Error: SHELLCHECK_WARNING (CWE-456): [#def1] /usr/lib64/httpd/build/instdso.sh:54:9: warning[SC2209]: Use var=$(command) to assign output (or quote to assign string). # 52| case $SYS in # 53| SunOS|HP-UX) # 54|-> INSTALL_CMD=cp # 55| ;; # 56| *) Error: SHELLCHECK_WARNING (CWE-456): [#def2] /usr/lib64/httpd/build/instdso.sh:57:64: warning[SC2209]: Use var=$(command) to assign output (or quote to assign string). # 55| ;; # 56| *) # 57|-> type install >/dev/null 2>&1 && INSTALL_CMD=install || INSTALL_CMD=cp # 58| ;; # 59| esac Error: SHELLCHECK_WARNING (CWE-456): [#def3] /usr/lib64/httpd/build/mkdir.sh:29:9: warning[SC2121]: To assign a variable, use just 'var=value', no 'set ..'. # 27| errstatus=0 # 28| for file in ${1+"$@"} ; do # 29|-> set fnord `echo ":$file" |\ # 30| sed -e 's/^:\//%/' -e 's/^://' -e 's/\// /g' -e 's/^%/\//'` # 31| shift Error: SHELLCHECK_WARNING (CWE-156): [#def4] /usr/lib64/httpd/build/mkdir.sh:29:15: warning[SC2046]: Quote this to prevent word splitting. # 27| errstatus=0 # 28| for file in ${1+"$@"} ; do # 29|-> set fnord `echo ":$file" |\ # 30| sed -e 's/^:\//%/' -e 's/^://' -e 's/\// /g' -e 's/^%/\//'` # 31| shift Error: SHELLCHECK_WARNING (CWE-563): [#def5] /usr/sbin/apachectl:30:1: warning[SC2034]: ARGV appears unused. Verify use (or export if used externally). # 28| # 29| ACMD="$1" # 30|-> ARGV="$@" # 31| SVC='httpd.service' # 32| HTTPD='/usr/sbin/httpd' Error: SHELLCHECK_WARNING (CWE-569): [#def6] /usr/sbin/apachectl:30:6: warning[SC2124]: Assigning an array to a string! Assign as array, or use * instead of @ to concatenate. # 28| # 29| ACMD="$1" # 30|-> ARGV="$@" # 31| SVC='httpd.service' # 32| HTTPD='/usr/sbin/httpd' Error: GCC_ANALYZER_WARNING (CWE-688): [#def7] httpd-2.4.61-build/httpd-2.4.61/modules/aaa/mod_access_compat.c: scope_hint: In function 'in_domain' httpd-2.4.61-build/httpd-2.4.61/modules/aaa/mod_access_compat.c:218:14: warning[-Wanalyzer-null-argument]: use of NULL 'what' where non-null expected <built-in>: note: argument 1 of '__builtin_strlen' must be non-null # 216| { # 217| int dl = strlen(domain); # 218|-> int wl = strlen(what); # 219| # 220| if ((wl - dl) >= 0) { Error: GCC_ANALYZER_WARNING (CWE-131): [#def8] httpd-2.4.61-build/httpd-2.4.61/modules/aaa/mod_authnz_ldap.c: scope_hint: In function 'create_authnz_ldap_dir_config' httpd-2.4.61-build/httpd-2.4.61/modules/aaa/mod_authnz_ldap.c:356:23: warning[-Wanalyzer-allocation-size]: allocated buffer size is not a multiple of the pointee's size # 354| sec->secure = -1; /*Initialize to unset*/ # 355| sec->maxNestingDepth = 10; # 356|-> sec->sgAttributes = apr_pcalloc(p, sizeof (char *) * GROUPATTR_MAX_ELTS + 1); # 357| # 358| sec->user_is_dn = 0; Error: GCC_ANALYZER_WARNING (CWE-457): [#def9] httpd-2.4.61-build/httpd-2.4.61/modules/cache/cache_util.c: scope_hint: In function 'cache_strqtok' httpd-2.4.61-build/httpd-2.4.61/modules/cache/cache_util.c:935:13: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value '*last' # 933| # 934| if (!str) { /* subsequent call */ # 935|-> str = *last; /* start where we left off */ # 936| } # 937| Error: GCC_ANALYZER_WARNING (CWE-688): [#def10] httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c: scope_hint: In function 'open_entity' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c:705:37: warning[-Wanalyzer-null-argument]: use of NULL 'nkey' where non-null expected /usr/include/apr-1/apr_file_io.h:26: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c:18: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c:470:11: note: in expansion of macro 'apr_pcalloc' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c:29: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:448:28: note: in expansion of macro 'ap_log_rerror__' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_cache_socache.c:589:9: note: in expansion of macro 'ap_log_rerror' <built-in>: note: argument 1 of '__builtin_strlen' must be non-null # 703| conf->provider->socache_provider->remove( # 704| conf->provider->socache_instance, r->server, # 705|-> (unsigned char *) nkey, strlen(nkey), r->pool); # 706| if (socache_mutex) { # 707| apr_status_t status = apr_global_mutex_unlock(socache_mutex); Error: GCC_ANALYZER_WARNING (CWE-688): [#def11] httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c: scope_hint: In function 'shmcb_cyclic_cton_memcpy' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:222:9: warning[-Wanalyzer-null-argument]: use of NULL 'dest' where non-null expected httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:712:35: note: in expansion of macro 'SHMCB_SUBCACHE' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:987:27: note: in expansion of macro 'SHMCB_INDEX' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:18: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:363:27: note: in expansion of macro 'ap_log_error__' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:992:13: note: in expansion of macro 'ap_log_error' <built-in>: note: argument 1 of '__builtin_memcpy' must be non-null # 220| if (src_offset + src_len < buf_size) # 221| /* It be copied all in one go */ # 222|-> memcpy(dest, data + src_offset, src_len); # 223| else { # 224| /* Copy the two splits */ Error: GCC_ANALYZER_WARNING (CWE-688): [#def12] httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:225:9: warning[-Wanalyzer-null-argument]: use of NULL 'dest' where non-null expected httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:712:35: note: in expansion of macro 'SHMCB_SUBCACHE' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:987:27: note: in expansion of macro 'SHMCB_INDEX' httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:363:27: note: in expansion of macro 'ap_log_error__' httpd-2.4.61-build/httpd-2.4.61/modules/cache/mod_socache_shmcb.c:992:13: note: in expansion of macro 'ap_log_error' <built-in>: note: argument 1 of '__builtin_memcpy' must be non-null # 223| else { # 224| /* Copy the two splits */ # 225|-> memcpy(dest, data + src_offset, buf_size - src_offset); # 226| memcpy(dest + buf_size - src_offset, data, # 227| src_len + src_offset - buf_size); Error: GCC_ANALYZER_WARNING (CWE-457): [#def13] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c: scope_hint: In function 'finish_partial_char' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:448:33: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value '*cur_str' /usr/include/apr-1/apr_mmap.h:28: included_from: Included from here. /usr/include/apr-1/apr_buckets.h:32: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/httpd.h:56: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:27: included_from: Included from here. /usr/include/apr-1/apr_buckets.h:331:33: note: in expansion of macro 'APR_RING_SENTINEL' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:868:25: note: in expansion of macro 'APR_BRIGADE_SENTINEL' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:871:17: note: in expansion of macro 'APR_BUCKET_IS_EOS' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:884:17: note: in expansion of macro 'APR_BUCKET_IS_METADATA' # 446| # 447| do { # 448|-> ctx->buf[ctx->saved] = **cur_str; # 449| ++ctx->saved; # 450| ++*cur_str; Error: GCC_ANALYZER_WARNING (CWE-457): [#def14] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c: scope_hint: In function 'xlate_out_filter' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:920:22: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'cur_str' /usr/include/apr-1/apr_buckets.h:331:33: note: in expansion of macro 'APR_RING_SENTINEL' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:868:25: note: in expansion of macro 'APR_BRIGADE_SENTINEL' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:871:17: note: in expansion of macro 'APR_BUCKET_IS_EOS' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_charset_lite.c:884:17: note: in expansion of macro 'APR_BUCKET_IS_METADATA' # 918| } # 919| else { # 920|-> rv = apr_xlate_conv_buffer(ctx->xlate, # 921| cur_str, &cur_avail, # 922| tmp + sizeof(tmp) - space_avail, &space_avail); Error: GCC_ANALYZER_WARNING (CWE-688): [#def15] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c: scope_hint: In function 'handle_elif' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c:2409:9: warning[-Wanalyzer-null-argument]: use of NULL 'tag' where non-null expected /usr/include/apr-1/apr_want.h:63: included_from: