Skip to content

[All] Security : nullptr checks#5903

Merged
hugtalbot merged 6 commits intosofa-framework:masterfrom
fredroy:fix_vulnerabilities_pointer
Feb 6, 2026
Merged

[All] Security : nullptr checks#5903
hugtalbot merged 6 commits intosofa-framework:masterfrom
fredroy:fix_vulnerabilities_pointer

Conversation

@fredroy
Copy link
Contributor

@fredroy fredroy commented Jan 29, 2026
edited
Loading

dynamic_cast result not checked and some other pointers were not checked

[with-all-tests]

By submitting this pull request, I acknowledge that
I have read, understand, and agree SOFA Developer Certificate of Origin (DCO).

Reviewers will merge this pull-request only if

  • it builds with SUCCESS for all platforms on the CI.
  • it does not generate new warnings.
  • it does not generate new unit test failures.
  • it does not generate new scene test failures.
  • it does not break API compatibility.
  • it is more than 1 week old (or has fast-merge label).

@fredroy fredroy added pr: fix Fix a bug pr: status to review To notify reviewers to review this pull-request pr: ai-generated Label notifying the reviewers that part or all of the PR has been generated with the help of an AI labels Jan 29, 2026
@fredroy fredroy force-pushed the fix_vulnerabilities_pointer branch from 63d135f to 0b30929 Compare January 29, 2026 03:53
@fredroy
Copy link
Contributor Author

fredroy commented Jan 29, 2026

[ci-build][with-all-tests]

bakpaul
bakpaul reviewed Jan 30, 2026
View reviewed changes
Copy link
Contributor

@bakpaul bakpaul left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A lot of the checks are made after a dynamic cast from context to node. I don't think this is required. Maybe we could change the cast to a static one ? Because we know that somehow in a sofa simulation a context doesn't live alone and is always actually comming from a Node object.

alxbilger
alxbilger previously requested changes Feb 4, 2026
View reviewed changes
@fredroy fredroy force-pushed the fix_vulnerabilities_pointer branch from 0b30929 to c703e4f Compare February 4, 2026 23:30
@fredroy fredroy requested a review from alxbilger February 4, 2026 23:30
@hugtalbot hugtalbot added pr: status ready Approved a pull-request, ready to be squashed and removed pr: status to review To notify reviewers to review this pull-request labels Feb 5, 2026
@hugtalbot hugtalbot dismissed alxbilger’s stale review February 6, 2026 16:24

Suggestion integrated

@hugtalbot hugtalbot merged commit 8883d26 into sofa-framework:master Feb 6, 2026
11 of 13 checks passed
@hugtalbot hugtalbot deleted the fix_vulnerabilities_pointer branch February 6, 2026 16:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bakpaul bakpaul bakpaul left review comments

@hugtalbot hugtalbot hugtalbot approved these changes

@alxbilger alxbilger Awaiting requested review from alxbilger

Assignees

No one assigned

Labels

pr: ai-generated Label notifying the reviewers that part or all of the PR has been generated with the help of an AI pr: fix Fix a bug pr: status ready Approved a pull-request, ready to be squashed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@fredroy @alxbilger @hugtalbot @bakpaul