Skip to content

rbus: check return value of remove() in rbus_close #422

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
svc-rdkeportal01 wants to merge 1 commit into
base: release
Choose a base branch
from
Open

rbus: check return value of remove() in rbus_close #422

svc-rdkeportal01 wants to merge 1 commit into from

Conversation

@svc-rdkeportal01
Copy link

@svc-rdkeportal01 svc-rdkeportal01 commented Dec 4, 2025

Issue Fixed

Coverity Defect: CHECKED_RETURN
CWE: CWE-252 (Unchecked Return Value)
Severity: Medium
Function: rbus_close
File: src/rbus/rbus.c

Root Cause

The function rbus_close() calls remove() to delete a temporary file (/tmp/.rbus/<pid>_<componentId>) but does not check the return value. This could mask failures in file deletion, potentially leading to:

  • Accumulated temporary files if deletion consistently fails
  • Undetected permission issues
  • Disk space issues going unnoticed

Changes Made

Added return value check for remove() with error logging:

int removeRet = remove(filename);
if(removeRet != 0 && errno != ENOENT)
{
    RBUSLOG_ERROR("remove(%s) failed with error %d", filename, errno);
}

Key points:

  • Captures return value in removeRet
  • Checks if removal failed (removeRet != 0)
  • Ignores ENOENT (file doesn't exist) as this is not an error condition
  • Logs actual errors with filename and errno for debugging

Also added #include <errno.h> to access errno.

Why This Fix is Correct

  1. Detects real failures - Logs when file removal fails for actual errors
  2. Ignores expected cases - ENOENT is not logged (file may not exist)
  3. Aids debugging - Error message includes filename and errno
  4. No functional change - Only adds logging, doesn't change behavior
  5. Matches best practices - Checking system call return values is standard

Testing

  • Verified fix compiles without errors
  • Checked that errno is properly included
  • Confirmed error logging only triggers on actual failures

rbus: check return value of remove() in rbus_close
3f43af0 
The function rbus_close() calls remove() to delete a temporary file but
does not check the return value. This could mask failures in file deletion.

This fix captures the return value and logs an error if the removal fails
for any reason other than the file not existing (ENOENT).

Coverity: CHECKED_RETURN
CWE-252: Unchecked Return Value
@svc-rdkeportal01 svc-rdkeportal01 requested a review from a team as a code owner December 4, 2025 19:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@svc-rdkeportal01