---
- branch: netbsd-8
  date: Fri Jul 13 14:29:15 UTC 2018
  files:
  - new: 1.140.2.3
    old: 1.140.2.2
    path: src/bin/sh/eval.c
    pathrev: src/bin/sh/eval.c@1.140.2.3
    type: modified
  - new: 1.47.2.3
    old: 1.47.2.2
    path: src/bin/sh/exec.c
    pathrev: src/bin/sh/exec.c@1.47.2.3
    type: modified
  - new: 1.24.8.3
    old: 1.24.8.2
    path: src/bin/sh/exec.h
    pathrev: src/bin/sh/exec.h@1.24.8.3
    type: modified
  - new: 1.2.56.1
    old: '1.2'
    path: src/bin/sh/mknodes.sh
    pathrev: src/bin/sh/mknodes.sh@1.2.56.1
    type: modified
  - new: 1.13.26.1
    old: '1.13'
    path: src/bin/sh/nodes.c.pat
    pathrev: src/bin/sh/nodes.c.pat@1.13.26.1
    type: modified
  id: 20180713T142915Z.214ba52c6f2ccbdc42d181771079437631f452d0
  log: "Pull up following revision(s) (requested by kre in ticket #906):\n\n\tbin/sh/eval.c:
    revision 1.155\n\tbin/sh/mknodes.sh: revision 1.3\n\tbin/sh/nodes.c.pat: revision
    1.14\n\tbin/sh/exec.h: revision 1.27\n\tbin/sh/exec.c: revision 1.52\n\nDeal with
    ref after free found by ASAN when a function redefines\nitself, or some other
    function which is still active.\n\nThis was a long known bug (fixed ages ago in
    the FreeBSD sh) which\nhadn't been fixed as in practice, the situation that causes
    the\nproblem simply doesn't arise .. ASAN found it in the sh dotcmd\ntests which
    do have this odd \"feature\" in the way they are written\n(but where it never
    caused a problem, as the tests are so simple\nthat no mem is ever allocated between
    when the old version of the\nfunction was deleted, and when it finished executing,
    so its code\nall remained intact, despite having been freed.)\n\nThe fix is taken
    from the FreeBSD sh.\n\nXXX -- pullup-8 (after a while to ensure no other problems
    arise).\n"
  module: src
  subject: 'CVS commit: [netbsd-8] src/bin/sh'
  unixtime: '1531492155'
  user: martin