diff options
| author | Paul Eggert | 2011-07-07 09:58:24 -0700 |
|---|---|---|
| committer | Paul Eggert | 2011-07-07 09:58:24 -0700 |
| commit | 903fe15d9deb28a72075c39dfd6003a2ff1af134 (patch) | |
| tree | 1fbf75b817447631ab392e9adba208680a3cde4d /src/ChangeLog | |
| parent | ac82cc6ad7793d477015227629070cf87c6225b0 (diff) | |
| download | emacs-903fe15d9deb28a72075c39dfd6003a2ff1af134.tar.gz emacs-903fe15d9deb28a72075c39dfd6003a2ff1af134.zip | |
* alloc.c: Integer signedness and overflow fixes.
Do not impose an arbitrary 32-bit limit on malloc sizes when debugging.
(__malloc_size_t): Default to size_t, not to int.
(pure_size, pure_bytes_used_before_overflow, stack_copy_size)
(Fgarbage_collect, mark_object_loop_halt, mark_object):
Prefer ptrdiff_t to size_t when either would do, as we prefer
signed integers.
(XMALLOC_OVERRUN_CHECK_OVERHEAD): New macro.
(xmalloc_overrun_check_header, xmalloc_overrun_check_trailer):
Now const. Initialize with values that are in range even if char
is signed.
(XMALLOC_PUT_SIZE, XMALLOC_GET_SIZE): Remove, replacing with ...
(xmalloc_put_size, xmalloc_get_size): New functions. All uses changed.
These functions do the right thing with sizes > 2**32.
(check_depth): Now ptrdiff_t, not int.
(overrun_check_malloc, overrun_check_realloc, overrun_check_free):
Adjust to new way of storing sizes. Check for size overflow bugs
in rest of code.
(STRING_BYTES_MAX): Adjust to new overheads. The old code was
slightly wrong anyway, as it missed one instance of
XMALLOC_OVERRUN_CHECK_OVERHEAD.
(refill_memory_reserve): Omit needless cast to size_t.
(mark_object_loop_halt): Mark as externally visible.
Diffstat (limited to 'src/ChangeLog')
| -rw-r--r-- | src/ChangeLog | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/src/ChangeLog b/src/ChangeLog index 43d449b459b..f2c318fa84a 100644 --- a/src/ChangeLog +++ b/src/ChangeLog | |||
| @@ -1,5 +1,29 @@ | |||
| 1 | 2011-07-07 Paul Eggert <eggert@cs.ucla.edu> | 1 | 2011-07-07 Paul Eggert <eggert@cs.ucla.edu> |
| 2 | 2 | ||
| 3 | * alloc.c: Integer signedness and overflow fixes. | ||
| 4 | Do not impose an arbitrary 32-bit limit on malloc sizes when debugging. | ||
| 5 | (__malloc_size_t): Default to size_t, not to int. | ||
| 6 | (pure_size, pure_bytes_used_before_overflow, stack_copy_size) | ||
| 7 | (Fgarbage_collect, mark_object_loop_halt, mark_object): | ||
| 8 | Prefer ptrdiff_t to size_t when either would do, as we prefer | ||
| 9 | signed integers. | ||
| 10 | (XMALLOC_OVERRUN_CHECK_OVERHEAD): New macro. | ||
| 11 | (xmalloc_overrun_check_header, xmalloc_overrun_check_trailer): | ||
| 12 | Now const. Initialize with values that are in range even if char | ||
| 13 | is signed. | ||
| 14 | (XMALLOC_PUT_SIZE, XMALLOC_GET_SIZE): Remove, replacing with ... | ||
| 15 | (xmalloc_put_size, xmalloc_get_size): New functions. All uses changed. | ||
| 16 | These functions do the right thing with sizes > 2**32. | ||
| 17 | (check_depth): Now ptrdiff_t, not int. | ||
| 18 | (overrun_check_malloc, overrun_check_realloc, overrun_check_free): | ||
| 19 | Adjust to new way of storing sizes. Check for size overflow bugs | ||
| 20 | in rest of code. | ||
| 21 | (STRING_BYTES_MAX): Adjust to new overheads. The old code was | ||
| 22 | slightly wrong anyway, as it missed one instance of | ||
| 23 | XMALLOC_OVERRUN_CHECK_OVERHEAD. | ||
| 24 | (refill_memory_reserve): Omit needless cast to size_t. | ||
| 25 | (mark_object_loop_halt): Mark as externally visible. | ||
| 26 | |||
| 3 | * xselect.c: Integer signedness and overflow fixes. | 27 | * xselect.c: Integer signedness and overflow fixes. |
| 4 | (Fx_register_dnd_atom, x_handle_dnd_message): | 28 | (Fx_register_dnd_atom, x_handle_dnd_message): |
| 5 | Use ptrdiff_t, not size_t, since we prefer signed. | 29 | Use ptrdiff_t, not size_t, since we prefer signed. |