index: fix NULL pointer access in index_remove_entry

When removing an entry from the index by its position, we first retrieve the position from the index's entries and then try to remove the retrieved value from the index map with `DELETE_IN_MAP`. When `index_remove_entry` returns `NULL` we try to feed it into the `DELETE_IN_MAP` macro, which will unconditionally call `idxentry_hash` and then happily dereference the `NULL` entry pointer. Fix the issue by not passing a `NULL` entry into `DELETE_IN_MAP`.
author: Patrick Steinhardt <ps@pks.im> 2016-06-07 08:35:26 +0200
committer: Patrick Steinhardt <ps@pks.im> 2016-06-07 09:14:14 +0200
commit: 13deb8745d6b604a7fc45bb7ddee2a2052e80000 (patch)
tree: 7a2449d724c89d02fb6f81f4a0bc7da006f8b34f
parent: 7d02019a07840c0263ab935f626af8002af12a91 (diff)
download: libgit2-13deb8745d6b604a7fc45bb7ddee2a2052e80000.tar.gz
1 files changed, 3 insertions, 2 deletions
diff --git a/src/index.c b/src/index.c
index 20ab6a19d..32f585faf 100644
--- a/src/index.c
+++ b/src/index.c
@@ -505,10 +505,11 @@ static int index_remove_entry(git_index *index, size_t pos)
 	int error = 0;
 	git_index_entry *entry = git_vector_get(&index->entries, pos);
 
-	if (entry != NULL)
+	if (entry != NULL) {
 		git_tree_cache_invalidate_path(index->tree, entry->path);
+		DELETE_IN_MAP(index, entry);
+	}
 
-	DELETE_IN_MAP(index, entry);
 	error = git_vector_remove(&index->entries, pos);
 
 	if (!error) {
author	Patrick Steinhardt <ps@pks.im>	2016-06-07 08:35:26 +0200
committer	Patrick Steinhardt <ps@pks.im>	2016-06-07 09:14:14 +0200
commit	13deb8745d6b604a7fc45bb7ddee2a2052e80000 (patch)
tree	7a2449d724c89d02fb6f81f4a0bc7da006f8b34f
parent	7d02019a07840c0263ab935f626af8002af12a91 (diff)
download	libgit2-13deb8745d6b604a7fc45bb7ddee2a2052e80000.tar.gz