From: Matthias Maennich <maennich@google.com>
To: Mark Wielaard <mark@klomp.org>
Cc: elfutils-devel@sourceware.org, kernel-team@android.com
Subject: Re: [PATCH] libelf: decompress: ensure zlib resource cleanup
Date: Mon, 16 Mar 2020 00:42:22 +0100 [thread overview]
Message-ID: <20200315234222.GF21487@google.com> (raw)
In-Reply-To: <cc0b84d62e6438db197c9ce0acc5a6338727cccb.camel@klomp.org>
Hi Mark!
Thanks for the quick response!
On Mon, Mar 16, 2020 at 12:10:51AM +0100, Mark Wielaard wrote:
>Hi Matthias,
>
>On Sun, 2020-03-15 at 23:03 +0100, Matthias Maennich via Elfutils-devel wrote:
>> __libelf_decompress would only cleanup zlib resources via inflateEnd()
>> in case inflating was successful, but would leak memory if not. Fix this
>> by calling inflateEnd() in the error case as well.
>>
>> Fixes: 272018bba1f2 ("libelf: Add elf_compress and elf_compress_gnu.")
>> Signed-off-by: Matthias Maennich <maennich@google.com>
>> ---
>> libelf/elf_compress.c | 1 +
>> 1 file changed, 1 insertion(+)
>>
>> diff --git a/libelf/elf_compress.c b/libelf/elf_compress.c
>> index 244467b5e3ae..beb1834bbbd7 100644
>> --- a/libelf/elf_compress.c
>> +++ b/libelf/elf_compress.c
>> @@ -257,6 +257,7 @@ __libelf_decompress (void *buf_in, size_t size_in, size_t size_out)
>> if (unlikely (zrc != Z_OK) || unlikely (z.avail_out != 0))
>> {
>> free (buf_out);
>> + inflateEnd(&z);
>> __libelf_seterrno (ELF_E_DECOMPRESS_ERROR);
>> return NULL;
>> }
>
>This looks correct at first sight, but...
>
>Just before this hunk we do:
>
> if (likely (zrc == Z_OK))
> zrc = inflateEnd (&z);
>
>So, zrc can be !Z_OK because the earlier inflateEnd() failed, which
>might cause it to call inflateEnd() twice (which might be fine, I
>dunno). Should we maybe ignore the error if inflateEnd() and just call
>it unconditionally before (ignoring its return code)?
>
>So, replace:
> if (... Z_OK) zrc = inflateEnd (&z);
>with unconditionally ending the stream:
> (void)inflateEnd(&z);
>
I prefer your variant (and it was my first version of the patch)
independently from what comes below.
Having said that: I looked up what inflateEnd() does and the worst that
could happen is returning an error that we anyway ignore. So, duplicate
calls are not an issue. Also, for the compression part we call
deflateEnd() via a macro in the same duplicate fashion. Hence I
consistently used the same pattern for inflateEnd(). And last, I wanted
to keep that existing error handling. OTOH, projects (including the
example code of zlib [1]) usually just unconditionally call inflateEnd()
ignoring any error codes. So, your call :-)
Cheers,
Matthias
[1] https://zlib.net/zlib_how.html
>What do you think?
>
>Cheers,
>
>Mark
next prev parent reply other threads:[~2020-03-15 23:42 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-03-15 22:03 Matthias Maennich
2020-03-15 23:10 ` Mark Wielaard
2020-03-15 23:42 ` Matthias Maennich [this message]
2020-03-16 12:05 ` Mark Wielaard
2020-03-16 12:18 ` Mark Wielaard
2020-03-20 11:17 ` [PATCH v2] libelf: {de,}compress: " Matthias Maennich
2020-03-20 17:10 ` Mark Wielaard
2020-04-24 23:28 ` Mark Wielaard
2020-04-27 8:14 ` Matthias Maennich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200315234222.GF21487@google.com \
--to=maennich@google.com \
--cc=elfutils-devel@sourceware.org \
--cc=kernel-team@android.com \
--cc=mark@klomp.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).