Takashi Iwai
4f970fe93d
- Remove hackish modprobe install scripts for auto-loading OSS and sequencer modules (bsc#1136562); it's invoked from systemd unit file included in alsa-utils now - Backport upstream fixes: 0001-pcm-direct-Add-generic-hw_ptr_alignment-function-for.patch 0002-pcm-dshare-Added-hw_ptr_alignment-option-in-configur.patch 0003-pcm-dsnoop-Added-hw_ptr_alignment-option-in-configur.patch 0004-pcm-file-add-support-for-infile-reading-in-non-inter.patch 0005-pcm-file-use-snd_pcm_file_areas_read_infile-for-read.patch 0006-pcm-file-add-missing-unlock-on-early-return.patch 0007-ucm-Add-UCM-profile-for-CX2072X-codec-on-Baytrail-Ch.patch 0008-pcm-add-mmap_begin-callback-to-snd_pcm_fast_ops_t-ap.patch 0009-pcm-file-add-infile-read-support-for-mmap-mode.patch 0010-aserver-fix-resource-leak-coverity.patch 0011-src-conf.c-add-missing-va_end-call-coverity.patch 0012-config-parse_string-fix-the-dynamic-buffer-allocatio.patch 0013-control_shm-remove-duplicate-code-coverity.patch 0014-control_shm-add-missing-socket-close-to-the-error-pa.patch 0015-pcm-fix-memory-leak-in-_snd_pcm_parse_config_chmaps-.patch 0016-pcm_file-call-pclose-correctly-for-popen-coverity.patch 0017-pcm_hw-close-file-descriptor-in-the-error-path-in-sn.patch 0018-rawmidi-use-snd_dlobj_cache_get2-in-rawmidi-open-cov.patch 0019-rawmidi_hw-add-sanity-check-for-the-invalid-stream-a.patch 0020-topology-various-coverity-fixes.patch 0021-ucm-coverity-fixes.patch 0022-pcm_file-coverity-fixes-including-double-locking.patch 0023-topology-next-round-of-coverity-fixes.patch 0024-pcm_file-another-locking-fix-coverity.patch 0025-ucm-another-coverity-fix-in-uc_mgr_config_load.patch - Drop the downstream CX2072X UCM profile, which is replaced with OBS-URL: https://build.opensuse.org/request/show/706089 OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/alsa?expand=0&rev=253
53 lines
1.2 KiB
Diff
53 lines
1.2 KiB
Diff
From 990b1a53ed800caac0bab1c2b7987205569861fe Mon Sep 17 00:00:00 2001
|
|
From: Jaroslav Kysela <perex@perex.cz>
|
|
Date: Fri, 24 May 2019 10:44:49 +0200
|
|
Subject: [PATCH 12/25] config: parse_string() fix the dynamic buffer
|
|
allocation failure code (coverity)
|
|
|
|
Signed-off-by: Jaroslav Kysela <perex@perex.cz>
|
|
---
|
|
src/conf.c | 16 ++++++++++++----
|
|
1 file changed, 12 insertions(+), 4 deletions(-)
|
|
|
|
diff --git a/src/conf.c b/src/conf.c
|
|
index 3a3c91bf4284..3e4b76a34ecf 100644
|
|
--- a/src/conf.c
|
|
+++ b/src/conf.c
|
|
@@ -4747,8 +4747,11 @@ static int parse_string(const char **ptr, char **val)
|
|
return -EINVAL;
|
|
case '\\':
|
|
c = parse_char(ptr);
|
|
- if (c < 0)
|
|
+ if (c < 0) {
|
|
+ if (alloc > bufsize)
|
|
+ free(buf);
|
|
return c;
|
|
+ }
|
|
break;
|
|
default:
|
|
(*ptr)++;
|
|
@@ -4768,12 +4771,17 @@ static int parse_string(const char **ptr, char **val)
|
|
alloc *= 2;
|
|
if (old_alloc == bufsize) {
|
|
buf = malloc(alloc);
|
|
+ if (!buf)
|
|
+ return -ENOMEM;
|
|
memcpy(buf, _buf, old_alloc);
|
|
} else {
|
|
- buf = realloc(buf, alloc);
|
|
+ char *buf2 = realloc(buf, alloc);
|
|
+ if (!buf2) {
|
|
+ free(buf);
|
|
+ return -ENOMEM;
|
|
+ }
|
|
+ buf = buf2;
|
|
}
|
|
- if (!buf)
|
|
- return -ENOMEM;
|
|
}
|
|
buf[idx++] = c;
|
|
}
|
|
--
|
|
2.16.4
|
|
|