Fix coverity-reported leak in virSecurityManagerGenLabel

Coverity complains about a possible leak of seclabel if !sec_managers[i]->drv->domainGenSecurityLabel is true and the seclabel might be overwritten by the next iteration of the loop. This leak should never happen, because every security driver has domainGenSecurityLabel defined.

Fix coverity-reported leak in virSecurityManagerGenLabel
Coverity complains about a possible leak of seclabel if !sec_managers[i]->drv->domainGenSecurityLabel is true and the seclabel might be overwritten by the next iteration of the loop. This leak should never happen, because every security driver has domainGenSecurityLabel defined.
66050f0f · Ján Tomko · 2279d560 · 66050f0f
隐藏空白更改
内联并排

Showing with 2 addition and 0 deletion

src/security/security_manager.c src/security/security_manager.c +2 -0

未找到文件。
--- a/src/security/security_manager.c
+++ b/src/security/security_manager.c
@@ -514,6 +514,8 @@ int virSecurityManagerGenLabel(virSecurityManagerPtr mgr,

        if (!sec_managers[i]->drv->domainGenSecurityLabel) {
            virReportUnsupportedError();
+            virSecurityLabelDefFree(seclabel);
+            seclabel = NULL;
        } else {
            /* The seclabel must be added to @vm prior calling domainGenSecurityLabel
             * which may require seclabel to be presented already */