lib/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2025-07-31 00:03:07 +03:00
Code Activity

Avoid memory leaks from the server_auth_kbdint

Browse Source 
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Norbert Pocs <npocs@redhat.com>
This commit is contained in:
Jakub Jelen
2023-04-28 10:55:15 +02:00
parent 4278499e26
commit e4bf3b97b4
5 changed files with 63 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

57
tests/server/test_server/test_server.c
View File

@ -83,12 +83,12 @@ int run_server(struct server_state_st *state)
.sa_flags = 0 .sa_flags = 0
}; };
int rc; int rc = SSH_ERROR;
/* Check provided state */ /* Check provided state */
if (state == NULL) { if (state == NULL) {
fprintf(stderr, "Invalid state\n"); fprintf(stderr, "Invalid state\n");
return SSH_ERROR; goto out;
} }
/* Set up SIGCHLD handler. */ /* Set up SIGCHLD handler. */
@ -98,7 +98,7 @@ int run_server(struct server_state_st *state)
if (sigaction(SIGCHLD, &sa, NULL) != 0) { if (sigaction(SIGCHLD, &sa, NULL) != 0) {
fprintf(stderr, "Failed to register SIGCHLD handler\n"); fprintf(stderr, "Failed to register SIGCHLD handler\n");
return SSH_ERROR; goto out;
} }
/* Set up SIGTERM handler. */ /* Set up SIGTERM handler. */
@ -107,7 +107,7 @@ int run_server(struct server_state_st *state)
if (sigaction(SIGTERM, &sa, NULL) != 0) { if (sigaction(SIGTERM, &sa, NULL) != 0) {
fprintf(stderr, "Failed to register SIGTERM handler\n"); fprintf(stderr, "Failed to register SIGTERM handler\n");
return SSH_ERROR; goto out;
} }
/* Redirect all the output and errors to the file to avoid mixing up with /* Redirect all the output and errors to the file to avoid mixing up with
@ -117,38 +117,38 @@ int run_server(struct server_state_st *state)
FILE *f = fopen(state->log_file, "a"); FILE *f = fopen(state->log_file, "a");
if (f == NULL) { if (f == NULL) {
fprintf(stderr, "Failed to open the log file: %s\n", strerror(errno)); fprintf(stderr, "Failed to open the log file: %s\n", strerror(errno));
return SSH_ERROR; goto out;
} }
fd = dup2(fileno(f), STDERR_FILENO); fd = dup2(fileno(f), STDERR_FILENO);
if (fd == -1) { if (fd == -1) {
fprintf(stderr, "dup2 of log file to stderr failed: %s\n", fprintf(stderr, "dup2 of log file to stderr failed: %s\n",
strerror(errno)); strerror(errno));
return SSH_ERROR; goto out;
} }
fd = dup2(fileno(f), STDOUT_FILENO); fd = dup2(fileno(f), STDOUT_FILENO);
if (fd == -1) { if (fd == -1) {
fprintf(stderr, "dup2 of log file to stdout failed: %s\n", fprintf(stderr, "dup2 of log file to stdout failed: %s\n",
strerror(errno)); strerror(errno));
return SSH_ERROR; goto out;
} }
fclose(f); fclose(f);
} }
if (state->address == NULL) { if (state->address == NULL) {
fprintf(stderr, "Missing bind address\n"); fprintf(stderr, "Missing bind address\n");
return SSH_ERROR; goto out;
} }
if (state->host_key == NULL && state->rsa_key == NULL && if (state->host_key == NULL && state->rsa_key == NULL &&
state->ecdsa_key == NULL && state->ed25519_key) { state->ecdsa_key == NULL && state->ed25519_key) {
fprintf(stderr, "Missing host key\n"); fprintf(stderr, "Missing host key\n");
return SSH_ERROR; goto out;
} }
sshbind = ssh_bind_new(); sshbind = ssh_bind_new();
if (sshbind == NULL) { if (sshbind == NULL) {
fprintf(stderr, "Out of memory\n"); fprintf(stderr, "Out of memory\n");
return SSH_ERROR; goto out;
} }
if (state->verbosity) { if (state->verbosity) {
@ -159,7 +159,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting verbosity level: %s\n", "Error setting verbosity level: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
} }
@ -168,14 +168,14 @@ int run_server(struct server_state_st *state)
SSH_BIND_OPTIONS_PROCESS_CONFIG, SSH_BIND_OPTIONS_PROCESS_CONFIG,
