Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix various Read/WriteConsoleOutput bugs #17567

Merged
merged 1 commit into from
Jul 18, 2024
Merged

Fix various Read/WriteConsoleOutput bugs #17567

merged 1 commit into from
Jul 18, 2024

Conversation

lhecker
Copy link
Member

@lhecker lhecker commented Jul 15, 2024
edited
Loading

Split off from #17510:

  • Viewport::Clamp used std::clamp to calculate the intersection
    between two rectangles. That works for exclusive rectangles,
    because .left == .right indicates an empty rectangle.
    But Viewport is an inclusive one, and so .left == .right is
    non-empty. For instance, if the to-be-clamped rect is fully
    outside the bounding rect, the result is a 1x1 viewport.
    In effect this meant that Viewport::Clamp never clamped so far.
  • The targetArea < targetBuffer.size() check is the wrong way around.
    It should be targetArea > targetBuffer.size().
  • The sourceSize and targetSize checks are incorrect, because the
    rectangles may be non-empty but outside the valid bounding rect.
  • If these sizes were empty, we'd return the requested rectangle which
    is a regression since conhost v1 and violates the API contract.
  • The sourceRect emptiness check is incorrect, because the clamping
    logic before it doesn't actually clamp to the bounding rect.
  • The entire clamping and iteration logic is just overall too complex.

@lhecker lhecker added Product-Conpty For console issues specifically related to conpty Issue-Bug It either shouldn't be doing this or needs an investigation. labels Jul 15, 2024
@lhecker lhecker force-pushed the dev/lhecker/17510-rw-char-info-fix branch from 5116cca to 61b6c72 Compare July 15, 2024 15:09
carlos-zamora
carlos-zamora approved these changes Jul 16, 2024
View reviewed changes
Copy link
Member

@carlos-zamora carlos-zamora left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great! Nice work!

DHowett
DHowett reviewed Jul 17, 2024
View reviewed changes
src/host/ft_host/API_OutputTests.cpp
adjustedRegion = region;
adjustedRegion.Left = -(adjustedRegion.Right + 1);
affected = adjustedRegion;
VERIFY_WIN32_BOOL_FAILED(WriteConsoleOutputW(consoleOutputHandle, buffer.data(), regionDimensions, regionOrigin, &affected));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we don't want the API to fail in this case?

Copy link
Member Author

@lhecker lhecker Jul 17, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, it should succeed, it makes absolutely no sense otherwise. From what I can tell by reading just the source code, this was a regression introduced in Windows Vista, most likely as a crash fix for conhost.

However, the person who wrote the crash fix didn't seem to understand how the code worked.

In Windows 2000, where this code was first added, we had something like this (pseudo-code, comments are mine):

NTSTATUS WriteScreenBuffer(...) {
    // Source buffer empty?
    if (SourceSize.X <= 0 || SourceSize.Y <= 0) {
        return STATUS_SUCCESS;
    }
    // Target area is outside the buffer...
    // ...but it only checks whether it's too far right / below??
    if (psrWriteRegion->Left >= BufferSize.X || psrWriteRegion->Top >= BufferSize.Y) {
        return STATUS_SUCCESS;
    }

    // ... clamping ...

    return WriteRectToScreenBuffer(...);
}

Then in Windows Vista it looks like this:

NTSTATUS WriteScreenBuffer(...) {
    // Source buffer empty?
    if (SourceSize.X <= 0 || SourceSize.Y <= 0) {
        return STATUS_SUCCESS;
    }
    // Target area is outside the buffer...
    // ...but it only checks whether it's too far right / below??
    if (psrWriteRegion->Left >= BufferSize.X || psrWriteRegion->Top >= BufferSize.Y) {
        return STATUS_SUCCESS;
    }

    // ... clamping ...

    // Clamped rect is empty...
    // ...but the check is completely wrong??
    // The clamping logic assumes that the target rect is in bounds!
    if (clamped rect is empty) {
        return STATUS_INVALID_PARAMETER;
    }

    return WriteRectToScreenBuffer(...);
}

What the person who changed this code failed to understand is that the issue isn't a missing clamp-rect check, the issue is that the 2nd if condition is just plain wrong. The clamping logic then relies on the incorrect assumption that the if condition is correct which results in a completely incorrect clamped region (the clamped region can be outside the buffer to the left or above with negative coordinates among others).

In addition to the 2nd if condition returning STATUS_SUCCESS for targets that are too far to the right/below, MSDN also clearly says:

If the rectangle specified by lpWriteRegion lies completely outside the boundaries of the console screen buffer, [...] no data is written. In this case, the function returns [...] lpWriteRegion parameter set such that [it's empty]

...implying that it should also return STATUS_SUCCESS for targets that are too far to the left or top.

DHowett
DHowett reviewed Jul 17, 2024
View reviewed changes
src/host/ft_host/API_OutputTests.cpp
VERIFY_WIN32_BOOL_SUCCEEDED(WriteConsoleOutputW(consoleOutputHandle, buffer.data(), regionDimensions, regionOrigin, &affected));
VERIFY_ARE_EQUAL(shiftedRegion, affected);
VERIFY_ARE_EQUAL(expected, affected);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the actual expected values have changed here. does this have an impact on API consumers?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

To quote the above MSDN link again:

If the rectangle specified by lpWriteRegion lies completely outside the boundaries of the console screen buffer, [...] no data is written. In this case, the function returns [...] such that the Right member is less than the Left, or the Bottom member is less than the Top.

Meanwhile this test asserted that we return the rectangle completely unmodified. It's caused by this branch:

terminal/src/host/directio.cpp

Lines 622 to 628 in ec92892

// If the top and left of the destination we're trying to write it outside the buffer,
// give the original request rectangle back and exit early OK.
if (requestRectangle.Left() >= storageSize.width || requestRectangle.Top() >= storageSize.height)
{
writtenRectangle = requestRectangle;
return S_OK;
}

src/host/directio.cpp
auto& storageBuffer = context.GetActiveBuffer();
const auto storageRectangle = storageBuffer.GetBufferSize();
const auto storageSize = storageRectangle.Dimensions();
const auto clippedRectangle = storageRectangle.Clamp(requestRectangle);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i love that we had Clamp and just... didn't use it.

@DHowett DHowett merged commit 04e677d into main Jul 18, 2024
20 checks passed
@DHowett DHowett deleted the dev/lhecker/17510-rw-char-info-fix branch July 18, 2024 00:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@carlos-zamora carlos-zamora carlos-zamora approved these changes

@DHowett DHowett DHowett approved these changes

Assignees
No one assigned
Labels
Issue-Bug It either shouldn't be doing this or needs an investigation. Product-Conpty For console issues specifically related to conpty
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@lhecker @DHowett @carlos-zamora