date:20121029

Re: dplayx: Reorder some code to avoid memory leaks (coverity)

2012-10-29 Thread Rico Schüller


On 28.10.2012 16:13, André Hentschel wrote:

-  lpGData-lpRemoteData = lpNewData;
+  lpGData-lpRemoteData = HeapAlloc( GetProcessHeap(), HEAP_ZERO_MEMORY, 
sizeof( dwDataSize ) );
+  CopyMemory( lpGData-lpRemoteData, lpData, dwDataSize );
lpGData-dwRemoteDataSize = dwDataSize;



-  lpPData-lpRemoteData = lpNewData;
+  lpPData-lpRemoteData = HeapAlloc( GetProcessHeap(), HEAP_ZERO_MEMORY, 
sizeof( dwDataSize ) );
+  CopyMemory( lpPData-lpRemoteData, lpData, dwDataSize );
lpPData-dwRemoteDataSize = dwDataSize;


Is the HEAP_ZERO_MEMORY really needed? You may kill that too while you 
change those lines.


Cheers
Rico

Re: [PATCH] Potential reference count races

2012-10-29 Thread Jacek Caban

On 10/29/12 01:25, Max TenEyck Woodbury wrote:
 On 10/28/2012 12:06 PM, Nikolay Sivov wrote:
 On 10/28/2012 17:44, Max TenEyck Woodbury wrote:
 On 10/28/2012 02:40 AM, Nikolay Sivov wrote:
 On 10/28/2012 04:59, m...@mtew.isa-geek.net wrote:
 From: Max TenEyck Woodbury m...@mtew.isa-geek.net

 I have been looking at the Microsoft COM and related documentations
 and noticed that they emphatically recommend using the Interlocked...
 functions when manipulating reference counts.  I managed to set up a
 search that showed where many of the reference count updates occur and
 was somewhat surprised at how often this advice was not followed.
 It doesn't mean it always has to be followed.
 True in a limited sense, but there is a good reason behind their
 recommendation.  Unless there is a good reason not to do so, this
 particular piece of advice should be followed.
 COM objects in wine follow this recommendation in general, even object
 itself is not thread safe.
 This doesn't mean however that you need this every time you have some
 kind of refcount of any sort.
 It may or may not be necessary every time, but it should be demonstrated
 that it is not necessary rather than assumed that it is not.  This is a
 'race condition' after all, and they are known to be rare and difficult
 to isolate.  I think it is good practice to assume there could be a race
 problem rather than otherwise.

No, it's a good practice to understand what you're changing instead of
blindly assuming that everything with 'ref' in its name needs
Interlocked* functions. You're patch even changes things in jscript that
are not COM objecst, in a middle of code that is not thread safe anyway.
It's documented that those parts of the code are not thread safe. Even
worse, you were changing lines that even have a comment about no need
for atomic operations (thanks for Michael, who predicted that someone
may send patches like you).

 While I have not converted every reference count update to use the
 Interlocked... functions, this set of patches fixes a fair number of
 them.

 These are not associated with any particular bug report; they are
 simply a general precaution against operations that are known to be
 associated with race conditions.
 This precaution doesn't work in general. It's not enough to atomically
 update refcount to make an implementation thread safe. Also not
 everything is supposed to be thread safe in a first place.

 First, explain what does not have to be thread safe.
 Anything really, COM objects in particular if you were talking about them.

 I think you are talking about the apartment model here, which forces
 thread serialization.  Despite that, the Microsoft documentation still
 recommends interlocked operations on reference counts...

Just to make it clear: using Interlocked* functions in generic COM
object is a good practice. But lack of it is not always a bug and you
shouldn't change it without understanding what you are doing.

 I believe that application may try to use multiple threads anywhere,
 so everything that can be made thread safe, should be.

 No.
 What do you mean 'No'.  That is an opinion,  If you disagree, please
 explain why.

See above.