&(state->parse_global_config)); &(state->parse_global_config));
if (rc != 0) { if (rc != 0) {
goto free_sshbind; goto out;
} }
} }
if (state->config_file) { if (state->config_file) {
rc = ssh_bind_options_parse_config(sshbind, state->config_file); rc = ssh_bind_options_parse_config(sshbind, state->config_file);
if (rc != 0) { if (rc != 0) {
goto free_sshbind; goto out;
} }
} }
@ -186,7 +186,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting bind address: %s\n", "Error setting bind address: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
rc = ssh_bind_options_set(sshbind, rc = ssh_bind_options_set(sshbind,
@ -196,7 +196,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting bind port: %s\n", "Error setting bind port: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
if (state->rsa_key != NULL) { if (state->rsa_key != NULL) {
@ -207,7 +207,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting RSA key: %s\n", "Error setting RSA key: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
} }
@ -219,7 +219,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting ECDSA key: %s\n", "Error setting ECDSA key: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
} }
@ -231,7 +231,7 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error setting hostkey: %s\n", "Error setting hostkey: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
} }
@ -240,17 +240,17 @@ int run_server(struct server_state_st *state)
fprintf(stderr, fprintf(stderr,
"Error listening to socket: %s\n", "Error listening to socket: %s\n",
ssh_get_error(sshbind)); ssh_get_error(sshbind));
goto free_sshbind; goto out;
} }
printf("Started libssh test server on port %d\n", state->port); printf("%d: Started libssh test server on port %d\n", getpid(), state->port);
while (done == false) { while (done == false) {
session = ssh_new(); session = ssh_new();
if (session == NULL) { if (session == NULL) {
fprintf(stderr, "Out of memory\n"); fprintf(stderr, "Out of memory\n");
rc = SSH_ERROR; rc = SSH_ERROR;
goto free_sshbind; goto out;
} }
/* Blocks until there is a new incoming connection. */ /* Blocks until there is a new incoming connection. */
@ -283,11 +283,12 @@ int run_server(struct server_state_st *state)
ssh_free(session); ssh_free(session);
free_server_state(state); free_server_state(state);
SAFE_FREE(state);
exit(0); exit(0);
case -1: case -1:
fprintf(stderr, "Failed to fork\n"); fprintf(stderr, "Failed to fork\n");
} }
fprintf(stderr, "Forked process PID %d\n", pid);
} else { } else {
fprintf(stderr, fprintf(stderr,
"Error accepting a connection: %s\n", "Error accepting a connection: %s\n",
@ -302,12 +303,17 @@ int run_server(struct server_state_st *state)
rc = 0; rc = 0;
free_sshbind: out:
free_server_state(state);
SAFE_FREE(state);
ssh_bind_free(sshbind); ssh_bind_free(sshbind);
return rc; return rc;
} }
pid_t fork_run_server(struct server_state_st *state) pid_t
fork_run_server(struct server_state_st *state,
void (*free_test_state) (void **userdata),
void *userdata)
{ {
pid_t pid; pid_t pid;
int rc; int rc;
@ -337,6 +343,8 @@ pid_t fork_run_server(struct server_state_st *state)
pid = fork(); pid = fork();
switch(pid) { switch(pid) {
case 0: case 0:
/* no longer needed */
free_test_state(userdata);
/* Remove the SIGCHLD handler inherited from parent. */ /* Remove the SIGCHLD handler inherited from parent. */
sa.sa_handler = SIG_DFL; sa.sa_handler = SIG_DFL;
sigaction(SIGCHLD, &sa, NULL); sigaction(SIGCHLD, &sa, NULL);
@ -355,6 +363,7 @@ pid_t fork_run_server(struct server_state_st *state)
return -1; return -1;
default: default:
/* Return the child pid */ /* Return the child pid */
fprintf(stderr, "Forked process PID %d\n", pid);
return pid; return pid;
} }
} }

