Subj : New Defects reported by Coverity Scan for Synchronet To : cov-scan@synchro.net From : scan-admin@coverity.com Date : Sat Dec 07 2024 13:42:14 Hi, Please find the latest report on new defect(s) introduced to Synchronet found with Coverity Scan. 1 new defect(s) introduced to Synchronet found with Coverity Scan. 8 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan. New defect(s) Reported-by: Coverity Scan Showing 1 of 1 defect(s) ** CID 515673: Code maintainability issues (SIZEOF_MISMATCH) /sbbsecho.c: 1309 in link_area() ________________________________________________________________________________________________________ *** CID 515673: Code maintainability issues (SIZEOF_MISMATCH) /sbbsecho.c: 1309 in link_area() 1303 return false; 1304 } 1305 1306 void link_area(unsigned area_num, const fidoaddr_t* addr) 1307 { 1308 area_t* area = &cfg.area[area_num]; >>> CID 515673: Code maintainability issues (SIZEOF_MISMATCH) >>> Passing argument "area->link" of type "fidoaddr_t const *" and argument "8UL /* sizeof (addr) */ * (area->links + 1)" to function "realloc_or_free" is suspicious. In this case, "sizeof (fidoaddr_t const *)" is equal to "sizeof (fidoaddr_t const)", but this is not a portable assumption. 1309 if((area->link = realloc_or_free(area->link, (sizeof addr) * (area->links + 1))) == NULL) { 1310 lprintf(LOG_ERR,"ERROR line %d allocating memory for area " 1311 "#%u links.",__LINE__, area_num + 1); 1312 bail(1); 1313 return; 1314 } ________________________________________________________________________________________________________ To view the defects in Coverity Scan visit, https://u15810271.ct.sendgrid.net/ls/click?upn=u001.AxU2LYlgjL6eX23u9ErQy-2BKADyCpvUKOL6EWmZljiu4gdQbQRNsarCbK0jIoVQSWT2zCPijRqaed4AhLiEI9Z7MR9SJQ09ot5XPbn9SW-2F14-3DjswB_7FYjIqE8olEh4k02KWtt1r1LGSyuXVEtCuKuJCXgAQZTIkIcVsFEubRKPyVR-2BCuKY5oHLU9ayFn6T1x6if3eS0nVM4zzDglf0kSu84NvdLQvLmLpVUMBWFTCqIbKw97TOhNhU4Up-2FQ0gGVaItXyTTfc3Uu2zZfP2qWOCQU0YU4SaCyb8-2B3kJNnxUzaATxOedk4YqKEgN0RG-2F7ZgTWOZJ5A-3D-3D --- SBBSecho 3.23-Linux * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705) .