 Changes like this:

 -for (i=0;ihowmuch;i++)
 +for (i=0;ihowmuch;++i)
TRACE(notify at %d to %p\n,
notify[i].dwOffset,notify[i].hEventNotify);
 are not helpful at all.

 The post increment and decrement operation are specified as saving
 the original value for use in the evaluation of the expression they
 are part of and modifying the underlying stored value.  In expressions
 like this, that saved value is then discarded.  The optimization phase
 of the compilation usually removes both the save and discard operations.
 Sure, but I don't think it's enough to justify such changes all over the
 place, in existing code.

 I agree that it is not enough to justify a separate set of patches, but
 as part of another set of changes, I think it is justified.  After all,
 how else are examples of bad code going to be removed.

This is not a bad coding. You're changing a lot of my code, which uses
my coding style and this style is to use postfix incrementation. I'm not
saying it's better of worse because it's not, so there is no reason to
change it. Your argument about requirement for temporary storage is an
example of bad way to think about the code.

Jacek

Re: crypt32: Avoid double free in CRYPT_LoadSIP on error path (coverity))

2012-10-29 Thread Nikolay Sivov


On 10/29/2012 11:33, Frédéric Delanoy wrote:

FreeLibrary(temp) can be called twice on error.

CID 714004
---


  
  error:

  FreeLibrary(lib);
-FreeLibrary(temp);
+if (temp != NULL) FreeLibrary(temp);
  SetLastError(TRUST_E_SUBJECT_FORM_UNKNOWN);
  return FALSE;
  }

This is useless, FreeLibrary() checks for NULL.

Re: [3/5] d3dx9: Introduce a function for copying pixels.

2012-10-29 Thread Christian Costa


  pixel_format = get_format_info(src_desc.Format);
 -if (pixel_format-type != FORMAT_ARGB)
 -{
 -FIXME(Unsupported pixel format %#x\n, src_desc.Format);
 -return E_NOTIMPL;
 -}
 +if (pixel_format-type == FORMAT_UNKNOWN) return E_NOTIMPL;



 Doesn't this still require a FIXME or at least a WARN?

Re: vbscript: Added support for negative constants

2012-10-29 Thread Marvin

Hi,

While running your changed tests on Windows, I think I found new failures.
Being a bot and all I'm not very good at pattern recognition, so I might be
wrong, but could you please double-check?
Full results can be found at
http://testbot.winehq.org/JobDetails.pl?Key=22550

Your paranoid android.


=== WNT4WSSP6 (32 bit) ===
No test summary line found

=== W2KPROSP4 (32 bit) ===
No test summary line found

=== WXPPROSP3 (32 bit) ===
No test summary line found

=== W2K3R2SESP2 (32 bit) ===
No test summary line found

=== WVISTAADM (32 bit) ===
No test summary line found

=== W2K8SE (32 bit) ===
No test summary line found

=== W7PRO (32 bit) ===
No test summary line found

=== W7PROX64 (32 bit) ===
No test summary line found

=== TEST64_W7SP1 (32 bit) ===
No test summary line found

=== W7PROX64 (64 bit) ===
No test summary line found

=== TEST64_W7SP1 (64 bit) ===
No test summary line found

Re: [3/5] d3dx9: Introduce a function for copying pixels.

2012-10-29 Thread Matteo Bruni

2012/10/29 Christian Costa titan.co...@gmail.com:


  pixel_format = get_format_info(src_desc.Format);
 -if (pixel_format-type != FORMAT_ARGB)
 -{
 -FIXME(Unsupported pixel format %#x\n, src_desc.Format);
 -return E_NOTIMPL;
 -}
 +if (pixel_format-type == FORMAT_UNKNOWN) return E_NOTIMPL;



  Doesn't this still require a FIXME or at least a WARN?


There is still a FIXME in get_format_info(), that's enough I guess.

