Bug 713132

Summary: Defects revealed by coverity scan
Product: Red Hat Enterprise Linux 6 Reporter: Michal Luscon <mluscon>
Component: coolkeyAssignee: Bob Relyea <rrelyea>
Status: CLOSED ERRATA QA Contact: Chandrasekar Kannan <ckannan>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.1CC: aakkiang, benl, jgalipea, kdudka, praiskup
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: coolkey-1.1.0-20.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-06-20 14:41:38 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 756082    
Attachments:
Description Flags
Proposed solution for the machdep.cpp
none
Updated patch to fix memory leak none

Description Michal Luscon 2011-06-14 12:25:09 UTC 
Created attachment 504665 [details]
Proposed solution for the machdep.cpp

/src/coolkey/machdep.cpp:366 - Function "SHMem *SHMem::initSegment" returns NULL without freeing the variable buf.

Please also check missing return value control of function KYBuffer_AppendShort (/src/libckyapplet/cky_applet.c:799).


Version-Release number of selected component (if applicable):
1.1.0

Additional info: These defects were not present in current supported version of
coolkey package.
Comment 3 Bob Relyea 2012-03-01 00:14:00 UTC 
> Please also check missing return value control of function

What does this mean. The the return value of CKYBuffer_AppendShort is ignored (true in lots of places, not just cky_applet.c). Or does it mean that there is a path where CKYBuffer_AppendShort does not return a status. This makes more sense for a tool to point out, but CKYBuffer_AppendShort is not defined in cky_applet.c, and it does properly return values.

>/src/coolkey/machdep.cpp:366 - Function "SHMem *SHMem::initSegment" returns
>NULL without freeing the variable buf.

I'll be updating the patch. buf was alloc'd from calloc, so free(buf); is the appropriate way of freeing the buffer.


bob
Comment 4 Bob Relyea 2012-03-01 00:15:20 UTC 
Created attachment 566682 [details]
Updated patch to fix memory leak
Comment 7 Bob Relyea 2012-03-06 01:24:59 UTC 
Patch built in coolkey-1.1.0-20.el6
Comment 11 Asha Akkiangady 2012-05-08 15:17:44 UTC 
Tested as sanity only.

Version :: coolkey-1.1.0-20.el6

Regression tests for SSO using Gemalto 64K smart card looks good. Smart cards Safenet 330J, Gemalto 64K, CAC card Gemalto GCX4 72K, CAC card Oberthur ID one V5.2, CAC card Gemalto TOPDLGX4 144 and PIV card on a omnikey 3121 reader recognized successfully by ESC.

Moving to VERIFIED.
Comment 13 errata-xmlrpc 2012-06-20 14:41:38 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2012-0948.html