mctpd: zero initialize link data

khangng-ampere · khangng-ampere · commit 96c256d97bef · 2025-06-02T13:31:11.000+07:00
On non-bus-owner modes, link-&gt;slot_busowner will be uninitialized,
leading to segmentation fault when running sd_bus_slot_unref.

    ==3850684== Conditional jump or move depends on uninitialised value(s)
    ==3850684==    at 0x48FB448: sd_bus_slot_unref (in /usr/lib/aarch64-linux-gnu/libsystemd.so.0.38.0)
    ==3850684==    by 0x1123E3: free_link (mctpd.c:3263)
    ==3850684==    by 0x1125CB: free_links (mctpd.c:3308)
    ==3850684==    by 0x113D63: main (mctpd.c:3900)

Simply zero initialize the link data.

Signed-off-by: Khang D Nguyen &lt;khangng@os.amperecomputing.com&gt;
diff --git a/src/mctpd.c b/src/mctpd.c
@@ -3573,7 +3573,7 @@ static int add_interface(struct ctx *ctx, int ifindex)
 		return -ENOENT;
 	}
 
-	struct link *link = malloc(sizeof(*link));
+	struct link *link = calloc(sizeof(*link), 1);
 	if (!link)
 		return -ENOMEM;
 

Original file line number	Diff line number	Diff line change
`@@ -3573,7 +3573,7 @@ static int add_interface(struct ctx *ctx, int ifindex)`
`3573`	`3573`	`return -ENOENT;`
`3574`	`3574`	`}`
`3575`	`3575`
`3576`		`- struct link link = malloc(sizeof(link));`
	`3576`	`+ struct link link = calloc(sizeof(link), 1);`
`3577`	`3577`	`if (!link)`
`3578`	`3578`	`return -ENOMEM;`
`3579`	`3579`