git.ipfire.org Git - thirdparty/grub.git/commit

author	Chris Coulson <chris.coulson@canonical.com>
	Thu, 9 Jul 2020 18:04:43 +0000 (19:04 +0100)
committer	Daniel Kiper <daniel.kiper@oracle.com>
	Wed, 29 Jul 2020 14:55:48 +0000 (16:55 +0200)
commit	dc052e5ac77c727645bef437021bf3268cce6996
tree	9f0dc65f9d8ff9b75b2d47a032346d0b447c66b5	tree
parent	6d7a59a2a184f7af8a90a4c90d7c7b6482acc656	commit \| diff

json: Avoid a double-free when parsing fails.

When grub_json_parse() succeeds, it returns the root object which
contains a pointer to the provided JSON string. Callers are
responsible for ensuring that this string outlives the root
object and for freeing its memory when it's no longer needed.

If grub_json_parse() fails to parse the provided JSON string,
it frees the string before returning an error. This results
in a double free in luks2_recover_key(), which also frees the
same string after grub_json_parse() returns an error.

This changes grub_json_parse() to never free the JSON string
passed to it, and updates the documentation for it to make it
clear that callers are responsible for ensuring that the string
outlives the root JSON object.

Fixes: CID 292465
Signed-off-by: Chris Coulson <chris.coulson@canonical.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>

grub-core/lib/json/json.c		diff \| blob \| blame \| history
grub-core/lib/json/json.h		diff \| blob \| blame \| history