P.S., In Coverity there are a number of "Out-of-bounds access (OVERRUN)"
defects that relate to rte_memcpy() or one of the wrappers around it. They look
like this:
CID 362728 (#1 of 1): Out-of-bounds access (OVERRUN)
11. overrun-buffer-val: Overrunning array tdata->auth_tag.data of 16 bytes
by
passing it to a function which accesses it at byte offset 160.
8182 rte_memcpy(sym_op->aead.digest.data,
tdata->auth_tag.data,
8183 tdata->auth_tag.len);
8184 debug_hexdump(stdout, "digest:",
8185 sym_op->aead.digest.data,
8186 tdata->auth_tag.len);
8187 }
As far as we can tell these are false positives since there are a number of
different size handling statements in rte_memcpy() and an issue like this would
result in an immediate error under any sort of load.
In this case you can edit the defect online and change the defect
"Classification" to "False Positive" and change the "Action" to "Ignore".
If anyone disagrees and thinks that this is a real issue, let me know.
John
From: Mcnamara, John <[email protected]>
Sent: Thursday, February 10, 2022 8:44 PM
To: [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected];
[email protected]; [email protected];
[email protected]; [email protected];
[email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]; [email protected]; [email protected];
[email protected]
Cc: [email protected]; Yigit, Ferruh <[email protected]>; Morrissey,
Sean <[email protected]>; [email protected]; [email protected]
Subject: Open Coverity defects in DPDK
Folks,
If your email is on the "To" list then you have an open defect in the DPDK
Coverity database. Due to an issue with an automated emailer you may not have
received an email notifying you about this. We will try to send them again.
In the meantime you can see the defects against your email in the list below.
If you spot any email addresses that are no longer valid please let me and Sean
know.
You can review the defects online at:
http://scan.coverity.com/projects/dpdk-data-plane-development-kit
If you aren't registered for the DPDK Coverity you can do so here:
http://scan.coverity.com/users/sign_up
CID Type Owner
------ ------------------------------ -----------------------------
373712 Resource leak
[email protected]<mailto:[email protected]>
373890 Negative array index read
[email protected]<mailto:[email protected]>
373888 Out-of-bounds read
[email protected]<mailto:[email protected]>
373855 Logically dead code
[email protected]<mailto:[email protected]>
373686 Waiting while holding a lock
[email protected]<mailto:[email protected]>
369668 Out-of-bounds access
[email protected]<mailto:[email protected]>
371896 Out-of-bounds access
[email protected]<mailto:[email protected]>
371894 Out-of-bounds access
[email protected]<mailto:[email protected]>
369660 Out-of-bounds access
[email protected]<mailto:[email protected]>
373390 Untrusted value as argument
[email protected]<mailto:[email protected]>
373389 Untrusted value as argument
[email protected]<mailto:[email protected]>
369669 Out-of-bounds read
[email protected]<mailto:[email protected]>
374939 Dereference after null check
[email protected]<mailto:[email protected]>
369665 Out-of-bounds access
[email protected]<mailto:[email protected]>
372064 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
369667 Out-of-bounds access
[email protected]<mailto:[email protected]>
369666 Out-of-bounds access
[email protected]<mailto:[email protected]>
369662 Out-of-bounds access
[email protected]<mailto:[email protected]>
369661 Out-of-bounds access
[email protected]<mailto:[email protected]>
369659 Out-of-bounds access
[email protected]<mailto:[email protected]>
369658 Out-of-bounds access
[email protected]<mailto:[email protected]>
373869 Unchecked return value
[email protected]<mailto:[email protected]>
373365 Dereference null return value
[email protected]<mailto:[email protected]>
375064 Dereference after null check
[email protected]<mailto:[email protected]>
367379 Failure to restore non-local
[email protected]<mailto:[email protected]>
372137 Untrusted value as argument
[email protected]<mailto:[email protected]>
372138 Untrusted value as argument
[email protected]<mailto:[email protected]>
370218 Dereference null return value
[email protected]<mailto:[email protected]>
373635 Logically dead code
[email protected]<mailto:[email protected]>
373628 Dereference null return value
[email protected]<mailto:[email protected]>
374858 Unchecked return value
[email protected]<mailto:[email protected]>
371880 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
371876 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
372065 Explicit null dereferenced
[email protected]<mailto:[email protected]>
370225 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370224 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370223 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370221 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370220 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370219 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370217 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370214 Uninitialized pointer read
[email protected]<mailto:[email protected]>
373857 Out-of-bounds access
