8 May
2008
8 May
'08
8:24 p.m.
"Maarten Lankhorst" m.b.lankhorst@gmail.com writes:
It copies str->Length + sizeof(WCHAR) to the destination buffer according to james' testcases. So it definitely looks like a bug to me if it would copy data beyond MaximumLength, since only up to MaximumLength is guaranteed to be allocated. Of course you're right that my fix is likely wrong, the >= max should probablly be changed to
max, otherwise it would return STATUS_BUFFER_OVERFLOW wrongly.
And that's exactly what the existing code is doing (except if MaximumLength is odd but that makes no sense for a WCHAR buffer).
--
Alexandre Julliard
julliard@winehq.org