Re: [PATCH v3] lockdown: Initialize array before use

From: Paul Moore
Date: Sun Jan 05 2025 - 12:48:50 EST

Next message: Sandeep Salwan: "[PATCH] staging: fbtft: Remove unnecessary parentheses in fbtft-core.c"
Previous message: Anand Moon: "Re: [PATCH v2] PCI: dw-rockchip: Enable async probe by default"
In reply to: Kuan-Wei Chiu: "Re: [PATCH V3] lockdown: Initialize array before use"
Next in thread: Tanya Agarwal: "Re: [PATCH v3] lockdown: Initialize array before use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Jan 5, 2025 Tanya Agarwal <tanyaagarwal25699@xxxxxxxxx> wrote:
>
> The static code analysis tool "Coverity Scan" pointed the following
> details out for further development considerations:
> CID 1486102: Uninitialized scalar variable (UNINIT)
> uninit_use_in_call: Using uninitialized value *temp when calling
> strlen.
>
> Conclusion:
> Initialize array before use in lockdown_read() to satisfy the static
> analyzer.
>
> Fixes: 000d388ed3bb ("security: Add a static lockdown policy LSM")
> Signed-off-by: Tanya Agarwal <tanyaagarwal25699@xxxxxxxxx>

I removed the 'Fixes:' tag as the code isn't actually broken as we
discussed in previous iterations of this patch. I also edited the
subject line and commit description a bit, but otherwise this is
fine. Merged into lsm/dev.

--
paul-moore.com

Next message: Sandeep Salwan: "[PATCH] staging: fbtft: Remove unnecessary parentheses in fbtft-core.c"
Previous message: Anand Moon: "Re: [PATCH v2] PCI: dw-rockchip: Enable async probe by default"
In reply to: Kuan-Wei Chiu: "Re: [PATCH V3] lockdown: Initialize array before use"
Next in thread: Tanya Agarwal: "Re: [PATCH v3] lockdown: Initialize array before use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]