libvirt

mirror of https://gitlab.com/libvirt/libvirt.git synced 2025-04-01 20:05:19 +00:00

Go to file

Eric Blake d95488dce5 security, storage: plug memory leaks for security_context_t

security_context_t happens to be a typedef for char*, and happens to
begin with a string usable as a raw context string.  But in reality,
it is an opaque type that may or may not have additional information
after the first NUL byte, where that additional information can
include pointers that can only be freed via freecon().

Proof is from this valgrind run of daemon/libvirtd:

==6028== 839,169 (40 direct, 839,129 indirect) bytes in 1 blocks are definitely lost in loss record 274 of 274
==6028==    at 0x4A0515D: malloc (vg_replace_malloc.c:195)
==6028==    by 0x3022E0D48C: selabel_open (label.c:165)
==6028==    by 0x3022E11646: matchpathcon_init_prefix (matchpathcon.c:296)
==6028==    by 0x3022E1190D: matchpathcon (matchpathcon.c:317)
==6028==    by 0x4F9D842: SELinuxRestoreSecurityFileLabel (security_selinux.c:382)

800k is a lot of memory to be leaking.

* src/storage/storage_backend.c
(virStorageBackendUpdateVolTargetInfoFD): Avoid leak on error.
* src/security/security_selinux.c
(SELinuxReserveSecurityLabel, SELinuxGetSecurityProcessLabel)
(SELinuxRestoreSecurityFileLabel): Use correct function to free
security_context_t.

2010-11-24 15:23:43 -07:00

.gnulib @ 48b1a1ae7d

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

daemon

implement the remote protocol

2010-11-23 15:04:42 -07:00

docs

libvirtd: fix bug when shrinking number of clients

2010-11-23 08:43:00 -07:00

examples

Use python discovered through env instead of hardcoding a path

2010-11-14 22:45:59 +01:00

include

virDomainIsUpdated: define the new public API

2010-11-23 14:22:31 -07:00

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

python

Use python discovered through env instead of hardcoding a path

2010-11-14 22:45:59 +01:00

src

security, storage: plug memory leaks for security_context_t

2010-11-24 15:23:43 -07:00

tests

tests: Fix dispatching internal error reports

2010-11-23 12:15:14 -05:00

tools

maint: prohibit most uses of xmlGetProp

2010-11-24 15:23:43 -07:00

.dir-locals.el

misc: encode the Emacs suggstions from HACKING into a .dir-locals.el file

2010-11-01 10:22:58 -06:00

.gitignore

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

.gitmodules

make .gnulib a submodule

2009-07-08 16:17:51 +02:00

.mailmap

maint: update an email address preference

2010-08-10 08:13:22 -06:00

.x-sc_avoid_ctype_macros

exempt gnulib from ctype-macros prohibition

2008-10-28 17:36:31 +00:00

.x-sc_avoid_if_before_free

avoid a "make syntax-check" failure

2009-07-09 20:00:37 +02:00

.x-sc_avoid_write

Re-write virsh console to use streams

2010-11-11 16:03:20 +00:00

.x-sc_bindtextdomain

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

.x-sc_m4_quote_check

syntax-check: enable more checks

2009-02-03 13:08:36 +00:00

.x-sc_po_check

build: avoid false positive syntax-check failure

2010-10-19 09:28:35 -06:00

.x-sc_prohibit_always_true_header_tests

build: update gnulib

2010-05-06 14:35:38 -06:00

.x-sc_prohibit_asprintf

add .x-sc_prohibit_asprintf

2008-12-23 13:40:42 +00:00

.x-sc_prohibit_close

build: enforce files.h usage

2010-11-24 15:23:43 -07:00

.x-sc_prohibit_empty_lines_at_EOF

maint: fix syntax-check failure of previous patch

2010-10-26 15:50:19 -06:00

.x-sc_prohibit_gethostby

Various syntax-check fixes.

2009-10-26 10:34:05 +01:00

.x-sc_prohibit_gethostname

Add a new syntax-check rule for gethostname.

2009-10-26 10:34:27 +01:00

.x-sc_prohibit_gettext_noop

build: fix syntax-check problems

2010-04-12 16:43:05 -06:00

.x-sc_prohibit_have_config_h

maint: sync from coreutils

2009-01-29 18:06:19 +00:00

.x-sc_prohibit_HAVE_MBRTOWC

maint: sync from coreutils

2009-01-29 18:06:19 +00:00

.x-sc_prohibit_nonreentrant

Tighten up nonreentrant syntax-check.

