Closed Bug 1313846 Opened 6 years ago Closed 6 years ago

Compile with ASAN enabled fails because of uninitialized variable in lib/jar/jarfile.c

Categories

(NSS :: Libraries, defect)

Product:
NSS
Component:
Libraries
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: catdesk, Assigned: catdesk, Mentored)

Details

Attachments

(1 file)

0001-Bug-1313846-Declare-it-NULL-earlier.-r-franziskus.patch
719 bytes, patch
franziskus
: review+
Details | Diff | Splinter Review 
When running:

USE_ASAN=1 USE_64=1 make nss_build_all

Errors with:

make[2]: Entering directory '/home/user/dev/nss/lib/jar'
cc -o Linux3.16_x86_64_cc_glibc_PTH_ASAN_64_DBG.OBJ/jarfile.o -c -g -O1 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -fsanitize=address  -fno-omit-frame-pointer -fno-optimize-sibling-calls -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -DDEBUG -UNDEBUG -DDEBUG_user -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I../../../dist/Linux3.16_x86_64_cc_glibc_PTH_ASAN_64_DBG.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss  jarfile.c
jarfile.c: In function ‘jar_listzip’:
jarfile.c:805:19: error: ‘it’ may be used uninitialized in this function [-Werror=maybe-uninitialized]
     if (phy && it == NULL)
                   ^
cc1: all warnings being treated as errors
../../coreconf/rules.mk:392: recipe for target 'Linux3.16_x86_64_cc_glibc_PTH_ASAN_64_DBG.OBJ/jarfile.o' failed

        Attachment #8805769 -
        Flags: review?(franziskuskiefer)

    
    

    
  
Good catch! I'm not able to reproduce this but it is a bug and we should definitely fix it.
What compiler are you using?
Flags: needinfo?(catdesk)
Assignee: nobody → catdesk

    
    

    
  
(In reply to Franziskus Kiefer [:fkiefer or :franziskus] from comment #2)
> Good catch! I'm not able to reproduce this but it is a bug and we should
> definitely fix it.
> What compiler are you using?

gcc (Debian 4.9.2-10) 4.9.2

    
    

    
  
(In reply to catdesk from comment #3)
> (In reply to Franziskus Kiefer [:fkiefer or :franziskus] from comment #2)
> > Good catch! I'm not able to reproduce this but it is a bug and we should
> > definitely fix it.
> > What compiler are you using?
> 
> gcc (Debian 4.9.2-10) 4.9.2

ugh, that's old ;) But 4.9 is ok to use.

I landed the patch as https://hg.mozilla.org/projects/nss/rev/b9ef971b94ab110302d49255339077bc1b4aed7f

I'm closing this one because it's fixed. But you could try to build it again and see if you find any other bugs of this type.
Status: UNCONFIRMED → RESOLVED
Closed: 6 years ago
Flags: needinfo?(catdesk)
Resolution: --- → FIXED
Target Milestone: --- → 3.28

        Attachment #8805769 -
        Flags: review?(franziskuskiefer) → review+

          You need to log in
          before you can comment on or make changes to this bug.