_opt DWORD *                           pcchEncoded
     );
 
-DWORD
-Base64Decode(
-    __in    PCSTR                               pszEncodedString,
-    __out_opt   VOID *                              pDecodeBuffer,
-    __in    DWORD                               cbDecodeBufferSize,
-    __out_opt DWORD *                           pcbDecoded
-    );
-
 #endif // _BASE64_HXX_
 

src/Servers/IIS/AspNetCoreModuleV2/IISLib/buffer.h

@@ -259,7 +259,7 @@ C_ASSERT( sizeof(VOID*) <= sizeof(ULONGLONG) );
 //  bytes. If the buffer overflows then a heap buffer will be allocated.
 //
 #define STACK_BUFFER( _name, _size )    \
-    ULONGLONG   __aqw##_name[ ( ( (_size) + sizeof(ULONGLONG) - 1 ) / sizeof(ULONGLONG) ) ]; \
+    ULONGLONG   __aqw##_name[ ( ( (_size) + sizeof(ULONGLONG) - 1 ) / sizeof(ULONGLONG) ) ]{}; \
     BUFFER      _name( (BYTE*)__aqw##_name, sizeof(__aqw##_name) )
 
 //