Included from here. /usr/include/apr-1/apr_pools.h:47: included_from: Included from here. /usr/include/apr-1/apr_strings.h:50: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c:18: included_from: Included from here. /usr/include/string.h:156:12: note: argument 1 of 'strcmp' must be non-null # 2407| ap_ssi_get_tag_and_value(ctx, &tag, &expr, SSI_VALUE_RAW); # 2408| # 2409|-> if (strcmp(tag, "expr")) { # 2410| ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01358) "unknown parameter \"%s\" " # 2411| "to tag if in %s", tag, r->filename); Error: GCC_ANALYZER_WARNING (CWE-476): [#def16] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c: scope_hint: In function 'find_argument' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c:3206:17: warning[-Wanalyzer-null-dereference]: dereference of NULL 'data' # 3204| * can safely assume, someone forgot the name of the argument # 3205| */ # 3206|-> switch (*p) { # 3207| case '"': case '\'': case '`': # 3208| *store = NULL; Error: GCC_ANALYZER_WARNING (CWE-476): [#def17] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_include.c:3306:13: warning[-Wanalyzer-null-dereference]: dereference of NULL 'data' # 3304| # 3305| case PARSE_ARG_VAL_ESC: # 3306|-> if (*p == intern->quote) { # 3307| ++p; # 3308| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_proxy_html.c: scope_hint: In function 'preserve' httpd-2.4.61-build/httpd-2.4.61/modules/filters/mod_proxy_html.c:206:8: warning[-Wanalyzer-malloc-leak]: leak of 'newbuf' # 204| # 205| newbuf = realloc(ctx->buf, ctx->avail); # 206|-> if (newbuf != ctx->buf) { # 207| if (ctx->buf) # 208| apr_pool_cleanup_kill(ctx->f->r->pool, ctx->buf, Error: GCC_ANALYZER_WARNING (CWE-476): [#def19] httpd-2.4.61-build/httpd-2.4.61/modules/filters/sed0.c: scope_hint: In function 'text' httpd-2.4.61-build/httpd-2.4.61/modules/filters/sed0.c:885:16: warning[-Wanalyzer-null-dereference]: dereference of NULL 'p' # 883| if(p > tbend) # 884| return(NULL); /* overflowed the buffer */ # 885|-> if((*p = *q++) == '\\') # 886| *p = *q++; # 887| if(*p == '\0') { Error: GCC_ANALYZER_WARNING (CWE-688): [#def20] httpd-2.4.61-build/httpd-2.4.61/modules/http/http_filters.c: scope_hint: In function 'basic_http_header' httpd-2.4.61-build/httpd-2.4.61/modules/http/http_filters.c:1089:23: warning[-Wanalyzer-null-argument]: use of NULL 'protocol' where non-null expected httpd-2.4.61-build/httpd-2.4.61/modules/http/http_filters.c: scope_hint: In function 'basic_http_header' <built-in>: note: argument 1 of '__builtin_strlen' must be non-null # 1087| # 1088| vec[0].iov_base = (void *)protocol; # 1089|-> vec[0].iov_len = strlen(protocol); # 1090| vec[1].iov_base = (void *)" "; # 1091| vec[1].iov_len = sizeof(" ") - 1; Error: GCC_ANALYZER_WARNING (CWE-476): [#def21] httpd-2.4.61-build/httpd-2.4.61/modules/http/http_filters.c: scope_hint: In function 'ap_http_header_filter' httpd-2.4.61-build/httpd-2.4.61/modules/http/http_filters.c:1482:16: warning[-Wanalyzer-null-dereference]: dereference of NULL '*r.content_languages' # 1480| int i; # 1481| char *token; # 1482|-> char **languages = (char **)(r->content_languages->elts); # 1483| const char *field = apr_table_get(r->headers_out, "Content-Language"); # 1484| Error: GCC_ANALYZER_WARNING (CWE-465): [#def22] httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c: scope_hint: In function 'lua_db_prepared_select' httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c:413:8: warning[-Wanalyzer-deref-before-check]: check of '*<unknown>.db' for NULL after already dereferencing it /usr/include/apr-1/apr_tables.h:26: included_from: Included from here. /usr/include/apr-1/apr_hooks.h:22: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/ap_hooks.h:40: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/ap_config.h:25: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/httpd.h:44: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/lua/mod_lua.h:23: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c:19: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c:407:12: note: in expansion of macro 'apr_pcalloc' # 411| # 412| /* Fire off the query */ # 413|-> if (st->db && st->db->alive) { # 414| # 