Issue 714192 link

Starred by 1 user

Issue metadata

Status:	Untriaged
Owner:	----
Cc:	rockot@google.com
EstimatedDays:	----
NextAction:	----
OS:	----
Pri:	3
Type:	Bug

Null pointer dereference in ipc_mojo_bootstrap

Project Member Reported by csharrison@chromium.org, Apr 21 2017

Issue description

There was an issue where an endpoint client could be dereferenced after the endpoint is detached.

Fix is up here https://codereview.chromium.org/2834493008 but we should add a regression test in a followup.

Project Member

Comment 1 by bugdroid1@chromium.org, Apr 21 2017

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/1af8d6abdae50ae8b8df88c7796a9d042461b4d0

commit 1af8d6abdae50ae8b8df88c7796a9d042461b4d0
Author: csharrison <csharrison@chromium.org>
Date: Fri Apr 21 17:47:23 2017

Fix null pointer dereference in ipc_boostrap

This was being hit when a sync message is dequeued and handled, and the
receiver endpoint immediately destroys itself.

BUG=714192

Review-Url: https://codereview.chromium.org/2834493008
Cr-Commit-Position: refs/heads/master@{#466383}

[modify] https://crrev.com/1af8d6abdae50ae8b8df88c7796a9d042461b4d0/ipc/ipc_mojo_bootstrap.cc

Comment 2 by roc...@chromium.org, Oct 17

Cc: -roc...@chromium.org rockot@google.com

►

Issue 714192 link

Issue metadata

Null pointer dereference in ipc_mojo_bootstrap

Issue description

Comment 1 by bugdroid1@chromium.org, Apr 21 2017

Comment 1 Deleted

Comment 2 by roc...@chromium.org, Oct 17

Comment 2 Deleted

Sign in to add a comment