Skip to content

Commit

Permalink
mount: fix e_str leak in ext_mount_add
Browse files Browse the repository at this point in the history 
coverity CID 389202:
54int ext_mount_add(char *key, char *val)
 55{
 56        char *e_str;
 57
   1. alloc_fn: Storage is returned from allocation function malloc.
   2. var_assign: Assigning: ___p = storage returned from malloc(strlen(key) + strlen(val) + 8UL).
   3. Condition !___p, taking false branch.
   4. leaked_storage: Variable ___p going out of scope leaks the storage it points to.
   5. var_assign: Assigning: e_str = ({...; ___p;}).
 58        e_str = xmalloc(strlen(key) + strlen(val) + 8);
   6. Condition !e_str, taking false branch.
 59        if (!e_str)
 60                return -1;
...
   7. noescape: Resource e_str is not freed or pointed-to in sprintf.
 73        sprintf(e_str, "mnt[%s]:%s", key, val);
   8. noescape: Resource e_str is not freed or pointed-to in add_external. [show details]
   CID 389202 (#1 of 1): Resource leak (RESOURCE_LEAK)9. leaked_storage: Variable e_str going out of scope leaks the storage it points to.
 74        return add_external(e_str);
 75}

We need to free e_str after add_external used it.

v2: use cleanup_free attribute (@adrianreber)

Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
  • Loading branch information
@Snorch @avagin
Snorch authored and avagin committed Apr 29, 2022
1 parent be78b85 commit 2747bb2
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion criu/mount.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,7 @@ static LIST_HEAD(delayed_unbindable);

int ext_mount_add(char *key, char *val)
{
char *e_str;
cleanup_free char *e_str = NULL;

e_str = xmalloc(strlen(key) + strlen(val) + 8);
if (!e_str)
Expand Down

0 comments on commit 2747bb2

Please sign in to comment.