[PATCH v3] lockdown: Initialize array before use
Paul Moore
paul at paul-moore.com
Sun Jan 5 17:48:41 UTC 2025
On Jan 5, 2025 Tanya Agarwal <tanyaagarwal25699 at gmail.com> wrote:
>
> The static code analysis tool "Coverity Scan" pointed the following
> details out for further development considerations:
> CID 1486102: Uninitialized scalar variable (UNINIT)
> uninit_use_in_call: Using uninitialized value *temp when calling
> strlen.
>
> Conclusion:
> Initialize array before use in lockdown_read() to satisfy the static
> analyzer.
>
> Fixes: 000d388ed3bb ("security: Add a static lockdown policy LSM")
> Signed-off-by: Tanya Agarwal <tanyaagarwal25699 at gmail.com>
I removed the 'Fixes:' tag as the code isn't actually broken as we
discussed in previous iterations of this patch. I also edited the
subject line and commit description a bit, but otherwise this is
fine. Merged into lsm/dev.
--
paul-moore.com
More information about the Linux-security-module-archive
mailing list