Error: CPPCHECK_WARNING (CWE-758): [#def1] gssproxy-0.9.2/src/client/gpm_common.c:387: error[shiftTooManyBitsSigned]: Shifting signed 32-bit value by 31 bits is undefined behaviour # 385| } # 386| # 387|-> size = length | FRAGMENT_BIT; # 388| size = htonl(size); # 389| Error: CPPCHECK_WARNING (CWE-758): [#def2] gssproxy-0.9.2/src/client/gpm_common.c:472: error[shiftTooManyBitsSigned]: Shifting signed 32-bit value by 31 bits is undefined behaviour # 470| # 471| *length = ntohl(size); # 472|-> *length &= ~FRAGMENT_BIT; # 473| # 474| if (*length > MAX_RPC_SIZE) { Error: GCC_ANALYZER_WARNING (CWE-476): [#def3] gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: warning[-Wanalyzer-null-dereference]: dereference of NULL 'ctx' gssproxy-0.9.2/src/client/gpm_init_sec_context.c:72:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:76:5: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:95:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:101:8: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:111:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:9: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:8: branch_true: following 'true' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:119:15: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:148:5: release_memory: 'ctx' is NULL gssproxy-0.9.2/src/client/gpm_init_sec_context.c:153:8: branch_true: following 'true' branch (when 'ret_maj <= 1')... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:13: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:12: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_true: following 'true' branch (when 'ret_flags' is non-NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: danger: dereference of NULL 'ctx' # 157| } # 158| if (ret_flags) { # 159|-> *ret_flags = ctx->ctx_flags; # 160| } # 161| if (time_rec) { Error: GCC_ANALYZER_WARNING (CWE-476): [#def4] gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘ctx’ gssproxy-0.9.2/src/client/gpm_init_sec_context.c:72:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:76:5: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:95:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:101:8: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:111:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:9: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:119:15: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:148:5: release_memory: ‘ctx’ is NULL gssproxy-0.9.2/src/client/gpm_init_sec_context.c:153:8: branch_true: following ‘true’ branch (when ‘ret_maj <= 1’)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:13: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:12: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_true: following ‘true’ branch (when ‘ret_flags’ is non-NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:159:26: danger: dereference of NULL ‘ctx’ # 157| } # 158| if (ret_flags) { # 159|-> *ret_flags = ctx->ctx_flags; # 160| } # 161| if (time_rec) { Error: GCC_ANALYZER_WARNING (CWE-476): [#def5] gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: warning[-Wanalyzer-null-dereference]: dereference of NULL 'ctx' gssproxy-0.9.2/src/client/gpm_init_sec_context.c:72:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:76:5: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:95:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:101:8: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:111:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:9: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:8: branch_true: following 'true' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:119:15: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:148:5: release_memory: 'ctx' is NULL gssproxy-0.9.2/src/client/gpm_init_sec_context.c:153:8: branch_true: following 'true' branch (when 'ret_maj <= 1')... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:13: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:12: branch_false: following 'false' branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: following 'false' branch (when 'ret_flags' is NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:161:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:161:12: branch_true: following 'true' branch (when 'time_rec' is non-NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: danger: dereference of NULL 'ctx' # 160| } # 161| if (time_rec) { # 162|-> *time_rec = ctx->lifetime; # 163| } # 164| } else { Error: GCC_ANALYZER_WARNING (CWE-476): [#def6] gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘ctx’ gssproxy-0.9.2/src/client/gpm_init_sec_context.c:72:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:76:5: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:95:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:101:8: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:111:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:9: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:118:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:119:15: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:148:5: release_memory: ‘ctx’ is NULL gssproxy-0.9.2/src/client/gpm_init_sec_context.c:153:8: branch_true: following ‘true’ branch (when ‘ret_maj <= 1’)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:13: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:154:12: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:158:12: branch_false: following ‘false’ branch (when ‘ret_flags’ is NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:161:12: branch_false: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:161:12: branch_true: following ‘true’ branch (when ‘time_rec’ is non-NULL)... gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: branch_true: ...to here gssproxy-0.9.2/src/client/gpm_init_sec_context.c:162:25: danger: dereference of NULL ‘ctx’ # 160| } # 161| if (time_rec) { # 162|-> *time_rec = ctx->lifetime; # 163| } # 164| } else { Error: COMPILER_WARNING (CWE-457): [#def7] gssproxy-0.9.2/src/client/gpm_unwrap.c:33:26: warning[-Wmaybe-uninitialized]: 'qop_state' may be used uninitialized # 33 | arg->qop_state = *qop_state; # | ^ gssproxy-0.9.2/tests/cli_srv_comm.c: scope_hint: In function 'server_thread' gssproxy-0.9.2/tests/cli_srv_comm.c:302:15: note: 'qop_state' was declared here # 302 | gss_qop_t qop_state; # | ^ # 31| arg->context_handle = *context_handle; # 32| if (qop_state) { # 33|-> arg->qop_state = *qop_state; # 34| } # 35| Error: CPPCHECK_WARNING (CWE-758): [#def8] gssproxy-0.9.2/src/gp_socket.c:454: error[shiftTooManyBitsSigned]: Shifting signed 32-bit value by 31 bits is undefined behaviour # 452| /* for now just make sure we have the last fragment bit # 453| * then remove it */ # 454|-> if (rbuf->size & FRAGMENT_BIT) { # 455| rbuf->size &= ~FRAGMENT_BIT; # 456| } else { Error: CPPCHECK_WARNING (CWE-758): [#def9] gssproxy-0.9.2/src/gp_socket.c:455: error[shiftTooManyBitsSigned]: Shifting signed 32-bit value by 31 bits is undefined behaviour # 453| * then remove it */ # 454| if (rbuf->size & FRAGMENT_BIT) { # 455|-> rbuf->size &= ~FRAGMENT_BIT; # 456| } else { # 457| ret = EIO; Error: CPPCHECK_WARNING (CWE-758): [#def10] gssproxy-0.9.2/src/gp_socket.c:589: error[shiftTooManyBitsSigned]: Shifting signed 32-bit value by 31 bits is undefined behaviour # 587| if (wbuf->pos == 0) { # 588| /* first write, send the buffer size as packet header */ # 589|-> size = wbuf->size | FRAGMENT_BIT; # 590| size = htonl(size); # 591| Error: GCC_ANALYZER_WARNING (CWE-126): [#def11] gssproxy-0.9.2/src/gp_util.c:124:9: warning[-Wanalyzer-out-of-bounds]: buffer over-read gssproxy-0.9.2/src/gp_util.c:122:8: branch_true: following ‘true’ branch (when ‘ret’ is NULL)... gssproxy-0.9.2/src/gp_util.c:124:9: branch_true: ...to here gssproxy-0.9.2/src/gp_util.c:124:9: danger: out-of-bounds read from byte 29 till byte 1023 but ‘gp_internal_err’ ends at byte 29 # 122| if (ret == NULL) { # 123| memset(buf, 0, MAX_GP_STRERROR); # 124|-> strncpy(buf, gp_internal_err, MAX_GP_STRERROR); # 125| buf[MAX_GP_STRERROR -1] = '\0'; # 126| } else if (ret != buf) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] gssproxy-0.9.2/src/gp_util.c:217:12: warning[-Wanalyzer-malloc-leak]: leak of 'opt.option.octet_string_val' gssproxy-0.9.2/src/gp_util.c:183:35: acquire_memory: allocated here gssproxy-0.9.2/src/gp_util.c:184:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/gp_util.c:188:5: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:191:8: branch_false: following 'false' branch (when 'value_len == 0')... gssproxy-0.9.2/src/gp_util.c:201:34: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:202:8: branch_false: following 'false' branch (when 'out' is non-NULL)... gssproxy-0.9.2/src/gp_util.c:207:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:217:12: danger: 'opt.option.octet_string_val' leaks here; was allocated at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 215| xdr_free((xdrproc_t)xdr_gssx_option, (char *)&opt); # 216| } # 217|-> return ret; # 218| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] gssproxy-0.9.2/src/gp_util.c:217:12: warning[-Wanalyzer-malloc-leak]: leak of 'opt.value.octet_string_val' gssproxy-0.9.2/src/gp_util.c:184:8: branch_false: following 'false' branch... gssproxy-0.9.2/src/gp_util.c:188:5: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:191:8: branch_true: following 'true' branch (when 'value_len != 0')... gssproxy-0.9.2/src/gp_util.c:192:38: branch_true: ...to here gssproxy-0.9.2/src/gp_util.c:192:38: acquire_memory: allocated here