Null pointer deref in FlushAllOutput with 1.19-rc1 ?
Keith Packard
keithp at keithp.com
Wed Nov 2 20:42:40 UTC 2016
Olivier Fourdan <ofourdan at redhat.com> writes:
>> FlushAllOutput() in /usr/src/debug/xorg-server-20160929/os/io.c:612
>> Dispatch() in /usr/src/debug/xorg-server-20160929/dix/dispatch.c:3491
>> dix_main() in /usr/src/debug/xorg-server-20160929/dix/main.c:296
I have a theory about how this is happening -- events may be delivered
during client shutdown but after CloseDownClient removed the client from
the output_pending queue. Moving this call until after clientGone is
set, and then making output_pending_mark check that flag before queueing
it will avoid that problem.
A patch has been sent to the list, any idea how we can test this?
--
-keith
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 800 bytes
Desc: not available
URL: <https://lists.x.org/archives/xorg-devel/attachments/20161102/71881709/attachment.sig>
More information about the xorg-devel
mailing list