commit c6d49c47a0855f6d1283771b56e1f2a7ab2599b0
author Sim Sun <sunsj1231@gmail.com> Fri Sep 04 17:59:14 2020 -0700
committer Mike Frysinger <vapier@chromium.org> Sat Sep 05 02:52:36 2020 +0000
tree 35d3c4fe1e984bd3f31bbfa1c14e031cff9eef3e
parent 039c4c9bbb377c950a6d2cabfda8ff0ec59e7442

linux: Fix leak when the offset of memory_mapped_file is greater than 0

Breakpad should only map the file content after the offset instead of
the whole file. Mapping the whole file while only unmap 'file_len - offset'
would leak 'offset' bytes of mapping in virtual memory.

Change-Id: I10be4f929d969703a6a02c1f709d2a4ca86a6e9e
Reviewed-on: https://chromium-review.googlesource.com/c/breakpad/breakpad/+/2393468
Reviewed-by: Mike Frysinger <vapier@chromium.org>

src/common/linux/memory_mapped_file.cc

diff --git a/src/common/linux/memory_mapped_file.cc b/src/common/linux/memory_mapped_file.cc
index 4e93826..9936294 100644
--- a/src/common/linux/memory_mapped_file.cc
+++ b/src/common/linux/memory_mapped_file.cc
@@ -87,13 +87,14 @@
     return true;
   }
 
-  void* data = sys_mmap(NULL, file_len, PROT_READ, MAP_PRIVATE, fd, offset);
+  size_t content_len = file_len - offset;
+  void* data = sys_mmap(NULL, content_len, PROT_READ, MAP_PRIVATE, fd, offset);
   sys_close(fd);
   if (data == MAP_FAILED) {
     return false;
   }
 
-  content_.Set(data, file_len - offset);
+  content_.Set(data, content_len);
   return true;
 }