Skip to content

20251229 Coverity Dereference before Null check #9591

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
rlm2002 wants to merge 1 commit into
base: master
Choose a base branch
from
Open

20251229 Coverity Dereference before Null check #9591

rlm2002 wants to merge 1 commit into from
+211 −208

Conversation

@rlm2002
Copy link
Contributor

@rlm2002 rlm2002 commented Dec 29, 2025

Description

CID 315897 Dereference before null check - move null check to prevent dereference before null check issue

@rlm2002 rlm2002 force-pushed the coverity branch 2 times, most recently from 145ce01 to 9f9f3b4 Compare December 29, 2025 17:29
@rlm2002
Copy link
Contributor Author

rlm2002 commented Dec 29, 2025
edited
Loading

retest this please jenkins: Agent offline exception
PRB-generic-config-parser was not stable
PRB-multi-test-script was not stable
PRB-fips-repo-and-harness-test-v3-part1 was not stable

@rlm2002 rlm2002 marked this pull request as ready for review December 29, 2025 20:25
@rlm2002 rlm2002 assigned wolfSSL-Bot and rlm2002 and unassigned rlm2002 Dec 29, 2025
dgarske
dgarske requested changes Dec 30, 2025
View reviewed changes
wolfcrypt/src/ecc.c
if (P == NULL || modulus == NULL){
return ECC_BAD_ARG_E;
}
{
Copy link
Contributor

@dgarske dgarske Dec 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The DECL_MP_INT_SIZE_DYN can be at top, this is just declaring, not allocating... that's done in NEW_MP_INT_SIZE. Then revert all the indent changes. Thanks

Copy link
Contributor Author

@rlm2002 rlm2002 Dec 30, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it's reasonable to close this PR without merging then. The remaining changes wouldn't make a difference.

Copy link
Contributor

@dgarske dgarske Dec 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I like the new argument NULL checking since this API can be built as public facing.

Copy link
Contributor Author

@rlm2002 rlm2002 Dec 30, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry, just remembered the logic for the change here. The current format moves DECL_MP_INT_SIZE_DYN below the already existing NULL check since mp_bitsused(modulus) is defined ((a)->used * SP_WORD_SIZE), which is what flagged the original Coverity issue. The additional scope and indent prevents C99 standard compilation issues.

@rlm2002 rlm2002 closed this Dec 30, 2025
@rlm2002 rlm2002 reopened this Dec 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske requested changes

Requested changes must be addressed to merge this pull request.

Assignees

@rlm2002 rlm2002

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@rlm2002 @dgarske @wolfSSL-Bot