Bug #15116: Fixing issues detected by an Analysis tool. - Ruby - Ruby Issue Tracking System

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#1 [ruby-core:89012]

To be clear, those 9 issues about mainly leaked resource in the attached report file are marked as "important" by the analysis tool for ruby 2.5.1 + some patch files.

Total 9

1 COPY_PASTE_ERROR
7 RESOURCE_LEAK
1 USE_AFTER_FREE

However as a "not important" issues, around 1000 issues were detected by the tool for the ruby 2.5.1.
I am considering how to deal with this or report those.
I might open an another ticket for that.

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#2 [ruby-core:89028]

Thank you for the analyzing.

jaruga (Jun Aruga) wrote:

The summary is

Fix leaked storage in addr2line.c.

Fix for "top_root" leaking the resource.

The above seems valid.

And the followings are false positive.

Fix passing freed pointer as an argument in gc.c.

The pointer is never dereferenced but just the pointer value is shown.

Fix leaked handle variable "n" in process.c.

If n is 0..2, dup2 to the same fd does nothing, and n must not be closed.

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#3

Status changed from Open to Closed

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#4 [ruby-core:89043]

Thank you for checking my code!

Fix leaked handle variable "n" in process.c.

If n is 0..2, dup2 to the same fd does nothing, and n must not be closed.

About above thing,

I compared process.c#rb_daemon with pty.c#chfunc .
Similar implementation, but a little different.

https://github.com/ruby/ruby/blob/trunk/ext/pty/pty.c#L130-L146

In the case of pty.c, the "leaked handle" was not detected for the return value of rb_cloexec_open. even when close function can be executed for for the return value "slave" (= file descriptor) == 0, 1 or 2.

In process.c, when the return value n < 0, is it no problem?

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#5 [ruby-core:89046]

Negative fd means open(2) failed.

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#6 [ruby-core:89049]

POSIX states successfully opened file descriptors should be non-negative.

http://pubs.opengroup.org/onlinepubs/9699919799/functions/open.html#tag_16_357_04

RETURN VALUE¶

Upon successful completion, these functions shall open the file and return a non-negative integer representing the file descriptor. Otherwise, these functions shall return -1 and set errno to indicate the error. If -1 is returned, no files shall be created or modified.

pty.c should be more defensive too, thank you for pointing out.

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#7 [ruby-core:89058]

Thank you for clarifying it!

By the way, I saw your commit for the fix.

https://github.com/ruby/ruby/commit/eddd630

-    close(slave);
+    if (slave < 0 && slave > 2) (void)!close(slave);

It seems that the close is never executed.
That is if (slave < 0 || slave > 2) (void)!close(slave);, isn't it?

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#8 [ruby-core:89060]

Thank you, fixed it now.

Project

General

Profile

Ruby

Tags

Custom queries

Bug #15116

Fixing issues detected by an Analysis tool.

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#1 [ruby-core:89012]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#2 [ruby-core:89028]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#3

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#4 [ruby-core:89043]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#5 [ruby-core:89046]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#6 [ruby-core:89049]

RETURN VALUE¶

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#7 [ruby-core:89058]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#8 [ruby-core:89060]

Project

General

Profile

Ruby

Tags

Custom queries

Bug #15116

Fixing issues detected by an Analysis tool.

Updated by jaruga (Jun Aruga) about 7 years ago ActionsCopy link #1 [ruby-core:89012]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago ActionsCopy link #2 [ruby-core:89028]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago ActionsCopy link #3

Updated by jaruga (Jun Aruga) about 7 years ago ActionsCopy link #4 [ruby-core:89043]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago ActionsCopy link #5 [ruby-core:89046]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago ActionsCopy link #6 [ruby-core:89049]

RETURN VALUE¶

Updated by jaruga (Jun Aruga) about 7 years ago ActionsCopy link #7 [ruby-core:89058]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago ActionsCopy link #8 [ruby-core:89060]

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#1 [ruby-core:89012]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#2 [ruby-core:89028]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#3

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#4 [ruby-core:89043]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#5 [ruby-core:89046]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#6 [ruby-core:89049]

Updated by jaruga (Jun Aruga) about 7 years ago Actions
Copy link
#7 [ruby-core:89058]

Updated by nobu (Nobuyoshi Nakada) about 7 years ago Actions
Copy link
#8 [ruby-core:89060]