From patchwork Fri Dec  8 09:16:59 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Arnold Robbins <arnold@skeeve.com>
X-Patchwork-Id: 24809
Received: (qmail 102912 invoked by alias); 8 Dec 2017 09:21:58 -0000
Mailing-List: contact libc-alpha-help@sourceware.org; run by ezmlm
Precedence: bulk
List-Id: <libc-alpha.sourceware.org>
List-Unsubscribe: <mailto:libc-alpha-unsubscribe-##L=##H@sourceware.org>
List-Subscribe: <mailto:libc-alpha-subscribe@sourceware.org>
List-Archive: <http://sourceware.org/ml/libc-alpha/>
List-Post: <mailto:libc-alpha@sourceware.org>
List-Help: <mailto:libc-alpha-help@sourceware.org>,
	<http://sourceware.org/ml/#faqs>
Sender: libc-alpha-owner@sourceware.org
Delivered-To: mailing list libc-alpha@sourceware.org
Received: (qmail 102818 invoked by uid 89); 8 Dec 2017 09:21:58 -0000
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-26.3 required=5.0 tests=AWL, BAYES_00,
	GIT_PATCH_0, GIT_PATCH_1, GIT_PATCH_2, GIT_PATCH_3,
	KAM_LAZY_DOMAIN_SECURITY, MANY_HDRS_LCASE,
	RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.2
	spammy=HContent-type:text, Hx-spam-relays-external:ESMTPA
X-HELO: mxout4.netvision.net.il
MIME-version: 1.0
Content-transfer-encoding: 7BIT
Content-type: text/plain; CHARSET=US-ASCII
From: Arnold Robbins <arnold@skeeve.com>
Message-id: <201712080916.vB89Gx7D005499@skeeve.com>
Date: Fri, 08 Dec 2017 11:16:59 +0200
To: carlos@redhat.com, libc-alpha@sourceware.org
Subject: [PATCH 05/17] Regex: Avoid memory leaks.
User-Agent: Heirloom mailx 12.5 6/20/10

This patch avoids possible memory leaks if errors are encountered
while compiling a regular expression.

2017-11-27         Arnold D. Robbins     <arnold@skeeve.com>

	* posix/regex_internal.c (re_dfa_add_node): Avoid memory leaks.
	* posix/regcomp.c (build_range_exp): Ditto.
	(build_charclass_op): Ditto.

diff --git a/posix/regcomp.c b/posix/regcomp.c
index 5bb1d11..c1fd23b 100644
--- a/posix/regcomp.c
+++ b/posix/regcomp.c
@@ -2699,7 +2699,14 @@ build_range_exp (bitset_t sbcset, bracket_elem_t *start_elem,
 					new_nranges);
 
 	    if (BE (new_array_start == NULL || new_array_end == NULL, 0))
+              {
+                 /* if one is not NULL, free it to avoid leaks */
+                 if (new_array_start != NULL)
+                     re_free(new_array_start);
+                 if (new_array_end != NULL)
+                     re_free(new_array_end);
 	      return REG_ESPACE;
+	      }
 
 	    mbcset->range_starts = new_array_start;
 	    mbcset->range_ends = new_array_end;
@@ -3604,6 +3611,13 @@ build_charclass_op (re_dfa_t *dfa, RE_TRANSLATE_TYPE trans,
   if (BE (sbcset == NULL, 0))
 #endif /* not RE_ENABLE_I18N */
     {
+      /* if one is not NULL, free it to avoid leaks */
+      if (sbcset != NULL)
+         free(sbcset);
+#ifdef RE_ENABLE_I18N
+      if (mbcset != NULL)
+         free(mbcset);
+#endif
       *err = REG_ESPACE;
       return NULL;
     }
diff --git a/posix/regex_internal.c b/posix/regex_internal.c
index 705d6a4..506ccad 100644
--- a/posix/regex_internal.c
+++ b/posix/regex_internal.c
@@ -1423,7 +1423,18 @@ re_dfa_add_node (re_dfa_t *dfa, re_token_t token)
       new_eclosures = re_realloc (dfa->eclosures, re_node_set, new_nodes_alloc);
       if (BE (new_nexts == NULL || new_indices == NULL
 	      || new_edests == NULL || new_eclosures == NULL, 0))
+        {
+	   /* if any are not NULL, free them, avoid leaks */
+	   if (new_nexts != NULL)
+              re_free(new_nexts);
+	   if (new_indices != NULL)
+              re_free(new_indices);
+	   if (new_edests != NULL)
+              re_free(new_edests);
+	   if (new_eclosures != NULL)
+              re_free(new_eclosures);
 	return -1;
+	}
       dfa->nexts = new_nexts;
       dfa->org_indices = new_indices;
       dfa->edests = new_edests;