From 6b50bdde0add6a0cad7999178b01534c7d4da348 Mon Sep 17 00:00:00 2001 From: koekeishiya Date: Fri, 14 Feb 2020 13:21:35 +0100 Subject: [PATCH] #412 fixed an issue that caused some window events to trigger a signal with an invalid window --- CHANGELOG.md | 1 + src/event.c | 130 ++++++++++++++++++++++++++------------------------- 2 files changed, 67 insertions(+), 64 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 07d7a238..fa65a153 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -11,6 +11,7 @@ This project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.htm ### Changed - Allow use of *DISPLAY_SEL* and *SPACE_SEL* for specifying display and space in rules [#378](https://github.com/koekeishiya/yabai/issues/378) - Extend *space --move* command to operate on *SPACE_SEL* instead of prev/next. However, the selected and given space must belong to the same display [#127](https://github.com/koekeishiya/yabai/issues/127) +- Fixed issue where some window event would trigger a signal with an invalid window causing an invalid memory access [#412](https://github.com/koekeishiya/yabai/issues/412) ## [2.2.3] - 2020-02-12 ### Changed diff --git a/src/event.c b/src/event.c index fe6451b3..58544ced 100644 --- a/src/event.c +++ b/src/event.c @@ -44,7 +44,7 @@ static void event_signal_populate_args(void *context, enum event_type type, stru snprintf(args->name[0], sizeof(args->name[0]), "%s", "YABAI_WINDOW_ID"); snprintf(args->value[0], sizeof(args->value[0]), "%d", wid); args->entity = window_manager_find_window(&g_window_manager, wid); - args->param1 = window_title(args->entity); + if (args->entity) args->param1 = window_title(args->entity); } break; case WINDOW_DESTROYED: { uint32_t wid = (uint32_t)(uintptr_t) context; @@ -61,7 +61,7 @@ static void event_signal_populate_args(void *context, enum event_type type, stru snprintf(args->name[0], sizeof(args->name[0]), "%s", "YABAI_WINDOW_ID"); snprintf(args->value[0], sizeof(args->value[0]), "%d", wid); args->entity = window_manager_find_window(&g_window_manager, wid); - args->param1 = window_title(args->entity); + if (args->entity) args->param1 = window_title(args->entity); } break; case SPACE_CHANGED: { snprintf(args->name[0], sizeof(args->name[0]), "%s", "YABAI_SPACE_ID"); @@ -341,40 +341,41 @@ static EVENT_CALLBACK(EVENT_HANDLER_APPLICATION_TERMINATED) struct process *process = context; struct application *application = window_manager_find_application(&g_window_manager, process->pid); - if (application) { - debug("%s: %s\n", __FUNCTION__, process->name); - window_manager_remove_application(&g_window_manager, application->pid); - - int window_count = 0; - struct window **window_list = window_manager_find_application_windows(&g_window_manager, application, &window_count); - if (!window_list) goto end; + if (!application) { + debug("%s: %s (not observed)\n", __FUNCTION__, process->name); + return EVENT_FAILURE; + } - for (int i = 0; i < window_count; ++i) { - struct window *window = window_list[i]; - if (!window) continue; + debug("%s: %s\n", __FUNCTION__, process->name); + window_manager_remove_application(&g_window_manager, application->pid); - struct view *view = window_manager_find_managed_window(&g_window_manager, window); - if (view) { - space_manager_untile_window(&g_space_manager, view, window); - window_manager_remove_managed_window(&g_window_manager, window->id); - window_manager_purify_window(&g_window_manager, window); - } + int window_count = 0; + struct window **window_list = window_manager_find_application_windows(&g_window_manager, application, &window_count); + if (!window_list) goto end; - if (g_mouse_state.window == window) g_mouse_state.window = NULL; + for (int i = 0; i < window_count; ++i) { + struct window *window = window_list[i]; + if (!window) continue; - window_manager_remove_window(&g_window_manager, window->id); - window_destroy(window); + struct view *view = window_manager_find_managed_window(&g_window_manager, window); + if (view) { + space_manager_untile_window(&g_space_manager, view, window); + window_manager_remove_managed_window(&g_window_manager, window->id); + window_manager_purify_window(&g_window_manager, window); } - free(window_list); + if (g_mouse_state.window == window) g_mouse_state.window = NULL; -end: - application_unobserve(application); - application_destroy(application); - } else { - debug("%s: %s (not observed)\n", __FUNCTION__, process->name); + window_manager_remove_window(&g_window_manager, window->id); + window_destroy(window); } + free(window_list); + +end: + application_unobserve(application); + application_destroy(application); + return EVENT_SUCCESS; } @@ -383,8 +384,8 @@ static EVENT_CALLBACK(EVENT_HANDLER_APPLICATION_TERMINATED) static EVENT_CALLBACK(EVENT_HANDLER_APPLICATION_FRONT_SWITCHED) { struct process *process = context; - struct application *application = window_manager_find_application(&g_window_manager, process->pid); + if (!application) { window_manager_add_lost_front_switched_event(&g_window_manager, process->pid); return