[Swan-dev] New Defects reported by Coverity Scan for antonyantony/libreswan

[scan-admin at coverity.com]

Hi,

Please find the latest report on new defect(s) introduced to antonyantony/libreswan found with Coverity Scan.

1 new defect(s) introduced to antonyantony/libreswan found with Coverity Scan.
2 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)


** CID 1505256:    (OVERRUN)


________________________________________________________________________________________________________
*** CID 1505256:    (OVERRUN)
/programs/pluto/kernel_xfrm.c: 821 in netlink_raw_policy()
815     		} else if (proto_info[0].mode != ENCAPSULATION_MODE_TUNNEL &&
816     			   esatype != ET_INT) {
817     			break;
818     		} else {
819     			req.u.p.dir = XFRM_POLICY_FWD;
820     		}
>>>     CID 1505256:    (OVERRUN)
>>>     Overrunning struct type nlmsghdr of 16 bytes by passing it to a function which accesses it at byte offset 4203 using argument "req.n.nlmsg_len" (which evaluates to 4204).
821     		ok &= netlink_policy(&req.n, enoent_ok, policy_name, logger);
822     		break;
823     	}
824     	return ok;
825     }
826     
/programs/pluto/kernel_xfrm.c: 805 in netlink_raw_policy()
799     		req.n.nlmsg_len += attr->rta_len;
800     	}
801     
802     	bool enoent_ok = sadb_op == KP_DEL_INBOUND ||
803     		(sadb_op == KP_DELETE && ntohl(cur_spi) == SPI_HOLD);
804     
>>>     CID 1505256:    (OVERRUN)
>>>     Overrunning struct type nlmsghdr of 16 bytes by passing it to a function which accesses it at byte offset 4307 using argument "req.n.nlmsg_len" (which evaluates to 4308).
805     	bool ok = netlink_policy(&req.n, enoent_ok, policy_name, logger);
806     
807     	/* ??? deal with any forwarding policy */
808     	switch (dir) {
809     	case XFRM_POLICY_IN:
810     		if (req.n.nlmsg_type == XFRM_MSG_DELPOLICY) {


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yq8aBKViEpsZ9KPFMeJd7kKMDjyzu82COVFw1h1aYx-2FtFrefiPxkohPqZgI7DsTRPR5L954NuJuE0J6c4ee-2B5kYxjC1_Cir5ZFqEb-2Fpy-2FZDdTxjwNXxDWd37ZfwlkdBT1REyQ39GI2xZdo-2FGcE5st3JVpnOMVOfcalBLvxf3PzUK4pcR-2B7OKhpm4Jryu9afCdmxK8Ota5lzldO8dBms92uve7PnqHKlW6gRH3lK5DXPgSkc-2B9QdkMtJ0dMmb-2BhyPcjJvrZ8JfIEhriuMOAzKTZ2rOhRPWyjuboOHbFWgqOdW-2F-2FYwZcvCg3CdYAxKmSkfNYRIx2U-3D

  To manage Coverity Scan email notifications for "swan-dev at lists.libreswan.org", click https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yped04pjJnmXOsUBtKYNIXxUzCfl-2FUi6sRJtnGH1-2FWXEIl9xkb2JliKiAkqgdujeIgWYvUCIHO1g-2Ba8I-2B0nANYHmrw9-2B13a9hJ7YOPZRdlHcEQfoMvDvjqsfrRNzFQ8lscduvXP5RLkPig71dIKudxi8Tra_Cir5ZFqEb-2Fpy-2FZDdTxjwNXxDWd37ZfwlkdBT1REyQ39GI2xZdo-2FGcE5st3JVpnOMVOfcalBLvxf3PzUK4pcR-2B4Aq74PQGjIgBLrl8aC7WySRtbg0LD87UYJkmwQZPMUtgg3-2BY3icz-2FMsInqFnmh6eR4D62b9jKxwLfaPEi2fPA-2FtbRVtvnGnGYFXcP36h-2FkvMJhq-2Fb6-2BklUk4LAIjLzTescVXMUvuCGnrVNz9auo9ps-3D