415| /*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/ Error: GCC_ANALYZER_WARNING (CWE-465): [#def23] httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c: scope_hint: In function 'lua_db_prepared_query' httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c:504:8: warning[-Wanalyzer-deref-before-check]: check of '*<unknown>.db' for NULL after already dereferencing it httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_dbd.c:498:12: note: in expansion of macro 'apr_pcalloc' # 502| # 503| /* Fire off the query */ # 504|-> if (st->db && st->db->alive) { # 505| # 506| /*~~~~~~~~~~~~~~*/ Error: GCC_ANALYZER_WARNING (CWE-476): [#def24] httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_vmprep.c: scope_hint: In function 'ap_lua_get_lua_state' httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_vmprep.c:523:28: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' # 521| loaded in the vm_construct function. # 522| */ # 523|-> if ((cache_info->modified == lua_finfo.mtime && cache_info->size == lua_finfo.size) # 524| || cache_info->modified == 0) { # 525| tryCache = 1; Error: GCC_ANALYZER_WARNING (CWE-476): [#def25] httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_vmprep.c:531:27: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' # 529| } # 530| else if (spec->codecache == AP_LUA_CACHE_NEVER) { # 531|-> if (cache_info->runs == 0) # 532| tryCache = 1; # 533| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def26] httpd-2.4.61-build/httpd-2.4.61/modules/lua/lua_vmprep.c:534:19: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' # 532| tryCache = 1; # 533| } # 534|-> cache_info->runs++; # 535| } # 536| if (tryCache == 0 && spec->scope != AP_LUA_SCOPE_ONCE) { Error: GCC_ANALYZER_WARNING (CWE-127): [#def27] httpd-2.4.61-build/httpd-2.4.61/modules/mappers/mod_vhost_alias.c: scope_hint: In function 'vhost_alias_interpolate' httpd-2.4.61-build/httpd-2.4.61/modules/mappers/mod_vhost_alias.c:368:31: warning[-Wanalyzer-out-of-bounds]: stack-based buffer under-read httpd-2.4.61-build/httpd-2.4.61/modules/mappers/mod_vhost_alias.c:368:31: note: valid subscripts for 'buf' are '[0]' to '[8191]' # 366| } # 367| /* no double slashes */ # 368|-> if (dest - buf > 0 && dest[-1] == '/') { # 369| --dest; # 370| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def28] httpd-2.4.61-build/httpd-2.4.61/modules/proxy/proxy_util.c: scope_hint: In function 'ap_proxy_connect_backend' httpd-2.4.61-build/httpd-2.4.61/modules/proxy/proxy_util.c:3734:23: warning[-Wanalyzer-null-dereference]: dereference of NULL 'backend_addr' # 3732| #endif # 3733| { # 3734|-> if ((rv = apr_socket_create(&newsock, backend_addr->family, # 3735| SOCK_STREAM, APR_PROTO_TCP, # 3736| conn->scpool)) != APR_SUCCESS) { Error: GCC_ANALYZER_WARNING (CWE-476): [#def29] httpd-2.4.61-build/httpd-2.4.61/modules/session/mod_session_crypto.c: scope_hint: In function 'crypt_init' httpd-2.4.61-build/httpd-2.4.61/modules/session/mod_session_crypto.c:246:25: warning[-Wanalyzer-null-dereference]: dereference of NULL 'options' # 244| offset += klen; # 245| } # 246|-> options[offset] = 0; # 247| # 248| ap_log_rerror(APLOG_MARK, APLOG_ERR, res, r, APLOGNO(01824) Error: GCC_ANALYZER_WARNING (CWE-457): [#def30] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c: scope_hint: In function 'ssl_init_ctx_protocol' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c:790:8: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'prot' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_private.h:32: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c:29: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/http_config.h:626:6: note: in expansion of macro 'ap_get_module_loglevel' httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:185:14: note: in expansion of macro 'ap_get_server_module_loglevel' httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:366:42: note: in expansion of macro 'APLOG_MODULE_IS_LEVEL' httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:363:27: note: in expansion of macro 'ap_log_error__' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c:657:9: note: in expansion of macro 'ap_log_error' # 788| * but we do not allow