[Swan-dev] New Defects reported by Coverity Scan for antonyantony/libreswan
scan-admin at coverity.com
scan-admin at coverity.com
Wed Jun 16 22:08:57 UTC 2021
Hi,
Please find the latest report on new defect(s) introduced to antonyantony/libreswan found with Coverity Scan.
1 new defect(s) introduced to antonyantony/libreswan found with Coverity Scan.
2 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 1 of 1 defect(s)
** CID 1505256: (OVERRUN)
________________________________________________________________________________________________________
*** CID 1505256: (OVERRUN)
/programs/pluto/kernel_xfrm.c: 821 in netlink_raw_policy()
815 } else if (proto_info[0].mode != ENCAPSULATION_MODE_TUNNEL &&
816 esatype != ET_INT) {
817 break;
818 } else {
819 req.u.p.dir = XFRM_POLICY_FWD;
820 }
>>> CID 1505256: (OVERRUN)
>>> Overrunning struct type nlmsghdr of 16 bytes by passing it to a function which accesses it at byte offset 4203 using argument "req.n.nlmsg_len" (which evaluates to 4204).
821 ok &= netlink_policy(&req.n, enoent_ok, policy_name, logger);
822 break;
823 }
824 return ok;
825 }
826
/programs/pluto/kernel_xfrm.c: 805 in netlink_raw_policy()
799 req.n.nlmsg_len += attr->rta_len;
800 }
801
802 bool enoent_ok = sadb_op == KP_DEL_INBOUND ||
803 (sadb_op == KP_DELETE && ntohl(cur_spi) == SPI_HOLD);
804
>>> CID 1505256: (OVERRUN)
>>> Overrunning struct type nlmsghdr of 16 bytes by passing it to a function which accesses it at byte offset 4307 using argument "req.n.nlmsg_len" (which evaluates to 4308).
805 bool ok = netlink_policy(&req.n, enoent_ok, policy_name, logger);
806
807 /* ??? deal with any forwarding policy */
808 switch (dir) {
809 case XFRM_POLICY_IN:
810 if (req.n.nlmsg_type == XFRM_MSG_DELPOLICY) {
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yq8aBKViEpsZ9KPFMeJd7kKMDjyzu82COVFw1h1aYx-2FtFrefiPxkohPqZgI7DsTRPR5L954NuJuE0J6c4ee-2B5kYxjC1_Cir5ZFqEb-2Fpy-2FZDdTxjwNXxDWd37ZfwlkdBT1REyQ39GI2xZdo-2FGcE5st3JVpnOMVOfcalBLvxf3PzUK4pcR-2B7OKhpm4Jryu9afCdmxK8Ota5lzldO8dBms92uve7PnqHKlW6gRH3lK5DXPgSkc-2B9QdkMtJ0dMmb-2BhyPcjJvrZ8JfIEhriuMOAzKTZ2rOhRPWyjuboOHbFWgqOdW-2F-2FYwZcvCg3CdYAxKmSkfNYRIx2U-3D
To manage Coverity Scan email notifications for "swan-dev at lists.libreswan.org", click https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yped04pjJnmXOsUBtKYNIXxUzCfl-2FUi6sRJtnGH1-2FWXEIl9xkb2JliKiAkqgdujeIgWYvUCIHO1g-2Ba8I-2B0nANYHmrw9-2B13a9hJ7YOPZRdlHcEQfoMvDvjqsfrRNzFQ8lscduvXP5RLkPig71dIKudxi8Tra_Cir5ZFqEb-2Fpy-2FZDdTxjwNXxDWd37ZfwlkdBT1REyQ39GI2xZdo-2FGcE5st3JVpnOMVOfcalBLvxf3PzUK4pcR-2B4Aq74PQGjIgBLrl8aC7WySRtbg0LD87UYJkmwQZPMUtgg3-2BY3icz-2FMsInqFnmh6eR4D62b9jKxwLfaPEi2fPA-2FtbRVtvnGnGYFXcP36h-2FkvMJhq-2Fb6-2BklUk4LAIjLzTescVXMUvuCGnrVNz9auo9ps-3D
More information about the Swan-dev
mailing list