Region: Speculative fix for ubsan abort Adds a special case to Region::end() to handle mStorage being empty. By design, this should never happen, but something seems to be causing it to happen, so instead of allowing the ubsan abort to take down SurfaceFlinger, we work around the issue by special-casing size() == 0. Bug: 77643177 Test: By design this shouldn't happen, so it's not yet clear how to write a test to exercise it Change-Id: Ifaae2eb8e89460319e599205cd64f00d120279b8

commit: 2d023068fe99d992933225a6722f3ec5a280fc94 [log] [tgz]
author: Dan Stoza <stoza@google.com> Mon Apr 09 12:14:55 2018 -0700
committer: Dan Stoza <stoza@google.com> Mon Apr 09 12:14:55 2018 -0700
tree: 225fcf2e56fc7f2ddcb01ca44a21af61f87bd865
parent: 7c9764f39fbe1bbd9e9556c9294e490eb37635fc [diff] [blame]
diff --git a/libs/ui/Region.cpp b/libs/ui/Region.cpp
index 36da084..fe4ae6c 100644
--- a/libs/ui/Region.cpp
+++ b/libs/ui/Region.cpp

@@ -838,6 +838,11 @@
 }
 
 Region::const_iterator Region::end() const {
+    // Workaround for b/77643177
+    // mStorage should never be empty, but somehow it is and it's causing
+    // an abort in ubsan
+    if (mStorage.isEmpty()) return mStorage.array();
+
     size_t numRects = isRect() ? 1 : mStorage.size() - 1;
     return mStorage.array() + numRects;
 }
commit	2d023068fe99d992933225a6722f3ec5a280fc94	[log] [tgz]
author	Dan Stoza <stoza@google.com>	Mon Apr 09 12:14:55 2018 -0700
committer	Dan Stoza <stoza@google.com>	Mon Apr 09 12:14:55 2018 -0700
tree	225fcf2e56fc7f2ddcb01ca44a21af61f87bd865
parent	7c9764f39fbe1bbd9e9556c9294e490eb37635fc [diff] [blame]