[igt-dev] [PATCH i-g-t 1/4] lib/igt_device_scan: Fix dangling pointer usage

[Ryszard Knop]

When the attribute value is duplicated in g_hash_table_insert, v may be
a pointer to linkto, which is no longer in scope at that point.

Signed-off-by: Ryszard Knop <ryszard.knop at intel.com>
---
 lib/igt_device_scan.c | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/lib/igt_device_scan.c b/lib/igt_device_scan.c
index a1cee7a4..b07268db 100644
--- a/lib/igt_device_scan.c
+++ b/lib/igt_device_scan.c
@@ -337,7 +337,7 @@ static void igt_device_add_prop(struct igt_device *dev,
 static void igt_device_add_attr(struct igt_device *dev,
 				const char *key, const char *value)
 {
-	const char *v = value;
+	char *v;
 
 	if (!key)
 		return;
@@ -345,11 +345,13 @@ static void igt_device_add_attr(struct igt_device *dev,
 	/* It's possible we have symlink at key filename, but udev
 	 * library resolves only few of them
 	 */
-	if (!v) {
+	if (value) {
+		v = strdup(value);
+	} else {
 		struct stat st;
 		char path[PATH_MAX];
 		char linkto[PATH_MAX];
-		int len;
+		ssize_t len;
 
 		snprintf(path, sizeof(path), "%s/%s", dev->syspath, key);
 		if (lstat(path, &st) != 0)
@@ -362,10 +364,11 @@ static void igt_device_add_attr(struct igt_device *dev,
 		v = strrchr(linkto, '/');
 		if (v == NULL)
 			return;
-		v++;
+
+		v = strdup(v + 1);
 	}
 
-	g_hash_table_insert(dev->attrs_ht, strdup(key), strdup(v));
+	g_hash_table_insert(dev->attrs_ht, strdup(key), v);
 }
 
 /* Iterate over udev properties list and rewrite it to igt_device properties
-- 
2.36.1