Page MenuHomeFreeBSD
Differential D42576

libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13
ClosedPublic
Actions

Authored by jhb on Nov 13 2023, 10:29 PM.
Tags
None
Referenced Files
F86369275: D42576.diff
Wed, Jun 19, 12:42 PM
Unknown Object (File)
Sat, May 25, 8:35 AM
Unknown Object (File)
Sat, May 25, 8:35 AM
Unknown Object (File)
Sat, May 25, 8:31 AM
Unknown Object (File)
Sat, May 25, 8:16 AM
Unknown Object (File)
Mar 13 2024, 12:41 PM
Unknown Object (File)
Mar 10 2024, 6:42 AM
Unknown Object (File)
Mar 10 2024, 6:42 AM
View All 17 Files
Subscribers
imp

Details

Reviewers
emaste
imp
Commits
rG1dcd99610434: libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13
rGb7f7cc25c01a: libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13
Summary

GCC 13 incorrectly thinks a call to free after a failed realloc is a
use after free.

lib/libcasper/services/cap_grp/cap_grp.c: In function 'group_resize':
lib/libcasper/services/cap_grp/cap_grp.c:65:17: error: pointer 'buf' may be used after 'realloc' [-Werror=use-after-free]

65 |                 free(buf);
   |                 ^~~~~~~~~

lib/libcasper/services/cap_grp/cap_grp.c:63:19: note: call to 'realloc' here

63 |         gbuffer = realloc(buf, gbufsize);
   |                   ^~~~~~~~~~~~~~~~~~~~~~

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jhb created this revision.Nov 13 2023, 10:29 PM
Herald added a subscriber: imp. · View Herald TranscriptNov 13 2023, 10:29 PM
jhb requested review of this revision.Nov 13 2023, 10:29 PM
Harbormaster completed remote builds in B54400: Diff 130049.Nov 13 2023, 10:29 PM
jhb added a child revision: D42577: libgpio: Fix type mismatch for gpio_pin_[gs]et.Nov 13 2023, 10:29 PM
emaste accepted this revision.Nov 13 2023, 11:16 PM
This revision is now accepted and ready to land.Nov 13 2023, 11:16 PM
imp accepted this revision.Nov 14 2023, 12:26 AM

I thought this is becoming UB behavior...
But for our implementation it's well defined.

jhb added a comment.Nov 14 2023, 1:03 AM
In D42576#971550, @imp wrote:

I thought this is becoming UB behavior...
But for our implementation it's well defined.

If realloc fails and returns NULL, the original pointer is always valid, that's how realloc is defined in C. There is some discussion about making realloc() with a new size of 0 as UB to permit varying implementations, but that isn't relevant here.

imp added a comment.Nov 14 2023, 4:08 PM
In D42576#971578, @jhb wrote:
In D42576#971550, @imp wrote:

I thought this is becoming UB behavior...
But for our implementation it's well defined.

If realloc fails and returns NULL, the original pointer is always valid, that's how realloc is defined in C. There is some discussion about making realloc() with a new size of 0 as UB to permit varying implementations, but that isn't relevant here.

realloc(p, 0) is slated to be undefined behavior in C23. You are correct... I thought wrong. This all looks good.

Closed by commit rGb7f7cc25c01a: libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13 (authored by jhb). · Explain WhyNov 15 2023, 2:38 AM
This revision was automatically updated to reflect the committed changes.
jhb added a commit: rGb7f7cc25c01a: libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13.
jhb added a commit: rG1dcd99610434: libcasper: Neuter false positive -Wuse-after-free warnings from GCC 13.Jan 3 2024, 5:50 PM

Revision Contents
Changeset List

PathSize
lib/
libcasper/
services/
cap_grp/
3 lines
cap_netdb/
3 lines
cap_pwd/
3 lines

Diff 130111

View Options

lib/libcasper/services/cap_grp/Makefile

Loading...
View Options

lib/libcasper/services/cap_netdb/Makefile

Loading...
View Options

lib/libcasper/services/cap_pwd/Makefile

Loading...