Page MenuHomeFreeBSD
Differential D54825

xdr_string: don't leak strings with xdr_free
ClosedPublic
Actions

Authored by brooks on Thu, Jan 22, 10:12 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Feb 18, 4:03 PM
Unknown Object (File)
Wed, Feb 18, 4:03 PM
Unknown Object (File)
Sun, Feb 15, 8:55 AM
Unknown Object (File)
Mon, Feb 2, 1:59 AM
Unknown Object (File)
Sun, Feb 1, 2:42 AM
Unknown Object (File)
Sun, Feb 1, 12:07 AM
Unknown Object (File)
Thu, Jan 29, 11:00 PM
Unknown Object (File)
Sun, Jan 25, 12:38 AM
View All 17 Files
Subscribers
imp

Details

Reviewers
kib
markj
Group Reviewers
cheri
Commits
rGe17d7ab869bb: xdr_string: don't leak strings with xdr_free
Summary

Historically (and in a small amount of older software such as OpenAFS),
developers would attempt tofree XDR strings with
xdr_free((xdrproc_t)xdr_string, &string)

This resulted in xdr_free calling xdr_string with only two intentional
arguments and what ever was left in the third argument register. If the
register held a sufficently small number, xdr_string would return FALSE
and not free the string (noone checks the return values).

Software should instead free strings with:
xdr_free((xdrproc_t)xdr_wrapstring, &string)

Because buggy software exists in the wild, act as though xdr_wrapstring
was used in the XDR_FREE case and plug these leaks.

Effort: CHERI upstreaming
Sponsored by: Innovate UK

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
lib/
libc/
xdr/
7 lines
sys/
xdr/
7 lines

Diff 170262

View Options

lib/libc/xdr/xdr.c

Loading...
View Options

sys/xdr/xdr.c

Loading...