Skip to content

cfg_dupopt_array fixes #131

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Mar 10, 2020
Merged

cfg_dupopt_array fixes #131

merged 5 commits into from
Mar 10, 2020

Conversation

peda-r
Copy link
Contributor

@peda-r peda-r commented Dec 2, 2019

I noticed that comments where not strdup-ed, which would lead to use -after-free and eventually a double-free, if/when both the copy and the original try to free the same comment. I think this is perhaps not normally a problem because comments are not used heavily?

The second patch similarly prevents use-after-free and double-free if the dupopt operation fails in the middle. Failure should be rare though.

@peda-r
In cfg_dupopt_array, make copies of possible comments
16bf272 
This prevents double-free when cleaning up.

Signed-off-by: Peter Rosin <peda@axentia.se>
@troglobit
Copy link
Collaborator

I guess we should combine this PR with the proposed fix to a memory leak mentioned in #129. Would you mind having a look at that too?

Other than that I have no objections, clean fixes, separated in logical commits 👍

@peda-r
Copy link
Contributor Author

peda-r commented Dec 4, 2019

They could be combined, but that's seems like a separate issue. Related perhaps, but separate. Maybe you're asking me to extend this pull request? However, I'm not sure what email address "doublex" wants to use as git author, and doing so would invalidate my branch name when that comment leak is in the "wrong" function. I'll add a comment to #129 with my take on that issue though...

peda-r added 4 commits March 10, 2020 12:46
@peda-r
Add test triggering broken CFG_PTR_CB handling
cb037b3 
Signed-off-by: Peter Rosin <peda@axentia.se>
@peda-r
Make CFG_PTR_CB not trigger a segfault in e.g. cfg_free().
3c6236d 
CFG_PTR_CB makes use of the def.parsed field, but that field is only
duplicated for lists and functions. Since cfg_free_opt_array() frees
all fields unconditionally, this patch matches that and takes the safe
route by duplicating all fields, regardless of option flags and option
type.

The fields that are duplicated unconditionally should be empty if they
are not used, so there should be no memory thrown away by duplicating
stuff that is not needed.

Signed-off-by: Peter Rosin <peda@axentia.se>
@peda-r
In cfg_dupopt_array, avoid trashing the original on failure
db6e84d 
Signed-off-by: Peter Rosin <peda@axentia.se>
@peda-r
Clarify cfg_dupopt_array()
9666f8d 
Without copies of ptrs to the old dynamically allocated memory from the new
opt array, it is now possible to avoid ternary operators and double tests,
and thus get more idiomatic code that is still reasonably compact.

Signed-off-by: Peter Rosin <peda@axentia.se>
@peda-r peda-r force-pushed the dupopt-array-fixes branch from 4d045b2 to 9666f8d Compare March 10, 2020 12:01
@peda-r
Copy link
Contributor Author

peda-r commented Mar 10, 2020

Ok, I realized that my patch "In cfg_dupopt_array, avoid trashing the original on failure" actually interfered with CFG_PTR_CB handling, but when I dug into that I found serious issues with CFG_PTR_CB. So, I inserted a test and a fix for that and force-pushed after an additional patch simplifying cfg_dupopt_array() a bit. Reordering things like that made the unexpected interference between my original patch and CFG_PTR_CB vanish.

@troglobit
Copy link
Collaborator

Looks good, merging!

@troglobit troglobit merged commit 4a5e769 into libconfuse:master Mar 10, 2020
@peda-r peda-r deleted the dupopt-array-fixes branch March 13, 2020 18:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@peda-r @troglobit