Merge pull request #1221 from jan-cerny/master

Merge maint-1.2

Author: jan-cerny

src/CVRF/cvrf_priv.c

@@ -1659,7 +1659,9 @@ struct cvrf_score_set *cvrf_score_set_parse(xmlTextReaderPtr reader) {
 		if (xmlStrcmp(xmlTextReaderConstLocalName(reader), TAG_VECTOR) == 0) {
 			score_set->vector = oscap_element_string_copy(reader);
 		} else if (xmlStrcmp(xmlTextReaderConstLocalName(reader), TAG_PRODUCT_ID) == 0) {
-			oscap_stringlist_add_string(score_set->product_ids, oscap_element_string_copy(reader));
+			char *product_id = oscap_element_string_copy(reader);
+			oscap_stringlist_add_string(score_set->product_ids, product_id);
+			free(product_id);
 		} else if (xmlStrcmp(xmlTextReaderConstLocalName(reader), TAG_BASE_SCORE) == 0) {
 			cvrf_score_set_add_metric(score_set, CVSS_BASE, oscap_element_string_copy(reader));
 		} else if (xmlStrcmp(xmlTextReaderConstLocalName(reader), TAG_ENVIRONMENTAL_SCORE) == 0) {
@@ -2336,7 +2338,6 @@ struct cvrf_index *cvrf_index_parse_xml(struct oscap_source *index_source) {
 	}
 	struct cvrf_index *index = cvrf_index_new();
 	cvrf_index_set_index_file(index, oscap_source_readable_origin(index_source));
-	oscap_source_free(index_source);
 	return index;
 }
 

src/OVAL/probes/SEAP/seap-command-backendS.c

@@ -85,6 +85,20 @@ static Stable_t *Stable_new (size_t capacity)
         return (t);
 }
 
+static void Stable_free(Stable_t *table)
+{
+	size_t i;
+	if (table != NULL) {
+		for (i = 0; i < table->t_size; ++i) {
+			if (table->t_recs[i].c_size > 0)
+				free(table->t_recs[i].c_recs);
+		}
+
+		free(table->t_recs);
+		free(table);
+	}
+}
+
 static int Stable_add (Stable_t *t, SEAP_cmdrec_t *r)
 {
         Stable_rec_t *t_r;
@@ -137,10 +151,11 @@ int  SEAP_cmdtbl_backendS_add (SEAP_cmdtbl_t *t, SEAP_cmdrec_t *r)
                 n = Stable_new (SEAP_CMDTBL_LARGE_TRESHOLD);
                 ret = SEAP_cmdtbl_backendL_apply (t, &Stable_conv, (void *)n);
 
-                if (ret != 0) {
-                        SEAP_cmdtbl_backendS_free (t);
-                        return (ret);
-                }
+		if (ret != 0) {
+			SEAP_cmdtbl_backendS_free(t);
+			Stable_free(n);
+			return ret;
+		}
 
                 SEAP_cmdtbl_backendL_free (t);
                 t->table = n;
@@ -179,24 +194,16 @@ int  SEAP_cmdtbl_backendS_cmp (SEAP_cmdrec_t *a, SEAP_cmdrec_t *b)
         return (a->code - b->code);
 }
 
-void SEAP_cmdtbl_backendS_free (SEAP_cmdtbl_t *t)
+void SEAP_cmdtbl_backendS_free(SEAP_cmdtbl_t *t)
 {
-        size_t    i;
         Stable_t *St;
-        
+
         St = (Stable_t *)(t->table);
-        
-        if (St != NULL) {
-                for (i = 0; i < St->t_size; ++i)
-                        if (St->t_recs[i].c_size > 0)
-				free(St->t_recs[i].c_recs);
-                
-		free(St->t_recs);
-		free(St);
-                
-                t->table = NULL;
-        }
-        return;
+
+	if (St != NULL) {
+		Stable_free(St);
+		t->table = NULL;
+	}
 }
 
 int SEAP_cmdtbl_backendS_apply (SEAP_cmdtbl_t *t, int (*func) (SEAP_cmdrec_t *r, void *), void *arg)

src/OVAL/probes/SEAP/seap-command.c

@@ -226,10 +226,10 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                        SEAP_cmdfn_t   func,
                        void          *funcarg)
 {
-        SEAP_desc_t   *dsc;
-        SEAP_cmdrec_t *rec;
+        SEAP_desc_t   *dsc = NULL;
+        SEAP_cmdrec_t *rec = NULL;
         SEAP_cmdtbl_t *tbl[2];
-        SEXP_t        *res;
+        SEXP_t        *res = NULL;
         int8_t i;
 
         _A(ctx != NULL);
@@ -343,14 +343,17 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                                 dI("Can't register async command handler: id=%u, tbl=%p, sd=%u: already registered.",
                                    rec->code, (void *)dsc->cmd_w_table, sd);
                                 SEAP_cmdrec_free (rec);
+				SEAP_packet_free(packet);
                                 return (NULL);
                         case -1:
                                 dI("Can't register async command handler: id=%u, tbl=%p, sd=%u: errno=%u, %s.",
                                    rec->code, (void *)dsc->cmd_w_table, sd, errno, strerror (errno));
                                 SEAP_cmdrec_free (rec);
+				SEAP_packet_free(packet);
                                 return (NULL);
                         default:
                                 SEAP_cmdrec_free (rec);
+				SEAP_packet_free(packet);
                                 errno = EDOOFUS;
                                 return (NULL);
                         }
@@ -359,7 +362,7 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                                 protect_errno {
                                         dI("FAIL: errno=%u, %s.", errno, strerror (errno));
                                         SEAP_cmdtbl_del(dsc->cmd_w_table, rec);
-                                        SEAP_packet_free (packet);
+                                        SEAP_packet_free(packet);
                                 }
                                 return (NULL);
                         }
@@ -384,6 +387,7 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
 
                                         if (SEAP_packet_recv(ctx, sd, &packet_rcv) != 0) {
                                                 dI("FAIL: ctx=%p, sd=%d, errno=%u, %s.", ctx, sd, errno, strerror(errno));
+						SEAP_packet_free(packet);
                                                 return(NULL);
                                         }
 
@@ -394,6 +398,7 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                                                         SEAP_packet_free(packet_rcv);
                                                         break;
                                                 default:
+							SEAP_packet_free(packet);
                                                         errno = EDOOFUS;
                                                         return(NULL);
                                                 }
@@ -440,7 +445,7 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                         pthread_mutex_unlock (&(h.mtx));
                         pthread_cond_destroy (&(h.cond));
                         pthread_mutex_destroy (&(h.mtx));
-                        SEAP_packet_free (packet);
+                        SEAP_packet_free(packet);
 
                         return (res);
                 }
@@ -460,14 +465,17 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                                 dI("Can't register async command handler: id=%u, tbl=%p, sd=%u: already registered.",
                                    rec->code, (void *)dsc->cmd_w_table, sd);
                                 SEAP_cmdrec_free (rec);
+				SEAP_packet_free(packet);
                                 return (NULL);
                         case -1:
                                 dI("Can't register async command handler: id=%u, tbl=%p, sd=%u: errno=%u, %s.",
                                    rec->code, (void *)dsc->cmd_w_table, sd, errno, strerror (errno));
-                                SEAP_cmdrec_free (rec);
+                                SEAP_cmdrec_free(rec);
+				SEAP_packet_free(packet);
                                 return (NULL);
                         default:
-                                SEAP_cmdrec_free (rec);
+                                SEAP_cmdrec_free(rec);
+				SEAP_packet_free(packet);
                                 errno = EDOOFUS;
                                 return (NULL);
                         }
@@ -476,17 +484,17 @@ SEXP_t *SEAP_cmd_exec (SEAP_CTX_t    *ctx,
                                 protect_errno {
                                         dI("FAIL: errno=%u, %s.", errno, strerror (errno));
                                         SEAP_cmdtbl_del(dsc->cmd_w_table, rec);
-                                        SEAP_cmdrec_free(rec);
-                                        SEAP_packet_free (packet);
+                                        SEAP_packet_free(packet);
                                 }
                                 return (NULL);
                         }
 
-                        SEAP_packet_free (packet);
+                        SEAP_packet_free(packet);
 
                         return (args);
                 default:
                         errno = EINVAL;
+			SEAP_packet_free(packet);
                         return (NULL);
                 }
         }

src/OVAL/probes/SEAP/sexp-manip.c

@@ -931,7 +931,10 @@ SEXP_t *SEXP_list_new (SEXP_t *memb, ...)
 
