Skip to content

Fix a bug that may cut the ipp->attrs link list #138

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
bt-life wants to merge 2 commits into from
Closed

Fix a bug that may cut the ipp->attrs link list #138

bt-life wants to merge 2 commits into from

Conversation

@bt-life
Copy link

@bt-life bt-life commented Jan 17, 2026
edited
Loading

If the ipp_set_value() function has previously called the ippFindAttribute() function, since ippFindAttribute modifies the ipp->prev pointer, causing prev to point to another attr, it results in the truncation of the ipp->attrs linked list.

Modify the ipp_set_value function to the following idempotent code to reproduce this bug:
image

michaelrsweet
michaelrsweet requested changes Jan 17, 2026
View reviewed changes
Copy link
Member

@michaelrsweet michaelrsweet left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we can keep the optimization by making it a little smarter by checking whether ipp->prev->next == ipp->current. But good catch!

@bt-life bt-life closed this Jan 19, 2026
@michaelrsweet michaelrsweet reopened this Jan 19, 2026
@michaelrsweet
Copy link
Member

michaelrsweet commented Jan 19, 2026

Keeping this open to track the eventual fix (here and in CUPS 2.x).

@michaelrsweet michaelrsweet self-assigned this Jan 19, 2026
@michaelrsweet michaelrsweet added bug Something isn't working priority-low labels Jan 19, 2026
@michaelrsweet michaelrsweet added this to the Stable milestone Jan 19, 2026
michaelrsweet added a commit that referenced this pull request Jan 19, 2026
@michaelrsweet
Fix possible corruption of previous pointer in ipp_t linked list (Issue
adb1863 
#138)
@michaelrsweet
Copy link
Member

michaelrsweet commented Jan 19, 2026

[master adb1863] Fix possible corruption of previous pointer in ipp_t linked list (Issue #138)

and the related changes in the CUPS project:

[master 6c7d9bbab] Fix possible corruption of previous pointer in ipp_t linked list (Issue #138)

[2.4.x dc4407f51] Fix possible corruption of previous pointer in ipp_t linked list.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@michaelrsweet michaelrsweet michaelrsweet requested changes

Assignees

@michaelrsweet michaelrsweet

Labels

bug Something isn't working priority-low

Projects

None yet

Milestone

Stable

Development

Successfully merging this pull request may close these issues.

2 participants

@bt-life @michaelrsweet