c/mirror_zfs
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_zfs.git synced 2025-04-06 17:49:11 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix coverity defects: CID 147531 147532 147533 147535

Browse Source 
coverity scan CID:147531,type: Argument cannot be negative
- may copy data with negative size
coverity scan CID:147532,type: resource leaks
- may close a fd which is negative
coverity scan CID:147533,type: resource leaks
- may call pwrite64 with a negative size
coverity scan CID:147535,type: resource leaks
- may call fdopen with a negative fd

Reviewed-by: Richard Laager <rlaager@wiktel.com>
Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov>
Signed-off-by: GeLiXin <ge.lixin@zte.com.cn>
Closes #5176
This commit is contained in:
GeLiXin 2016-10-01 06:47:57 +08:00 committed by Brian Behlendorf
parent ed3ea30fb9
commit 470f12d631
3 changed files with 16 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/libshare/nfs.c Normal file → Executable file
View File

@ -519,6 +519,7 @@ nfs_validate_shareopts(const char *shareopts)
static boolean_t static boolean_t
nfs_is_share_active(sa_share_impl_t impl_share) nfs_is_share_active(sa_share_impl_t impl_share)
{ {
int fd;
char line[512]; char line[512];
char *tab, *cur; char *tab, *cur;
FILE *nfs_exportfs_temp_fp; FILE *nfs_exportfs_temp_fp;
@ -526,7 +527,10 @@ nfs_is_share_active(sa_share_impl_t impl_share)
if (!nfs_available()) if (!nfs_available())
return (B_FALSE); return (B_FALSE);
nfs_exportfs_temp_fp = fdopen(dup(nfs_exportfs_temp_fd), "r"); if ((fd = dup(nfs_exportfs_temp_fd)) == -1)
return (B_FALSE);
nfs_exportfs_temp_fp = fdopen(fd, "r");
if (nfs_exportfs_temp_fp == NULL || if (nfs_exportfs_temp_fp == NULL ||
fseek(nfs_exportfs_temp_fp, 0, SEEK_SET) < 0) { fseek(nfs_exportfs_temp_fp, 0, SEEK_SET) < 0) {

11
lib/libzpool/kernel.c Normal file → Executable file
View File

@ -668,7 +668,11 @@ vn_open(char *path, int x1, int flags, int mode, vnode_t **vpp, int x2, int x3)
* FREAD and FWRITE to the corresponding O_RDONLY, O_WRONLY, and O_RDWR. * FREAD and FWRITE to the corresponding O_RDONLY, O_WRONLY, and O_RDWR.
*/ */
fd = open64(realpath, flags - FREAD, mode); fd = open64(realpath, flags - FREAD, mode);
err = errno; if (fd == -1) {
err = errno;
free(realpath);
return (err);
}
if (flags & FCREAT) if (flags & FCREAT)
(void) umask(old_umask); (void) umask(old_umask);
@ -691,9 +695,6 @@ vn_open(char *path, int x1, int flags, int mode, vnode_t **vpp, int x2, int x3)
free(realpath); free(realpath);
if (fd == -1)
return (err);
if (fstat64_blk(fd, &st) == -1) { if (fstat64_blk(fd, &st) == -1) {
err = errno; err = errno;
close(fd); close(fd);
@ -740,7 +741,7 @@ vn_rdwr(int uio, vnode_t *vp, void *addr, ssize_t len, offset_t offset,
if (uio == UIO_READ) { if (uio == UIO_READ) {
rc = pread64(vp->v_fd, addr, len, offset); rc = pread64(vp->v_fd, addr, len, offset);
if (vp->v_dump_fd != -1) { if (vp->v_dump_fd != -1 && rc != -1) {
int status; int status;
status = pwrite64(vp->v_dump_fd, addr, rc, offset); status = pwrite64(vp->v_dump_fd, addr, rc, offset);
ASSERT(status != -1); ASSERT(status != -1);

7
module/nvpair/nvpair.c Normal file → Executable file
View File

@ -1260,6 +1260,8 @@ nvpair_type_is_array(nvpair_t *nvp)
static int static int
nvpair_value_common(nvpair_t *nvp, data_type_t type, uint_t *nelem, void *data) nvpair_value_common(nvpair_t *nvp, data_type_t type, uint_t *nelem, void *data)
{ {
int value_sz;
if (nvp == NULL || nvpair_type(nvp) != type) if (nvp == NULL || nvpair_type(nvp) != type)
return (EINVAL); return (EINVAL);
@ -1289,8 +1291,9 @@ nvpair_value_common(nvpair_t *nvp, data_type_t type, uint_t *nelem, void *data)
#endif #endif
if (data == NULL) if (data == NULL)
return (EINVAL); return (EINVAL);
bcopy(NVP_VALUE(nvp), data, if ((value_sz = i_get_value_size(type, NULL, 1)) < 0)
(size_t)i_get_value_size(type, NULL, 1)); return (EINVAL);
bcopy(NVP_VALUE(nvp), data, (size_t)value_sz);
if (nelem != NULL) if (nelem != NULL)
*nelem = 1; *nelem = 1;
break; break;