Skip to content

Fixing a batch of issues reported by Coverity #820

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
JacobBarthelmeh merged 5 commits into from
Jul 21, 2025
Merged

Fixing a batch of issues reported by Coverity #820

JacobBarthelmeh merged 5 commits into from
Jul 21, 2025

Conversation

@ejohnstown
Copy link
Contributor

@ejohnstown ejohnstown commented Jul 21, 2025

  1. String not null terminated: 572834
  2. Dereference before null check: 572919 572847
  3. Buffer not null terminated: 572891
  4. Argument cannot be negative: 573009 572928 572868

@ejohnstown
Coverity: String not null terminated
cc83fc3 
1. Swap out strdup() for a malloc() and memcpy(). Then nul terminate the
   string before tokenizing.

Fixes CID: 572834
@ejohnstown
Coverity: Dereference before null check
f24c3c2 
1. When cleaning the path, check that the path pointer is not null
   before using it.
2. Move the strlen of path.
3. Remove the second check of path, and just loop over it.

Fixed CID: 572847
@ejohnstown
Coverity: Dereference before null check
4700799 
1. After getting the user's pw info, don't check that the shell value is
   null. We've already use it at that point.

Fixes CID: 572919
@ejohnstown
Coverity: Buffer not null terminated
c641294 
1. When copying the shell, leave a byte free in the dest buffer. Fill it
   with a null.

Fixes CID: 572891
@ejohnstown
Coverity: Argument cannot be negative
903bbc7 
1. Due to not checking the result of fseek(), it is possible to try to
   malloc() -1 bytes of storage. Checking the return from fseek() and
   erring if negative.
2. Changing the check between the result of fseek() and fread() to match
   signedness. Adding some casting, as at that point the fseek() result
   is always positive.

Fixes CIDs:
  573009 572928 572868
@JacobBarthelmeh JacobBarthelmeh merged commit 3a87c57 into wolfSSL:master Jul 21, 2025
93 checks passed
@ejohnstown ejohnstown deleted the cov branch July 21, 2025 22:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ejohnstown @JacobBarthelmeh @wolfSSL-Bot