diff options
| author | Aleš Matěj <amatej@redhat.com> | 2021-07-19 10:56:31 +0300 |
|---|---|---|
| committer | Neal Gompa (ニール・ゴンパ) <ngompa13@gmail.com> | 2021-07-23 17:30:13 +0300 |
| commit | b3cd63eaa04a9182e1ae486aea6047f391890634 (patch) | |
| tree | 9acb953f40b3a60c343981043fdbf90d29dba797 | |
| parent | cb74969736bdea86465e85feeceb895ff7a42610 (diff) | |
Fix additional covscan warnings
- check we actually got a filename in xml parsers and in decompression
function
- use g_malloc0 as we do in other places (it also takes care of checking
if allocation was successful)
| -rw-r--r-- | src/dumper_thread.c | 2 | ||||
| -rw-r--r-- | src/misc.c | 6 | ||||
| -rw-r--r-- | src/xml_parser_filelists.c | 5 | ||||
| -rw-r--r-- | src/xml_parser_primary.c | 5 |
4 files changed, 17 insertions, 1 deletions
diff --git a/src/dumper_thread.c b/src/dumper_thread.c index 119f3bd..ea10c77 100644 --- a/src/dumper_thread.c +++ b/src/dumper_thread.c @@ -562,7 +562,7 @@ cr_dumper_thread(gpointer data, gpointer user_data) // * this isn't the last task // Then: save the task to the buffer - struct BufferedTask *buf_task = malloc(sizeof(struct BufferedTask)); + struct BufferedTask *buf_task = g_malloc0(sizeof(struct BufferedTask)); buf_task->id = task->id; buf_task->res = res; buf_task->pkg = pkg; @@ -622,6 +622,12 @@ cr_decompress_file_with_stat(const char *src, if (!in_dst || g_str_has_suffix(in_dst, "/")) { char *filename = cr_get_filename(src); + if (!filename) { + g_debug("%s: Cannot get filename from: %s", __func__, src); + g_set_error(err, ERR_DOMAIN, CRE_NOFILE, + "Cannot get filename from: %s", src); + return CRE_NOFILE; + } if (g_str_has_suffix(filename, c_suffix)) { filename = g_strndup(filename, strlen(filename) - strlen(c_suffix)); } else { diff --git a/src/xml_parser_filelists.c b/src/xml_parser_filelists.c index f4fe6c0..86ab6c8 100644 --- a/src/xml_parser_filelists.c +++ b/src/xml_parser_filelists.c @@ -259,6 +259,11 @@ cr_end_handler(void *pdata, G_GNUC_UNUSED const xmlChar *element) cr_PackageFile *pkg_file = cr_package_file_new(); pkg_file->name = cr_safe_string_chunk_insert(pd->pkg->chunk, cr_get_filename(pd->content)); + if (!pkg_file->name) { + g_set_error(&pd->err, ERR_DOMAIN, ERR_CODE_XML, + "Invalid <file> element: %s", pd->content); + break; + } pd->content[pd->lcontent - strlen(pkg_file->name)] = '\0'; pkg_file->path = cr_safe_string_chunk_insert_const(pd->pkg->chunk, pd->content); diff --git a/src/xml_parser_primary.c b/src/xml_parser_primary.c index 86e2051..e83eb04 100644 --- a/src/xml_parser_primary.c +++ b/src/xml_parser_primary.c @@ -633,6 +633,11 @@ cr_end_handler(void *pdata, G_GNUC_UNUSED const xmlChar *element) cr_PackageFile *pkg_file = cr_package_file_new(); pkg_file->name = cr_safe_string_chunk_insert(pd->pkg->chunk, cr_get_filename(pd->content)); + if (!pkg_file->name) { + g_set_error(&pd->err, ERR_DOMAIN, ERR_CODE_XML, + "Invalid <file> element: %s", pd->content); + break; + } pd->content[pd->lcontent - strlen(pkg_file->name)] = '\0'; pkg_file->path = cr_safe_string_chunk_insert_const(pd->pkg->chunk, pd->content); |