Bugfix: harden hash-next, since it is exposed.

The C code doesn't call hash_next once it returns nil, so it doesn't matter that doing so will dereference a null pointer. But hash_next is now exposed as the Lisp function hash-next. * hash.c (hash_next): If the hash table in the iterator is nil, then return nil, avoiding the dereference of a null pointer.
author: Kaz Kylheku <kaz@kylheku.com> 2015-10-28 06:42:42 -0700
committer: Kaz Kylheku <kaz@kylheku.com> 2015-10-28 06:42:42 -0700
commit: 7e0550b7eb4f9a31954b4e47e6f8097c99022cd7 (patch)
tree: d818b51ab02cfb19023cd71b12550db0b30343ac /hash.c
parent: 20619c589ac74de43e79d7781df17e16d3ee850b (diff)
download: txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.tar.gz
txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.tar.bz2
txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/hash.c b/hash.c
index d6092efa..380a4615 100644
--- a/hash.c
+++ b/hash.c
@@ -703,7 +703,10 @@ val hash_next(val iter)
 {
   struct hash_iter *hi = coerce(struct hash_iter *, cobj_handle(iter, hash_iter_s));
   val hash = hi->hash;
-  struct hash *h = coerce(struct hash *, hash->co.handle);
+  struct hash *h = hash ? coerce(struct hash *, hash->co.handle) : 0;
+
+  if (!h)
+    return nil;
   if (hi->cons)
     hi->cons = cdr(hi->cons);
   while (nilp(hi->cons)) {
author	Kaz Kylheku <kaz@kylheku.com>	2015-10-28 06:42:42 -0700
committer	Kaz Kylheku <kaz@kylheku.com>	2015-10-28 06:42:42 -0700
commit	7e0550b7eb4f9a31954b4e47e6f8097c99022cd7 (patch)
tree	d818b51ab02cfb19023cd71b12550db0b30343ac /hash.c
parent	20619c589ac74de43e79d7781df17e16d3ee850b (diff)
download	txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.tar.gz txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.tar.bz2 txr-7e0550b7eb4f9a31954b4e47e6f8097c99022cd7.zip