[EGIT] [core/efl] master 01/01: efl_io_queue: add null check for slice->mem

Shinwoo Kim Tue, 10 Apr 2018 00:28:26 -0700

kimcinoo pushed a commit to branch master.

http://git.enlightenment.org/core/efl.git/commit/?id=579eeb4a8c68967432ddbaa23ddc675e9b64c6b1


commit 579eeb4a8c68967432ddbaa23ddc675e9b64c6b1
Author: Shinwoo Kim <cinoo....@samsung.com>
Date:   Tue Apr 10 16:13:44 2018 +0900

    efl_io_queue: add null check for slice->mem
    
    A negative test case leads to segmentation fault.
    If ecore_evas_msg_parent_send is called with NULL data, then slice->mem 
would
    be NULL, and _efl_io_queue_efl_io_writer_write calls memcpy with NULL src.
---
 src/lib/efl/interfaces/efl_io_queue.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/lib/efl/interfaces/efl_io_queue.c 
b/src/lib/efl/interfaces/efl_io_queue.c
index 80bc0636fe..d073836c93 100644
--- a/src/lib/efl/interfaces/efl_io_queue.c
+++ b/src/lib/efl/interfaces/efl_io_queue.c
@@ -375,6 +375,7 @@ _efl_io_queue_efl_io_writer_write(Eo *o, Efl_Io_Queue_Data 
*pd, Eina_Slice *slic
    int err = EINVAL;
 
    EINA_SAFETY_ON_NULL_RETURN_VAL(slice, EINVAL);
+   EINA_SAFETY_ON_NULL_RETURN_VAL(slice->mem, EINVAL);
    EINA_SAFETY_ON_TRUE_GOTO(efl_io_closer_closed_get(o), error);
 
    err = EBADF;

--

[EGIT] [core/efl] master 01/01: efl_io_queue: add null check for slice->mem

Reply via email to