Closed
Bug 337098
Opened 19 years ago
Closed 19 years ago
Coverity crash [@ PK11_FreeSymKey - pk11_KeyExchange] confused logic
Categories
(NSS :: Libraries, defect, P2)
Tracking
(Not tracked)
RESOLVED
FIXED
3.11.2
People
(Reporter: timeless, Assigned: nelson)
References
()
Details
(Keywords: coverity, crash, Whiteboard: CID 320)
Crash Data
Attachments
(1 file)
|
3.55 KB,
patch
|
rrelyea
:
review+
wtc
:
review+
|
Details | Diff | Splinter Review |
Event var_compare_op: Added "tekTarget" due to comparison "tekTarget == 0"
Event var_deref_model: Variable "tekTarget" tracked as NULL was passed to a function that dereferences it. [model]
Also see events: [var_deref_model]
At conditional (1): "tekTarget == 0" taking true path
228 if (tekTarget == NULL) PK11_FreeSymKey(tekTarget);
Afaik the code should be using != or just (tekTarget) et al.
|
Assignee | |
Updated•19 years ago
|
Hardware: PC → All
Target Milestone: --- → 3.11.2
|
|
Assignee | |
Updated•19 years ago
|
Priority: -- → P2
|
|
Assignee | |
Comment 1•19 years ago
|
||
The URL given in the original bug report was for the wrong file.
The code in question is old FORTEZZA code.
The entire error path is bogus. But rather than fixing it, the entire
block of FORTEZZA KEA code in this file should be eliminated.
|
|
Assignee | |
Comment 3•19 years ago
|
||
Bob, does this seem right to you?
Is there any other change in softoken that must be made to
accompany this?
Attachment #222468 -
Flags: review?(rrelyea)
|
|
Assignee | |
Comment 4•19 years ago
|
||
Adding requetsed reviewer to cc list.
|
|
Assignee | |
Updated•19 years ago
|
Attachment #222468 -
Flags: review?(wtchang)
|
||
Comment 5•19 years ago
|
||
Comment on attachment 222468 [details] [diff] [review]
remove KEA support from pk11_KeyExchange
r=wtc. Alternately, change all the == NULL tests in
the error path to != NULL tests. I agree it's better
to remove KEA support.
Attachment #222468 -
Flags: review?(wtchang) → review+
|
||
Comment 6•19 years ago
|
||
Comment on attachment 222468 [details] [diff] [review]
remove KEA support from pk11_KeyExchange
Removing KEA is the right way to go. We've already removed much of the fortezza code. This is basically dead code now, so removing it should be ok.
Attachment #222468 -
Flags: review?(rrelyea) → review+
|
|
Assignee | |
Comment 7•19 years ago
|
||
Thanks for the reviews.
Checking in pk11wrap/pk11kea.c; new revision: 1.11; previous revision: 1.10
Checking in pk11wrap/pk11kea.c; new revision: 1.9.28.1; previous revision: 1.9
Status: NEW → RESOLVED
Closed: 19 years ago
Resolution: --- → FIXED
|
||
Updated•19 years ago
|
Summary: crash [@ PK11_FreeSymKey - pk11_KeyExchange] confused logic → Coverity crash [@ PK11_FreeSymKey - pk11_KeyExchange] confused logic
|
||
Updated•14 years ago
|
Crash Signature: [@ PK11_FreeSymKey - pk11_KeyExchange]
You need to log in
before you can comment on or make changes to this bug.
Description
•