Re: [AD] bugfix in floodfill()

[ Thread Index | Date Index | More lists.liballeg.org/allegro-developers Archives ]

To: alleg-developers@xxxxxxxxxx
Subject: Re: [AD] bugfix in floodfill()
From: Eric Botcazou <ebotcazou@xxxxxxxxxx>
Date: Sat, 11 Oct 2003 17:36:31 +0200

> the following program exploits a bug in floodfill.

Is it remotely exploitable? ;-)

> The problem is a limit of 32767 elements in a linked list, but with this
> evil example the linked list needs a number of elements proportional to the 
> number of pixels on screen.

The mere use of short ints in the structure is evil, but I'm not sure that I 
want to double the memory footprint so let's go for the status quo.

> Patch attached.

@@ -28,7 +28,7 @@
    short flags;                  /* status of the segment */
    short lpos, rpos;             /* left and right ends of segment */
    short y;                      /* y coordinate of the segment */
-   short next;                   /* linked list if several per line */
+   int next;                     /* linked list if several per line */
 } FLOODED_LINE;

Do you think it could be worth while to switch to 'unsigned int'? And you 
could put an ASSERT at the critical point.

-- 
Eric Botcazou

Follow-Ups:
- Re: [AD] bugfix in floodfill()
  - From: Sven Sandberg

References:
- [AD] bugfix in floodfill()
  - From: Sven Sandberg

Messages sorted by: [ date | thread ]
Prev by Date: [AD] bugfix in floodfill()
Next by Date: Re: [AD] bugfix in floodfill()
Previous by thread: [AD] bugfix in floodfill()
Next by thread: Re: [AD] bugfix in floodfill()

Mail converted by MHonArc 2.6.19+

http://listengine.tuxfamily.org/