-
Notifications
You must be signed in to change notification settings - Fork 23
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Using uninitialized value ctx->pcap.binding.dumper #9
Comments
@okashany FWIW you can actually link to the code directly and github renders it nicely: libmctp/utils/mctp-demux-daemon.c Lines 668 to 676 in 8f53d63
That said there's no line 885 at the tip of master. I think I've highlighted the correct spot. Can you please verify? If it is the spot you're concerned about, then by my reasoning it appears to be a false positive. We can only call Lines 19 to 42 in 8f53d63
We see that all early-exit error paths return I'm in two minds about assigning dumper in order to silence a false-positive from any static analysis tool that might have detected this on the basis that the code isn't incorrect and it's not particularly unsafe due to the existing error handling. That said, I don't want to give the impression that I don't want any insights from static analysis reported. It's just unfortunate that if my reasoning is correct that such tools don't have the power to identify this as a false positive. |
In mctp-demux-daemon.c line #885 ctx->pcap.binding.dumper is being used although it is uninitialized.
The text was updated successfully, but these errors were encountered: