From e882f2a1855f219bacdf2372e0c2083619913701 Mon Sep 17 00:00:00 2001
From: Zoltan Fridrich <zfridric@redhat.com>
Date: Wed, 21 Apr 2021 10:31:10 +0200
Subject: [PATCH] Fix issues detected by static analyzers Commits:
 https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=954a5ce4fdf195e062909f2c921d8f915d2905b9
 https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=b08b523364b133d7e158968892eba48a18827142
 Resolves: rhbz#1938758

---
 libcap-static-analysis-fix.patch | 152 +++++++++++++++++++++++++++++++
 libcap.spec                      |   6 +-
 2 files changed, 157 insertions(+), 1 deletion(-)
 create mode 100644 libcap-static-analysis-fix.patch

diff --git a/libcap-static-analysis-fix.patch b/libcap-static-analysis-fix.patch
new file mode 100644
index 0000000..5e2732a
--- /dev/null
+++ b/libcap-static-analysis-fix.patch
@@ -0,0 +1,152 @@
+diff --color -ru a/pam_cap/pam_cap.c b/pam_cap/pam_cap.c
+--- a/pam_cap/pam_cap.c	2021-02-05 06:52:17.000000000 +0100
++++ b/pam_cap/pam_cap.c	2021-04-23 09:48:00.091122637 +0200
+@@ -218,7 +218,7 @@
+ 	if (!cap_set_proc(cap_s)) {
+ 	    ok = 1;
+ 	}
+-	goto cleanup_cap_s;
++	goto cleanup_conf;
+     }
+ 
+     iab = cap_iab_from_text(conf_caps);
+@@ -238,10 +238,9 @@
+     _pam_drop(conf_caps);
+ 
+ cleanup_cap_s:
+-    if (cap_s) {
+-	cap_free(cap_s);
+-	cap_s = NULL;
+-    }
++    cap_free(cap_s);
++    cap_s = NULL;
++
+     return ok;
+ }
+ 
+diff --color -ru a/progs/capsh.c b/progs/capsh.c
+--- a/progs/capsh.c	2021-02-05 06:52:17.000000000 +0100
++++ b/progs/capsh.c	2021-04-23 09:48:00.095122691 +0200
+@@ -336,8 +336,8 @@
+  */
+ static char *find_self(const char *arg0)
+ {
+-    int i;
+-    char *parts, *dir, *scratch;
++    int i, status=1;
++    char *p = NULL, *parts, *dir, *scratch;
+     const char *path;
+ 
+     for (i = strlen(arg0)-1; i >= 0 && arg0[i] != '/'; i--);
+@@ -352,21 +352,45 @@
+     }
+ 
+     parts = strdup(path);
++    if (parts == NULL) {
++        fprintf(stderr, "insufficient memory for parts of path\n");
++	exit(1);
++    }
++
+     scratch = malloc(2+strlen(path)+strlen(arg0));
+-    if (parts == NULL || scratch == NULL) {
++    if (scratch == NULL) {
+         fprintf(stderr, "insufficient memory for path building\n");
+-	exit(1);
++	goto free_parts;
+     }
+ 
+-    for (i=0; (dir = strtok(parts, ":")); parts = NULL) {
++    for (p = parts; (dir = strtok(p, ":")); p = NULL) {
+         sprintf(scratch, "%s/%s", dir, arg0);
+ 	if (access(scratch, X_OK) == 0) {
+-            return scratch;
++	    status = 0;
++	    break;
+ 	}
+     }
++    if (status) {
++	fprintf(stderr, "unable to find executable '%s' in PATH\n", arg0);
++	free(scratch);
++    }
++
++free_parts:
++    free(parts);
++    if (status) {
++	exit(status);
++    }
++    return scratch;
++}
+ 
+-    fprintf(stderr, "unable to find executable '%s' in PATH\n", arg0);
+-    exit(1);
++static long safe_sysconf(int name)
++{
++    long ans = sysconf(name);
++    if (ans <= 0) {
