<p>Richard Mudgett has uploaded this change for <strong>review</strong>.</p><p><a href="https://gerrit.asterisk.org/7013">View Change</a></p><pre style="font-family: monospace,monospace; white-space: pre-wrap;">Fix ast_(v)asprintf() malloc failure usage conditions.<br><br>When (v)asprintf() fails, the state of the allocated buffer is undefined.<br>The library had better not leave an allocated buffer as a result or no one<br>will know to free it. The most likely way it can return failure is for an<br>allocation failure. If the printf conversion fails then you actually have<br>a threading problem which is much worse because another thread modified<br>the parameter values.<br><br>* Made __ast_asprintf()/__ast_vasprintf() set the returned buffer to NULL<br>on failure. That is much more useful than either an uninitialized pointer<br>or a pointer that has already been freed. Many uses won't have to check<br>for failure to ensure that the buffer won't be double freed or prevent an<br>attempt to free an uninitialized pointer.<br><br>* stasis.c: Fixed memory leak in multi_object_blob_to_ami() allocated by<br>ast_asprintf().<br><br>* ari/resource_bridges.c:ari_bridges_play_helper(): Remove assignment to<br>the wrong thing which is now not needed even if assigning to the right<br>thing.<br><br>Change-Id: Ib5252fb8850ecf0f78ed0ee2ca0796bda7e91c23<br>---<br>M apps/app_mixmonitor.c<br>M include/asterisk/utils.h<br>M main/db.c<br>M main/json.c<br>M main/stasis.c<br>M main/utils.c<br>M res/ari/resource_bridges.c<br>M res/res_xmpp.c<br>8 files changed, 31 insertions(+), 12 deletions(-)<br><br></pre><pre style="font-family: monospace,monospace; white-space: pre-wrap;">git pull ssh://gerrit.asterisk.org:29418/asterisk refs/changes/13/7013/1</pre><pre style="font-family: monospace,monospace; white-space: pre-wrap;">diff --git a/apps/app_mixmonitor.c b/apps/app_mixmonitor.c<br>index b1579a7..9f14776 100644<br>--- a/apps/app_mixmonitor.c<br>+++ b/apps/app_mixmonitor.c<br>@@ -818,6 +818,8 @@<br> <br> if (ast_asprintf(datastore_id, "%p", mixmonitor_ds) == -1) {<br> ast_log(LOG_ERROR, "Failed to allocate memory for MixMonitor ID.\n");<br>+ ast_free(mixmonitor_ds);<br>+ return -1;<br> }<br> <br> ast_mutex_init(&mixmonitor_ds->lock);<br>diff --git a/include/asterisk/utils.h b/include/asterisk/utils.h<br>index 4a5dbf2..03705b3 100644<br>--- a/include/asterisk/utils.h<br>+++ b/include/asterisk/utils.h<br>@@ -721,7 +721,13 @@<br> <br> DEBUG_CHAOS_RETURN(DEBUG_CHAOS_ALLOC_CHANCE, -1);<br> <br>- if ((res = vasprintf(ret, fmt, ap)) == -1) {<br>+ res = vasprintf(ret, fmt, ap);<br>+ if (res < 0) {<br>+ /*<br>+ * *ret is undefined so set to NULL to ensure it is<br>+ * initialized to something useful.<br>+ */<br>+ *ret = NULL;<br> MALLOC_FAILURE_MSG;<br> }<br> <br>diff --git a/main/db.c b/main/db.c<br>index 4bb9355..ab5f7a0 100644<br>--- a/main/db.c<br>+++ b/main/db.c<br>@@ -193,9 +193,11 @@<br> char *cmd;<br> int res;<br> <br>- ast_asprintf(&cmd, "%s/astdb2sqlite3 '%s'\n", ast_config_AST_SBIN_DIR, ast_config_AST_DB);<br>- res = ast_safe_system(cmd);<br>- ast_free(cmd);<br>+ res = ast_asprintf(&cmd, "%s/astdb2sqlite3 '%s'\n", ast_config_AST_SBIN_DIR, ast_config_AST_DB);<br>+ if (0 <= res) {<br>+ res = ast_safe_system(cmd);<br>+ ast_free(cmd);<br>+ }<br> <br> return res;<br> }<br>diff --git a/main/json.c b/main/json.c<br>index f45d585..057a262 100644<br>--- a/main/json.c<br>+++ b/main/json.c<br>@@ -462,7 +462,7 @@<br> <br> if (format) {<br> int err = ast_vasprintf(&str, format, args);<br>- if (err > 0) {<br>+ if (err >= 0) {<br> ret = json_string(str);<br> ast_free(str);<br> }<br>diff --git