gconv: Consistently mangle NULL function pointers [BZ #22025]

author Patsy Franklin <pfrankli@redhat.com>

Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)

committer Florian Weimer <fweimer@redhat.com>

Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)
author Patsy Franklin <pfrankli@redhat.com>
Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)
committer Florian Weimer <fweimer@redhat.com>
Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)
diff --git a/ChangeLog b/ChangeLog

index 8a58926b7ba3ed99e8821479db4199b44d646159..59646acc66a553cbd6ed46924b3dbc9da70e5036 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,23 @@
+2017-08-29  Patsy Franklin  <pfrankli@redhat.com>
+           Jeff Law  <law@redhat.com>
+
+       [BZ #22025]
+       Mangle NULL pointers in iconv/gconv.
+       * iconv/gconv_cache.c (find_module): Demangle init_fct before
+       checking for NULL. Mangle __btowc_fct if init_fct is non-NULL.
+       * iconv/gconv_db.c (free_derivation): Check that __shlib_handle
+       is non-NULL before demangling the end_fct.  Check for NULL
+       end_fct after demangling.
+       (__gconv_release_step): Demangle the end_fct before checking
+       it for NULL.   Remove assert on __shlibc_handle != NULL.
+       (gen_steps): Don't check btowc_fct for NULL before mangling.
+       Demangle init_fct before checking for NULL.
+       (increment_counter): Likewise.
+       * gconv_dl.c (__gconv_find_shlib): Don't check init_fct or
+       end_fct for NULL before mangling.
+       * wcsmbs/btowc.c (__btowc): Demangle btowc_fct before checking
+       for NULL.
+
  2017-08-29  Akhilesh Kumar <akhilesh.k@samsung.com>
  
         [BZ #21971]
diff --git a/iconv/gconv_cache.c b/iconv/gconv_cache.c

index d6a47de838e9a0c7cd9684b43b002d64d6ee6b64..7d2751a5065d22e5dcba02d9026bcd7b1bd02b6f 100644 (file)
--- a/iconv/gconv_cache.c
+++ b/iconv/gconv_cache.c
@@ -207,17 +207,16 @@ find_module (const char *directory, const char *filename,
        result->__data = NULL;
  
        /* Call the init function.  */
-      if (result->__init_fct != NULL)
-       {
-         __gconv_init_fct init_fct = result->__init_fct;
+      __gconv_init_fct init_fct = result->__init_fct;
  #ifdef PTR_DEMANGLE
-         PTR_DEMANGLE (init_fct);
+      PTR_DEMANGLE (init_fct);
  #endif
+      if (init_fct != NULL)
+       {
           status = DL_CALL_FCT (init_fct, (result));
  
  #ifdef PTR_MANGLE
-         if (result->__btowc_fct != NULL)
-           PTR_MANGLE (result->__btowc_fct);
+         PTR_MANGLE (result->__btowc_fct);
  #endif
         }
      }
diff --git a/iconv/gconv_db.c b/iconv/gconv_db.c

index 7893fadba1a37bdd2a4d2d714e9dc8289077d092..b748467de564597c48461bc1dbc284058c115b88 100644 (file)
--- a/iconv/gconv_db.c
+++ b/iconv/gconv_db.c
@@ -179,16 +179,15 @@ free_derivation (void *p)
    size_t cnt;
  
    for (cnt = 0; cnt < deriv->nsteps; ++cnt)
-    if (deriv->steps[cnt].__counter > 0
-       && deriv->steps[cnt].__end_fct != NULL)
+    if ((deriv->steps[cnt].__counter > 0)
+       && (deriv->steps[cnt].__shlib_handle != NULL))
        {
-       assert (deriv->steps[cnt].__shlib_handle != NULL);
-
         __gconv_end_fct end_fct = deriv->steps[cnt].__end_fct;
  #ifdef PTR_DEMANGLE
         PTR_DEMANGLE (end_fct);
  #endif
-       DL_CALL_FCT (end_fct, (&deriv->steps[cnt]));
+       if (end_fct != NULL)
+         DL_CALL_FCT (end_fct, (&deriv->steps[cnt]));
        }
  
    /* Free the name strings.  */
@@ -212,16 +211,12 @@ __gconv_release_step (struct __gconv_step *step)
    if (step->__shlib_handle != NULL && --step->__counter == 0)
      {
        /* Call the destructor.  */
-      if (step->__end_fct != NULL)
-       {
-         assert (step->__shlib_handle != NULL);
-
-         __gconv_end_fct end_fct = step->__end_fct;
+       __gconv_end_fct end_fct = step->__end_fct;
  #ifdef PTR_DEMANGLE
-         PTR_DEMANGLE (end_fct);
+       PTR_DEMANGLE (end_fct);
  #endif
-         DL_CALL_FCT (end_fct, (step));
-       }
+      if (end_fct != NULL)
+       DL_CALL_FCT (end_fct, (step));
  
