[FIX] Add NULL checks for fopen() and alloc_demuxer_data() in process_hex()#2202
Open
Navdeepkaur-11 wants to merge 3 commits intoCCExtractor:masterfrom
Open
[FIX] Add NULL checks for fopen() and alloc_demuxer_data() in process_hex()#2202Navdeepkaur-11 wants to merge 3 commits intoCCExtractor:masterfrom
Navdeepkaur-11 wants to merge 3 commits intoCCExtractor:masterfrom
Conversation
cfsmp3
requested changes
Mar 16, 2026
Contributor
cfsmp3
left a comment
cfsmp3
left a comment
There was a problem hiding this comment.
Good fix — the NULL checks for both fopen() and alloc_demuxer_data() are correct, braces are in place, and the fclose(fr) cleanup before the second fatal() is a nice touch. Two small things:
1. Wrong exit code for fopen
CCX_COMMON_EXIT_FILE_CREATION_FAILED is for file creation. Since we're opening for reading, use EXIT_READ_ERROR instead:
fatal(EXIT_READ_ERROR, "In process_hex: Unable to open file %s for reading.", filename);2. Drop CHANGES.TXT entry
This is internal hardening, not a user-facing change — no CHANGES.TXT entry needed. (It's also placed above the version header, which is the wrong spot.)
Fix those two and this is ready to merge.
Author
|
Fixed both issues:
|
Collaborator
CCExtractor CI platform finished running the test files on windows. Below is a summary of the test results, when compared to test for commit 578abca...:
Your PR breaks these cases:
NOTE: The following tests have been failing on the master branch as well as the PR:
It seems that not all tests were passed completely. This is an indication that the output of some files is not as expected (but might be according to you). Check the result page for more info. |
Collaborator
CCExtractor CI platform finished running the test files on linux. Below is a summary of the test results, when compared to test for commit 578abca...:
Your PR breaks these cases:
NOTE: The following tests have been failing on the master branch as well as the PR:
Congratulations: Merging this PR would fix the following tests:
It seems that not all tests were passed completely. This is an indication that the output of some files is not as expected (but might be according to you). Check the result page for more info. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
In raising this pull request, I confirm the following (please check boxes):
My familiarity with the project is as follows (check one):
Fixes #2201
Summary
In process_hex() in src/lib_ccx/general_loop.c, two return
values were not checked:
fopen() — if the file cannot be opened, fr is NULL and
the subsequent fgets(fr) call crashes with a segfault.
alloc_demuxer_data() — if allocation fails, data is NULL
and causes undefined behavior when used later.
Fix
cleanup before fatal() to avoid resource leak
Files Changed