Re: dplayx: Reorder some code to avoid memory leaks (coverity)

2012-10-29 Thread James Eder

On Mon, Oct 29, 2012 at 2:20 AM, Rico Schüller kgbric...@web.de wrote:
 On 28.10.2012 16:13, André Hentschel wrote:

 -  lpGData-lpRemoteData = lpNewData;
 +  lpGData-lpRemoteData = HeapAlloc( GetProcessHeap(),
 HEAP_ZERO_MEMORY, sizeof( dwDataSize ) );
 +  CopyMemory( lpGData-lpRemoteData, lpData, dwDataSize );
 lpGData-dwRemoteDataSize = dwDataSize;


 -  lpPData-lpRemoteData = lpNewData;
 +  lpPData-lpRemoteData = HeapAlloc( GetProcessHeap(),
 HEAP_ZERO_MEMORY, sizeof( dwDataSize ) );
 +  CopyMemory( lpPData-lpRemoteData, lpData, dwDataSize );
 lpPData-dwRemoteDataSize = dwDataSize;


 Is the HEAP_ZERO_MEMORY really needed? You may kill that too while you
 change those lines.

 Cheers
 Rico


I didn't look at the code too long but, sizeof( dwDataSize ) looks wrong too.


-- 
Jim

Re: gdiplus: fix rounding error (?)

2012-10-29 Thread Vincent Povirk

That was the worst possible defence of this patch, but I think it
should be included.

What it's actually doing is removing the duplicated logic between the
earlier bit of GdipDrawString, where out-of-range sizes are set to 1
 23, and this if statement where we only apply a clipping rectangle
if the sizes are out of range. We could also have added a check for
e.g. scaled_rect.Width = INT_MAX here, but I think it's better that
we don't duplicate the logic.

Re: [PATCH 1/2] msvcp90: set eof state in istream::peek if got eof

2012-10-29 Thread Alexandre Julliard

Daniel Lehman dleh...@esri.com writes:

 +static void test_istream_peek(void)
 +{
 +unsigned short testus, nextus;
 +basic_stringstream_wchar wss;
 +basic_stringstream_char ss;
 +basic_string_wchar wstr;
 +basic_string_char str;
 +IOSB_iostate state;
 +int i, next, peek;
 +wchar_t wide[64];
 +
 +struct _test_istream_peek {
 +const char  *str;
 +int  peek;
 +int  next;
 +IOSB_iostate state;
 +} tests[] = {
 +{ ,   EOF, EOF, IOSTATE_eofbit  },
 +{ ABCDEF, 'A', 'A', IOSTATE_goodbit },
 +};
 +
 +for(i=0; isizeof(tests)/sizeof(tests[0]); i++) {
 +/* char version */
 +call_func2(p_basic_string_char_ctor_cstr, str, tests[i].str);
 +call_func4(p_basic_stringstream_char_ctor_str, ss, str, 
 OPENMODE_out|OPENMODE_in, TRUE);
 +
 +peek  = (int)call_func1(p_basic_istream_char_peek, ss.base.base1);
 +state = (IOSB_iostate)call_func1(p_ios_base_rdstate, 
 ss.basic_ios.base);
 +next  = (int)call_func1(p_basic_istream_char_get, ss.base.base1);

'peek' is not tested anywhere.

-- 
Alexandre Julliard
julli...@winehq.org

Re: [PATCH] kernel32: Implement CompareStringOrdinal.

2012-10-29 Thread Christian Costa


Le 29/10/2012 06:57, Nikolay Sivov a écrit :

On 10/29/2012 00:53, Christian Costa wrote:

