Nothing extraordinary here.
Most potential crashes are extremely unlikely.
- Fix CID 1113444
- Fix CID 1113442
- Fix CID 1113441 (Logically dead code, can not be NULL)
- Fix CID 1113440: Explicit null dereferenced
This is actually an impossible situation.
Fixed by checking for nullity and printing out some error
messages instead of just crashing.
- Fix CID 1113439: Dereference after null check
Logically impossible code as both idxpath and datapath
must be either set or null at the same time.
Change the if logic to tell Coverity there's no bug.
- Fix CID 1113438 (Argument cannot be negative)
Fix wrong check of return value from shm_open.
- Fix CID 1113437 (Argument cannot be negative)
Fix wrong check of return value from shm_open.
- Fix CID 1113436 (Dereference null return value)
This case really shouldn't happen.
But the extra check does not hurt.
- Fix CID 1113435 (Dereference before null check)
Check for nullity after map open.
- Fix CID 1113434 (Extra sizeof expression)
Debug buggy debug tool :)
- Fix CID 1113433 (Uninitialized scalar variable)
Insignificant issue: only prints wrong debug logs :)
- Fix CID 1113431 (Uninitialized scalar value)
Check if (!found) only to print out logs. Not a big deal
if found was invalid.
- Fix CID 1039462 (Logically dead code)
Error_Type err;
const char *file, *key;
p = params;
- file = (const char *)(p + sizeof(*p));
+ file = (const char *)(p + 1);
key = file + strlen(file) + 1;
if ((err = image_open(file, key, &result)) != CSERVE2_NONE)
error_send(wfd, err);
ref = eina_hash_find(client->files.referencing, &client_file_id);
if (!ref)
{
- ERR("Couldn't find file id: %d, for image id: %d",
- client_file_id, image_id);
+ ERR("Couldn't find file id for client image id: %d",
+ client_file_id);
cserve2_client_error_send(client, rid,
CSERVE2_INVALID_CACHE);
return NULL;
// name
if (fe->src->name)
{
- str = cserve2_shared_string_get(fe->src->file);
+ str = cserve2_shared_string_get(fe->src->name);
di->size+= strlen(str) + 1;
}
0, &unscaled, buf, sizeof(buf));
if (!orig_entry) return -1;
- image_id = orig_entry->base.id;
orig_data = _image_data_find(ENTRYID(orig_entry));
+ if (!orig_data) return -1;
+
+ image_id = ENTRYID(orig_entry);
orig_data->unused = EINA_TRUE;
fentry = _file_entry_find(orig_data->file_id);
fentry->images = eina_list_append(fentry->images, orig_entry);
for (cur = start_high; cur < si->sa->header->count; cur++)
{
obj = (Index_Entry *) (base + (elemsize * cur));
- if (!obj)
- return NULL;
if (!obj->id)
return NULL;
if (obj->id == id)
if (!segment) return NULL;
fd = shm_open(map->name, O_RDWR, S_IRUSR | S_IWUSR);
- if (!fd)
+ if (fd == -1)
{
ERR("Could not reopen shm handle: %m");
free(segment);
}
fd = shm_open(shm->mapping->name, O_RDWR, S_IRUSR | S_IWUSR);
- if (!fd)
+ if (fd == -1)
{
ERR("Could not reopen shm handle: %m");
return NULL;
if (isatty(STDOUT_FILENO))
{
- ioctl(STDOUT_FILENO, TIOCGWINSZ, &w);
- _termsize = w.ws_col;
+ if (ioctl(STDOUT_FILENO, TIOCGWINSZ, &w) == 0)
+ _termsize = w.ws_col;
}
if (argc > 1)
Image_Timestamp tstamp;
Evas_Image_Load_Opts prevent;
- if ((!path) || ((!path) && (!key)))
+ if (!path)
{
*error = EVAS_LOAD_ERROR_GENERIC;
return NULL;
Eina_List *l, *l_next;
Client_Request *cr;
Msg_Base *msg;
- Eina_Bool found;
+ Eina_Bool found = EINA_FALSE;
msg = _server_read(&size);
if (!msg)
// Note: Since the shm name contains cserve2's PID it should most likely
// always change in case of crash/restart
- if ((datapath && strcmp(datapath, map->mempool.path))
- || (idxpath && strcmp(idxpath, map->index.path)))
+ if (datapath && idxpath &&
+ ((strncmp(datapath, map->mempool.path, SHARED_BUFFER_PATH_MAX) != 0) ||
+ (strncmp(idxpath, map->index.path, SHARED_BUFFER_PATH_MAX) != 0)))
{
CS_Glyph_Out *gl, *cursor;
else
{
gl->sb = oldbuf;
- EINA_REFCOUNT_REF(gl->sb);
+ if (gl->sb)
+ EINA_REFCOUNT_REF(gl->sb);
+ else
+ {
+ ERR("Glyph pool can not be remapped! (invalid refs)");
+ eina_clist_remove(&gl->map_entry);
+ }
}
}
if (!idxpath || !datapath) return -1;
fe->map =_glyph_map_open(fe, idxpath, datapath);
+ if (!fe->map) return -1;
+
changed = EINA_TRUE;
}
changed |= _glyph_map_remap_check(fe->map, idxpath, datapath);
- if (changed && fe->map && fe->map->index.data && fe->map->mempool.data)
+ if (changed && fe->map->index.data && fe->map->mempool.data)
{
CS_Glyph_Out *gl;
const Glyph_Data *gd;