Error: COMPILER_WARNING (CWE-252): [#def1] gnome-keyring-48.0/daemon/gkd-main.c: scope_hint: In function ‘block_on_fd’ gnome-keyring-48.0/daemon/gkd-main.c:626:9: warning[-Wunused-result]: ignoring return value of ‘read’ declared with attribute ‘warn_unused_result’ # 626 | read (fd, &dummy, 1); # | ^~~~~~~~~~~~~~~~~~~~ # 624| { # 625| unsigned char dummy; # 626|-> read (fd, &dummy, 1); # 627| } # 628| Error: COMPILER_WARNING: [#def2] gnome-keyring-48.0/daemon/ssh-agent/gkd-ssh-agent-interaction.c:25: included_from: Included from here. gnome-keyring-48.0/daemon/ssh-agent/gkd-ssh-agent-interaction.h:23: warning[-Wheader-guard]: header guard ‘_GKD_SSH_AGENT_INTERACTION_H__’ followed by ‘#define’ of a different macro # 23 | #ifndef _GKD_SSH_AGENT_INTERACTION_H__ gnome-keyring-48.0/daemon/ssh-agent/gkd-ssh-agent-interaction.h:24: note: ‘__GKD_SSH_AGENT_INTERACTION_H__’ is defined here; did you mean ‘_GKD_SSH_AGENT_INTERACTION_H__’? # 24 | #define __GKD_SSH_AGENT_INTERACTION_H__ # 21| */ # 22| # 23|-> #ifndef _GKD_SSH_AGENT_INTERACTION_H__ # 24| #define __GKD_SSH_AGENT_INTERACTION_H__ # 25| Error: COMPILER_WARNING (CWE-252): [#def3] gnome-keyring-48.0/egg/dotlock.c: scope_hint: In function ‘use_hardlinks_p’ gnome-keyring-48.0/egg/dotlock.c:586:3: warning[-Wunused-result]: ignoring return value of ‘link’ declared with attribute ‘warn_unused_result’ # 586 | link (tname, lname); # | ^~~~~~~~~~~~~~~~~~~ # 584| strcat (lname, "x"); # 585| # 586|-> link (tname, lname); # 587| # 588| if (stat (tname, &sb)) Error: COMPILER_WARNING (CWE-252): [#def4] gnome-keyring-48.0/egg/dotlock.c: scope_hint: In function ‘dotlock_take_unix’ gnome-keyring-48.0/egg/dotlock.c:1007:7: warning[-Wunused-result]: ignoring return value of ‘link’ declared with attribute ‘warn_unused_result’ # 1007 | link (h->tname, h->lockname); # | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 1005| struct stat sb; # 1006| # 1007|-> link (h->tname, h->lockname); # 1008| # 1009| if (stat (h->tname, &sb)) Error: CPPCHECK_WARNING (CWE-457): [#def5] gnome-keyring-48.0/egg/egg-asn1x.c:1000: error[uninitvar]: Uninitialized variable: tag # 998| if (anode_def_type (node) == EGG_ASN1X_SET) { # 999| for (ctlv = tlv->child, i = 0; ctlv != NULL; ctlv = ctlv->next, i++) { # 1000|-> if (i > 0 && tag > ctlv->tag) # 1001| return anode_failure (node, "content must be in ascending order"); # 1002| tag = ctlv->tag; Error: COMPILER_WARNING (CWE-477): [#def6] gnome-keyring-48.0/egg/egg-libgcrypt.c: scope_hint: In function ‘egg_libgcrypt_initialize’ gnome-keyring-48.0/egg/egg-libgcrypt.c:76:25: warning[-Wdeprecated-declarations]: ‘gcry_set_log_handler’ is deprecated # 76 | gcry_set_log_handler (log_handler, NULL); # | ^~~~~~~~~~~~~~~~~~~~ gnome-keyring-48.0/egg/egg-libgcrypt.c:28: included_from: Included from here. /usr/include/gcrypt.h:2025:6: note: declared here # 2025 | void gcry_set_log_handler (gcry_handler_log_t f, # | ^~~~~~~~~~~~~~~~~~~~ # 74| #endif # 75| gcry_check_version (LIBGCRYPT_VERSION); # 76|-> gcry_set_log_handler (log_handler, NULL); # 77| gcry_set_outofcore_handler (no_mem_handler, NULL); # 78| gcry_set_fatalerror_handler (fatal_handler, NULL); Error: COMPILER_WARNING (CWE-477): [#def7] gnome-keyring-48.0/pam/gkr-pam-module.c: scope_hint: In function ‘setup_selinux_context’ gnome-keyring-48.0/pam/gkr-pam-module.c:322:9: warning[-Wdeprecated-declarations]: ‘security_context_t’ is deprecated # 322 | security_context_t fcon = NULL, newcon = NULL, execcon = NULL; # | ^~~~~~~~~~~~~~~~~~ # 320| */ # 321| static void setup_selinux_context(const char *command) { # 322|-> security_context_t fcon = NULL, newcon = NULL, execcon = NULL; # 323| # 324| if (is_selinux_enabled() != 1) return; Error: COMPILER_WARNING (CWE-252): [#def8] gnome-keyring-48.0/pam/gkr-pam-module.c: scope_hint: In function ‘setup_child’ gnome-keyring-48.0/pam/gkr-pam-module.c:393:9: warning[-Wunused-result]: ignoring return value of ‘seteuid’ declared with attribute ‘warn_unused_result’ # 393 | seteuid (getuid ()); # | ^~~~~~~~~~~~~~~~~~~ # 391| # 392| /* We may be running effective as another user, revert that */ # 393|-> seteuid (getuid ()); # 394| setegid (getgid ()); # 395| Error: COMPILER_WARNING (CWE-252): [#def9] gnome-keyring-48.0/pam/gkr-pam-module.c:394:9: warning[-Wunused-result]: ignoring return value of ‘setegid’ declared with attribute ‘warn_unused_result’ # 394 | setegid (getgid ()); # | ^~~~~~~~~~~~~~~~~~~ # 392| /* We may be running effective as another user, revert that */ # 393| seteuid (getuid ()); # 394|-> setegid (getgid ()); # 395| # 396| /* Setup process credentials */ Error: COMPILER_WARNING (CWE-252): [#def10] gnome-keyring-48.0/pkcs11/gkm/gkm-debug.c: scope_hint: In function ‘on_gkm_log_debug’ gnome-keyring-48.0/pkcs11/gkm/gkm-debug.c:81:9: warning[-Wunused-result]: ignoring return value of ‘write’ declared with attribute ‘warn_unused_result’ # 81 | write (1, gstring->str, gstring->len); # | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 79| message ? message : "(NULL) message"); # 80| # 81|-> write (1, gstring->str, gstring->len); # 82| g_string_free (gstring, TRUE); # 83| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def11] gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:114:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘error’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:101:1: enter_function: entry to ‘create_collection_with_secret’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:103:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:107:9: branch_false: following ‘false’ branch (when ‘self’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:107:9: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:108:9: branch_true: following ‘true’ branch (when ‘master’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:109:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:109:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:111:29: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:111:29: call_function: calling ‘gkd_secret_create_with_secret’ from ‘create_collection_with_secret’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:111:29: return_function: returning to ‘create_collection_with_secret’ from ‘gkd_secret_create_with_secret’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:113:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:114:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:114:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:115:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-create.c:114:17: danger: dereference of NULL ‘error’ # 112| # 113| if (!self->result_path) { # 114|-> g_warning ("couldn't create new collection: %s", error->message); # 115| g_error_free (error); # 116| return FALSE; Error: GCC_ANALYZER_WARNING (CWE-476): [#def12] gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1442:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘error’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1425:1: enter_function: entry to ‘on_each_item_emit_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1432:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1435:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1440:17: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1440:17: call_function: calling ‘object_property_get’ from ‘on_each_item_emit_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1440:17: return_function: returning to ‘on_each_item_emit_locked’ from ‘object_property_get’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1441:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1442:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1442:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1444:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1442:17: danger: dereference of NULL ‘error’ # 1440| value = object_property_get (self, object, "Locked", &error); # 1441| if (!value) { # 1442|-> g_warning ("setting locked state on item %s, but no property value: %s", # 1443| path, error->message); # 1444| g_error_free (error); Error: GCC_ANALYZER_WARNING (CWE-476): [#def13] gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1475:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘error’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1455:1: enter_function: entry to ‘gkd_secret_objects_emit_collection_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1461:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1463:27: call_function: calling ‘object_path_for_collection’ from ‘gkd_secret_objects_emit_collection_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1463:27: return_function: returning to ‘gkd_secret_objects_emit_collection_locked’ from ‘object_path_for_collection’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1464:9: call_function: calling ‘gkd_secret_objects_foreach_item’ from ‘gkd_secret_objects_emit_collection_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1464:9: return_function: returning to ‘gkd_secret_objects_emit_collection_locked’ from ‘gkd_secret_objects_foreach_item’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1468:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1473:17: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1473:17: call_function: calling ‘object_property_get’ from ‘gkd_secret_objects_emit_collection_locked’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1473:17: return_function: returning to ‘gkd_secret_objects_emit_collection_locked’ from ‘object_property_get’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1474:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1475:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1475:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1477:17: release_memory: ‘error’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-objects.c:1475:17: danger: dereference of NULL ‘error’ # 1473| value = object_property_get (self, collection, "Locked", &error); # 1474| if (!value) { # 1475|-> g_warning ("setting locked state on item %s, but no property value: %s", # 1476| collection_path, error->message); # 1477| g_error_free (error); Error: GCC_ANALYZER_WARNING (CWE-476): [#def14] gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-service.c:951:23: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’ gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-service.c:951:34: release_memory: ‘0’ is NULL gnome-keyring-48.0/redhat-linux-build/../daemon/dbus/gkd-secret-service.c:951:23: danger: dereference of NULL ‘gkd_secret_service_get_collections(self) + (long unsigned int)idx * 8’ # 949| gint idx; # 950| # 951|-> for (idx = 0; collections[idx] != NULL; idx++) # 952| gkd_secret_objects_register_collection (self->objects, collections[idx]); # 953| Error: GCC_ANALYZER_WARNING: [#def15] gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:434:15: warning[-Wanalyzer-fd-use-without-check]: ‘dup2’ on possibly invalid file descriptor ‘fd1’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:611:1: enter_function: entry to ‘redirect_fds_after_fork’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:615:21: branch_true: following ‘true’ branch (when ‘i != 3’)... gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:616:22: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:616:22: acquire_resource: opened here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:617:17: call_function: calling ‘sane_dup2’ from ‘redirect_fds_after_fork’ # 432| # 433| retry: # 434|-> ret = dup2 (fd1, fd2); # 435| if (ret < 0 && errno == EINTR) # 436| goto retry; Error: GCC_ANALYZER_WARNING (CWE-775): [#def16] gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1166:20: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(2, 1)’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:996:1: enter_function: entry to ‘main’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1054:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1065:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1115:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1119:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1155:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1156:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1156:17: call_function: calling ‘gkr_daemon_initialize_steps’ from ‘main’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1156:17: return_function: returning to ‘main’ from ‘gkr_daemon_initialize_steps’ gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1166:21: acquire_resource: opened here gnome-keyring-48.0/redhat-linux-build/../daemon/gkd-main.c:1166:20: danger: ‘dup2(2, 1)’ leaks here; was opened at [(15)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/14) # 1164| * valid output anyway. # 1165| */ # 1166|-> if (dup2 (2, 1) < 1) # 1167| g_warning ("couldn't redirect stdout to stderr"); # 1168| Error: GCC_ANALYZER_WARNING (CWE-476): [#def17] gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:528:16: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘node’ gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1233:1: enter_function: entry to ‘anode_decode_anything’ gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1243:16: branch_true: following ‘true’ branch (when ‘tlv’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1244:20: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1244:20: branch_true: following ‘true’ branch (when ‘node’ is NULL)... gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1245:32: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../egg/egg-asn1x.c:1245:32: call_function: calling ‘anode_failure’ from ‘anode_decode_anything’ # 526| anode_failure (GNode *node, const gchar *failure) # 527| { # 528|-> Anode *an = node->data; # 529| const gchar *prefix = an->def->name; # 530| if (!prefix && an->join) Error: COMPILER_WARNING (CWE-477): [#def18] gnome-keyring-48.0/redhat-linux-build/../egg/egg-libgcrypt.c:76:25: warning[-Wdeprecated-declarations]: ‘gcry_set_log_handler’ is deprecated # 74| #endif # 75| gcry_check_version (LIBGCRYPT_VERSION); # 76|-> gcry_set_log_handler (log_handler, NULL); # 77| gcry_set_outofcore_handler (no_mem_handler, NULL); # 78| gcry_set_fatalerror_handler (fatal_handler, NULL); Error: GCC_ANALYZER_WARNING (CWE-688): [#def19] gnome-keyring-48.0/redhat-linux-build/../egg/test-padding.c:48:9: warning[-Wanalyzer-null-argument]: use of NULL ‘output’ where non-null expected gnome-keyring-48.0/redhat-linux-build/../egg/test-padding.c:194:1: enter_function: entry to ‘test_pkcs7_padding_invalid_different’ gnome-keyring-48.0/redhat-linux-build/../egg/test-padding.c:197:9: call_function: calling ‘check_padding’ from ‘test_pkcs7_padding_invalid_different’ # 46| g_assert (result != NULL); # 47| egg_assert_cmpsize (n_output, ==, n_result); # 48|-> g_assert (memcmp (output, result, n_output) == 0); # 49| g_free (result); # 50| Error: COMPILER_WARNING (CWE-477): [#def20] gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:322:9: warning[-Wdeprecated-declarations]: ‘security_context_t’ is deprecated # 320| */ # 321| static void setup_selinux_context(const char *command) { # 322|-> security_context_t fcon = NULL, newcon = NULL, execcon = NULL; # 323| # 324| if (is_selinux_enabled() != 1) return; Error: GCC_ANALYZER_WARNING (CWE-775): [#def21] gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:372:12: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(*inp, 0)’ /usr/include/security/pam_modules.h:51:5: enter_function: entry to ‘pam_sm_chauthtok’ gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1078:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1082:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1083:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1089:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1090:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:18: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:17: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: call_function: calling ‘pam_chauthtok_update’ from ‘pam_sm_chauthtok’ # 370| # 371| /* Fix up our end of the pipes */ # 372|-> if (dup2 (inp[READ_END], STDIN) < 0 || # 373| dup2 (outp[WRITE_END], STDOUT) < 0 || # 374| dup2 (errp[WRITE_END], STDERR) < 0) { Error: GCC_ANALYZER_WARNING (CWE-775): [#def22] gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:372:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(errp[1], 2)’ /usr/include/security/pam_modules.h:51:5: enter_function: entry to ‘pam_sm_chauthtok’ gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1078:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1082:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1083:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1089:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1090:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:18: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:17: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: call_function: calling ‘pam_chauthtok_update’ from ‘pam_sm_chauthtok’ # 370| # 371| /* Fix up our end of the pipes */ # 372|-> if (dup2 (inp[READ_END], STDIN) < 0 || # 373| dup2 (outp[WRITE_END], STDOUT) < 0 || # 374| dup2 (errp[WRITE_END], STDERR) < 0) { Error: GCC_ANALYZER_WARNING (CWE-775): [#def23] gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:372:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(outp[1], 1)’ /usr/include/security/pam_modules.h:51:5: enter_function: entry to ‘pam_sm_chauthtok’ gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1078:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1082:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1083:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1089:15: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1090:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1095:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:18: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1097:17: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pam/gkr-pam-module.c:1098:24: call_function: calling ‘pam_chauthtok_update’ from ‘pam_sm_chauthtok’ # 370| # 371| /* Fix up our end of the pipes */ # 372|-> if (dup2 (inp[READ_END], STDIN) < 0 || # 373| dup2 (outp[WRITE_END], STDOUT) < 0 || # 374| dup2 (errp[WRITE_END], STDERR) < 0) { Error: GCC_ANALYZER_WARNING (CWE-688): [#def24] gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-mock.c:270:21: warning[-Wanalyzer-null-argument]: use of NULL ‘password’ where non-null expected gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-mock.c:266:1: enter_function: entry to ‘gkm_mock_module_set_pin’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-mock.c:270:21: danger: argument 1 (‘password’) NULL where non-null expected #argument 1 of ‘__builtin_strlen’ must be non-null # 268| g_free (the_pin); # 269| the_pin = g_strdup (password); # 270|-> n_the_pin = strlen (password); # 271| } # 272| Error: GCC_ANALYZER_WARNING (CWE-672): [#def25] gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:260:9: warning[-Wanalyzer-va-list-use-after-va-end]: ‘va_end’ after ‘va_end’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:250:1: enter_function: entry to ‘gkm_sexp_extract_mpi’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:255:9: branch_true: following ‘true’ branch (when ‘sexp’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:256:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:256:9: branch_true: following ‘true’ branch (when ‘mpi’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:258:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:258:9: acquire_resource: ‘va_start’ called here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:259:14: call_function: calling ‘gkm_sexp_get_childv’ from ‘gkm_sexp_extract_mpi’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:259:14: return_function: returning to ‘gkm_sexp_extract_mpi’ from ‘gkm_sexp_get_childv’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:260:9: danger: ‘va_end’ after ‘va_end’ at [(11)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/10) # 258| va_start (va, mpi); # 259| at = gkm_sexp_get_childv (sexp, va); # 260|-> va_end (va); # 261| # 262| *mpi = NULL; Error: GCC_ANALYZER_WARNING (CWE-672): [#def26] gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:283:9: warning[-Wanalyzer-va-list-use-after-va-end]: ‘va_end’ after ‘va_end’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:273:1: enter_function: entry to ‘gkm_sexp_extract_string’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:278:9: branch_true: following ‘true’ branch (when ‘sexp’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:279:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:279:9: branch_true: following ‘true’ branch (when ‘buf’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:281:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:281:9: acquire_resource: ‘va_start’ called here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:282:14: call_function: calling ‘gkm_sexp_get_childv’ from ‘gkm_sexp_extract_string’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:282:14: return_function: returning to ‘gkm_sexp_extract_string’ from ‘gkm_sexp_get_childv’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:283:9: danger: ‘va_end’ after ‘va_end’ at [(11)](sarif:/runs/0/results/7/codeFlows/0/threadFlows/0/locations/10) # 281| va_start (va, buf); # 282| at = gkm_sexp_get_childv (sexp, va); # 283|-> va_end (va); # 284| # 285| *buf = NULL; Error: GCC_ANALYZER_WARNING (CWE-672): [#def27] gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:309:9: warning[-Wanalyzer-va-list-use-after-va-end]: ‘va_end’ after ‘va_end’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:299:1: enter_function: entry to ‘gkm_sexp_extract_buffer’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:304:9: branch_true: following ‘true’ branch (when ‘sexp’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:305:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:305:9: branch_true: following ‘true’ branch (when ‘buf’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:307:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:307:9: acquire_resource: ‘va_start’ called here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:308:14: call_function: calling ‘gkm_sexp_get_childv’ from ‘gkm_sexp_extract_buffer’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:308:14: return_function: returning to ‘gkm_sexp_extract_buffer’ from ‘gkm_sexp_get_childv’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-sexp.c:309:9: danger: ‘va_end’ after ‘va_end’ at [(11)](sarif:/runs/0/results/9/codeFlows/0/threadFlows/0/locations/10) # 307| va_start (va, bufsize); # 308| at = gkm_sexp_get_childv (sexp, va); # 309|-> va_end (va); # 310| # 311| *buf = NULL; Error: GCC_ANALYZER_WARNING (CWE-775): [#def28] gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:232:25: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘<unknown>’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:189:25: acquire_resource: opened here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:191:12: branch_false: following ‘false’ branch... branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:204:12: branch_false: following ‘false’ branch... branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:211:16: branch_true: following ‘true’ branch (when ‘nread != 0’)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:212:20: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:214:20: branch_false: following ‘false’ branch (when ‘nread != -1’)... branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/gkm/gkm-transaction.c:232:25: danger: ‘<unknown>’ leaks here; was opened at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 230| goto failure; # 231| } # 232|-> g_return_val_if_fail (nwritten <= nread, -1); # 233| nread -= nwritten; # 234| bufp += nwritten; Error: GCC_ANALYZER_WARNING (CWE-122): [#def29] gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:541:9: warning[-Wanalyzer-out-of-bounds]: heap-based buffer overflow gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2216:1: enter_function: entry to ‘run_dispatch_thread’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2219:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2221:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2221:9: call_function: calling ‘run_dispatch_loop’ from ‘run_dispatch_thread’ # 539| # 540| memcpy (*val, data, n_data); # 541|-> (*val)[n_data] = 0; # 542| # 543| return CKR_OK; Error: GCC_ANALYZER_WARNING (CWE-775): [#def30] gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2371:24: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘sock’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2358:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2361:9: branch_true: following ‘true’ branch (when ‘prefix’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2364:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2364:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2365:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2365:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2367:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2369:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2373:9: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2375:16: acquire_resource: stream socket created here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2376:12: branch_false: following ‘false’ branch (when ‘sock >= 0’)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2381:9: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2385:12: branch_false: following ‘false’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2391:13: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2391:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2393:65: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/rpc-layer/gkm-rpc-dispatch.c:2371:24: danger: ‘sock’ leaks here # 2369| if (pkcs11_socket_path == NULL) { # 2370| gkm_rpc_warn ("couldn't allocate memory"); # 2371|-> return -1; # 2372| } # 2373| sprintf (pkcs11_socket_path, "%s/pkcs11", prefix); Error: GCC_ANALYZER_WARNING (CWE-476): [#def31] gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:326:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_strndup(&*info.manufacturerID, 32)’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:301:1: enter_function: entry to ‘auto_unlock_attach_token’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:321:12: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:322:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:326:14: danger: dereference of NULL ‘g_strndup(&*info.manufacturerID, 32)’ # 324| } # 325| # 326|-> if (!g_str_equal (manufacturer, "") && !g_str_equal (serial, "")) # 327| gkm_wrap_login_attach_secret (label, password, # 328| "manufacturer", manufacturer, Error: GCC_ANALYZER_WARNING (CWE-457): [#def32] gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1032:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘n_attrs’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1010:1: enter_function: entry to ‘gkm_wrap_prompt_done_credential’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1017:9: branch_false: following ‘false’ branch (when ‘self’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1017:9: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1019:9: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1020:9: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1023:12: branch_true: following ‘true’ branch (when ‘call_result == 0’)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1025:25: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1025:25: call_function: calling ‘get_attributes_from_object’ from ‘gkm_wrap_prompt_done_credential’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1025:25: return_function: returning to ‘gkm_wrap_prompt_done_credential’ from ‘get_attributes_from_object’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1032:21: danger: use of uninitialized value ‘n_attrs’ here # 1030| * the one that failed earlier. # 1031| */ # 1032|-> if (is_login_keyring (attrs, n_attrs)) # 1033| fix_login_keyring_if_unlock_failed (self, data->password); # 1034| Error: GCC_ANALYZER_WARNING (CWE-457): [#def33] gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1427:17: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘n_attrs’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1415:1: enter_function: entry to ‘login_prompt_done_specific’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1420:9: branch_false: following ‘false’ branch (when ‘self’ is non-NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1420:9: branch_false: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1425:12: branch_true: following ‘true’ branch (when ‘call_result == 0’)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1425:38: call_function: inlined call to ‘auto_unlock_should_attach’ from ‘login_prompt_done_specific’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1425:13: branch_true: following ‘true’ branch... gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1426:25: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1426:25: call_function: calling ‘get_attributes_from_object’ from ‘login_prompt_done_specific’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1426:25: return_function: returning to ‘login_prompt_done_specific’ from ‘get_attributes_from_object’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/wrap-layer/gkm-wrap-prompt.c:1427:17: danger: use of uninitialized value ‘n_attrs’ here # 1425| if (call_result == CKR_OK && auto_unlock_should_attach (self)) { # 1426| attrs = get_attributes_from_object (self, &n_attrs); # 1427|-> auto_unlock_attach_object (attrs, n_attrs, self->prompt_data); # 1428| } # 1429| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def34] gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:420:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘object’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:409:13: branch_true: following ‘true’ branch (when ‘object’ is NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:419:14: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:419:14: branch_true: following ‘true’ branch (when ‘object’ is NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:420:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:420:17: danger: dereference of NULL ‘object’ # 418| /* Double check that the object is in fact serializable */ # 419| if (!GKM_IS_SERIALIZABLE (object)) { # 420|-> g_message ("can't store object of type '%s' on token", G_OBJECT_TYPE_NAME (object)); # 421| gkm_transaction_fail (transaction, CKR_TEMPLATE_INCONSISTENT); # 422| return; Error: GCC_ANALYZER_WARNING (CWE-476): [#def35] gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:458:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘object’ gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:451:13: branch_true: following ‘true’ branch (when ‘object’ is NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:457:14: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:457:14: branch_true: following ‘true’ branch (when ‘object’ is NULL)... gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:458:17: branch_true: ...to here gnome-keyring-48.0/redhat-linux-build/../pkcs11/xdg-store/gkm-xdg-module.c:458:17: danger: dereference of NULL ‘object’ # 456| /* Double check that the object is in fact serializable */ # 457| if (!GKM_IS_SERIALIZABLE (object)) { # 458|-> g_message ("can't store object of type '%s' on token", G_OBJECT_TYPE_NAME (object)); # 459| gkm_transaction_fail (transaction, CKR_TEMPLATE_INCONSISTENT); # 460| return;
| analyzer-version-clippy | 1.86.0 |
| analyzer-version-cppcheck | 2.17.1 |
| analyzer-version-gcc | 15.0.1 |
| analyzer-version-gcc-analyzer | 15.0.1 |
| analyzer-version-shellcheck | 0.10.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-188.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250425.124705.g1c7c448.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | gnome-keyring-48.0-1.fc43 |
| store-results-to | /tmp/tmp_9qs4flz/gnome-keyring-48.0-1.fc43.tar.xz |
| time-created | 2025-04-25 12:54:48 |
| time-finished | 2025-04-25 12:57:51 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'unicontrol,cppcheck,gcc,clippy,shellcheck' '-o' '/tmp/tmp_9qs4flz/gnome-keyring-48.0-1.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmp_9qs4flz/gnome-keyring-48.0-1.fc43.src.rpm' |
| tool-version | csmock-3.8.1.20250422.172604.g26bc3d6-1.el9 |