         va_start(ap, memb);
         list = SEXP_new ();
-        list = SEXP_list_new_rv(list, memb, ap);
+        if (SEXP_list_new_rv(list, memb, ap) == NULL) {
+		SEXP_free(list);
+		list = NULL;
+	}
         va_end(ap);
 
         return (list);
@@ -1034,7 +1037,10 @@ SEXP_t *SEXP_list_rest  (const SEXP_t *list)
 	SEXP_t *sexp;
 
 	sexp = SEXP_new();
-	sexp = SEXP_list_rest_r(sexp, list);
+	if (SEXP_list_rest_r(sexp, list) == NULL) {
+		SEXP_free(sexp);
+		sexp = NULL;
+	}
 
 	return (sexp);
 }

src/OVAL/probes/independent/textfilecontent54_probe.c

@@ -162,6 +162,8 @@ static SEXP_t *create_item(const char *path, const char *filename, char *pattern
                 SEXP_free (r0);
 	}
 
+	SEXP_free(se_filepath);
+	SEXP_free(se_instance);
 	return item;
 }
 
@@ -311,7 +313,6 @@ int textfilecontent54_probe_main(probe_ctx *ctx, void *arg)
 {
 	SEXP_t *path_ent, *file_ent, *inst_ent, *bh_ent, *patt_ent, *filepath_ent, *probe_in;
         SEXP_t *r0;
-	/* char *i_val, *m_val, *s_val; */
 	bool val;
 	struct pfdata pfd;
 	int ret = 0;
@@ -354,11 +355,6 @@ int textfilecontent54_probe_main(probe_ctx *ctx, void *arg)
 		goto cleanup;
 	}
 
-        /* wtf?
-	i_val = s_val = "0";
-	m_val = "1";
-        */
-
 	/* reset filebehavior attributes if 'filepath' entity is used */
 	if (filepath_ent != NULL && bh_ent != NULL) {
 		SEXP_t *r1, *r2, *r3;

src/OVAL/probes/probe-api.c

@@ -1407,6 +1407,11 @@ static SEXP_t *probe_item_optimize(const SEXP_t *item)
 	return SEXP_ref(item);
 }
 
+/**
+ * The order of (value_name, value_type, *value) argument tuples passed as
+ * e.g. 3rd to 5th arguments matters. If you change ordering of those tuples,
+ * it will have consequences.
+ */
 SEXP_t *probe_item_create(oval_subtype_t item_subtype, probe_elmatr_t *item_attributes[],
                           /* const char *value_name, oval_datatype_t value_type, void *value, */ ...)
 {

src/OVAL/probes/unix/linux/selinuxsecuritycontext_probe.c

@@ -104,6 +104,66 @@ static void split_range(const char *range, char **l_s, char **l_c, char **h_s, c
 	}
 }
 
+static SEXP_t *create_process_probe_item_with_range(
+		const char *range, const char *user, const char *role, const char *type,
+		int pid_number) {
+	char *l_sensitivity, *l_category, *h_sensitivity, *h_category;
+	SEXP_t *item;
+
+	split_range(range, &l_sensitivity, &l_category, &h_sensitivity, &h_category);
+	item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
+		"pid",     OVAL_DATATYPE_INTEGER, (int64_t)pid_number,
+
+		"user",     OVAL_DATATYPE_STRING, user,
+		"role",     OVAL_DATATYPE_STRING, role,
+		"type",     OVAL_DATATYPE_STRING, type,
+		"low_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
+		"low_category", OVAL_DATATYPE_STRING, l_category,
+		"high_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
+		"high_category", OVAL_DATATYPE_STRING, h_category,
+		NULL);
+	free(l_sensitivity);
+	free(l_category);
+	free(h_sensitivity);
+	free(h_category);
+
+	return item;
+}
+
+
+static SEXP_t *create_file_probe_item_with_range(
+		const char *range, const char *user, const char *role, const char *type,
+		const char *pbuf, const char *p, const char *f) {
+	char *l_sensitivity, *l_category, *h_sensitivity, *h_category;
+	SEXP_t *item;
+
+	split_range(range, &l_sensitivity, &l_category, &h_sensitivity, &h_category);
+	item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
+		"filepath", OVAL_DATATYPE_STRING, pbuf,
+		"path",     OVAL_DATATYPE_STRING, p,
+		"filename", OVAL_DATATYPE_STRING, f,
+
+		"user",     OVAL_DATATYPE_STRING, user,
+		"role",     OVAL_DATATYPE_STRING, role,
+		"type",     OVAL_DATATYPE_STRING, type,
+		"low_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
+		"low_category", OVAL_DATATYPE_STRING, l_category,
+		"high_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
+		"high_category", OVAL_DATATYPE_STRING, h_category,
+
+		"rawlow_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
+		"rawlow_category", OVAL_DATATYPE_STRING, l_category,
+		"rawhigh_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
+		"rawhigh_category", OVAL_DATATYPE_STRING, h_category,
+		NULL);
+	free(l_sensitivity);
+	free(l_category);
+	free(h_sensitivity);
+	free(h_category);
+
+	return item;
+}
+
 static int selinuxsecuritycontext_process_cb (SEXP_t *pid_ent, probe_ctx *ctx) {
 