  #ifndef STATIC_GCONV
        /* Release the loaded module.  */
@@ -313,13 +308,11 @@ gen_steps (struct derivation_step *best, const char *toset,
  
               /* Call the init function.  */
               __gconv_init_fct init_fct = result[step_cnt].__init_fct;
-             if (init_fct != NULL)
-               {
-                 assert (result[step_cnt].__shlib_handle != NULL);
-
  # ifdef PTR_DEMANGLE
-                 PTR_DEMANGLE (init_fct);
+             PTR_DEMANGLE (init_fct);
  # endif
+             if (init_fct != NULL)
+               {
                   status = DL_CALL_FCT (init_fct, (&result[step_cnt]));
  
                   if (__builtin_expect (status, __GCONV_OK) != __GCONV_OK)
@@ -332,8 +325,7 @@ gen_steps (struct derivation_step *best, const char *toset,
                     }
  
  # ifdef PTR_MANGLE
-                 if (result[step_cnt].__btowc_fct != NULL)
-                   PTR_MANGLE (result[step_cnt].__btowc_fct);
+                 PTR_MANGLE (result[step_cnt].__btowc_fct);
  # endif
                 }
             }
@@ -415,16 +407,15 @@ increment_counter (struct __gconv_step *steps, size_t nsteps)
  
           /* Call the init function.  */
           __gconv_init_fct init_fct = step->__init_fct;
-         if (init_fct != NULL)
-           {
  #ifdef PTR_DEMANGLE
-             PTR_DEMANGLE (init_fct);
+         PTR_DEMANGLE (init_fct);
  #endif
+         if (init_fct != NULL)
+           {
               DL_CALL_FCT (init_fct, (step));
  
  #ifdef PTR_MANGLE
-             if (step->__btowc_fct != NULL)
-               PTR_MANGLE (step->__btowc_fct);
+             PTR_MANGLE (step->__btowc_fct);
  #endif
             }
         }
diff --git a/iconv/gconv_dl.c b/iconv/gconv_dl.c

index 241836204d76fdd09d43fd9b64f0a01f73a34e0e..d7dbba90a25dde96d20565c9ffe2dcb29b215cc1 100644 (file)
--- a/iconv/gconv_dl.c
+++ b/iconv/gconv_dl.c
@@ -131,10 +131,8 @@ __gconv_find_shlib (const char *name)
  
  #ifdef PTR_MANGLE
                   PTR_MANGLE (found->fct);
-                 if (found->init_fct != NULL)
-                   PTR_MANGLE (found->init_fct);
-                 if (found->end_fct !=  NULL)
-                   PTR_MANGLE (found->end_fct);
+                 PTR_MANGLE (found->init_fct);
+                 PTR_MANGLE (found->end_fct);
  #endif
  
                   /* We have succeeded in loading the shared object.  */
diff --git a/wcsmbs/btowc.c b/wcsmbs/btowc.c

index 22464dc5e2d9da2f9ee23869a68edf54c5edc9ee..97fb7170f3ae87f6d4a3f85ac3656e73b5b241cc 100644 (file)
--- a/wcsmbs/btowc.c
+++ b/wcsmbs/btowc.c
@@ -46,15 +46,15 @@ __btowc (int c)
    /* Get the conversion functions.  */
    fcts = get_gconv_fcts (_NL_CURRENT_DATA (LC_CTYPE));
    __gconv_btowc_fct btowc_fct = fcts->towc->__btowc_fct;
+#ifdef PTR_DEMANGLE
+  if (fcts->towc->__shlib_handle != NULL)
+    PTR_DEMANGLE (btowc_fct);
+#endif
  
    if (__builtin_expect (fcts->towc_nsteps == 1, 1)
        && __builtin_expect (btowc_fct != NULL, 1))
      {
        /* Use the shortcut function.  */
-#ifdef PTR_DEMANGLE
-      if (fcts->towc->__shlib_handle != NULL)
-       PTR_DEMANGLE (btowc_fct);
-#endif
        return DL_CALL_FCT (btowc_fct, (fcts->towc, (unsigned char) c));
      }
    else
author	Patsy Franklin <pfrankli@redhat.com>
	Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)
committer	Florian Weimer <fweimer@redhat.com>
	Tue, 29 Aug 2017 13:53:28 +0000 (15:53 +0200)
ChangeLog		patch \| blob \| blame \| history
iconv/gconv_cache.c		patch \| blob \| blame \| history
iconv/gconv_db.c		patch \| blob \| blame \| history
iconv/gconv_dl.c		patch \| blob \| blame \| history
wcsmbs/btowc.c		patch \| blob \| blame \| history