SCP: Initialized de-dup'ed debug line buffer.

realloc(NULL, size) == malloc(size), which results in an uninitialized debug line buffer and will fail memory sanitizer checks. Ensure that the buffers are memset() to zero when initially allocated.
open-simh · Nov 29, 2023 · 188a599 · 188a599
1 parent 625b9e8
commit 188a599
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/scp.c b/scp.c
@@ -13622,9 +13622,18 @@ if (sim_deb_switches & SWMASK ('F')) {              /* filtering disabled? */
     }
 AIO_LOCK;
 if (debug_line_offset + len + 1 > debug_line_bufsize) {
+    /* realloc(NULL, size) == malloc(size). Really. It is. Initialize
+     * the malloc()-ed space. */
+    int do_init = (NULL == debug_line_buf) || (NULL == debug_line_buf_last);
+
     debug_line_bufsize += MAX(1024, debug_line_offset + len + 1);
     debug_line_buf = (char *)realloc (debug_line_buf, debug_line_bufsize);
     debug_line_buf_last = (char *)realloc (debug_line_buf_last, debug_line_bufsize);
+
+    if (do_init) {
+        memset(debug_line_buf, 0, debug_line_bufsize);
+        memset(debug_line_buf_list, 0, debug_line_bufsize);
+        }
     }
 memcpy (&debug_line_buf[debug_line_offset], buf, len);
 debug_line_buf[debug_line_offset + len] = '\0';