Closed
Bug 1167531
Opened 10 years ago
Closed 10 years ago
Uninitialised value uses relating to GonkDisplayJB::GonkDisplayJB
Categories
(Core Graveyard :: Widget: Gonk, defect)
Tracking
(firefox41 fixed)
RESOLVED
FIXED
mozilla41
| Tracking | Status | |
|---|---|---|
| firefox41 | --- | fixed |
People
(Reporter: jseward, Assigned: jseward)
Details
Attachments
(2 files)
|
5.03 KB,
text/plain
|
Details | |
|
925 bytes,
patch
|
mwu
:
review+
|
Details | Diff | Splinter Review |
GonkDisplayJB::GonkDisplayJB allocates a secondary structure
GonkDisplayJB.cpp:132
mList = (hwc_display_contents_1_t *)malloc(sizeof(*mList) + (sizeof(hwc_layer_1_t)*2));
Some but not all of mList's many fields are filled in in GonkDisplayJB::Post.
It appears that some of these fields (5, I suspect) are used uninitialised
shortly thereafter.
|
Assignee | |
Comment 1•10 years ago
|
||
|
|
Assignee | |
Comment 2•10 years ago
|
||
* Allocates mList using calloc so as to ensure that all fields are defined
* [optional cleanup] sets GonkDisplayJB::{mWidth,mHeight} right at the
start of GonkDisplayJB::GonkDisplayJB so as to make it obvious to all
that these fields have an initial value regardless of the control flow
in the constructor body.
|
|
Assignee | |
Updated•10 years ago
|
Attachment #8609262 -
Flags: review?(mwu)
|
||
Updated•10 years ago
|
Attachment #8609262 -
Flags: review?(mwu) → review+
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla41
|
||
Updated•7 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•