Wireshark · Wireshark-dev: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks

Wireshark-dev: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks

From: Jaap Keuter <jaap.keuter@xxxxxxxxx>

Date: Mon, 11 Jul 2016 12:46:42 +0200

Hi List,

Since (not so) recently the Coverity code analysis has added a checker for so called tainted data. This data is considered coming from an external source (eg. the network) hence suspicious until validated. Using these tainted values is considered a risk. In general this is true, Wireshark on the other hand is intended and designed to handle suspicious / (very) possibly wrong network data (that’s what we’re using it for, amongst other things). So even though data is tainted, many cases the use of the TVB, etc. protects us from the problems envisioned by the checker writers.

So what to so with these Coverity issues. Before we start to implement all kinds of arbitrary checks (duplicating effort already handled by the tvb code) and limits (mostly arbitrary) we should consider is this checker is really valuable in this context. 

Kind regards,
Jaap

Follow-Ups:
- Re: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks
  - From: Pascal Quantin
- Re: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks
  - From: Dario Lombardo
- Re: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks
  - From: Guy Harris

Prev by Date: Re: [Wireshark-dev] fragment reassembly
Next by Date: Re: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks
Previous by thread: Re: [Wireshark-dev] fragment reassembly
Next by thread: Re: [Wireshark-dev] Considering ignoring Coverity 'tainted' checks
Index(es):
- Date
- Thread