Multiple Coverity fixes for CAAM Driver, Crypto API and Core #6219
Conversation
There was a problem hiding this comment.
For "drivers: caam: remove dead code":
Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Use array index syntax instead of pointer arithmetic for better
readability.
This is a matter of preference, I believe @jenswi-linaro prefers the latter 😉
clementfaure
force-pushed
the
upstream/coverity_2
branch
2 times, most recently
from
dea6549
to
f81cf08
Compare
|
For "lib: libutee: initialize TA property type" + fixup:
|
|
Force push: squash + rebase |
clementfaure
force-pushed
the
upstream/coverity_2
branch
from
f81cf08
to
37246d9
Compare
There was a problem hiding this comment.
For "lib: libutee: initialize TA property type"
I believe this is a false positive, but it's a good idea to plug it.
Especially since our coding guidelines require local variables to be initialized.
If you agree that it's a false positive please mention that in the commit message, or point out where the error is so I can double check.
Edit: I did some test, and it looks like Coverity can keep track of variable value even through its reference, the web interface is just confusing. So, regarding Uninitialized scalar variable issues, theses are not false positive. |
clementfaure
force-pushed
the
upstream/coverity_2
branch
from
37246d9
to
667592d
Compare
|
For the commits:
please apply: |
Call caam_dmaobj_free() upon caam_dmaobj_init_[input|output}() failure to free buffer allocated by allocate_private(). Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Free the output DMA object upon CAAM descriptor allocation failure. Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
In drvcrypt_rsa_mgf1() function, the memcpy() could potentially copy an uninitialized buffer. Allocate and initialize tmpdigest buffer with calloc() instead of malloc(). Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Remove value check as it cannot be true and appears to be dead code. Use array index syntax instead of pointer arithmetic for better readability. Signed-off-by: Clement Faure <clement.faure@nxp.com> Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Make sure to call addr_is_in_no_share_heap() before the freeing buffer. This is a false positive as only the pointer value is used and not the memory freed. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
TA property type `type` is declared without being initialized and might be used in the if statement uninitialized. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
Initialize tee_ta_param{} to zero in entry_open_session() so it can be used
initialized in cleanup_shm_refs() without Coverity error.
Signed-off-by: Clement Faure <clement.faure@nxp.com>
Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
Coverity reports many errors where dirfile_entry{} is used
un-initialized.
Resolve these errors by setting these objects to zero on declaration.
Signed-off-by: Clement Faure <clement.faure@nxp.com>
Acked-by: Jerome Forissier <jerome.forissier@linaro.org>
Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
Check the return value of crypto_bignum_bin2bn(). Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jerome Forissier <jerome.forissier@linaro.org>
Initialize local variables at declaration as specified by the coding guidelines. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
Initialize local variables at declaration as specified by the coding guidelines. Signed-off-by: Clement Faure <clement.faure@nxp.com> Reviewed-by: Jens Wiklander <jens.wiklander@linaro.org>
clementfaure
force-pushed
the
upstream/coverity_2
branch
from
667592d
to
e84bffc
Compare
|
Force-push : tag applied + re-word commits since uninitialized scalar value issues are not false positive |
Hello,
Our CI reported multiple Coverity issues in optee-os. The issues fixed in this pull-request are rated
HighandMediumimpact. As a maintainer of the crypto driver API and the CAAM, I want to push 2878ec6 b3b0567 1ba0f6d d34d5c5.At the same time, I also fixed some issues in libutee, PTA attestation and the core. Feel free to comment regarding commits d68119a dae33b6 a6c6ab0 726f19e b98fa53
Thanks!