ldap_sasl_bind_s

API 概述

ldap_sasl_bind_s 是 Ldap 中的一个API。该规属于api pair 类型。该规则是使用 ChatDetector 生成的。

规则描述

提示

Parameter 7 of ldap_sasl_bind_s must be released by calling ber_bvfree, with the same object passed as the 2-th argument to ber_bvfree

信息

标签：api pair

参数下标：6

CWE类别：CWE-404

规则代码

import cpp
import semmle.code.cpp.dataflow.new.DataFlow


DataFlow::Node getSource(FunctionCall fc){
  fc.getTarget().hasName("ldap_sasl_bind_s")
  and result.asExpr() = fc.getArgument(6)
}

DataFlow::Node getSink(FunctionCall fc){
  fc.getTarget().hasName("ber_bvfree")
  and result.asExpr() = fc.getArgument(1)
}

FunctionCall freeTarget(FunctionCall malloc){
  DataFlow::localFlow(getSource(malloc), getSink(result))
}

from FunctionCall fc
where fc.getTarget().hasName("ldap_sasl_bind_s")
      and not exists(
        FunctionCall free| 
        free = freeTarget(fc)
      )
select fc.getLocation()