From faf6d4dc93fac9b197db00a40167079c98a1db9c Mon Sep 17 00:00:00 2001 From: Jim Warner Date: Tue, 30 Jun 2015 00:00:00 -0500 Subject: [PATCH] library: the uref functions were insufficiently robust The earlier attempt at protecting these functions from already freed memory worked just fine until the memory was, in fact, reused by the OS. At that point, the ref count would most likely fail an existing a test for 0. So this commit will take control of the 'info' pointer and force it to NULL when a reference count reaches 0. Plus, since it makes little sense returning an address that a caller already has, henceforth we will return a reference count out of the 'ref' and 'unref functions. Reference(s): commit 74beff80ff3624761ecd20fafac0485f48c9c873 Signed-off-by: Jim Warner --- proc/meminfo.c | 26 ++++++++++++++------------ proc/meminfo.h | 4 ++-- proc/readstat.c | 30 ++++++++++++++++-------------- proc/readstat.h | 4 ++-- proc/vmstat.c | 26 ++++++++++++++------------ proc/vmstat.h | 4 ++-- ps/output.c | 4 ++-- top/top.c | 4 ++-- 8 files changed, 54 insertions(+), 48 deletions(-) diff --git a/proc/meminfo.c b/proc/meminfo.c index 6cfe808c..f373b772 100644 --- a/proc/meminfo.c +++ b/proc/meminfo.c @@ -214,25 +214,27 @@ PROCPS_EXPORT int procps_meminfo_read ( } -PROCPS_EXPORT struct procps_meminfo *procps_meminfo_ref ( +PROCPS_EXPORT int procps_meminfo_ref ( struct procps_meminfo *info) { if (info == NULL) - return NULL; + return -EINVAL; info->refcount++; - return info; + return info->refcount; } -PROCPS_EXPORT struct procps_meminfo *procps_meminfo_unref ( - struct procps_meminfo *info) +PROCPS_EXPORT int procps_meminfo_unref ( + struct procps_meminfo **info) { - if (info == NULL || info->refcount == 0) - return NULL; - info->refcount--; - if (info->refcount > 0) - return info; - free(info); - return NULL; + if (info == NULL || *info == NULL) + return -EINVAL; + (*info)->refcount--; + if ((*info)->refcount == 0) { + free(*info); + *info = NULL; + return 0; + } + return (*info)->refcount; } /* Accessor functions */ diff --git a/proc/meminfo.h b/proc/meminfo.h index 31b46d45..d394893a 100644 --- a/proc/meminfo.h +++ b/proc/meminfo.h @@ -58,8 +58,8 @@ struct procps_meminfo; int procps_meminfo_new (struct procps_meminfo **info); int procps_meminfo_read (struct procps_meminfo *info); -struct procps_meminfo *procps_meminfo_ref (struct procps_meminfo *info); -struct procps_meminfo *procps_meminfo_unref (struct procps_meminfo *info); +int procps_meminfo_ref (struct procps_meminfo *info); +int procps_meminfo_unref (struct procps_meminfo **info); unsigned long procps_meminfo_get (struct procps_meminfo *info, enum meminfo_item item); int procps_meminfo_get_chain (struct procps_meminfo *info, struct meminfo_result *item); diff --git a/proc/readstat.c b/proc/readstat.c index 48c323f4..6af84f41 100644 --- a/proc/readstat.c +++ b/proc/readstat.c @@ -152,27 +152,29 @@ PROCPS_EXPORT int procps_stat_read ( return 0; } -PROCPS_EXPORT struct procps_statinfo *procps_stat_ref ( +PROCPS_EXPORT int procps_stat_ref ( struct procps_statinfo *info) { if (info == NULL) - return NULL; + return -EINVAL; info->refcount++; - return info; + return info->refcount; } -PROCPS_EXPORT struct procps_statinfo *procps_stat_unref ( - struct procps_statinfo *info) +PROCPS_EXPORT int procps_stat_unref ( + struct procps_statinfo **info) { - if (info == NULL || info->refcount == 0) - return NULL; - info->refcount--; - if (info->refcount > 0) - return info; - if (info->jiff_hists) - free(info->jiff_hists); - free(info); - return NULL; + if (info == NULL || *info == NULL) + return -EINVAL; + (*info)->refcount--; + if ((*info)->refcount == 0) { + if ((*info)->jiff_hists != NULL) + free((*info)->jiff_hists); + free(*info); + *info = NULL; + return 0; + } + return (*info)->refcount; } PROCPS_EXPORT jiff procps_stat_get_cpu ( diff --git a/proc/readstat.h b/proc/readstat.h index d155524a..902f5ee3 100644 --- a/proc/readstat.h +++ b/proc/readstat.h @@ -74,8 +74,8 @@ int procps_stat_new (struct procps_statinfo **info); int procps_stat_read (struct procps_statinfo *info, const int cpu_only); int procps_stat_read_jiffs (struct procps_statinfo *info); -struct procps_statinfo *procps_stat_ref (struct procps_statinfo *info); -struct procps_statinfo *procps_stat_unref (struct procps_statinfo *info); +int procps_stat_ref (struct procps_statinfo *info); +int procps_stat_unref (struct procps_statinfo **info); jiff procps_stat_get_cpu (struct procps_statinfo *info, enum procps_cpu_item item); int procps_stat_get_cpu_chain (struct procps_statinfo *info, struct procps_cpu_result *item); diff --git a/proc/vmstat.c b/proc/vmstat.c index 953c8b6a..775cf1fd 100644 --- a/proc/vmstat.c +++ b/proc/vmstat.c @@ -125,25 +125,27 @@ PROCPS_EXPORT int procps_vmstat_read ( return 0; } -PROCPS_EXPORT struct procps_vmstat *procps_vmstat_ref ( +PROCPS_EXPORT int procps_vmstat_ref ( struct procps_vmstat *info) { if (info == NULL) - return NULL; + return -EINVAL; info->refcount++; - return info; + return info->refcount; } -PROCPS_EXPORT struct procps_vmstat *procps_vmstat_unref ( - struct procps_vmstat *info) +PROCPS_EXPORT int procps_vmstat_unref ( + struct procps_vmstat **info) { - if (info == NULL || info->refcount == 0) - return NULL; - info->refcount--; - if (info->refcount > 0) - return info; - free(info); - return NULL; + if (info == NULL || *info == NULL) + return -EINVAL; + (*info)->refcount--; + if ((*info)->refcount == 0) { + free(*info); + *info = NULL; + return 0; + } + return (*info)->refcount; } /* Accessor functions */ diff --git a/proc/vmstat.h b/proc/vmstat.h index 7c22bd71..4b97df45 100644 --- a/proc/vmstat.h +++ b/proc/vmstat.h @@ -45,8 +45,8 @@ struct procps_vmstat; int procps_vmstat_new (struct procps_vmstat **info); int procps_vmstat_read (struct procps_vmstat *info); -struct procps_vmstat *procps_vmstat_ref (struct procps_vmstat *info); -struct procps_vmstat *procps_vmstat_unref (struct procps_vmstat *info); +int procps_vmstat_ref (struct procps_vmstat *info); +int procps_vmstat_unref (struct procps_vmstat **info); unsigned long procps_vmstat_get (struct procps_vmstat *info, enum vmstat_item item); int procps_vmstat_get_chain (struct procps_vmstat *info, struct vmstat_result *item); diff --git a/ps/output.c b/ps/output.c index 05b0c11a..72be9235 100644 --- a/ps/output.c +++ b/ps/output.c @@ -106,7 +106,7 @@ static void get_boot_time(void) xerrx(EXIT_FAILURE, _("Unable to read system stat information")); boot_time = procps_stat_get_sys(sys_info, PROCPS_STAT_BTIME); - procps_stat_unref(sys_info); + procps_stat_unref(&sys_info); } static void get_memory_total() @@ -119,7 +119,7 @@ static void get_memory_total() xerrx(EXIT_FAILURE, _("Unable to read meminfo information")); memory_total = procps_meminfo_get(mem_info, PROCPS_MEM_TOTAL); - procps_meminfo_unref(mem_info); + procps_meminfo_unref(&mem_info); } /*************************************************************************/ diff --git a/top/top.c b/top/top.c index 9b66c6a3..d0a691dc 100644 --- a/top/top.c +++ b/top/top.c @@ -578,8 +578,8 @@ static void bye_bye (const char *str) { #endif // end: ATEOJ_RPTHSH #endif // end: OFF_HST_HASH - procps_stat_unref(sys_info); - procps_meminfo_unref(mem_info); + procps_stat_unref(&sys_info); + procps_meminfo_unref(&mem_info); #ifndef NUMA_DISABLE if (Libnuma_handle) dlclose(Libnuma_handle); #endif -- 2.40.0