line-log: use COPY_ARRAY to fix mis-sized memcpy

vegard · gitster · commit 07f546cda5d8 · 2017-03-06T12:01:02.000-08:00
This memcpy meant to get the sizeof a "struct range", not a
"range_set", as the former is what our array holds. Rather
than swap out the types, let's convert this site to
COPY_ARRAY, which avoids the problem entirely (and confirms
that the src and dst types match).

Note for curiosity's sake that this bug doesn't trigger on
I32LP64 systems, but does on ILP32 systems. The mistaken
"struct range_set" has two ints and a pointer. That's 16
bytes on LP64, or 12 on ILP32. The correct "struct range"
type has two longs, which is also 16 on LP64, but only 8 on
ILP32.

Likewise an IL32P64 system would experience the bug.

Signed-off-by: Jeff King &lt;peff@peff.net&gt;
Signed-off-by: Vegard Nossum &lt;vegard.nossum@oracle.com&gt;
Signed-off-by: Junio C Hamano &lt;gitster@pobox.com&gt;
diff --git a/line-log.c b/line-log.c
@@ -43,9 +43,10 @@ void range_set_release(struct range_set *rs)
 static void range_set_copy(struct range_set *dst, struct range_set *src)
 {
 	range_set_init(dst, src->nr);
-	memcpy(dst->ranges, src->ranges, src->nr*sizeof(struct range_set));
+	COPY_ARRAY(dst->ranges, src->ranges, src->nr);
 	dst->nr = src->nr;
 }
+
 static void range_set_move(struct range_set *dst, struct range_set *src)
 {
 	range_set_release(dst);

Original file line number	Diff line number	Diff line change
`@@ -43,9 +43,10 @@ void range_set_release(struct range_set *rs)`
`43`	`43`	`static void range_set_copy(struct range_set dst, struct range_set src)`
`44`	`44`	`{`
`45`	`45`	`range_set_init(dst, src->nr);`
`46`		`- memcpy(dst->ranges, src->ranges, src->nr*sizeof(struct range_set));`
	`46`	`+ COPY_ARRAY(dst->ranges, src->ranges, src->nr);`
`47`	`47`	`dst->nr = src->nr;`
`48`	`48`	`}`
	`49`	`+`
`49`	`50`	`static void range_set_move(struct range_set dst, struct range_set src)`
`50`	`51`	`{`
`51`	`52`	`range_set_release(dst);`