cov482743: no taint from local trust file lookup

lws-team · lws-team · commit da9c0cc01e07 · 2025-07-11T08:04:10.000+01:00
diff --git a/lib/tls/tls-jit-trust.c b/lib/tls/tls-jit-trust.c
@@ -693,8 +693,7 @@ lws_tls_jit_trust_blob_queury_skid(const void *_blob, size_t blen,
 		        *prpder = pder;
 		        siz = lws_ser_ru16be((uint8_t *)pderlen);
 
-			if ((const uint16_t *)(pder + siz) >=
-			    (const uint16_t *)(blob + blen))
+			if (siz >= blen - lws_ptr_diff_size_t(pder, blob))
 				break;
 
 			*prder_len = siz;
diff --git a/minimal-examples-lowlevel/http-client/minimal-http-client-jit-trust/minimal-http-client.c b/minimal-examples-lowlevel/http-client/minimal-http-client-jit-trust/minimal-http-client.c
@@ -396,6 +396,7 @@ jit_trust_query(struct lws_context *cx, const uint8_t *skid,
 
 	/* Once we have a result, pass it to the completion helper */
 
+	/* coverity[tainted_data] */ 
 	return lws_tls_jit_trust_got_cert_cb(cx, got_opaque, skid, skid_len,
 					     der, der_len);
 }

Original file line number	Diff line number	Diff line change
`@@ -396,6 +396,7 @@ jit_trust_query(struct lws_context cx, const uint8_t skid,`
`396`	`396`
`397`	`397`	`/* Once we have a result, pass it to the completion helper */`
`398`	`398`
	`399`	`+ /* coverity[tainted_data] */`
`399`	`400`	`return lws_tls_jit_trust_got_cert_cb(cx, got_opaque, skid, skid_len,`
`400`	`401`	`der, der_len);`
`401`	`402`	`}`