holes between max and min */ # 789| #if SSL_HAVE_PROTOCOL_TLSV1_3 # 790|-> if (prot == TLS1_3_VERSION && protocol & SSL_PROTOCOL_TLSV1_2) { # 791| prot = TLS1_2_VERSION; # 792| } Error: COMPILER_WARNING (CWE-457): [#def31] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c: scope_hint: In function 'ssl_init_ctx_protocol.isra.0' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c:794:8: warning[-Wmaybe-uninitialized]: 'prot' may be used uninitialized # 794 | if (prot == TLS1_2_VERSION && protocol & SSL_PROTOCOL_TLSV1_1) { # | ^ httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_init.c:644:9: note: 'prot' was declared here # 644 | int prot; # | ^~~~ # 792| } # 793| #endif # 794|-> if (prot == TLS1_2_VERSION && protocol & SSL_PROTOCOL_TLSV1_1) { # 795| prot = TLS1_1_VERSION; # 796| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def32] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c: scope_hint: In function 'ssl_hook_Access_classic' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:596:35: warning[-Wanalyzer-null-dereference]: dereference of NULL 'sslconn' # 594| sc->server->auth.cipher_suite : NULL); # 595| # 596|-> if (ncipher_suite && (!sslconn->cipher_suite # 597| || strcmp(ncipher_suite, sslconn->cipher_suite))) { # 598| /* remember old state */ Error: GCC_ANALYZER_WARNING (CWE-476): [#def33] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:802:29: warning[-Wanalyzer-null-dereference]: dereference of NULL 'sslconn' # 800| * chain). # 801| */ # 802|-> n = (sslconn->verify_depth != UNSET) # 803| ? sslconn->verify_depth # 804| : hssc->server->auth.verify_depth; Error: GCC_ANALYZER_WARNING (CWE-476): [#def34] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:804:27: warning[-Wanalyzer-null-dereference]: dereference of NULL 'hssc' # 802| n = (sslconn->verify_depth != UNSET) # 803| ? sslconn->verify_depth # 804|-> : hssc->server->auth.verify_depth; # 805| /* determine the new depth */ # 806| sslconn->verify_depth = (dc->nVerifyDepth != UNSET) Error: GCC_ANALYZER_WARNING (CWE-476): [#def35] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:833:19: warning[-Wanalyzer-null-dereference]: dereference of NULL 'hssc' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:836:17: note: in expansion of macro 'MODSSL_CFG_CA_NE' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_private.h:32: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:31: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_private.h:310:1: note: in expansion of macro 'APLOG_USE_MODULE' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_private.h:34: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:448:28: note: in expansion of macro 'ap_log_rerror__' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:811:21: note: in expansion of macro 'ap_log_rerror' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:836:17: note: in expansion of macro 'MODSSL_CFG_CA_NE' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:836:17: note: in expansion of macro 'MODSSL_CFG_CA_NE' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_kernel.c:836:17: note: in expansion of macro 'MODSSL_CFG_CA_NE' # 831| #define MODSSL_CFG_CA_NE(f, sc1, sc2) \ # 832| (sc1->server->auth.f && \ # 833|-> (!sc2->server->auth.f || \ # 834| strNE(sc1->server->auth.f, sc2->server->auth.f))) # 835| Error: GCC_ANALYZER_WARNING (CWE-126): [#def36] httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c: scope_hint: In function 'ssl_var_lookup_ssl' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c:357:9: warning[-Wanalyzer-out-of-bounds]: buffer over-read httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c:30: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c:1199:9: note: in expansion of macro 'strEQ' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c:357:9: note: read of 4 bytes from after the end of '"SSL_PROTOCOL"' httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_engine_vars.c:357:9: note: valid subscripts for '"SSL_PROTOCOL"' are '[0]' to '[12]' /usr/include/apr-1/apr_want.h:63: included_from: Included from here. /usr/include/apr-1/apr_pools.h:47: included_from: Included from here. /usr/include/apr-1/apr_tables.h:26: included_from: Included from here. /usr/include/apr-1/apr_hooks.h:22: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/ap_hooks.h:40: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/ap_config.h:25: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/modules/ssl/ssl_private.h:30: included_from: Included from here. /usr/include/string.h:407:15: note: argument 1 of 'strlen' must be a pointer to a null-terminated string # 355| # 356| ssl = sslconn->ssl; # 357|-> if (strlen(var) > 8 && strcEQn(var, "VERSION_", 8)) { # 358| result = ssl_var_lookup_ssl_version(p, var+8); # 359| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def37] httpd-2.4.61-build/httpd-2.4.61/server/protocol.c: scope_hint: In function 'buffer_output' httpd-2.4.61-build/httpd-2.4.61/server/protocol.c:2095:9: warning[-Wanalyzer-null-dereference]: dereference of NULL '*r.output_filters' # 2093| # 2094| f = insert_old_write_filter(r); # 2095|-> ctx = f->ctx; # 2096| # 2097| /* if the first filter is not our buffering filter, then we have to Error: GCC_ANALYZER_WARNING (CWE-688): [#def38] httpd-2.4.61-build/httpd-2.4.61/server/scoreboard.c: scope_hint: In function 'ap_copy_scoreboard_worker' httpd-2.4.61-build/httpd-2.4.61/server/scoreboard.c:691:5: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected <built-in>: note: argument 2 of '__builtin_memcpy' must be non-null # 689| worker_score *ws = ap_get_scoreboard_worker_from_indexes(child_num, thread_num); # 690| # 691|-> memcpy(dest, ws, sizeof *ws); # 692| # 693| /* For extra safety, NUL-terminate the strings returned, though it Error: GCC_ANALYZER_WARNING (CWE-457): [#def39] httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c: scope_hint: In function 'ap_expr_yyparse' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:387:7: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'yyss' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:372:9: note: in expansion of macro 'YYCOPY' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:1384:9: note: in expansion of macro 'YYSTACK_RELOCATE' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:387:25: note: in definition of macro 'YYCOPY' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:1384:9: note: in expansion of macro 'YYSTACK_RELOCATE' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:372:9: note: in expansion of macro 'YYCOPY' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_parse.c:1384:9: note: in expansion of macro 'YYSTACK_RELOCATE' # 385| # if defined __GNUC__ && 1 < __GNUC__ # 386| # define YYCOPY(To, From, Count) \ # 387|-> __builtin_memcpy (To, From, (Count) * sizeof (*(From))) # 388| # else # 389| # define YYCOPY(To, From, Count) \ Error: GCC_ANALYZER_WARNING (CWE-476): [#def40] httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'yy_get_next_buffer' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:1721:59: warning[-Wanalyzer-null-dereference]: dereference of NULL 'b' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:1718:45: note: in expansion of macro 'YY_CURRENT_BUFFER' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:1718:45: note: in expansion of macro 'YY_CURRENT_BUFFER' # 1719| # 1720| int yy_c_buf_p_offset = # 1721|-> (int) (yyg->yy_c_buf_p - b->yy_ch_buf); # 1722| # 1723| if ( b->yy_is_our_buffer ) Error: GCC_ANALYZER_WARNING (CWE-401): [#def41] httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'ap_expr_yy_create_buffer' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:2009:24: warning[-Wanalyzer-malloc-leak]: leak of 'malloc(64)' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'ap_expr_yy_create_buffer' # 2007| YY_FATAL_ERROR( "out of dynamic memory in ap_expr_yy_create_buffer()" ); # 2008| # 2009|-> b->yy_buf_size = size; # 2010| # 2011| /* yy_ch_buf has to be 2 characters longer than the size given because Error: GCC_ANALYZER_WARNING (CWE-476): [#def42] httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'ap_expr_yy_init_buffer' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:2057:26: warning[-Wanalyzer-null-dereference]: dereference of NULL 'b' # 2055| ap_expr_yy_flush_buffer(b ,yyscanner); # 2056| # 2057|-> b->yy_input_file = file; # 2058| b->yy_fill_buffer = 1; # 2059| Error: GCC_ANALYZER_WARNING (CWE-401): [#def43] httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'ap_expr_yy_scan_buffer' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c:2275:32: warning[-Wanalyzer-malloc-leak]: leak of 'malloc(n)' httpd-2.4.61-build/httpd-2.4.61/server/util_expr_scan.c: scope_hint: In function 'ap_expr_yy_scan_buffer' # 2273| buf[i] = yybytes[i]; # 2274| # 2275|-> buf[_yybytes_len] = buf[_yybytes_len+1] = YY_END_OF_BUFFER_CHAR; # 2276| # 2277| b = ap_expr_yy_scan_buffer(buf,n ,yyscanner); Error: GCC_ANALYZER_WARNING (CWE-476): [#def44] httpd-2.4.61-build/httpd-2.4.61/server/util_mutex.c: scope_hint: In function 'ap_dump_mutexes' httpd-2.4.61-build/httpd-2.4.61/server/util_mutex.c:518:18: warning[-Wanalyzer-null-dereference]: dereference of NULL '0' # 516| continue; # 517| } # 518|-> if (mxcfg->none) { # 519| apr_file_printf(out, "Mutex %s: none\n", name); # 520| continue; Error: GCC_ANALYZER_WARNING (CWE-457): [#def45] httpd-2.4.61-build/httpd-2.4.61/server/util_regex.c: scope_hint: In function 'ap_rxplus_exec' httpd-2.4.61-build/httpd-2.4.61/server/util_regex.c:170:27: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'subs' # 168| if (ret > 1) { # 169| /* a further substitution happened */ # 170|-> diffsz += strlen(subs) - strlen(remainder); # 171| remainder = subs; # 172| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def46] httpd-2.4.61-build/httpd-2.4.61/server/util_script.c: scope_hint: In function 'ap_scan_script_header_err_strs_ex' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:889:12: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:29: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:846:9: note: in expansion of macro 'ap_strchr_c' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:846:9: note: in expansion of macro 'ap_strchr_c' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:850:13: note: in expansion of macro 'ap_strchr_c' # 887| *termarg = strs.arg; # 888| va_end(strs.args); # 889|-> return res; # 890| } # 891| Error: GCC_ANALYZER_WARNING (CWE-404): [#def47] httpd-2.4.61-build/httpd-2.4.61/server/util_script.c: scope_hint: In function 'ap_scan_script_header_err_strs' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:910:12: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:32: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:473:21: note: in expansion of macro 'APLOG_R_MODULE_IS_LEVEL' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:30: included_from: Included from here. httpd-2.4.61-build/httpd-2.4.61/include/http_config.h:621:19: note: in definition of macro 'ap_get_module_loglevel' httpd-2.4.61-build/httpd-2.4.61/include/http_config.h:635:29: note: in expansion of macro 'ap_get_request_logconf' httpd-2.4.61-build/httpd-2.4.61/include/http_log.h:197:14: note: in expansion of macro 'ap_get_request_module_loglevel' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:473:21: note: in expansion of macro 'APLOG_R_MODULE_IS_LEVEL' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:846:9: note: in expansion of macro 'ap_strchr_c' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:846:9: note: in expansion of macro 'ap_strchr_c' httpd-2.4.61-build/httpd-2.4.61/server/util_script.c:850:13: note: in expansion of macro 'ap_strchr_c' # 908| *termarg = strs.arg; # 909| va_end(strs.args); # 910|-> return res; # 911| } # 912|
| analyzer-version-clippy | 1.82.0 |
| analyzer-version-cppcheck | 2.16.0 |
| analyzer-version-gcc | 14.2.1 |
| analyzer-version-gcc-analyzer | 15.0.0 |
| analyzer-version-shellcheck | 0.10.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-89.us-west-2.compute.internal |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | httpd-2.4.61-3.fc41 |
| store-results-to | /tmp/tmpsju6dyvq/httpd-2.4.61-3.fc41.tar.xz |
| time-created | 2024-11-13 00:17:18 |
| time-finished | 2024-11-13 00:21:38 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'clippy,cppcheck,gcc,unicontrol,shellcheck' '-o' '/tmp/tmpsju6dyvq/httpd-2.4.61-3.fc41.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpsju6dyvq/httpd-2.4.61-3.fc41.src.rpm' |
| tool-version | csmock-3.7.1.20241107.094801.gb3f0f26.pr_192-1.el9 |