Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] certmonger-0.79.21/src/dogtag.c:189:24: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:189:24: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/6/codeFlows/0/threadFlows/0/locations/7) # 187| case op_none: # 188| printf(_("Internal error: unknown state.\n")); # 189|-> return CM_SUBMIT_STATUS_UNCONFIGURED; # 190| break; # 191| case op_submit: Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] certmonger-0.79.21/src/dogtag.c:193:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:193:23: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:193:23: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/7/codeFlows/0/threadFlows/0/locations/7) # 191| case op_submit: # 192| method = DOGTAG_PROFILE_SUBMIT_METHOD; # 193|-> url = talloc_asprintf(ctx, "%s/%s", eeurl, # 194| use_agent_submission ? # 195| DOGTAG_PROFILE_SUBMIT_AGENT_RESOURCE : Error: GCC_ANALYZER_WARNING (CWE-401): [#def3] certmonger-0.79.21/src/dogtag.c:197:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:197:28: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:197:28: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/8/codeFlows/0/threadFlows/0/locations/7) # 195| DOGTAG_PROFILE_SUBMIT_AGENT_RESOURCE : # 196| DOGTAG_PROFILE_SUBMIT_RESOURCE); # 197|-> template = cm_submit_u_url_encode(template); # 198| if ((serial != NULL) && (strlen(serial) > 0) && !force_new) { # 199| /* Renew-by-serial. */ Error: GCC_ANALYZER_WARNING (CWE-401): [#def4] certmonger-0.79.21/src/dogtag.c:200:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:198:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:200:34: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:200:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/9/codeFlows/0/threadFlows/0/locations/7) # 198| if ((serial != NULL) && (strlen(serial) > 0) && !force_new) { # 199| /* Renew-by-serial. */ # 200|-> serial = cm_submit_u_url_encode(serial); # 201| params = talloc_asprintf(ctx, # 202| "profileId=%s&" Error: GCC_ANALYZER_WARNING (CWE-401): [#def5] certmonger-0.79.21/src/dogtag.c:212:35: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:212:35: throw: if ‘poptGetArg’ throws an exception... certmonger-0.79.21/src/dogtag.c:212:35: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/11/codeFlows/0/threadFlows/0/locations/7) # 210| * environment, or from the command-line, that we're # 211| * going to submit for signing. */ # 212|-> csrfile = poptGetArg(pctx); # 213| if (csrfile != NULL) { # 214| csr = cm_submit_u_from_file(csrfile); Error: GCC_ANALYZER_WARNING (CWE-401): [#def6] certmonger-0.79.21/src/dogtag.c:214:39: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:213:28: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:214:39: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:214:39: throw: if ‘cm_submit_u_from_file’ throws an exception... certmonger-0.79.21/src/dogtag.c:214:39: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/12/codeFlows/0/threadFlows/0/locations/7) # 212| csrfile = poptGetArg(pctx); # 213| if (csrfile != NULL) { # 214|-> csr = cm_submit_u_from_file(csrfile); # 215| } else { # 216| csr = getenv(CM_SUBMIT_CSR_ENV); Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] certmonger-0.79.21/src/dogtag.c:233:31: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:233:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:233:31: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/14/codeFlows/0/threadFlows/0/locations/6) # 231| return CM_SUBMIT_STATUS_UNCONFIGURED; # 232| } # 233|-> csr = cm_submit_u_url_encode(csr); # 234| params = talloc_asprintf(ctx, # 235| "profileId=%s&" Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] certmonger-0.79.21/src/dogtag.c:233:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:213:28: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:214:39: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:233:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:233:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/15/codeFlows/0/threadFlows/0/locations/7) # 231| return CM_SUBMIT_STATUS_UNCONFIGURED; # 232| } # 233|-> csr = cm_submit_u_url_encode(csr); # 234| params = talloc_asprintf(ctx, # 235| "profileId=%s&" Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] certmonger-0.79.21/src/dogtag.c:234:34: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:234:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:234:34: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/16/codeFlows/0/threadFlows/0/locations/6) # 232| } # 233| csr = cm_submit_u_url_encode(csr); # 234|-> params = talloc_asprintf(ctx, # 235| "profileId=%s&" # 236| "cert_request_type=pkcs10&" Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] certmonger-0.79.21/src/dogtag.c:260:31: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:259:20: branch_true: following ‘true’ branch (when ‘uid’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:260:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:260:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:260:31: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/18/codeFlows/0/threadFlows/0/locations/6) # 