EVENT_FAILURE; @@ -556,42 +557,43 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_CREATED) window_manager_set_window_opacity(&g_window_manager, window, g_window_manager.normal_window_opacity); window_manager_purify_window(&g_window_manager, window); - if (window_observe(window)) { - debug("%s: %s %d\n", __FUNCTION__, window->application->name, window->id); - window_manager_add_window(&g_window_manager, window); - window_manager_apply_rules_to_window(&g_space_manager, &g_window_manager, window); - - if ((!application->is_hidden) && (!window->is_minimized) && (!window->is_fullscreen) && (!window->rule_manage)) { - if (window->rule_fullscreen) { - window->rule_fullscreen = false; - } else if ((!window_level_is_standard(window)) || - (!window_is_standard(window)) || - (!window_can_move(window)) || - (window_is_sticky(window)) || - (!window_can_resize(window) && window_is_undersized(window))) { - window_manager_make_children_floating(&g_window_manager, window, true); - window_manager_make_floating(&g_window_manager, window->id, true); - window->is_floating = true; - } - } - - if (window_manager_should_manage_window(window) && !window_manager_find_managed_window(&g_window_manager, window)) { - struct view *view = space_manager_tile_window_on_space(&g_space_manager, window, window_space(window)); - window_manager_add_managed_window(&g_window_manager, window, view); - } - - if (window_manager_find_lost_focused_event(&g_window_manager, window->id)) { - struct event *event = event_create(&g_event_loop, WINDOW_FOCUSED, (void *)(intptr_t) window->id); - event_loop_post(&g_event_loop, event); - window_manager_remove_lost_focused_event(&g_window_manager, window->id); - } - } else { + if (!window_observe(window)) { debug("%s: could not observe %s %d\n", __FUNCTION__, window->application->name, window->id); window_manager_make_children_floating(&g_window_manager, window, true); window_manager_make_floating(&g_window_manager, window->id, true); window_manager_remove_lost_focused_event(&g_window_manager, window->id); window_unobserve(window); window_destroy(window); + return EVENT_FAILURE; + } + + debug("%s: %s %d\n", __FUNCTION__, window->application->name, window->id); + window_manager_add_window(&g_window_manager, window); + window_manager_apply_rules_to_window(&g_space_manager, &g_window_manager, window); + + if ((!application->is_hidden) && (!window->is_minimized) && (!window->is_fullscreen) && (!window->rule_manage)) { + if (window->rule_fullscreen) { + window->rule_fullscreen = false; + } else if ((!window_level_is_standard(window)) || + (!window_is_standard(window)) || + (!window_can_move(window)) || + (window_is_sticky(window)) || + (!window_can_resize(window) && window_is_undersized(window))) { + window_manager_make_children_floating(&g_window_manager, window, true); + window_manager_make_floating(&g_window_manager, window->id, true); + window->is_floating = true; + } + } + + if (window_manager_should_manage_window(window) && !window_manager_find_managed_window(&g_window_manager, window)) { + struct view *view = space_manager_tile_window_on_space(&g_space_manager, window, window_space(window)); + window_manager_add_managed_window(&g_window_manager, window, view); + } + + if (window_manager_find_lost_focused_event(&g_window_manager, window->id)) { + struct event *event = event_create(&g_event_loop, WINDOW_FOCUSED, (void *)(intptr_t) window->id); + event_loop_post(&g_event_loop, event); + window_manager_remove_lost_focused_event(&g_window_manager, window->id); } return EVENT_SUCCESS; @@ -634,7 +636,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_FOCUSED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } if (window_is_minimized(window)) { @@ -683,7 +685,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_MOVED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } if (window->application->is_hidden) return EVENT_SUCCESS; @@ -705,7 +707,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_RESIZED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } if (window->application->is_hidden) return EVENT_SUCCESS; @@ -766,7 +768,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_MINIMIZED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } debug("%s: %s %d\n", __FUNCTION__, window->application->name, window->id); @@ -796,7 +798,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_DEMINIMIZED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); window_manager_remove_lost_focused_event(&g_window_manager, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } window->is_minimized = false; @@ -831,7 +833,7 @@ static EVENT_CALLBACK(EVENT_HANDLER_WINDOW_TITLE_CHANGED) if (!__sync_bool_compare_and_swap(window->id_ptr, &window->id, &window->id)) { debug("%s: %d has been marked invalid by the system, ignoring event..\n", __FUNCTION__, window_id); - return EVENT_SUCCESS; + return EVENT_FAILURE; } debug("%s: %s %d\n", __FUNCTION__, window->application->name, window->id);