From 8212ddd1d1db1b4b5e2930d50ea395b16df23f55 Mon Sep 17 00:00:00 2001
From: Ciaran Moore <ciaran.f.moore@gmail.com>
Date: Tue, 17 Sep 2024 17:05:15 +0100
Subject: [PATCH] Add bounds checking to prevent overflow warnings during
 build.

---
 util/src/inet.cpp | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/util/src/inet.cpp b/util/src/inet.cpp
index c05506674..755cd6e60 100644
--- a/util/src/inet.cpp
+++ b/util/src/inet.cpp
@@ -379,8 +379,16 @@ int php_driver_parse_ip_address(char *in, CassInet *inet) {
         int src_pos = compress_pos + move_len - i - 1;
         int dst_pos = CASS_INET_V6_LENGTH - i - 1;
 
-        address[dst_pos] = address[src_pos];
-        address[src_pos] = 0;
+        // Bounds check for src_pos and dst_pos to prevent string overflow
+        if (src_pos >= 0 && src_pos < CASS_INET_V6_LENGTH && dst_pos >= 0 && dst_pos < CASS_INET_V6_LENGTH) {
+          address[dst_pos] = address[src_pos];
+          address[src_pos] = 0;
+        } else {
+          // Throw exception if out of bounds
+          zend_throw_exception_ex(php_driver_invalid_argument_exception_ce, 0,
+                              "Index out of bounds: src_pos = %d, dst_pos = %d, array size = %d",
+                              src_pos, dst_pos, CASS_INET_V6_LENGTH);
+        }
       }
     }