5
tests/server/test_server/test_server.h
View File

@ -74,4 +74,7 @@ void free_server_state(struct server_state_st *state);
int run_server(struct server_state_st *state); int run_server(struct server_state_st *state);
/*TODO: Add documentation */ /*TODO: Add documentation */
pid_t fork_run_server(struct server_state_st *state); pid_t
fork_run_server(struct server_state_st *state,
void (*free_state) (void **userdata),
void *userdata);

22
tests/server/torture_server_auth_kbdint.c
View File

@ -96,11 +96,7 @@ static void cleanup_pcap(struct session_data_st *sdata)
return; return;
} }
/* Do not free the pcap data context here since its ownership was ssh_pcap_file_free(sdata->pcap);
* transferred to the session object, which will take care of its cleanup.
* Moreover it is still in use so we can very simply crash by freeing
* it here.
*/
sdata->pcap = NULL; sdata->pcap = NULL;
} }
#endif #endif
@ -514,6 +510,14 @@ end:
return; return;
} }
static void free_test_server_state(void **state)
{
struct test_server_st *tss = *state;
torture_free_state(tss->state);
SAFE_FREE(tss);
}
static int setup_kbdint_server(void **state) static int setup_kbdint_server(void **state)
{ {
struct torture_state *s; struct torture_state *s;
@ -588,12 +592,15 @@ static int setup_kbdint_server(void **state)
ss->max_tries = 3; ss->max_tries = 3;
ss->error = 0; ss->error = 0;
tss->state = s;
tss->ss = ss;
/* Set the session handling function */ /* Set the session handling function */
ss->handle_session = handle_kbdint_session_cb; ss->handle_session = handle_kbdint_session_cb;
assert_non_null(ss->handle_session); assert_non_null(ss->handle_session);
/* Start the server */ /* Start the server */
pid = fork_run_server(ss); pid = fork_run_server(ss, free_test_server_state, &tss);
if (pid < 0) { if (pid < 0) {
fail(); fail();
} }
@ -608,9 +615,6 @@ static int setup_kbdint_server(void **state)
rc = torture_wait_for_daemon(15); rc = torture_wait_for_daemon(15);
assert_int_equal(rc, 0); assert_int_equal(rc, 0);
tss->state = s;
tss->ss = ss;
*state = tss; *state = tss;
return 0; return 0;

18
tests/torture.c
View File

@ -1114,6 +1114,16 @@ void torture_setup_sshd_server(void **state, bool pam)
assert_int_equal(rc, 0); assert_int_equal(rc, 0);
} }
void torture_free_state(struct torture_state *s)
{
free(s->srv_config);
free(s->socket_dir);
free(s->pcap_file);
free(s->srv_pidfile);
free(s->srv_additional_config);
free(s);
}
void torture_teardown_socket_dir(void **state) void torture_teardown_socket_dir(void **state)
{ {
struct torture_state *s = *state; struct torture_state *s = *state;
@ -1137,13 +1147,7 @@ void torture_teardown_socket_dir(void **state)
} }
s->plain_pcap = NULL; s->plain_pcap = NULL;
#endif /* WITH_PCAP */ #endif /* WITH_PCAP */
torture_free_state(s);
free(s->srv_config);
free(s->socket_dir);
free(s->pcap_file);
free(s->srv_pidfile);
free(s->srv_additional_config);
free(s);
} }
static int static int

2
tests/torture.h
View File

@ -155,6 +155,8 @@ __attribute__((weak)) int torture_run_tests(void);
int torture_run_tests(void); int torture_run_tests(void);
#endif #endif
void torture_free_state(struct torture_state *s);
char *torture_make_temp_dir(const char *template); char *torture_make_temp_dir(const char *template);
char *torture_create_temp_file(const char *template); char *torture_create_temp_file(const char *template);