Mercurial > vim
view src/testdir/test_cmdmods.vim @ 33802:b857615e5d42 v9.0.2117
patch 9.0.2117: [security] use-after-free in qf_free_items
Commit: https://github.com/vim/vim/commit/567cae2630a51efddc07eacff3b38a295e1f5671
Author: Christian Brabandt <cb@256bit.org>
Date: Sun Nov 19 16:19:27 2023 +0100
patch 9.0.2117: [security] use-after-free in qf_free_items
Problem: [security] use-after-free in qf_free_items
Solution: only access qfpnext, if it hasn't been freed
Coverity discovered a possible use-after-free in qf_free_items. When
freeing the qfline items, we may access freed memory, when qfp ==
qfpnext.
So only access qfpnext, when it hasn't been freed.
Signed-off-by: Christian Brabandt <cb@256bit.org>
| author | Christian Brabandt <cb@256bit.org> |
|---|---|
| date | Tue, 21 Nov 2023 20:15:05 +0100 |
| parents | 5acc0d2cf4f7 |
| children | cda1a8a06777 |
line wrap: on
line source
" Test for all command modifiers in def Test_cmdmods_array() # Get all the command modifiers from ex_cmds.h. var lines = readfile('../ex_cmds.h')->filter((_, l) => l =~ 'ex_wrongmodifier,') var cmds = lines->map((_, v) => substitute(v, '.*"\(\k*\)".*', '\1', '')) # :hide is both a command and a modifier cmds->extend(['hide']) # Get the entries of cmdmods[] in ex_docmd.c edit ../ex_docmd.c var top = search('^} cmdmods[') + 1 var bot = search('^};') - 1 lines = getline(top, bot) var mods = lines->map((_, v) => substitute(v, '.*"\(\k*\)".*', '\1', '')) # Add the other commands that use ex_wrongmodifier. mods->extend([ 'endclass', 'endenum', 'endinterface', 'public', 'static', 'this', ]) # Check the lists are equal. Convert them to a dict to get a clearer error # message. var cmds_dict = {} for v in cmds cmds_dict[v] = 1 endfor var mods_dict = {} for v in mods mods_dict[v] = 1 endfor assert_equal(cmds_dict, mods_dict) bwipe! enddef " vim: shiftwidth=2 sts=2 expandtab