about summary refs log tree commit diff
path: root/string
diff options
context:
space:
mode:
authorFlorian Weimer <fweimer@redhat.com>2023-06-15 12:08:22 +0200
committerFlorian Weimer <fweimer@redhat.com>2023-06-15 19:54:09 +0200
commit1d44530a5be2442e064baa48139adc9fdfb1fc6b (patch)
tree99321e32c7e27993de27c359e2022afe1fdf8c91 /string
parent388ae538ddcb05c7d8966147b488a5f6e481656e (diff)
downloadglibc-1d44530a5be2442e064baa48139adc9fdfb1fc6b.tar.gz
glibc-1d44530a5be2442e064baa48139adc9fdfb1fc6b.tar.xz
glibc-1d44530a5be2442e064baa48139adc9fdfb1fc6b.zip
string: strerror must not return NULL (bug 30555) fw/bug30555
For strerror, this fixes commit 28aff047818eb1726394296d27b ("string:
Implement strerror in terms of strerror_l").  This commit avoids
returning NULL for strerror_l as well, although POSIX allows this
behavior for strerror_l.

Reviewed-by: Arjun Shankar <arjun@redhat.com>
Diffstat (limited to 'string')
-rw-r--r--string/Makefile1
-rw-r--r--string/strerror_l.c13
-rw-r--r--string/tst-strerror-fail.c77
3 files changed, 87 insertions, 4 deletions
diff --git a/string/Makefile b/string/Makefile
index 0ad276cc6a..d3106d10a9 100644
--- a/string/Makefile
+++ b/string/Makefile
@@ -178,6 +178,7 @@ tests := \
   tst-endian \
   tst-inlcall \
   tst-memmove-overflow \
+  tst-strerror-fail \
   tst-strfry \
   tst-strlcat \
   tst-strlcpy \
diff --git a/string/strerror_l.c b/string/strerror_l.c
index 7fe9b1d903..e5c8666198 100644
--- a/string/strerror_l.c
+++ b/string/strerror_l.c
@@ -43,10 +43,15 @@ __strerror_l (int errnum, locale_t loc)
       struct tls_internal_t *tls_internal = __glibc_tls_internal ();
       free (tls_internal->strerror_l_buf);
       if (__asprintf (&tls_internal->strerror_l_buf, "%s%d",
-		      translate ("Unknown error ", loc), errnum) == -1)
-	tls_internal->strerror_l_buf = NULL;
-
-      err = tls_internal->strerror_l_buf;
+		      translate ("Unknown error ", loc), errnum) > 0)
+	err = tls_internal->strerror_l_buf;
+      else
+	{
+	  /* The memory was freed above.  */
+	  tls_internal->strerror_l_buf = NULL;
+	  /* Provide a fallback translation.  */
+	  err = (char *) translate ("Unknown error", loc);
+	}
     }
   else
     err = (char *) translate (err, loc);
diff --git a/string/tst-strerror-fail.c b/string/tst-strerror-fail.c
new file mode 100644
index 0000000000..e0fa45ab2b
--- /dev/null
+++ b/string/tst-strerror-fail.c
@@ -0,0 +1,77 @@
+/* Check that strerror, strerror_l do not return NULL on  failure (bug 30555).
+   Copyright (C) 2023 Free Software Foundation, Inc.
+   This file is part of the GNU C Library.
+
+   The GNU C Library is free software; you can redistribute it and/or
+   modify it under the terms of the GNU Lesser General Public
+   License as published by the Free Software Foundation; either
+   version 2.1 of the License, or (at your option) any later version.
+
+   The GNU C Library is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+   Lesser General Public License for more details.
+
+   You should have received a copy of the GNU Lesser General Public
+   License along with the GNU C Library; if not, see
+   <https://www.gnu.org/licenses/>.  */
+
+
+#include <locale.h>
+#include <stdbool.h>
+#include <stdlib.h>
+#include <string.h>
+#include <support/check.h>
+#include <support/namespace.h>
+#include <support/xdlfcn.h>
+
+/* Interposed malloc that can be used to inject allocation failures.  */
+
+static volatile bool fail_malloc;
+
+void *
+malloc (size_t size)
+{
+  if (fail_malloc)
+    return NULL;
+
+  static void *(*original_malloc) (size_t);
+  if (original_malloc == NULL)
+    original_malloc = xdlsym (RTLD_NEXT, "malloc");
+  return original_malloc (size);
+}
+
+/* Callbacks for the actual tests.  Use fork to run both tests with a
+   clean state.  */
+
+static void
+test_strerror (void *closure)
+{
+  fail_malloc = true;
+  const char *s = strerror (999);
+  fail_malloc = false;
+  TEST_COMPARE_STRING (s, "Unknown error");
+}
+
+static void
+test_strerror_l (void *closure)
+{
+  locale_t loc = newlocale (LC_ALL, "C", (locale_t) 0);
+  TEST_VERIFY (loc != (locale_t) 0);
+  fail_malloc = true;
+  const char *s = strerror_l (999, loc);
+  fail_malloc = false;
+  TEST_COMPARE_STRING (s, "Unknown error");
+  freelocale (loc);
+}
+
+static int
+do_test (void)
+{
+  support_isolate_in_subprocess (test_strerror, NULL);
+  support_isolate_in_subprocess (test_strerror_l, NULL);
+
+  return 0;
+}
+
+#include <support/test-driver.c>