mirror of
https://sourceware.org/git/glibc.git
synced 2025-01-04 00:31:09 +00:00
510fc20d73
On GCC before 11, IPA can make the fortified realpath aware that the buffer size is not large enough (8 bytes instead of PATH_MAX bytes). Fix this by using a buffer that is large enough.
88 lines
2.5 KiB
C
88 lines
2.5 KiB
C
/* Test to verify that realpath() doesn't cause false positives due
|
|
to GCC attribute malloc.
|
|
|
|
Test failure exposes the presence of the attribute in the following
|
|
declaration:
|
|
|
|
__attribute__ ((__malloc__ (free, 1))) char*
|
|
realpath (const char *, char *);
|
|
|
|
Copyright (C) 2021-2023 Free Software Foundation, Inc.
|
|
This file is part of the GNU C Library.
|
|
|
|
The GNU C Library is free software; you can redistribute it and/or
|
|
modify it under the terms of the GNU Lesser General Public
|
|
License as published by the Free Software Foundation; either
|
|
version 2.1 of the License, or (at your option) any later version.
|
|
|
|
The GNU C Library is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
Lesser General Public License for more details.
|
|
|
|
You should have received a copy of the GNU Lesser General Public
|
|
License along with the GNU C Library; if not, see
|
|
<https://www.gnu.org/licenses/>. */
|
|
|
|
#include <limits.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <malloc.h>
|
|
|
|
#if defined __GNUC__ && __GNUC__ >= 11
|
|
/* Turn GCC -Wmismatched-dealloc warnings into errors to expose false
|
|
positives. */
|
|
# pragma GCC diagnostic push
|
|
# pragma GCC diagnostic error "-Wmismatched-dealloc"
|
|
|
|
/* Associate dealloc as the only deallocator suitable for pointers
|
|
returned from alloc.
|
|
GCC automatically disables inlining of allocator and deallocator
|
|
functions marked with the argument form of attribute malloc but
|
|
it doesn't hurt to disable it explicitly. */
|
|
__attribute ((noipa)) void dealloc (void *);
|
|
__attribute ((malloc (dealloc, 1))) char* alloc (void);
|
|
#endif
|
|
|
|
void dealloc (void *p)
|
|
{
|
|
free (p);
|
|
}
|
|
|
|
char* alloc (void)
|
|
{
|
|
#ifdef PATH_MAX
|
|
return (char *)malloc (PATH_MAX);
|
|
#else
|
|
return (char *)malloc (4096);
|
|
#endif
|
|
}
|
|
|
|
static int
|
|
do_test (void)
|
|
{
|
|
char *resolved_path = alloc ();
|
|
char *ret = realpath ("/", resolved_path);
|
|
dealloc (ret);
|
|
|
|
resolved_path = alloc ();
|
|
ret = realpath ("/", resolved_path);
|
|
dealloc (resolved_path);
|
|
|
|
/* The following should emit a warning (but doesn't with GCC 11):
|
|
resolved_path = alloc ();
|
|
ret = realpath ("/", resolved_path);
|
|
free (ret); // expect -Wmismatched-dealloc
|
|
*/
|
|
|
|
return 0;
|
|
}
|
|
|
|
#if defined __GNUC__ && __GNUC__ >= 11
|
|
/* Restore -Wmismatched-dealloc setting. */
|
|
# pragma GCC diagnostic pop
|
|
#endif
|
|
|
|
#define TEST_FUNCTION do_test ()
|
|
#include "../test-skeleton.c"
|