From f7f4606f1d49430473fac376f7e10a5c03fac2c3 Mon Sep 17 00:00:00 2001
From: Tim Culverhouse <tim@timculverhouse.com>
Date: Sat, 11 May 2024 06:38:08 -0500
Subject: [PATCH] window(fill): bounds check the memcpy op

Bounds check our window before performing any direct buffer access. This
affects clear and fill, and allows a window to technically be out of
bounds, but only the visual portion of the window will be filled.
---
 src/Window.zig | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Window.zig b/src/Window.zig
index b63ce04..ec62f89 100644
--- a/src/Window.zig
+++ b/src/Window.zig
@@ -221,9 +221,10 @@ pub fn fill(self: Window, cell: Cell) void {
     } else {
         // Non-contiguous. Iterate over rows an memset
         var row: usize = self.y_off;
-        while (row < (self.height + self.y_off)) : (row += 1) {
+        const last_row = @min(self.height + self.y_off, self.screen.height - self.y_off);
+        while (row < last_row) : (row += 1) {
             const start = self.x_off + (row * self.screen.width);
-            const end = start + self.width;
+            const end = @min(start + self.width, start + (self.screen.width - self.x_off));
             @memset(self.screen.buf[start..end], cell);
         }
     }