Re: Bugs in fillHole ?

bug-gnustep

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bugs in fillHole ?

From:	Richard Frith-Macdonald
Subject:	Re: Bugs in fillHole ?
Date:	Mon, 17 Feb 2003 13:29:18 +0000


On Monday, February 17, 2003, at 12:41  pm, Manuel Guesdon wrote:

Hi,
I've tried valgrind to find memory problems and found problems inGSSTring.m fillHole.
==20804== Invalid read of size 1
==20804==    at 0x40CD337A: fillHole (GSString.m:1065)
==20804== by 0x40CCDFF1:_i_GSMutableString__deleteCharactersInRange_ (GSString.m:2700)==20804== by 0x40573359:_i_GSWDynamicURLString_GSWDynamicURLStringParsing__compose(GSWDynamicURLString.m:328)==20804== by 0x405730A6: _i_GSWDynamicURLString__description(GSWDynamicURLString.m:292)
I get it when
        self->_count=75, index=0, size=75 self->_flags.wide=0
but I don't understand why :-(


A boundary error in the copying code.

I've looked also at STABLE_MEMCPY code and I think memcpy src and dstarguments
are inversed. Aren't they ?


Wow,  how could that bug go unnoticed?

I'll commit a fix to the freeze-1_6_0 branch of CVS

[Prev in Thread]

Current Thread

[Next in Thread]

Bugs in fillHole ?, Manuel Guesdon, 2003/02/17
- Re: Bugs in fillHole ?, Richard Frith-Macdonald <=
  - Re: Bugs in fillHole ?, Richard Frith-Macdonald, 2003/02/17

Prev by Date: Bugs in fillHole ?
Next by Date: Re: Bugs in fillHole ?
Previous by thread: Bugs in fillHole ?
Next by thread: Re: Bugs in fillHole ?
Index(es):
- Date
- Thread