Coverity Scan: Analysis completed for openssl/openssl
Your request for analysis of openssl/openssl has been completed successfully. The results are available at https://u15810271.ct.sendgrid.net/ls/click?upn=HRESupC-2F2Czv4BOaCWWCy7my0P0qcxCbhZ31OYv50yoN-2BQSVjTtaSz8wS4wOr7HlekBtV1P4YRtWclMVkCdvAA-3D-3DgMPh_MulOTlHne1IxTRELXXnGni8d68xSVF-2BUCe3a7Ux-2BjeGAK2DmYfQ1IKwYa5kNS9VOnN-2BJQSXUAQImc0e4Lvml5Sy16KzgO-2FrNr71ElHJD4hsRUP0gOGt9qT-2BNyhBMa7b48Kmj4w-2BtJwrLsuK43N3E9yyahMSCVY8J7xv6HIoKhT78fDtis3GoNwpR-2FD0CD-2FCO6buTC6uOGIAQ0JGPomE8LZ7Tcyi0lWEUHJB3rYjQlPo-3D Build ID: 489725 Analysis Summary: New defects found: 0 Defects eliminated: 0
[openssl/openssl] 9fb0ff: rand: remove the ossl_rand_pool_add_additional_dat...
Branch: refs/heads/openssl-3.1 Home: https://github.com/openssl/openssl Commit: 9fb0ff30343a08cf9650159410426468502eaebf https://github.com/openssl/openssl/commit/9fb0ff30343a08cf9650159410426468502eaebf Author: Pauli Date: 2022-10-27 (Thu, 27 Oct 2022) Changed paths: M providers/implementations/include/prov/seeding.h M providers/implementations/rands/seeding/rand_unix.c M providers/implementations/rands/seeding/rand_vms.c M providers/implementations/rands/seeding/rand_vxworks.c M providers/implementations/rands/seeding/rand_win.c Log Message: --- rand: remove the ossl_rand_pool_add_additional_data() function. This function isn't called from anywhere and cannot easily be used by the current RNG infrastructure. Reviewed-by: Tomas Mraz Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/19493) (cherry picked from commit da7db83cc44d2c8761e9074caf8befd443ea8be8)
[openssl/openssl] da7db8: rand: remove the ossl_rand_pool_add_additional_dat...
Branch: refs/heads/master Home: https://github.com/openssl/openssl Commit: da7db83cc44d2c8761e9074caf8befd443ea8be8 https://github.com/openssl/openssl/commit/da7db83cc44d2c8761e9074caf8befd443ea8be8 Author: Pauli Date: 2022-10-27 (Thu, 27 Oct 2022) Changed paths: M providers/implementations/include/prov/seeding.h M providers/implementations/rands/seeding/rand_unix.c M providers/implementations/rands/seeding/rand_vms.c M providers/implementations/rands/seeding/rand_vxworks.c M providers/implementations/rands/seeding/rand_win.c Log Message: --- rand: remove the ossl_rand_pool_add_additional_data() function. This function isn't called from anywhere and cannot easily be used by the current RNG infrastructure. Reviewed-by: Tomas Mraz Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/19493)
[openssl/tools] 8f22fc: review-tools/opensslpull: add 3.1
Branch: refs/heads/master Home: https://github.com/openssl/tools Commit: 8f22fc1c072b07be3802d47af29cfcfa5a629d1e https://github.com/openssl/tools/commit/8f22fc1c072b07be3802d47af29cfcfa5a629d1e Author: Richard Levitte Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M review-tools/opensslpull Log Message: --- review-tools/opensslpull: add 3.1 Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/tools/pull/131)
[openssl/openssl] 9b3219: ssl_cipher_process_rulestr: don't read outside rul...
Branch: refs/heads/OpenSSL_1_1_1-stable Home: https://github.com/openssl/openssl Commit: 9b3219ba544db82cdad3058b9872058739559944 https://github.com/openssl/openssl/commit/9b3219ba544db82cdad3058b9872058739559944 Author: Todd C. Miller Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M ssl/ssl_ciph.c Log Message: --- ssl_cipher_process_rulestr: don't read outside rule_str buffer If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/19166) (cherry picked from commit 428511ca66670e169a0e1b12e7540714b0be4cf8)
[openssl/openssl] 3efb41: ssl_cipher_process_rulestr: don't read outside rul...
Branch: refs/heads/openssl-3.0 Home: https://github.com/openssl/openssl Commit: 3efb41c026d7de1442517ba5d49aa60b93c7f124 https://github.com/openssl/openssl/commit/3efb41c026d7de1442517ba5d49aa60b93c7f124 Author: Todd C. Miller Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M ssl/ssl_ciph.c Log Message: --- ssl_cipher_process_rulestr: don't read outside rule_str buffer If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/19166) (cherry picked from commit 428511ca66670e169a0e1b12e7540714b0be4cf8)
[openssl/openssl] 91caaa: ssl_cipher_process_rulestr: don't read outside rul...
Branch: refs/heads/openssl-3.1 Home: https://github.com/openssl/openssl Commit: 91caaa3ba3e5db40e13ab7321072ea4cfce188e2 https://github.com/openssl/openssl/commit/91caaa3ba3e5db40e13ab7321072ea4cfce188e2 Author: Todd C. Miller Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M ssl/ssl_ciph.c Log Message: --- ssl_cipher_process_rulestr: don't read outside rule_str buffer If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/19166) (cherry picked from commit 428511ca66670e169a0e1b12e7540714b0be4cf8)
[openssl/openssl] 428511: ssl_cipher_process_rulestr: don't read outside rul...
Branch: refs/heads/master Home: https://github.com/openssl/openssl Commit: 428511ca66670e169a0e1b12e7540714b0be4cf8 https://github.com/openssl/openssl/commit/428511ca66670e169a0e1b12e7540714b0be4cf8 Author: Todd C. Miller Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M ssl/ssl_ciph.c Log Message: --- ssl_cipher_process_rulestr: don't read outside rule_str buffer If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/19166)
[openssl/web] 2f4cb8: Add data for OpenSSL 3.1
Branch: refs/heads/master Home: https://github.com/openssl/web Commit: 2f4cb8c7f9b3ec13c6c2086818cf905275baa902 https://github.com/openssl/web/commit/2f4cb8c7f9b3ec13c6c2086818cf905275baa902 Author: Richard Levitte Date: 2022-10-26 (Wed, 26 Oct 2022) Changed paths: M Makefile Log Message: --- Add data for OpenSSL 3.1 Reviewed-by: Matt Caswell Reviewed-by: Hugo Landau (Merged from https://github.com/openssl/web/pull/373)