diff options
author | René Scharfe <l.s.r@web.de> | 2017-04-16 18:55:58 +0200 |
---|---|---|
committer | Junio C Hamano <gitster@pobox.com> | 2017-04-17 17:37:28 -0700 |
commit | fa1912c89a72fbd94591f4f5d522e5867ffe9bb6 (patch) | |
tree | 23ed30cd24661d62f4e5cb374f7f8166a059f413 | |
parent | be686f03e0f4c4f14f1d4ae9b1b35836168a0a4b (diff) | |
download | git-fa1912c89a72fbd94591f4f5d522e5867ffe9bb6.tar.gz git-fa1912c89a72fbd94591f4f5d522e5867ffe9bb6.tar.xz |
server-info: avoid calling fclose(3) twice in update_info_file()
If an error occurs when or after closing the stream we call fclose(3)
again in the error handler. The second call can exhibit undefined
behavior, so make sure to call fclose(3) at most once. Also avoid
calling close(2) after fd has been successfully associated with the
stream, as fclose(3) has become responsible for doing that beyond
this point.
Found with Cppcheck.
Signed-off-by: Rene Scharfe <l.s.r@web.de>
Reviewed-by: Jeff King <peff@peff.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
-rw-r--r-- | server-info.c | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/server-info.c b/server-info.c index 7bc4e75d2..f6c1a3dfb 100644 --- a/server-info.c +++ b/server-info.c @@ -14,19 +14,21 @@ static int update_info_file(char *path, int (*generate)(FILE *)) char *tmp = mkpathdup("%s_XXXXXX", path); int ret = -1; int fd = -1; - FILE *fp = NULL; + FILE *fp = NULL, *to_close; safe_create_leading_directories(path); fd = git_mkstemp_mode(tmp, 0666); if (fd < 0) goto out; - fp = fdopen(fd, "w"); + to_close = fp = fdopen(fd, "w"); if (!fp) goto out; + fd = -1; ret = generate(fp); if (ret) goto out; - if (fclose(fp)) + fp = NULL; + if (fclose(to_close)) goto out; if (adjust_shared_perm(tmp) < 0) goto out; |