[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[lwip-devel] [bug #36492] Static Analysis on code 1.4.0
|
From: |
bayard |
|
Subject: |
[lwip-devel] [bug #36492] Static Analysis on code 1.4.0 |
|
Date: |
Wed, 30 May 2012 16:16:05 +0000 |
|
User-agent: |
Mozilla/5.0 (Windows NT 6.1; rv:12.0) Gecko/20100101 Firefox/12.0 |
Follow-up Comment #9, bug #36492 (project lwip):
I modified debug.h on my side with an infinite loop in LWIP_ASSERT(). The
number of error decreased: only 13 !
Please find below debug.h file.
Errors are here
ABR : Buffer overflow, array index of 'hwaddr' may be out of bounds. Array
'hwaddr' of size 6 may use index value(s) 6..15 : lwip/src/core/dhcp.c : 1683
: Critical : Analyze
ABV.STACK : Buffer overflow, array index of 'EventTbl' may be out of bounds.
Array 'EventTbl' of size 30 may use index value(s) 0..254 :
lwip/src/api/api_lib.c : 86 : Critical : Analyze
INFINITE_LOOP.LOCAL : Infinite loop : lwip/src/api/tcpip.c : 87 : Error :
Analyze
NPD.CHECK.MIGHT : Pointer 'to' checked for NULL at line 818 may be
dereferenced at line 820. : lwip/src/api/sockets.c : 820 : Critical : Analyze
NPD.FUNC.MUST : Pointer 'frame.descriptor' returned from call to function
'ETH_RxPkt_ChainMode' at line 236 may be NULL and will be dereferenced at line
257. : lwip/port/ethernetif/ethernetif.c : 257 : Critical : Analyze
NPD.FUNC.MUST : Pointer 'msg' returned from call to function
'sys_timeouts_mbox_fetch' at line 91 may be NULL and will be dereferenced at
line 93. : lwip/src/api/tcpip.c : 93 : Critical : Analyze
RNPD.DEREF : Suspicious dereference of pointer 'ipr->p' before NULL check at
line 444 : lwip/src/core/ipv4/ip_frag.c : 426 : Critical : Analyze
RNPD.DEREF : Suspicious dereference of pointer 'conn->current_msg' before NULL
check at line 1207 : lwip/src/api/api_msg.c : 1203 : Critical : Analyze
UNINIT.STACK.ARRAY.MIGHT : 'parts' array elements might be used uninitialized
in this function. Also there are 2 similar errors on line(s) 233, 240. :
lwip/src/core/ipv4/ip_addr.c : 226 : Critical : Analyze
UNINIT.STACK.MIGHT : 'port' might be used uninitialized in this function. :
lwip/src/api/sockets.c : 674 : Critical : Analyze
UNINIT.STACK.MUST : 'naddr.addr' is used uninitialized in this function. :
lwip/src/api/sockets.c : 1418 : Critical : Analyze
UNINIT.STACK.MUST : 'port' is used uninitialized in this function. :
lwip/src/api/sockets.c : 363 : Critical : Analyze
UNINIT.STACK.MUST : 'naddr.addr' is used uninitialized in this function. :
lwip/src/api/sockets.c : 364 : Critical : Analyze
(file #25958)
_______________________________________________________
Additional Item Attachment:
File name: debug.h Size:4 KB
_______________________________________________________
Reply to this item at:
<http://savannah.nongnu.org/bugs/?36492>
_______________________________________________
Message posté via/par Savannah
http://savannah.nongnu.org/
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, (continued)
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Mason, 2012/05/23
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Simon Goldschmidt, 2012/05/23
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Mason, 2012/05/23
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Mason, 2012/05/23
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Sylvain Rochet, 2012/05/23
- Re: [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Mason, 2012/05/23
- [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Mason, 2012/05/24
- [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, bayard, 2012/05/25
- [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Simon Goldschmidt, 2012/05/29
- [lwip-devel] [bug #36492] Static Analysis on code 1.4.0, Simon Goldschmidt, 2012/05/29
- [lwip-devel] [bug #36492] Static Analysis on code 1.4.0,
bayard <=