Closed
Bug 534162
Opened 15 years ago
Closed 15 years ago
Fix "nsXMLFragmentContentSink.cpp:612: warning: ‘rv’ may be used uninitialized in this function"
Categories
(Core :: DOM: Core & HTML, defect)
Core
DOM: Core & HTML
Tracking
()
RESOLVED
FIXED
People
(Reporter: dholbert, Assigned: dholbert)
References
Details
(Whiteboard: [build_warning])
Attachments
(1 file)
|
1002 bytes,
patch
|
jst
:
review+
|
Details | Diff | Splinter Review |
GCC 4.3.3 on Linux gives us this warning, when building mozilla-central: > /content/xml/document/src/nsXMLFragmentContentSink.cpp: In member function ‘virtual nsresult nsXHTMLParanoidFragmentSink::AddAttributes(const PRUnichar**, nsIContent*)’: > /content/xml/document/src/nsXMLFragmentContentSink.cpp:612: warning: ‘rv’ may be used uninitialized in this function This looks like a real bug. Snippet of code: 612 nsresult rv; [...] 627 while (*aAtts) { [...] 633 if (IsAttrURI(nodeInfo->NameAtom())) { [...] // Code that sets |rv| 645 } 646 647 if (NS_SUCCEEDED(rv)) { So, if the IsAttrURI check fails, we'll end up reading |rv|'s uninitialized value at line 647. Looks like this bug was introduced in the top chunk of the change linked below -- it removes a line that used to initialize |rv| before we even get to the IsAttrURI check: http://hg.mozilla.org/mozilla-central/diff/ec4733eb1bd8/content/xml/document/src/nsXMLFragmentContentSink.cpp Anyway, this is easily fixable by initializing |rv| to NS_OK in the first place. (which is what it would be when we hit all this code, prior to the change linked above, due to an NS_ENSURE_SUCCESS call that was also removed in that change)
Attachment #417069 -
Flags: review?(jst)
|
Assignee | |
Comment 1•15 years ago
|
||
Taras -- from glancing at bug 450777, it sounds like that bug's patch (which introduced this bug) was generated using an automated tool of some sort. It scares me a bit that our code-generation tools can introduce problems like this one[1] in their generated patches -- is this something we can fix them to detect & avoid? [1] "problems like this one" = deletions of a line that potentially initialized a variable for the first time.
|
||
Comment 2•15 years ago
|
||
Comment on attachment 417069 [details] [diff] [review] fix: initialize rv to NS_OK Good catch!
Attachment #417069 -
Flags: review?(jst) → review+
|
|
Assignee | |
Comment 3•15 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/7c82e36c120c
Status: ASSIGNED → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
|
|
Assignee | |
Updated•14 years ago
|
Whiteboard: [build_warning]
|
||
Updated•5 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•