[email protected]<mailto:[email protected]>
371877 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
371872 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
370215 Unchecked return value
[email protected]<mailto:[email protected]>
370213 Unchecked return value
[email protected]<mailto:[email protected]>
374991 Resource leak
[email protected]<mailto:[email protected]>
374990 Resource leak
[email protected]<mailto:[email protected]>
370587 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370580 Unsigned compared against 0
[email protected]<mailto:[email protected]>
370579 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370578 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
370222 Dereference null return value
[email protected]<mailto:[email protected]>
373870 Division or modulo by zero
[email protected]<mailto:[email protected]>
373258 Unintended sign extension
[email protected]<mailto:[email protected]>
373859 Dereference after null check
[email protected]<mailto:[email protected]>
373630 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
373636 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
373623 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
373361 Logically dead code
[email protected]<mailto:[email protected]>
370584 Reliance on integer endianness
[email protected]<mailto:[email protected]>
370582 Reliance on integer endianness
[email protected]<mailto:[email protected]>
370581 Division or modulo by float
[email protected]<mailto:[email protected]>
371873 Wrong sizeof argument
[email protected]<mailto:[email protected]>
373627 Dereference after null check
[email protected]<mailto:[email protected]>
373633 Out-of-bounds access
[email protected]<mailto:[email protected]>
373708 Waiting while holding a lock
[email protected]<mailto:[email protected]>
373664 Unchecked return value
[email protected]<mailto:[email protected]>
373662 Unchecked return value
[email protected]<mailto:[email protected]>
373661 Dereference after null check
[email protected]<mailto:[email protected]>
375091 Division or modulo by zero
[email protected]<mailto:[email protected]>
374940 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
374376 Unchecked return value
[email protected]<mailto:[email protected]>
374373 Uninitialized pointer read
[email protected]<mailto:[email protected]>
370611 Bad bit shift operation [email protected]<mailto:[email protected]>
374378 Structurally dead code
[email protected]<mailto:[email protected]>
373691 Waiting while holding a lock
[email protected]<mailto:[email protected]>
374021 Untrusted value as argument
[email protected]<mailto:[email protected]>
374020 Argument cannot be negative
[email protected]<mailto:[email protected]>
374017 Resource leak
[email protected]<mailto:[email protected]>
374016 Unused value
[email protected]<mailto:[email protected]>
374015 String not null terminated
[email protected]<mailto:[email protected]>
373161 Structurally dead code
[email protected]<mailto:[email protected]>
373908 Unused value [email protected]<mailto:[email protected]>
373907 Unused value [email protected]<mailto:[email protected]>
373619 Out-of-bounds access [email protected]<mailto:[email protected]>
373621 Resource leak
[email protected]<mailto:[email protected]>
373618 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
373617 Argument cannot be negative
[email protected]<mailto:[email protected]>
373424 Dereference before null check
[email protected]<mailto:[email protected]>
373422 Dereference before null check
[email protected]<mailto:[email protected]>
373421 Unintentional integer overflow
[email protected]<mailto:[email protected]>
373415 Dereference before null check
[email protected]<mailto:[email protected]>
373414 Dereference before null check
[email protected]<mailto:[email protected]>
373412 Dereference before null check
[email protected]<mailto:[email protected]>
367380 Dereference before null check
[email protected]<mailto:[email protected]>
375066 Resource leak [email protected]<mailto:[email protected]>
375063 Resource leak [email protected]<mailto:[email protected]>
375062 Resource leak [email protected]<mailto:[email protected]>
375061 Resource leak [email protected]<mailto:[email protected]>
375060 Argument cannot be negative [email protected]<mailto:[email protected]>
367378 Explicit null dereferenced
[email protected]<mailto:[email protected]>
373703 Resource leak
[email protected]<mailto:[email protected]>
373874 Uninitialized scalar variable
[email protected]<mailto:[email protected]>
372201 Unchecked return value
[email protected]<mailto:[email protected]>
373893 Out-of-bounds write
[email protected]<mailto:[email protected]>
373884 Logically dead code
[email protected]<mailto:[email protected]>
373883 Memset buffer size of 0
[email protected]<mailto:[email protected]>
373880 Out-of-bounds read
[email protected]<mailto:[email protected]>
373873 Unchecked return value
[email protected]<mailto:[email protected]>
373881 Dereference after null check
[email protected]<mailto:[email protected]>
373876 Dereference after null check
[email protected]<mailto:[email protected]>
373872 Dereference after null check
[email protected]<mailto:[email protected]>