a/main/stasis.c b/main/stasis.c<br>index 48e4eb5..2d99805 100644<br>--- a/main/stasis.c<br>+++ b/main/stasis.c<br>@@ -1344,7 +1344,7 @@<br> <br> for (type = 0; type < STASIS_UMOS_MAX; ++type) {<br> for (i = 0; i < AST_VECTOR_SIZE(&multi->snapshots[type]); ++i) {<br>- char *name = "";<br>+ char *name = NULL;<br> void *snapshot = AST_VECTOR_GET(&multi->snapshots[type], i);<br> ami_snapshot = NULL;<br> <br>@@ -1354,11 +1354,11 @@<br> <br> switch (type) {<br> case STASIS_UMOS_CHANNEL:<br>- ami_snapshot = ast_manager_build_channel_state_string_prefix(snapshot, name);<br>+ ami_snapshot = ast_manager_build_channel_state_string_prefix(snapshot, name ?: "");<br> break;<br> <br> case STASIS_UMOS_BRIDGE:<br>- ami_snapshot = ast_manager_build_bridge_state_string_prefix(snapshot, name);<br>+ ami_snapshot = ast_manager_build_bridge_state_string_prefix(snapshot, name ?: "");<br> break;<br> <br> case STASIS_UMOS_ENDPOINT:<br>@@ -1369,6 +1369,7 @@<br> ast_str_append(&ami_str, 0, "%s", ast_str_buffer(ami_snapshot));<br> ast_free(ami_snapshot);<br> }<br>+ ast_free(name);<br> }<br> }<br> <br>diff --git a/main/utils.c b/main/utils.c<br>index 0824a37..0342030 100644<br>--- a/main/utils.c<br>+++ b/main/utils.c<br>@@ -2389,7 +2389,13 @@<br> va_list ap;<br> <br> va_start(ap, fmt);<br>- if ((res = vasprintf(ret, fmt, ap)) == -1) {<br>+ res = vasprintf(ret, fmt, ap);<br>+ if (res < 0) {<br>+ /*<br>+ * *ret is undefined so set to NULL to ensure it is<br>+ * initialized to something useful.<br>+ */<br>+ *ret = NULL;<br> MALLOC_FAILURE_MSG;<br> }<br> va_end(ap);<br>diff --git a/res/ari/resource_bridges.c b/res/ari/resource_bridges.c<br>index 8c058c4..d6a0400 100644<br>--- a/res/ari/resource_bridges.c<br>+++ b/res/ari/resource_bridges.c<br>@@ -387,7 +387,6 @@<br> <br> if (ast_asprintf(playback_url, "/playbacks/%s",<br> stasis_app_playback_get_id(playback)) == -1) {<br>- playback_url = NULL;<br> ast_ari_response_alloc_failed(response);<br> return -1;<br> }<br>diff --git a/res/res_xmpp.c b/res/res_xmpp.c<br>index 6ba4014..1b0ae42 100644<br>--- a/res/res_xmpp.c<br>+++ b/res/res_xmpp.c<br>@@ -3911,8 +3911,11 @@<br> struct ast_json_error error;<br> RAII_VAR(struct ast_json *, jobj, NULL, ast_json_unref);<br> <br>- ast_asprintf(&cmd, "CURL(%s,client_id=%s&client_secret=%s&refresh_token=%s&grant_type=refresh_token)",<br>- url, cfg->oauth_clientid, cfg->oauth_secret, cfg->refresh_token);<br>+ if (ast_asprintf(&cmd,<br>+ "CURL(%s,client_id=%s&client_secret=%s&refresh_token=%s&grant_type=refresh_token)",<br>+ url, cfg->oauth_clientid, cfg->oauth_secret, cfg->refresh_token) < 0) {<br>+ return -1;<br>+ }<br> <br> ast_debug(2, "Performing OAuth 2.0 authentication for client '%s' using command: %s\n",<br> cfg->name, cmd);<br></pre><p>To view, visit <a href="https://gerrit.asterisk.org/7013">change 7013</a>. To unsubscribe, visit <a href="https://gerrit.asterisk.org/settings">settings</a>.</p><div itemscope itemtype="http://schema.org/EmailMessage"><div itemscope itemprop="action" itemtype="http://schema.org/ViewAction"><link itemprop="url" href="https://gerrit.asterisk.org/7013"/><meta itemprop="name" content="View Change"/></div></div>
<div style="display:none"> Gerrit-Project: asterisk </div>
<div style="display:none"> Gerrit-Branch: 13 </div>
<div style="display:none"> Gerrit-MessageType: newchange </div>
<div style="display:none"> Gerrit-Change-Id: Ib5252fb8850ecf0f78ed0ee2ca0796bda7e91c23 </div>
<div style="display:none"> Gerrit-Change-Number: 7013 </div>
<div style="display:none"> Gerrit-PatchSet: 1 </div>
<div style="display:none"> Gerrit-Owner: Richard Mudgett <rmudgett@digium.com> </div>