cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Uninitialized variable in http_ntlm.c

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Tue, 19 Jul 2011 23:56:46 +0200 (CEST)

On Tue, 19 Jul 2011, Michael Mueller wrote:

> Sentry (our static analysis tool) found an uninitialized variable bug in
> libcurl last night. In the function CURLcode sso_ntlm_initiate, the code in
> question (introduced in commit a6d4807):

Thanks a lot, I've pushed your suggestion just now. I now see that clang also
detected this flaw:
http://curl.haxx.se/scans/2011-07-19-1/report-qYuRu3.html#EndPath

(For all readers, here's a reminder: we do daily clang-analyzer scans of the
curl source code and the result is here: http://curl.haxx.se/scans/ )

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2011-07-19

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: POST, 100 continue, and 404"
Previous message: Daniel Stenberg: "Re: [PATCH 1/2]Add NTLM single-sign-on support by using /usr/bin/ntlm_auth"
In reply to: Michael Mueller: "Uninitialized variable in http_ntlm.c"
Next in thread: Wu, Mandy: "Re: Uninitialized variable in http_ntlm.c"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]