[v1] RedfishClientPkg: fix issues with local variables.

[edk2-devel] [PATCH 2/5] RedfishClientPkg: fix access to uninitialized variable

Posted by Mike Maslenkin 2 years, 5 months ago

This patch fixes access to uninitialized variable, causing ASSERT from
FreePool at least.

Before this patch RedfishSettingsResponse was initialized by
GetResourceByUri under 'if (JsonValue != NULL)' condition.
But freed under 'if (Private->Payload != NULL)' condition.
Thus uninitialized pointers caused ASSERT on attempt to free memory.

Signed-off-by: Mike Maslenkin <mike.maslenkin@gmail.com>
---
 RedfishClientPkg/Features/Bios/v1_0_9/Dxe/BiosDxe.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/RedfishClientPkg/Features/Bios/v1_0_9/Dxe/BiosDxe.c b/RedfishClientPkg/Features/Bios/v1_0_9/Dxe/BiosDxe.c
index e7ac8779581c..f5562fb49cab 100644
--- a/RedfishClientPkg/Features/Bios/v1_0_9/Dxe/BiosDxe.c
+++ b/RedfishClientPkg/Features/Bios/v1_0_9/Dxe/BiosDxe.c
@@ -128,6 +128,8 @@ RedfishResourceConsumeResource (
     return Status;
   }
 
+  ZeroMem (&RedfishSettingsResponse, sizeof (REDFISH_RESPONSE));
+
   ExpectedResponse   = &Response;
   RedfishSettingsUri = NULL;
   JsonValue          = RedfishJsonInPayload (Response.Payload);
-- 
2.32.0 (Apple Git-132)



-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#108045): https://edk2.groups.io/g/devel/message/108045
Mute This Topic: https://groups.io/mt/100988472/1787277
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [importer@patchew.org]
-=-=-=-=-=-=-=-=-=-=-=-

[edk2-devel] [PATCH 1/5] RedfishClientPkg: fix crash on access to uninialized list variable.
[edk2-devel] [PATCH 2/5] RedfishClientPkg: fix access to uninitialized variable
[edk2-devel] [PATCH 3/5] RedfishClientPkg: fix leak of allocated Etag data
[edk2-devel] [PATCH 4/5] RedfishClientPkg: fix memory leak during EFI variables write.
[edk2-devel] [PATCH 5/5] RedfishClientPkg: fix misprints in Readme.md