 	SEXP_t *pid_sexp, *item;
@@ -113,7 +173,6 @@ static int selinuxsecuritycontext_process_cb (SEXP_t *pid_ent, probe_ctx *ctx) {
 	DIR *proc;
 	struct dirent *dir_entry;
 	const char *user, *role, *type, *range;
-	char *l_sensitivity, *l_category, *h_sensitivity, *h_category;
 
 	if ((proc = opendir("/proc")) == NULL) {
 		dE("Can't open /proc dir: %s", strerror(errno));
@@ -144,17 +203,7 @@ static int selinuxsecuritycontext_process_cb (SEXP_t *pid_ent, probe_ctx *ctx) {
 			type = context_type_get(context);
 			range = context_range_get(context);
 			if (range != NULL) {
-				split_range(range, &l_sensitivity, &l_category, &h_sensitivity, &h_category);
-				item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
-					"pid",     OVAL_DATATYPE_INTEGER, (int64_t)pid_number,
-					"user",     OVAL_DATATYPE_STRING, user,
-					"role",     OVAL_DATATYPE_STRING, role,
-					"type",     OVAL_DATATYPE_STRING, type,
-					"low_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
-					"low_category", OVAL_DATATYPE_STRING, l_category,
-					"high_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
-					"high_category", OVAL_DATATYPE_STRING, h_category,
-					NULL);
+				item = create_process_probe_item_with_range(range, user, role, type, pid_number);
 			}
 			else {
 				item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
@@ -189,7 +238,6 @@ static int selinuxsecuritycontext_file_cb(const char *prefix, const char *p, con
 	int file_context_size;
 	context_t context;
 	const char *user, *role, *type, *range;
-	char *l_sensitivity, *l_category, *h_sensitivity, *h_category;
 	int err = 0;
 
 	/* directory */
@@ -245,23 +293,7 @@ static int selinuxsecuritycontext_file_cb(const char *prefix, const char *p, con
 		range = context_range_get(context);
 
 		if (range != NULL) {
-			split_range(range, &l_sensitivity, &l_category, &h_sensitivity, &h_category);
-			item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
-							"filepath", OVAL_DATATYPE_STRING, pbuf,
-							"path",     OVAL_DATATYPE_STRING, p,
-							"filename", OVAL_DATATYPE_STRING, f,
-							"user",     OVAL_DATATYPE_STRING, user,
-							"role",     OVAL_DATATYPE_STRING, role,
-							"type",     OVAL_DATATYPE_STRING, type,
-							"low_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
-							"low_category", OVAL_DATATYPE_STRING, l_category,
-							"high_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
-							"high_category", OVAL_DATATYPE_STRING, h_category,
-							"rawlow_sensitivity", OVAL_DATATYPE_STRING, l_sensitivity,
-							"rawlow_category", OVAL_DATATYPE_STRING, l_category,
-							"rawhigh_sensitivity", OVAL_DATATYPE_STRING, h_sensitivity,
-							"rawhigh_category", OVAL_DATATYPE_STRING, h_category,
-							NULL);
+			item = create_file_probe_item_with_range(range, user, role, type, pbuf, p, f);
 		}
 		else {
 			item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,

src/OVAL/probes/unix/process_probe.c

@@ -97,6 +97,9 @@ static void report_finding(struct result_info *res, probe_ctx *ctx)
                                  "tty",          OVAL_DATATYPE_STRING, res->tty,
                                  "user_id",    OVAL_DATATYPE_INTEGER, (int64_t)res->user_id,
                                  NULL);
+	if (se_ruid) {
+		SEXP_free(se_ruid);
+	}
 
         probe_item_collect(ctx, item);
 }