cocos2d::Data: prevent use after free. #19034
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
PatriceJiang
changed the title
Dimon4eg
reviewed
Sep 11, 2018
|
@PatriceJiang what problem does this PR fix? Could you please add a test case for it? |
|
it is not really a bug. Data d;
d.copy(d.getBytes(), len); //expect to be no side effect |
|
I think it is more reasonable to protect in void Data::clear()
{
if (_bytes)
free(_bytes);
_bytes = nullptr;
_size = 0;
} |
minggo
reviewed
Sep 13, 2018
cocos/base/CCData.cpp
Outdated
| { | ||
| //do not free if bytes == _bytes | ||
| _bytes = nullptr; | ||
| } |
There was a problem hiding this comment.
Why need to set to nullptr here? It seems it has not effect.
There was a problem hiding this comment.
when size == 0 and bytes == _bytes, _bytes should be pointed to nullptr
There was a problem hiding this comment.
But if size == 0, then it means doesn't copy anything.
There was a problem hiding this comment.
yes, this is a better way
Dimon4eg
suggested changes
Sep 13, 2018
|
Now in copy memory leak possible: Data d; |
ssize_t Data::copy(const unsigned char* bytes, const ssize_t size)
{
CCASSERT(size >= 0, "copy size should be non-negative");
if (size <= 0) return 0;
if (bytes != _bytes)
{
clear();
}
else
{
_size = size;
return _size;
}
if (size > 0)
{
_bytes = (unsigned char*)malloc(sizeof(unsigned char) * _size);
memcpy(_bytes, bytes, _size);
}
_size = size;
return _size;
}@Dimon4eg what do you think? |
|
Much better. Just don't like return in the middle of the function. |
minggo
approved these changes
Sep 13, 2018
stevetranby
added a commit
to stevetranby/cocos2d-x
that referenced
this pull request
Oct 1, 2018
…v3-merging * commit 'a59519a4ef567df7aabac77646d49baa4709ff01': (65 commits) [ci skip][AUTO]: updating luabinding & jsbinding & cocos_file.json automatically (cocos2d#19082) Fix several bugs with button's title (cocos2d#19073) [android] fix crash when point JNIEnv is a nullptr in getStringUTFCharsJNI func. (cocos2d#19079) [ci skip][AUTO]: updating luabinding & jsbinding & cocos_file.json automatically (cocos2d#19074) refactor cmake on use libs (cocos2d#19054) [ci skip][AUTO]: updating luabinding & jsbinding & cocos_file.json automatically (cocos2d#19068) [linux] CCFileUtils::isFileExistInternal should reject a folder (cocos2d#19062) Correct last delta time (cocos2d#18898) Add missing <functional> header which the standard requires and will be necessary to use std::function in VS2019. (cocos2d#18989) fix wrong parameter (cocos2d#19060) DrawNode add isolate flag (cocos2d#19056) Android: CCFileUtils listFiles impl (cocos2d#19044) CameraBackgroundDepthBrush should handle opengl recreate event. (cocos2d#19037) [ci skip][AUTO]: updating luabinding & jsbinding & cocos_file.json automatically (cocos2d#19052) shorten the android build path, reduce long path error (cocos2d#19045) CCFileUtils: improve thread safety (use single recursive_mutex) (cocos2d#19046) remove assert (cocos2d#19047) [ci skip][AUTO]: updating luabinding & jsbinding & cocos_file.json automatically (cocos2d#19048) Android: Adds supporting edge screens (cocos2d#19043) cocos2d::Data: prevent use after free. (cocos2d#19034) ... # Conflicts: # build/cocos2d_libs.xcodeproj/project.pbxproj # cocos/3d/Android.mk # cocos/Android.mk # cocos/deprecated/CCDeprecated.h # cocos/editor-support/cocostudio/Android.mk # cocos/editor-support/spine/Android.mk # cocos/platform/android/libcocos2dx-with-controller/build.gradle # cocos/platform/android/libcocos2dx/build.gradle # cocos/ui/UIAbstractCheckButton.cpp # cocos/ui/UIButton.cpp # cocos/ui/UIEditBox/UIEditBox.h # cocos/ui/UIEditBox/UIEditBoxImpl-common.h # extensions/Android.mk # tests/cpp-tests/Classes/NewAudioEngineTest/NewAudioEngineTest.cpp # tests/cpp-tests/Classes/NewAudioEngineTest/NewAudioEngineTest.h
huangwei1024
pushed a commit
to huangwei1024/cocos2d-x
that referenced
this pull request
Jun 20, 2019
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
prevent free
_byteswhen src and dest are identical.