OSDN Git Service
(root)
/
android-x86
/
frameworks-native.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
786fab4
)
Free mObjects if no objects left to realloc on resize
author
Michael Wachenschwanz
<mwachens@google.com>
Tue, 4 Jun 2019 00:24:51 +0000
(17:24 -0700)
committer
Arjun Garg
<arjgarg@google.com>
Thu, 11 Jul 2019 19:16:55 +0000
(12:16 -0700)
Bug:
134168436
Bug:
133785589
Bug:
34175893
Test: atest CtsOsTestCases:ParcelTest#testObjectDoubleFree
Change-Id: I82e7e8c7b4206fb45b832a71d174df45edb62710
Merged-In: I82e7e8c7b4206fb45b832a71d174df45edb62710
(cherry picked from commit
edd3e3d8f441131b02e5a78d18babf9d16ef9e6e
)
libs/binder/Parcel.cpp
patch
|
blob
|
history
diff --git
a/libs/binder/Parcel.cpp
b/libs/binder/Parcel.cpp
index
13555fd
..
59a363f
100644
(file)
--- a/
libs/binder/Parcel.cpp
+++ b/
libs/binder/Parcel.cpp
@@
-2709,10
+2709,16
@@
status_t Parcel::continueWrite(size_t desired)
}
release_object(proc, *flat, this, &mOpenAshmemSize);
}
- binder_size_t* objects =
- (binder_size_t*)realloc(mObjects, objectsSize*sizeof(binder_size_t));
- if (objects) {
- mObjects = objects;
+
+ if (objectsSize == 0) {
+ free(mObjects);
+ mObjects = nullptr;
+ } else {
+ binder_size_t* objects =
+ (binder_size_t*)realloc(mObjects, objectsSize*sizeof(binder_size_t));
+ if (objects) {
+ mObjects = objects;
+ }
}
mObjectsSize = objectsSize;
mNextObjectHint = 0;
OSDN Git Service
