Use checked context for memcpy's like API invocations (#125759)

Validate that the length passed to `Buffer.MemoryCopy`,
`Buffer.BlockCopy`, and `Unsafe.Copy*` doesn't silently overflow.




<!-- START COPILOT CODING AGENT SUFFIX -->

Created from Copilot CLI via the copilot delegate command.

<!-- START COPILOT CODING AGENT TIPS -->
---

🔒 GitHub Advanced Security automatically protects Copilot coding agent
pull requests. You can protect all pull requests by enabling Advanced
Security for your repositories. [Learn more about Advanced
Security.](https://gh.io/cca-advanced-security)

---------

Co-authored-by: EgorBo <egorbo@gmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Author: 3 people

src/libraries/System.Private.CoreLib/src/System/Diagnostics/Tracing/TraceLogging/DataCollector.cs

@@ -194,7 +194,7 @@ internal void AddArray(Array? value, int length, int itemSize)
                 length = ushort.MaxValue;
             }
 
-            int size = length * itemSize;
+            int size = checked(length * itemSize);
             if (this.bufferNesting != 0)
             {
                 this.EnsureBuffer(size + 2);

src/libraries/System.Private.CoreLib/src/System/Diagnostics/Tracing/TraceLogging/FieldMetadata.cs

@@ -206,6 +206,7 @@ public void Encode(ref int pos, byte[]? metadata)
                     if (metadata != null)
                     {
                         Debug.Assert(custom != null);
+                        Debug.Assert(pos >= 0 && this.fixedCount >= 0 && pos <= metadata.Length - this.fixedCount);
                         Buffer.BlockCopy(custom, 0, metadata, pos, this.fixedCount);
                     }
                     pos += this.fixedCount;

src/libraries/System.Private.CoreLib/src/System/Security/SecureString.cs

@@ -441,6 +441,8 @@ internal static unsafe void Copy(UnmanagedBuffer source, UnmanagedBuffer destina
                     return;
                 }
 
+                Debug.Assert(bytesLength <= destination.ByteLength);
+
                 byte* srcPtr = null, dstPtr = null;
                 try
                 {

src/libraries/System.Runtime.InteropServices.JavaScript/src/System/Runtime/InteropServices/JavaScript/JSHostImplementation.cs

@@ -109,25 +109,23 @@ public static async Task<JSObject> CancellationHelper(Task<JSObject> jsTask, Can
         public static unsafe JSFunctionBinding GetMethodSignature(ReadOnlySpan<JSMarshalerType> types, string? functionName, string? moduleName)
         {
             int argsCount = types.Length - 1;
-            int size = JSFunctionBinding.JSBindingHeader.JSMarshalerSignatureHeaderSize + ((argsCount + 2) * sizeof(JSFunctionBinding.JSBindingType));
+            int size = checked(JSFunctionBinding.JSBindingHeader.JSMarshalerSignatureHeaderSize + ((argsCount + 2) * sizeof(JSFunctionBinding.JSBindingType)));
 
             int functionNameBytes = 0;
             int functionNameOffset = 0;
             if (functionName != null)
             {
                 functionNameOffset = size;
-                size += 4;
-                functionNameBytes = functionName.Length * 2;
-                size += functionNameBytes;
+                functionNameBytes = checked(functionName.Length * 2);
+                size = checked(size + 4 + functionNameBytes);
             }
             int moduleNameBytes = 0;
             int moduleNameOffset = 0;
             if (moduleName != null)
             {
                 moduleNameOffset = size;
-                size += 4;
-                moduleNameBytes = moduleName.Length * 2;
-                size += moduleNameBytes;
+                moduleNameBytes = checked(moduleName.Length * 2);
+                size = checked(size + 4 + moduleNameBytes);
             }
 
             // this is never unallocated