* [PATCH] apply: fix segfault @ 2008-02-11 22:28 Johannes Schindelin 2008-02-11 23:06 ` Junio C Hamano 0 siblings, 1 reply; 4+ messages in thread From: Johannes Schindelin @ 2008-02-11 22:28 UTC (permalink / raw) To: git, gitster When the patch reports a line number that is larger than the number of lines in the current version of the file, git-apply used to segfault. This fixes it. Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de> --- This just happened to me. builtin-apply.c | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/builtin-apply.c b/builtin-apply.c index 4578542..ca7096f 100644 --- a/builtin-apply.c +++ b/builtin-apply.c @@ -1830,7 +1830,7 @@ static int find_pos(struct image *img, return try_lno; again: - if (backwards_lno == 0 && forwards_lno == img->nr) + if (backwards_lno == 0 && forwards_lno >= img->nr) break; if (i & 1) { -- 1.5.4.1264.gb53928 ^ permalink raw reply related [flat|nested] 4+ messages in thread
* Re: [PATCH] apply: fix segfault 2008-02-11 22:28 [PATCH] apply: fix segfault Johannes Schindelin @ 2008-02-11 23:06 ` Junio C Hamano 2008-02-11 23:28 ` Junio C Hamano 2008-02-11 23:48 ` Junio C Hamano 0 siblings, 2 replies; 4+ messages in thread From: Junio C Hamano @ 2008-02-11 23:06 UTC (permalink / raw) To: Johannes Schindelin; +Cc: git, gitster Johannes Schindelin <Johannes.Schindelin@gmx.de> writes: > When the patch reports a line number that is larger than the number of > lines in the current version of the file, git-apply used to segfault. I have to wonder if the correct fix should be like this instead. Under that condition, I think computation of the initial "try" value already oversteps the line[] array for the original image. diff --git a/builtin-apply.c b/builtin-apply.c index 2b8ba81..177f541 100644 --- a/builtin-apply.c +++ b/builtin-apply.c @@ -1809,6 +1809,9 @@ static int find_pos(struct image *img, else if (match_end) line = img->nr - preimage->nr; + if (line > preimage->nr) + line = preimage->nr; + try = 0; for (i = 0; i < line; i++) try += img->line[i].len; ^ permalink raw reply related [flat|nested] 4+ messages in thread
* Re: [PATCH] apply: fix segfault 2008-02-11 23:06 ` Junio C Hamano @ 2008-02-11 23:28 ` Junio C Hamano 2008-02-11 23:48 ` Junio C Hamano 1 sibling, 0 replies; 4+ messages in thread From: Junio C Hamano @ 2008-02-11 23:28 UTC (permalink / raw) To: Johannes Schindelin; +Cc: git Junio C Hamano <gitster@pobox.com> writes: > Johannes Schindelin <Johannes.Schindelin@gmx.de> writes: > >> When the patch reports a line number that is larger than the number of >> lines in the current version of the file, git-apply used to segfault. > > I have to wonder if the correct fix should be like this > instead. Under that condition, I think computation of the > initial "try" value already oversteps the line[] array for the > original image. With tests... builtin-apply.c | 3 ++ t/t4105-apply-fuzz.sh | 60 +++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 63 insertions(+), 0 deletions(-) diff --git a/builtin-apply.c b/builtin-apply.c index 2b8ba81..177f541 100644 --- a/builtin-apply.c +++ b/builtin-apply.c @@ -1809,6 +1809,9 @@ static int find_pos(struct image *img, else if (match_end) line = img->nr - preimage->nr; + if (line > preimage->nr) + line = preimage->nr; + try = 0; for (i = 0; i < line; i++) try += img->line[i].len; diff --git a/t/t4105-apply-fuzz.sh b/t/t4105-apply-fuzz.sh new file mode 100755 index 0000000..9c2a9f5 --- /dev/null +++ b/t/t4105-apply-fuzz.sh @@ -0,0 +1,60 @@ +#!/bin/sh + +test_description='apply with fuzz and offset' + +. ./test-lib.sh + +dotest () { + + name="$1" && shift && + + test_expect_success "$name" " + git checkout-index -f -q -u file && + git apply $* && + diff -u expect file + " + +} + +test_expect_success setup ' + + for i in 1 2 3 4 5 6 7 8 9 10 11 12 + do + echo $i + done >file && + git update-index --add file && + for i in 1 2 3 4 5 6 7 a b c d e 8 9 10 11 12 + do + echo $i + done >file && + cat file >expect && + git diff >O0.diff && + + sed -e "s/@@ -5,6 +5,11 @@/@@ -2,6 +2,11 @@/" >O1.diff O0.diff && + sed -e "s/@@ -5,6 +5,11 @@/@@ -7,6 +7,11 @@/" >O2.diff O0.diff && + sed -e "s/@@ -5,6 +5,11 @@/@@ -19,6 +19,11 @@/" >O3.diff O0.diff && + + sed -e "s/^ 5/ S/" >F0.diff O0.diff && + sed -e "s/^ 5/ S/" >F1.diff O1.diff && + sed -e "s/^ 5/ S/" >F2.diff O2.diff && + sed -e "s/^ 5/ S/" >F3.diff O3.diff + +' + +dotest 'unmodified patch' O0.diff + +dotest 'minus offset' O1.diff + +dotest 'plus offset' O2.diff + +dotest 'big offset' O3.diff + +dotest 'fuzz with no offset' -C2 F0.diff + +dotest 'fuzz with minus offset' -C2 F1.diff + +dotest 'fuzz with plus offset' -C2 F2.diff + +dotest 'fuzz with big offset' -C2 F3.diff + +test_done ^ permalink raw reply related [flat|nested] 4+ messages in thread
* Re: [PATCH] apply: fix segfault 2008-02-11 23:06 ` Junio C Hamano 2008-02-11 23:28 ` Junio C Hamano @ 2008-02-11 23:48 ` Junio C Hamano 1 sibling, 0 replies; 4+ messages in thread From: Junio C Hamano @ 2008-02-11 23:48 UTC (permalink / raw) To: Johannes Schindelin; +Cc: git, gitster Junio C Hamano <gitster@pobox.com> writes: > Johannes Schindelin <Johannes.Schindelin@gmx.de> writes: > >> When the patch reports a line number that is larger than the number of >> lines in the current version of the file, git-apply used to segfault. > > I have to wonder if the correct fix should be like this > instead. Under that condition, I think computation of the > initial "try" value already oversteps the line[] array for the > original image. > > diff --git a/builtin-apply.c b/builtin-apply.c > index 2b8ba81..177f541 100644 > --- a/builtin-apply.c > +++ b/builtin-apply.c > @@ -1809,6 +1809,9 @@ static int find_pos(struct image *img, > else if (match_end) > line = img->nr - preimage->nr; > > + if (line > preimage->nr) > + line = preimage->nr; > + > try = 0; > for (i = 0; i < line; i++) > try += img->line[i].len; Sorry, obviously the check should be against img->nr not the preimage. ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2008-02-11 23:49 UTC | newest] Thread overview: 4+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2008-02-11 22:28 [PATCH] apply: fix segfault Johannes Schindelin 2008-02-11 23:06 ` Junio C Hamano 2008-02-11 23:28 ` Junio C Hamano 2008-02-11 23:48 ` Junio C Hamano
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for NNTP newsgroup(s).