---
  dlls/kernel32/kernel32.spec |1 +
  dlls/kernel32/locale.c  |8 
  2 files changed, 9 insertions(+)

diff --git a/dlls/kernel32/kernel32.spec b/dlls/kernel32/kernel32.spec
index b7efa0f..0bd1adc 100644
--- a/dlls/kernel32/kernel32.spec
+++ b/dlls/kernel32/kernel32.spec
@@ -201,6 +201,7 @@
  @ stdcall CompareStringA(long long str long str long)
  @ stdcall CompareStringW(long long wstr long wstr long)
  @ stdcall CompareStringEx(wstr long wstr long wstr long ptr ptr long)
+@ stdcall CompareStringOrdinal(wstr long wstr long long)
  @ stdcall ConnectNamedPipe(long ptr)
  @ stub ConsoleMenuControl
  @ stub ConsoleSubst
diff --git a/dlls/kernel32/locale.c b/dlls/kernel32/locale.c
index c41442c..83de815 100644
--- a/dlls/kernel32/locale.c
+++ b/dlls/kernel32/locale.c
@@ -3047,6 +3047,14 @@ INT WINAPI CompareStringA(LCID lcid, DWORD flags,
  return ret;
  }
+/**
+ *   CompareStringOrdinal(KERNEL32.@)
+ */
+INT WINAPI CompareStringOrdinal(LPCWSTR str1, INT len1, LPCWSTR 
str2, INT len2, BOOL ignore_case)

+{
+return CompareStringEx(NULL, ignore_case ? NORM_IGNORECASE : 0, 
str1, len1, str2, len2, NULL, NULL, 0);

+}
+
/*
   *   lstrcmp (KERNEL32.@)
   *   lstrcmpA(KERNEL32.@)
This is not a way to do it, it doesn't simply work as that. See 
http://msdn.microsoft.com/en-us/library/windows/desktop/dd318144%28v=vs.85%29.aspx

And it need tests of course.




Ok. I will see. Thanks for the link.

Re: crypt32: Avoid double free in CRYPT_LoadSIP on error path (coverity))

2012-10-29 Thread Frédéric Delanoy

On Mon, Oct 29, 2012 at 10:37 AM, Nikolay Sivov bungleh...@gmail.com wrote:
 On 10/29/2012 11:33, Frédéric Delanoy wrote:

 FreeLibrary(temp) can be called twice on error.

 CID 714004
 ---

 error:
   FreeLibrary(lib);
 -FreeLibrary(temp);
 +if (temp != NULL) FreeLibrary(temp);
   SetLastError(TRUST_E_SUBJECT_FORM_UNKNOWN);
   return FALSE;
   }

 This is useless, FreeLibrary() checks for NULL.

Right, although it uses SetLastError( ERROR_INVALID_HANDLE) when it
encounters NULLs
But the return value of FreeLibrary isn't checked, so it probably
doesn't matter much.

Frédéric

Re: [PATCH] wininet: TLS fallback mechanism (take2)

2012-10-29 Thread Alexandre Julliard

Hiroshi Miura miur...@linux.com writes:

 +#ifdef SONAME_LIBSSL
 +/* can't connect if we are already connected */
 +if (connection-ssl_s)
 +{
 +ERR(already connected\n);
 +return ERROR_INTERNET_CANNOT_CONNECT;
 +}
 +
 +/* connect with given TLS options */
 +res = netcon_secure_connect_setup(connection, get_tls_option());
 +if (res == ERROR_SUCCESS)
 +return res;

You missed some #ifdefs, this won't compile.

-- 
Alexandre Julliard
julli...@winehq.org

Re: dplayx: Reorder some code to avoid memory leaks (coverity)

Re: [PATCH] Potential reference count races

Re: crypt32: Avoid double free in CRYPT_LoadSIP on error path (coverity))

Re: [3/5] d3dx9: Introduce a function for copying pixels.

Re: vbscript: Added support for negative constants

Re: [3/5] d3dx9: Introduce a function for copying pixels.

Re: dplayx: Reorder some code to avoid memory leaks (coverity)

Re: gdiplus: fix rounding error (?)

Re: [PATCH 1/2] msvcp90: set eof state in istream::peek if got eof

Re: [PATCH] kernel32: Implement CompareStringOrdinal.

Re: crypt32: Avoid double free in CRYPT_LoadSIP on error path (coverity))

Re: [PATCH] wininet: TLS fallback mechanism (take2)

12 matches

Site Navigation

Mail list logo

Footer information