2009-10-26 10:33:42 +01:00

.x-sc_prohibit_readlink

Add a rule to check for uses of readlink.

2010-01-22 09:42:35 -05:00

.x-sc_prohibit_sprintf

maint: avoid remaining sprintf uses

2010-11-17 10:13:12 -07:00

.x-sc_prohibit_strcmp

exempt gnulib/ from "make syntax-check" strcmp prohibition

2008-05-14 21:18:27 +00:00

.x-sc_prohibit_strncmp

maint: tighten strncmp syntax check

2010-11-18 12:21:58 -07:00

.x-sc_prohibit_strncpy

Avoid checking against strncpy in virsh.c

2010-10-12 19:26:10 +02:00

.x-sc_prohibit_test_minus_ao

build: fix syntax-check problems

2010-04-12 16:43:05 -06:00

.x-sc_prohibit_VIR_ERR_NO_MEMORY

Various syntax-check fixes.

2009-10-26 10:34:05 +01:00

.x-sc_prohibit_xmlGetProp

maint: prohibit most uses of xmlGetProp

2010-11-24 15:23:43 -07:00

.x-sc_require_config_h

Various syntax-check fixes.

2009-10-26 10:34:05 +01:00

.x-sc_require_config_h_first

Misc syntax-check fixes

2009-09-21 14:41:47 +01:00

.x-sc_trailing_blank

build: exempt *.ico files from the trailing blank check

2008-10-16 13:28:07 +00:00

.x-sc_unmarked_diagnostics

build: import latest gnulib

2010-04-02 10:18:55 -06:00

acinclude.m4

maint: turn on gcc logical-op checking

2010-07-28 15:25:36 +02:00

AUTHORS

audit: printf warning fix

2010-10-28 11:23:42 -06:00

autobuild.sh

build: fix autobuild failures on gcov upgrade

2010-11-17 11:58:45 -07:00

autogen.sh

build: require pkg-config for bootstrap

2010-10-05 13:54:39 -06:00

bootstrap

maint: update to latest gnulib

2010-11-17 10:13:12 -07:00

bootstrap.conf

maint: use gnulib configmake rather than open-coding things

2010-11-17 08:58:58 -07:00

cfg.mk

maint: prohibit most uses of xmlGetProp

2010-11-24 15:23:43 -07:00

ChangeLog-old

generate ChangeLog from git logs into distribution tarball

2009-07-08 16:17:51 +02:00

configure.ac

Include a thread identifier in log messages

2010-11-23 14:09:35 +00:00

COPYING.LIB

remove all trailing blank lines

2009-07-16 15:06:42 +02:00

HACKING

libvirtd: fix bug when shrinking number of clients

2010-11-23 08:43:00 -07:00

libvirt.pc.in

* libvirt.pc.in: applied patch from Daniel Berrange to fix --cflags

2006-03-24 13:18:12 +00:00

libvirt.spec.in

rpm: Fix summary wording

2010-11-12 10:07:33 -05:00

Makefile.am

maint: prohibit most uses of xmlGetProp

2010-11-24 15:23:43 -07:00

Makefile.nonreentrant

Ban use of all inet_* functions

2010-10-22 11:59:23 +01:00

mingw32-libvirt.spec.in

Add dtrace static probes in libvirtd

2010-10-22 12:00:39 +01:00

README

Correct typos in the documentation (Atsushi SAKAI)

2008-01-24 10:15:13 +00:00

README-hacking

maint: relax git minimum version

2010-02-24 14:29:27 -05:00

TODO

Update todo list file to point at bugzilla/website

2010-10-13 16:45:26 +01:00

README

         LibVirt : simple API for virtualization

  Libvirt is a C toolkit to interact with the virtualization capabilities
of recent versions of Linux (and other OSes). It is free software
available under the GNU Lesser General Public License. Virtualization of
the Linux Operating System means the ability to run multiple instances of
Operating Systems concurrently on a single hardware system where the basic
resources are driven by a Linux instance. The library aim at providing
long term stable C API initially for the Xen paravirtualization but
should be able to integrate other virtualization mechanisms if needed.

Daniel Veillard <veillard@redhat.com>

Description

Libvirt provides a portable, long term stable C API for managing the virtualization technologies provided by many operating systems. It includes support for QEMU, KVM, Xen, LXC, bhyve, Virtuozzo, VMware vCenter and ESX, VMware Desktop, Hyper-V, VirtualBox and the POWER Hypervisor.

Readme 752 MiB

Languages

C 95.1%

Python 2%

Meson 0.9%

Shell 0.6%

Perl 0.5%

Other 0.8%