Skip to content

coverity fixes for apps/s_server.c #28101

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

coverity fixes for apps/s_server.c #28101

wants to merge 3 commits into from

Conversation

nhorman
Copy link
Contributor

@nhorman nhorman commented Jul 26, 2025

A few coverity reports came in over the weekend, this PR addresses:

https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659227
https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659225
https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659222

All amount to improper NULL checks in various recently modified locations in s_server.c

nhorman added 3 commits July 26, 2025 09:18
@nhorman
Fix NULL check in bring_oscp_resp_in_correct_order
970c099 
We assign an allocated pointer to *sk_resp but only check if sk_resp is
NULL when sk_resp is a pointer to a pointer

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659227
@nhorman
Set *sk_resp to NULL when freeing.
92862af 
Its possible for get_ocsp_resp_from_responder to return OK after having
freed *sk_resp without setting the freed pointer to NULL, leading us to
set a garbage pointer in other code.

Ensure that we set it to NULL after freeing

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659225
@nhorman
Fix NULL check in get_ocsp_resp_from_responder
2426e03 
We assign an allocation to *sk_resp, but only check for NULL on sk_resp,
not the value it points to.

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659222
@nhorman nhorman self-assigned this Jul 26, 2025
@nhorman nhorman added branch: master Merge to master branch approval: review pending This pull request needs review by a committer labels Jul 26, 2025
@nhorman nhorman requested review from Sashan, DDvO, mattcaswell and jogme July 26, 2025 13:37
@nhorman nhorman moved this to Waiting Review in Development Board Jul 26, 2025
@github-project-automation github-project-automation bot moved this from Waiting Review to Waiting Merge in Development Board Jul 28, 2025
@DDvO DDvO added approval: done This pull request has the required number of approvals triaged: bug The issue/pr is/fixes a bug and removed approval: review pending This pull request needs review by a committer labels Jul 28, 2025
@DDvO DDvO mentioned this pull request Jul 28, 2025
Closed
2 tasks
@t8m t8m added the tests: exempted The PR is exempt from requirements for testing label Jul 28, 2025
@openssl-machine openssl-machine added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels Jul 29, 2025
@openssl-machine
Copy link
Collaborator

This pull request is ready to merge

@nhorman
Copy link
Contributor Author

nhorman commented Jul 29, 2025

merged to master, thank you

@nhorman nhorman closed this Jul 29, 2025
@github-project-automation github-project-automation bot moved this from Waiting Merge to Done in Development Board Jul 29, 2025
openssl-machine pushed a commit that referenced this pull request Jul 29, 2025
@nhorman
Fix NULL check in bring_oscp_resp_in_correct_order
8ceae5a 
We assign an allocated pointer to *sk_resp but only check if sk_resp is
NULL when sk_resp is a pointer to a pointer

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659227

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
(Merged from #28101)
openssl-machine pushed a commit that referenced this pull request Jul 29, 2025
@nhorman
Set *sk_resp to NULL when freeing.
bd1a14b 
Its possible for get_ocsp_resp_from_responder to return OK after having
freed *sk_resp without setting the freed pointer to NULL, leading us to
set a garbage pointer in other code.

Ensure that we set it to NULL after freeing

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659225

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
(Merged from #28101)
openssl-machine pushed a commit that referenced this pull request Jul 29, 2025
@nhorman
Fix NULL check in get_ocsp_resp_from_responder
3c4f009 
We assign an allocation to *sk_resp, but only check for NULL on sk_resp,
not the value it points to.

Addresses https://scan5.scan.coverity.com/#/project-view/60762/10222?selectedIssue=1659222

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
(Merged from #28101)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vdukhovni vdukhovni vdukhovni approved these changes

@DDvO DDvO DDvO approved these changes

@paulidale paulidale paulidale approved these changes

@Sashan Sashan Awaiting requested review from Sashan

@mattcaswell mattcaswell Awaiting requested review from mattcaswell

@jogme jogme Awaiting requested review from jogme

Assignees

@nhorman nhorman

Labels
approval: ready to merge The 24 hour grace period has passed, ready to merge branch: master Merge to master branch tests: exempted The PR is exempt from requirements for testing triaged: bug The issue/pr is/fixes a bug
Projects
Development Board
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@nhorman @openssl-machine @vdukhovni @DDvO @paulidale @t8m