Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RDK-55945 : sync codebase with stable2 #16

Open
wants to merge 2 commits into
base: develop
Choose a base branch
from
Open

RDK-55945 : sync codebase with stable2 #16

wants to merge 2 commits into from
+675 −153

Conversation

shivabhaskar
Copy link
Contributor

No description provided.

@shivabhaskar shivabhaskar requested a review from a team as a code owner February 11, 2025 19:09
@rdkcmf-jenkins
Copy link

Coverity Issue - Data race condition

Accessing "compTr181ParamMap" without holding lock "compParamMap". Elsewhere, "compTr181ParamMap" is written to with "compParamMap" held 3 out of 3 times.

Medium Impact, CWE-366
MISSING_LOCK

Issue location

This issue was discovered outside the diff for this Pull Request. You can find it at:
source/ccspinterface/rbusInterface.c:618

@rdkcmf-jenkins
Copy link

Coverity Issue - Data race condition

Accessing "compTr181ParamMap" without holding lock "compParamMap". Elsewhere, "compTr181ParamMap" is written to with "compParamMap" held 3 out of 3 times.

Medium Impact, CWE-366
MISSING_LOCK

Issue location

This issue was discovered outside the diff for this Pull Request. You can find it at:
source/ccspinterface/rbusInterface.c:1120

rdkcmf-jenkins
rdkcmf-jenkins reviewed Feb 12, 2025
View reviewed changes
source/bulkdata/profilexconf.c
@@ -565,9 +564,11 @@
T2Info("Waiting for CollectAndReport to be complete : %s\n", singleProfile->name);
pthread_mutex_lock(&plMutex);
initialized=false;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverity Issue - Check of thread-shared field evades lock acquisition

Thread1 sets "initialized" to a new value. Now the two threads have an inconsistent view of "initialized" and updates to fields correlated with "initialized" may be lost.

High Impact, CWE-543
LOCK_EVASION

How to fix

Guard the modification of "initialized" and the read used to decide whether to modify "initialized" with the same set of locks.

source/scheduler/scheduler.c
if(count++ > 30){
break;
}
sleep(1);
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverity Issue - Waiting while holding a lock

Call to "sleep" might sleep while holding lock "scMutex".

Medium Impact, CWE-667
SLEEP

source/ccspinterface/rbusInterface.c
@@ -1132,6 +1148,8 @@
T2Debug("Freeing compTr181ParamMap \n");
hash_map_destroy(compTr181ParamMap, freeComponentEventList);
compTr181ParamMap = NULL;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverity Issue - Check of thread-shared field evades lock acquisition

Thread1 sets "compTr181ParamMap" to a new value. Now the two threads have an inconsistent view of "compTr181ParamMap" and updates to fields of "compTr181ParamMap" or fields correlated with "compTr181ParamMap" may be lost.

High Impact, CWE-543
LOCK_EVASION

How to fix

Guard the modification of "compTr181ParamMap" and the read used to decide whether to modify "compTr181ParamMap" with the same set of locks.

source/commonlib/telemetry_busmessage_sender.c
strvalue[strlen(strvalue)-1] = '\0';
}
ret = report_or_cache_data(strvalue, marker);
if(strvalue != NULL){
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverity Issue - Dereference before null check

Null-checking "strvalue" suggests that it may be null, but it has already been dereferenced on all paths leading to the check.

Medium Impact, CWE-476
REVERSE_INULL

source/scheduler/scheduler.c
if(mutex_return != 0){
T2Error("tProfile Mutex locking failed : %d \n",mutex_return);
if(mutex_return == EBUSY)
T2Error("tProfile Mutex is Busy, already the report generation might be in progress \n");
return T2ERROR_FAILURE;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverity Issue - Missing unlock

Returning without unlocking "scMutex".

Medium Impact, CWE-667
LOCK

@CLAassistant
Copy link

CLAassistant commented Feb 18, 2025
edited
Loading

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

@shivabhaskar
RDK-55945: Sync code with stable2
5cc82ef 
Reason for change: bring stable2 code changes to develop
Test Procedure: No Regressions
Risks: Low
Signed-off-by: c.shivabhaskar97@gmail.com
@shivabhaskar
RDK-55945: sync code base to Stable2 Fix Coverity Issues
b40afa3 
Reason for change: Fix Build Issue
Test Procedure: L1/L2 test and no change in functionality
Risks: Low
Signed-off-by: c.shivabhaskar97@gmail.com
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rdkcmf-jenkins rdkcmf-jenkins rdkcmf-jenkins left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@shivabhaskar @rdkcmf-jenkins @CLAassistant