feat: Bounds checking for Flatbuf should be enabled in the default build

[CurtHagenlocher]

What's Changed

Enables bounds checking for Flatbuf as input can't generally be trusted.
Adds a test for a malformed column name length.
Makes some fixes required to be able to benchmark the change and demonstrate that there's no significant regression.

Closes #48.

[github-actions]

Documentation preview URL: https://CurtHagenlocher.github.io/arrow-dotnet

If the preview URL doesn't work, you may need to configure your fork repository for preview.
See https://github.com/apache/arrow-dotnet/blob/main/docs/README.md#preview-on-forks for instructions on how to configure.

[adamreeve]

Looks good to me thanks Curt.

[adamreeve]

For reference, this has been added in the upstream Flatbuffers project but not yet released: google/flatbuffers#8673

So we should make sure if we upgrade the bundled Flatbuffers code we do so after that change is released or add it in manually again. The new test should catch this though.

[adamreeve]

Just checking we're happy with leaving UNSAFE_BYTEBUFFER enabled? As far as I understand, bounds checks should prevent any invalid reads and this should be safe in theory, but it means bugs in the Flatbuffers implementation (like missing bounds checks) could still cause memory safety issues. It sounds like this can increase performance significantly though so is worth keeping enabled (https://flatbuffers.dev/languages/c_sharp/#conditional-compilation-symbols).

[CurtHagenlocher]

I didn't try benchmarking without UNSAFE_BYTEBUFFER but I did audit all the code and confirmed that there was only one missing bounds check.