Skip to content

Commit 80d99c0

Browse files
jan-cernyjan-cerny
committed
Merge branch 'maint-1.2'
2 parents 5e67135 + 9895db2 commit 80d99c0

File tree

4 files changed

+8
-7
lines changed

4 files changed

+8
-7
lines changed

src/OVAL/oval_sexp.c

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -847,6 +847,8 @@ static struct oval_sysent *oval_sexp_to_sysent(struct oval_syschar_model *model,
847847
oval_message_set_text(msg, txt);
848848
oval_sysitem_add_message(item, msg);
849849

850+
free(key);
851+
850852
return (NULL);
851853
}
852854

src/OVAL/probes/probe-api.c

Lines changed: 2 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -267,7 +267,6 @@ bool probe_item_filtered(const SEXP_t *item, const SEXP_t *filters)
267267
}
268268

269269
if (SEXP_list_length(elm_res) > 0) {
270-
free(elm_name);
271270
r0 = probe_ent_getattrval(felm, "entity_check");
272271

273272
if (r0 == NULL)
@@ -278,13 +277,13 @@ bool probe_item_filtered(const SEXP_t *item, const SEXP_t *filters)
278277
SEXP_free(r0);
279278

280279
ores = probe_ent_result_bychk(elm_res, ochk);
281-
SEXP_free(elm_res);
282280
} else {
283-
SEXP_free(elm_res);
284281
ores = OVAL_RESULT_FALSE;
285282
}
286283
SEXP_list_add(ste_res, r0 = SEXP_number_newi_32(ores));
287284
SEXP_free(r0);
285+
SEXP_free(elm_res);
286+
free(elm_name);
288287
}
289288

290289
r0 = probe_ent_getattrval(ste, "operator");

src/OVAL/probes/unix/linux/selinuxsecuritycontext_probe.c

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -270,7 +270,7 @@ static int selinuxsecuritycontext_file_cb(const char *prefix, const char *p, con
270270
file_context_size = getfilecon(path_with_prefix, &file_context);
271271
free(path_with_prefix);
272272
if (file_context_size == -1) {
273-
dE("Can't get context for %s: %s", pbuf, strerror(errno));
273+
dD("Can't get context for %s: %s", pbuf, strerror(errno));
274274

275275
item = probe_item_create(OVAL_LINUX_SELINUXSECURITYCONTEXT, NULL,
276276
"filepath", OVAL_DATATYPE_STRING, pbuf,

src/SCE/sce_engine.c

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -348,7 +348,7 @@ static void _pipe_try_read_into_string(int fd, struct oscap_string *string, bool
348348

349349

350350
static void free_env_values(char **env_values, size_t index_of_first_env_value_not_compiled_in, size_t real_env_values_count) {
351-
for (i = index_of_first_env_value_not_compiled_in; i < real_env_values_count; i++) {
351+
for (size_t i = index_of_first_env_value_not_compiled_in; i < real_env_values_count; i++) {
352352
free(env_values[i]);
353353
}
354354
free(env_values);
@@ -512,8 +512,6 @@ xccdf_test_result_type_t sce_engine_eval_rule(struct xccdf_policy *policy, const
512512

513513
if (fork_result == 0)
514514
{
515-
free_env_values(env_values, index_of_first_env_value_not_compiled_in, env_value_count);
516-
517515
// we won't read from the pipes, so close the reading fd
518516
close(stdout_pipefd[0]);
519517
close(stderr_pipefd[0]);
@@ -540,6 +538,8 @@ xccdf_test_result_type_t sce_engine_eval_rule(struct xccdf_policy *policy, const
540538
// we are the child process
541539
execve(tmp_href, argvp, env_values);
542540

541+
free_env_values(env_values, index_of_first_env_value_not_compiled_in, env_value_count);
542+
543543
// no need to check the return value of execve, if it returned at all we are in trouble
544544
printf("Unexpected error when executing script '%s'. Error message follows.\n", href);
545545
perror("execve");

0 commit comments

Comments
 (0)