libsel4utils: load_segment memory leak bug #35

cloudsec · 2021-06-01T01:52:57Z

hello:
i found a memory leak bug in libsel4utils/src/elf.c

static int load_segment(vspace_t *loadee_vspace, vspace_t *loader_vspace,
                        vka_t *loadee_vka, vka_t *loader_vka,
                        const char *src, size_t file_size, int num_regions,
                        sel4utils_elf_region_t regions[num_regions], int region_index)
{
    seL4_CPtr loader_slot;
    cspacepath_t loader_frame_cap;

    error = vka_cspace_alloc(loader_vka, &loader_slot);   // [1]
    while (pos < segment_size && error == seL4_NoError) {
        reservation_t reservation;
        if (loadee_vaddr < region.reservation_vstart) {
            if ((region_index - 1) < 0) {
                ZF_LOGE("Invalid regions: bad elf file.");
                return 1;                                                            // [2]
            }
}

if [2] happned, it not free the prev alloc memory, and then it's memory
will be leaked.
i think the correct way is invoke vka_cspace_free() before return.

The text was updated successfully, but these errors were encountered:

kent-mcleod · 2021-06-02T03:05:18Z

Thanks for reporting this.

Fixed by #36

axel-h added the bug label Jun 1, 2021

kent-mcleod closed this as completed Jun 19, 2021

kent-mcleod mentioned this issue Jun 19, 2021

libsel4utils: Fix alloc leak in elf loading #36

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

libsel4utils: load_segment memory leak bug #35

libsel4utils: load_segment memory leak bug #35

cloudsec commented Jun 1, 2021 •

edited by axel-h

Loading

kent-mcleod commented Jun 2, 2021

libsel4utils: load_segment memory leak bug #35

libsel4utils: load_segment memory leak bug #35

Comments

cloudsec commented Jun 1, 2021 • edited by axel-h Loading

kent-mcleod commented Jun 2, 2021

cloudsec commented Jun 1, 2021 •

edited by axel-h

Loading