++	fprintf(stderr, "sysconf(%d) returned a non-positive number: %ld\n", name, ans);
++	exit(1);
++    }
++    return ans;
+ }
+ 
+ int main(int argc, char *argv[], char *envp[])
+@@ -617,7 +641,9 @@
+ 	     * Given we are now in a new directory tree, its good practice
+ 	     * to start off in a sane location
+ 	     */
+-	    status = chdir("/");
++	    if (status == 0) {
++		status = chdir("/");
++	    }
+ 
+ 	    cap_free(orig);
+ 
+@@ -718,14 +744,14 @@
+ 	  gid_t *group_list;
+ 	  int g_count;
+ 
+-	  length = sysconf(_SC_GETGR_R_SIZE_MAX);
++	  length = safe_sysconf(_SC_GETGR_R_SIZE_MAX);
+ 	  buf = calloc(1, length);
+ 	  if (NULL == buf) {
+ 	    fprintf(stderr, "No memory for [%s] operation\n", argv[i]);
+ 	    exit(1);
+ 	  }
+ 
+-	  max_groups = sysconf(_SC_NGROUPS_MAX);
++	  max_groups = safe_sysconf(_SC_NGROUPS_MAX);
+ 	  group_list = calloc(max_groups, sizeof(gid_t));
+ 	  if (NULL == group_list) {
+ 	    fprintf(stderr, "No memory for gid list\n");
+@@ -741,8 +767,7 @@
+ 	    }
+ 	    if (!isdigit(*ptr)) {
+ 	      struct group *g, grp;
+-	      getgrnam_r(ptr, &grp, buf, length, &g);
+-	      if (NULL == g) {
++	      if (getgrnam_r(ptr, &grp, buf, length, &g) || NULL == g) {
+ 		fprintf(stderr, "Failed to identify gid for group [%s]\n", ptr);
+ 		exit(1);
+ 	      }
+@@ -835,6 +860,7 @@
+ 	    argv[argc] = NULL;
+ 	    execve(argv[i], argv+i, envp);
+ 	    fprintf(stderr, "execve '%s' failed!\n", argv[i]);
++	    free(argv[i]);
+ 	    exit(1);
+ 	} else if (!strncmp("--shell=", argv[i], 8)) {
+ 	    shell = argv[i]+8;
+diff --color -ru a/psx/psx.c b/psx/psx.c
+--- a/psx/psx.c	2021-02-05 06:52:17.000000000 +0100
++++ b/psx/psx.c	2021-04-23 09:48:00.095122691 +0200
+@@ -454,6 +454,10 @@
+ int __wrap_pthread_create(pthread_t *thread, const pthread_attr_t *attr,
+ 			  void *(*start_routine) (void *), void *arg) {
+     psx_starter_t *starter = calloc(1, sizeof(psx_starter_t));
++    if (starter == NULL) {
++	perror("failed at thread creation");
++	exit(1);
++    }
+     starter->fn = start_routine;
+     starter->arg = arg;
+     /*
diff --git a/libcap.spec b/libcap.spec
index 4d62135..f55e133 100644
--- a/libcap.spec
+++ b/libcap.spec
@@ -1,12 +1,13 @@
 Name: libcap
 Version: 2.48
-Release: 3%{?dist}
+Release: 4%{?dist}
 Summary: Library for getting and setting POSIX.1e capabilities
 URL: https://sites.google.com/site/fullycapable/
 License: BSD or GPLv2
 
 Source: https://git.kernel.org/pub/scm/libs/libcap/libcap.git/snapshot/%{name}-%{version}.tar.gz
 Patch0: libcap-use-compiler-flag-options.patch
+Patch1: libcap-static-analysis-fix.patch
 
 BuildRequires: libattr-devel pam-devel perl-interpreter gcc
 BuildRequires: make
@@ -83,6 +84,9 @@ chmod +x %{buildroot}/%{_libdir}/*.so.*
 
 
 %changelog
+* Tue Jun 15 2021 Zoltan Fridrich <zfridric@redhat.com> - 2.48-4
+- Fix issues detected by static analyzers (rhbz#1938758)
+
 * Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 2.48-3
 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937