gssproxy-0.9.2/src/gp_util.c:193:12: branch_false: following 'false' branch... gssproxy-0.9.2/src/gp_util.c:197:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:202:8: branch_false: following 'false' branch (when 'out' is non-NULL)... gssproxy-0.9.2/src/gp_util.c:207:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:217:12: danger: 'opt.value.octet_string_val' leaks here; was allocated at [(5)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/4) # 215| xdr_free((xdrproc_t)xdr_gssx_option, (char *)&opt); # 216| } # 217|-> return ret; # 218| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] gssproxy-0.9.2/src/gp_util.c:217:12: warning[-Wanalyzer-malloc-leak]: leak of ‘opt.option.octet_string_val’ gssproxy-0.9.2/src/gp_util.c:183:35: acquire_memory: allocated here gssproxy-0.9.2/src/gp_util.c:184:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/gp_util.c:188:5: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:191:8: branch_false: following ‘false’ branch (when ‘value_len == 0’)... gssproxy-0.9.2/src/gp_util.c:201:34: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:202:8: branch_false: following ‘false’ branch (when ‘out’ is non-NULL)... gssproxy-0.9.2/src/gp_util.c:207:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:217:12: danger: ‘opt.option.octet_string_val’ leaks here; was allocated at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 215| xdr_free((xdrproc_t)xdr_gssx_option, (char *)&opt); # 216| } # 217|-> return ret; # 218| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] gssproxy-0.9.2/src/gp_util.c:217:12: warning[-Wanalyzer-malloc-leak]: leak of ‘opt.value.octet_string_val’ gssproxy-0.9.2/src/gp_util.c:184:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/gp_util.c:188:5: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:191:8: branch_true: following ‘true’ branch (when ‘value_len != 0’)... gssproxy-0.9.2/src/gp_util.c:192:38: branch_true: ...to here gssproxy-0.9.2/src/gp_util.c:192:38: acquire_memory: allocated here gssproxy-0.9.2/src/gp_util.c:193:12: branch_false: following ‘false’ branch... gssproxy-0.9.2/src/gp_util.c:197:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:202:8: branch_false: following ‘false’ branch (when ‘out’ is non-NULL)... gssproxy-0.9.2/src/gp_util.c:207:9: branch_false: ...to here gssproxy-0.9.2/src/gp_util.c:217:12: danger: ‘opt.value.octet_string_val’ leaks here; was allocated at [(5)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/4) # 215| xdr_free((xdrproc_t)xdr_gssx_option, (char *)&opt); # 216| } # 217|-> return ret; # 218| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] gssproxy-0.9.2/src/mechglue/gpp_creds.c:813:5: warning[-Wanalyzer-malloc-leak]: leak of 'cred' gssproxy-0.9.2/src/mechglue/gpp_creds.c:515:11: enter_function: entry to 'gssi_inquire_cred_by_mech' gssproxy-0.9.2/src/mechglue/gpp_creds.c:529:8: branch_true: following 'true' branch (when 'cred_handle' is NULL)... gssproxy-0.9.2/src/mechglue/gpp_creds.c:530:15: branch_true: ...to here gssproxy-0.9.2/src/mechglue/gpp_creds.c:530:15: call_function: calling 'gppint_get_def_creds' from 'gssi_inquire_cred_by_mech' # 811| } # 812| # 813|-> *cred_handle = GSS_C_NO_CREDENTIAL; # 814| *minor_status = min; # 815| return maj; Error: GCC_ANALYZER_WARNING (CWE-476): [#def17] gssproxy-0.9.2/src/mechglue/gss_plugin.c:223:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'item' gssproxy-0.9.2/src/mechglue/gss_plugin.c:259:9: enter_function: entry to 'gpp_special_mech' gssproxy-0.9.2/src/mechglue/gss_plugin.c:269:8: branch_false: following 'false' branch (when 'mech_type' is non-NULL)... branch_false: ...to here gssproxy-0.9.2/src/mechglue/gss_plugin.c:278:12: branch_false: following 'false' branch... gssproxy-0.9.2/src/mechglue/gss_plugin.c:281:16: call_function: inlined call to 'gpp_next_special_oids' from 'gpp_special_mech' gssproxy-0.9.2/src/mechglue/gss_plugin.c:285:12: call_function: calling 'gpp_new_special_mech' from 'gpp_special_mech' # 221| } else { # 222| last = gpp_last_special_oids(list); # 223|-> last->next = item; # 224| __sync_synchronize(); # 225| last->next_is_set = 1; Error: GCC_ANALYZER_WARNING (CWE-775): [#def18] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘cli_pipe[1]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/tests/interposetest.c:855:15: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:855:15: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def19] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘cli_pipe[server.proxy_type]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/tests/interposetest.c:855:15: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:855:15: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def20] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘srv_pipe[0]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/tests/interposetest.c:855:15: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:855:15: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def21] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘srv_pipe[1]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/tests/interposetest.c:855:15: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:855:15: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def22] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘srv_pipe[i]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_false: following ‘false’ branch... branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:861:15: branch_true: following ‘true’ branch (when ‘i != 4’)... branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:862:19: branch_true: following ‘true’ branch (when ‘k != 4’)... gssproxy-0.9.2/tests/interposetest.c:863:19: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:863:19: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def23] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘srv_pipe[k]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_false: following ‘false’ branch... branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:861:15: branch_true: following ‘true’ branch (when ‘i != 4’)... branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:862:19: branch_true: following ‘true’ branch (when ‘k != 4’)... gssproxy-0.9.2/tests/interposetest.c:863:19: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:863:19: call_function: calling ‘run_cli_srv_test’ from ‘main’ gssproxy-0.9.2/tests/interposetest.c:863:19: return_function: returning to ‘main’ from ‘run_cli_srv_test’ gssproxy-0.9.2/tests/interposetest.c:869:16: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:862:24: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:862:19: branch_true: following ‘true’ branch (when ‘k != 4’)... gssproxy-0.9.2/tests/interposetest.c:863:19: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:863:19: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def24] gssproxy-0.9.2/tests/interposetest.c:719:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘srv_pipe[server.proxy_type]’ gssproxy-0.9.2/tests/interposetest.c:808:5: enter_function: entry to ‘main’ gssproxy-0.9.2/tests/interposetest.c:831:11: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:841:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:841:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:847:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:847:8: branch_false: following ‘false’ branch... gssproxy-0.9.2/tests/interposetest.c:854:9: branch_false: ...to here gssproxy-0.9.2/tests/interposetest.c:854:8: branch_true: following ‘true’ branch... gssproxy-0.9.2/tests/interposetest.c:855:15: branch_true: ...to here gssproxy-0.9.2/tests/interposetest.c:855:15: call_function: calling ‘run_cli_srv_test’ from ‘main’ # 717| ret = pipe(srv_pipe); # 718| if (ret) { # 719|-> return -1; # 720| } # 721| ret = pipe(cli_pipe); Error: GCC_ANALYZER_WARNING (CWE-775): [#def25] gssproxy-0.9.2/tests/userproxytest.c:49:12: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘fd’ gssproxy-0.9.2/tests/userproxytest.c:35:10: acquire_resource: stream socket created here gssproxy-0.9.2/tests/userproxytest.c:36:8: branch_false: following ‘false’ branch (when ‘fd != -1’)... gssproxy-0.9.2/tests/userproxytest.c:41:11: branch_false: ...to here gssproxy-0.9.2/tests/userproxytest.c:42:8: branch_false: following ‘false’ branch (when ‘ret != -1’)... gssproxy-0.9.2/tests/userproxytest.c:44:11: branch_false: ...to here gssproxy-0.9.2/tests/userproxytest.c:45:8: branch_false: following ‘false’ branch (when ‘ret != -1’)... gssproxy-0.9.2/tests/userproxytest.c:49:12: branch_false: ...to here gssproxy-0.9.2/tests/userproxytest.c:49:12: danger: ‘fd’ leaks here # 47| done: # 48| if (ret == -1) close(fd); # 49|-> return 0; # 50| } # 51|
| analyzer-version-clippy | 1.86.0 |
| analyzer-version-cppcheck | 2.17.1 |
| analyzer-version-gcc | 15.0.1 |
| analyzer-version-gcc-analyzer | 15.0.1 |
| analyzer-version-shellcheck | 0.10.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-60.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250425.124705.g1c7c448.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | gssproxy-0.9.2-8.fc43 |
| store-results-to | /tmp/tmp3j9cxtl3/gssproxy-0.9.2-8.fc43.tar.xz |
| time-created | 2025-04-25 12:53:42 |
| time-finished | 2025-04-25 12:55:15 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'unicontrol,cppcheck,gcc,clippy,shellcheck' '-o' '/tmp/tmp3j9cxtl3/gssproxy-0.9.2-8.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmp3j9cxtl3/gssproxy-0.9.2-8.fc43.src.rpm' |
| tool-version | csmock-3.8.1.20250422.172604.g26bc3d6-1.el9 |