From 9442dce451d2ffa1d1e87e6c4a10990b1e02d0fe Mon Sep 17 00:00:00 2001 From: Victor Julien Date: Wed, 26 Feb 2014 12:41:15 +0100 Subject: [PATCH] commandline parsing: check optarg ptr before using it Fixes: ** CID 1075221: Dereference after null check (FORWARD_NULL) /src/suricata.c: 1344 in ParseCommandLine() The reason it gave this warning is that in other paths using optarg there was a check, so the checker assumed optarg can be NULL. --- src/suricata.c | 24 +++++++++++++----------- 1 file changed, 13 insertions(+), 11 deletions(-) diff --git a/src/suricata.c b/src/suricata.c index 64316c9abf..9bf971df37 100644 --- a/src/suricata.c +++ b/src/suricata.c @@ -1341,17 +1341,19 @@ static TmEcode ParseCommandLine(int argc, char** argv, SCInstance *suri) } #endif else if (strcmp((long_opts[option_index]).name, "set") == 0) { - char *val = strchr(optarg, '='); - if (val == NULL) { - SCLogError(SC_ERR_CMD_LINE, - "Invalid argument for --set, must be key=val."); - exit(EXIT_FAILURE); - } - *val++ = '\0'; - if (ConfSetFinal(optarg, val) != 1) { - fprintf(stderr, "Failed to set configuration value %s.", - optarg); - exit(EXIT_FAILURE); + if (optarg != NULL) { + char *val = strchr(optarg, '='); + if (val == NULL) { + SCLogError(SC_ERR_CMD_LINE, + "Invalid argument for --set, must be key=val."); + exit(EXIT_FAILURE); + } + *val++ = '\0'; + if (ConfSetFinal(optarg, val) != 1) { + fprintf(stderr, "Failed to set configuration value %s.", + optarg); + exit(EXIT_FAILURE); + } } } break;