master 370a386633b 1/4: Pacify -Wanalyzer-null-dereference in sfnt.c

emacs-diffs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

master 370a386633b 1/4: Pacify -Wanalyzer-null-dereference in sfnt.c

From:	Paul Eggert
Subject:	master 370a386633b 1/4: Pacify -Wanalyzer-null-dereference in sfnt.c
Date:	Sun, 19 May 2024 11:58:26 -0400 (EDT)

branch: master
commit 370a386633b081107d30a00463dd0fe8d81b7e0f
Author: Paul Eggert <eggert@cs.ucla.edu>
Commit: Paul Eggert <eggert@cs.ucla.edu>

    Pacify -Wanalyzer-null-dereference in sfnt.c
    
    * src/sfnt.c (sfnt_map_table, sfnt_read_table)
    (sfnt_read_cvar_table): Pacify GCC -Wanalyzer-null-dereference.
    The change to sfnt_read_cvar_table fixes what appears to be
    an actual null-dereference bug.
---
 src/sfnt.c | 34 +++++++++++++---------------------
 1 file changed, 13 insertions(+), 21 deletions(-)

diff --git a/src/sfnt.c b/src/sfnt.c
index 1832082e4f9..8b7392b3af2 100644
--- a/src/sfnt.c
+++ b/src/sfnt.c
@@ -14085,22 +14085,18 @@ sfnt_map_table (int fd, struct sfnt_offset_subtable 
*subtable,
   struct sfnt_table_directory *directory;
   size_t offset, page, map_offset;
   void *data;
-  int i;
 
   /* Find the table in the directory.  */
 
-  for (i = 0; i < subtable->num_tables; ++i)
+  for (int i = 0; ; i++)
     {
-      if (subtable->subtables[i].tag == tag)
-       {
-         directory = &subtable->subtables[i];
-         break;
-       }
+      if (! (i < subtable->num_tables))
+       return 1;
+      directory = &subtable->subtables[i];
+      if (directory->tag == tag)
+       break;
     }
 
-  if (i == subtable->num_tables)
-    return 1;
-
   /* Now try to map the glyph data.  Make sure offset is a multiple of
      the page size.  */
 
@@ -14152,22 +14148,18 @@ sfnt_read_table (int fd, struct sfnt_offset_subtable 
*subtable,
 {
   struct sfnt_table_directory *directory;
   void *data;
-  int i;
 
   /* Find the table in the directory.  */
 
-  for (i = 0; i < subtable->num_tables; ++i)
+  for (int i = 0; ; i++)
     {
-      if (subtable->subtables[i].tag == tag)
-       {
-         directory = &subtable->subtables[i];
-         break;
-       }
+      if (! (i < subtable->num_tables))
+       return NULL;
+      directory = &subtable->subtables[i];
+      if (directory->tag == tag)
+       break;
     }
 
-  if (i == subtable->num_tables)
-    return NULL;
-
   /* Seek to the table.  */
 
   if (lseek (fd, directory->offset, SEEK_SET) != directory->offset)
@@ -15160,7 +15152,7 @@ sfnt_read_cvar_table (int fd, struct 
sfnt_offset_subtable *subtable,
          /* Copy in the shared point numbers instead.  */
          cvar->variation[i].num_points = npoints;
 
-         if (npoints != UINT16_MAX)
+         if (points && npoints != UINT16_MAX)
            {
              if (cvar->variation[i].num_points > cvt->num_elements)
                cvar->variation[i].num_points = cvt->num_elements;

[Prev in Thread]

Current Thread

[Next in Thread]

master updated (1c14ccfee59 -> 98b83bdc9f4), Paul Eggert, 2024/05/19
- master 370a386633b 1/4: Pacify -Wanalyzer-null-dereference in sfnt.c, Paul Eggert <=
- master c07160b8df4 2/4: Update from Gnulib by running admin/merge-gnulib, Paul Eggert, 2024/05/19
- master 9bcd6444083 3/4: Port knuth_hash to odd platforms, Paul Eggert, 2024/05/19
- master 98b83bdc9f4 4/4: Tweak STORE_NUMBER arg type, Paul Eggert, 2024/05/19

Prev by Date: master 1c14ccfee59: ; * lisp/menu-bar.el (kill-this-buffer): Fix typo.
Next by Date: master c07160b8df4 2/4: Update from Gnulib by running admin/merge-gnulib
Previous by thread: master updated (1c14ccfee59 -> 98b83bdc9f4)
Next by thread: master c07160b8df4 2/4: Update from Gnulib by running admin/merge-gnulib
Index(es):
- Date
- Thread