Skip to content

Fixing a batch of issues reported by Coverity #817

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
douzzer merged 3 commits into from
Jul 14, 2025
Merged

Fixing a batch of issues reported by Coverity #817

douzzer merged 3 commits into from
Jul 14, 2025

Conversation

@ejohnstown
Copy link
Contributor

@ejohnstown ejohnstown commented Jul 11, 2025
edited
Loading

  1. Side effect in assertions: 537020 573008 573010 573011 573013 573014 573015 573016 573017 573018 573022 573023 573024
  2. Resource leak: 572856 572902* 573012 573019 573021 573076
  3. 'Constant' variable guards dead code: 572898

*: Most of the issue is fixed. One part still needs fixing.

@ejohnstown ejohnstown force-pushed the cov branch 3 times, most recently from db9a80d to fc68795 Compare July 11, 2025 19:03
@ejohnstown
Coverity: Side effect in assertion
92cfb2e 
1. Modify AssertNotNull() to use the same pattern as AssertNull(). The
   macro assigns the pointer to a local variable and that is checked.

Fixes CIDs:
  537020 573008 573010 573011 573013 573014 573015
  573016 573017 573018 573022 573023 573024
@ejohnstown
Coverity: Resource leak
538ae15 
1. Fix some resource leaks during error conditions where a socket or a
   file descriptor doesn't get closed in all error cases.
2. In wolfSSH_SFTP_RecvOpen(), initialize the file descriptor.
3. For 572902, the error case resource leaks are fixed. There's still an
   issue to resolve for storing the FD for use later.

Fixes CIDs:
  572856 572902* 573012 573019 573021 573076
JacobBarthelmeh
JacobBarthelmeh previously approved these changes Jul 11, 2025
View reviewed changes
@ejohnstown
Coverity: 'Constant' variable guards dead code
441f975 
1. Remove the default password from the wolfSSH client app main
   function. It isn't set to anything. (It was originally an example
   client option.)
2. Remove handling the default password from the wolfSSH client app's
   user authentication callback.
3. Set the password size directly.
4. Changed a void typecast to WOLFSSH_UNUSED.

Fixes CID: 572898
@douzzer douzzer merged commit 0b451e5 into wolfSSL:master Jul 14, 2025
93 checks passed
@ejohnstown ejohnstown deleted the cov branch July 14, 2025 22:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@douzzer douzzer douzzer approved these changes

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ejohnstown @douzzer @JacobBarthelmeh @wolfSSL-Bot