[Coverity CID :215261] Explicit null dereferenced in subsys/emul/emul_bmi160.c #29703

zephyrbot · 2020-11-02T03:24:20Z

Static code scan issues found in file:

https://github.com/zephyrproject-rtos/zephyr/tree/c9a2a5e7fb0194bfb168f5aa1a0a83c73f62acb3/subsys/emul/emul_bmi160.c#L213

Category: Null pointer dereferences
Function: bmi160_emul_io_spi
Component: Other
CID: 215261

Details:

199                 regn = *(uint8_t *)tx->buf;
200                 switch (txd->len) {
201                 case 1:
202                     if (regn & BMI160_REG_READ) {
203                         regn &= BMI160_REG_MASK;
204                         val = reg_read(cfg, regn);
>>>     CID 215261:    (FORWARD_NULL)
>>>     Dereferencing null pointer "rxd".
205                         *(uint8_t *)rxd->buf = val;
206                     } else {
207                         val = *(uint8_t *)txd->buf;
208                         reg_write(cfg, regn, val);
209                     }
210                     break;
207                         val = *(uint8_t *)txd->buf;
208                         reg_write(cfg, regn, val);
209                     }
210                     break;
211                 case BMI160_SAMPLE_SIZE:
212                     if (regn & BMI160_REG_READ) {
>>>     CID 215261:    (FORWARD_NULL)
>>>     Dereferencing null pointer "rxd".
213                         sample_read(data, rxd->buf);
214                     } else {
215                         LOG_INF("Unknown sample write");
216                     }
217                     break;
218                 default:

Please fix or provide comments in coverity using the link:

https://scan9.coverity.com/reports.htm#v32951/p12996.

Note: This issue was created automatically. Priority was set based on classification
of the file affected and the impact field in coverity. Assignees were set using the CODEOWNERS file.

The text was updated successfully, but these errors were encountered:

If a read is requested without a read buffer, the emulator currently crashes. Fix this by adding a check. Fixes: zephyrproject-rtos#29703 Fixes: zephyrproject-rtos#29702 Fixes: zephyrproject-rtos#29017 Fixes: zephyrproject-rtos#29016 Signed-off-by: Simon Glass <[email protected]>

sjg20 · 2020-11-04T18:46:21Z

#29799

If a read is requested without a read buffer, the emulator currently crashes. Fix this by adding a check. Fixes: #29703 Fixes: #29702 Fixes: #29017 Fixes: #29016 Signed-off-by: Simon Glass <[email protected]>

zephyrbot added bug The issue is a bug, or the PR is fixing a bug Coverity A Coverity detected issue or its fix priority: low Low impact/importance bug labels Nov 2, 2020

nashif assigned sjg20 Nov 2, 2020

sjg20 mentioned this issue Nov 4, 2020

emul: spi: bmi160: Add a check for a missing rx buffer #29799

Merged

MaureenHelm closed this as completed in #29799 Nov 19, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Coverity CID :215261] Explicit null dereferenced in subsys/emul/emul_bmi160.c #29703

[Coverity CID :215261] Explicit null dereferenced in subsys/emul/emul_bmi160.c #29703

zephyrbot commented Nov 2, 2020

sjg20 commented Nov 4, 2020

[Coverity CID :215261] Explicit null dereferenced in subsys/emul/emul_bmi160.c #29703

[Coverity CID :215261] Explicit null dereferenced in subsys/emul/emul_bmi160.c #29703

Comments

zephyrbot commented Nov 2, 2020

sjg20 commented Nov 4, 2020