258| /* Add client creds. */ # 259| if (uid != NULL) { # 260|-> uid = cm_submit_u_url_encode(uid); # 261| params = talloc_asprintf(ctx, "%s&uid=%s", params, uid); # 262| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] certmonger-0.79.21/src/dogtag.c:260:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:259:20: branch_true: following ‘true’ branch (when ‘uid’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:260:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:260:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:260:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/19/codeFlows/0/threadFlows/0/locations/7) # 258| /* Add client creds. */ # 259| if (uid != NULL) { # 260|-> uid = cm_submit_u_url_encode(uid); # 261| params = talloc_asprintf(ctx, "%s&uid=%s", params, uid); # 262| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] certmonger-0.79.21/src/dogtag.c:261:34: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:259:20: branch_true: following ‘true’ branch (when ‘uid’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:260:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:261:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:261:34: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/20/codeFlows/0/threadFlows/0/locations/6) # 259| if (uid != NULL) { # 260| uid = cm_submit_u_url_encode(uid); # 261|-> params = talloc_asprintf(ctx, "%s&uid=%s", params, uid); # 262| } # 263| if (udn != NULL) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] certmonger-0.79.21/src/dogtag.c:261:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:259:20: branch_true: following ‘true’ branch (when ‘uid’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:260:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:261:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:261:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/21/codeFlows/0/threadFlows/0/locations/7) # 259| if (uid != NULL) { # 260| uid = cm_submit_u_url_encode(uid); # 261|-> params = talloc_asprintf(ctx, "%s&uid=%s", params, uid); # 262| } # 263| if (udn != NULL) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] certmonger-0.79.21/src/dogtag.c:264:31: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:263:20: branch_true: following ‘true’ branch (when ‘udn’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:264:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:264:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:264:31: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/22/codeFlows/0/threadFlows/0/locations/6) # 262| } # 263| if (udn != NULL) { # 264|-> udn = cm_submit_u_url_encode(udn); # 265| params = talloc_asprintf(ctx, "%s&udn=%s", params, udn); # 266| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] certmonger-0.79.21/src/dogtag.c:264:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:263:20: branch_true: following ‘true’ branch (when ‘udn’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:264:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:264:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:264:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/23/codeFlows/0/threadFlows/0/locations/7) # 262| } # 263| if (udn != NULL) { # 264|-> udn = cm_submit_u_url_encode(udn); # 265| params = talloc_asprintf(ctx, "%s&udn=%s", params, udn); # 266| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] certmonger-0.79.21/src/dogtag.c:265:34: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:263:20: branch_true: following ‘true’ branch (when ‘udn’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:264:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:265:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:265:34: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/24/codeFlows/0/threadFlows/0/locations/6) # 263| if (udn != NULL) { # 264| udn = cm_submit_u_url_encode(udn); # 265|-> params = talloc_asprintf(ctx, "%s&udn=%s", params, udn); # 266| } # 267| if (pwd != NULL) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] certmonger-0.79.21/src/dogtag.c:265:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:263:20: branch_true: following ‘true’ branch (when ‘udn’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:264:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:265:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:265:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/25/codeFlows/0/threadFlows/0/locations/7) # 263| if (udn != NULL) { # 264| udn = cm_submit_u_url_encode(udn); # 265|-> params = talloc_asprintf(ctx, "%s&udn=%s", params, udn); # 266| } # 267| if (pwd != NULL) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] certmonger-0.79.21/src/dogtag.c:268:31: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:267:20: branch_true: following ‘true’ branch (when ‘pwd’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:268:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:268:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:268:31: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/26/codeFlows/0/threadFlows/0/locations/6) # 266| } # 267| if (pwd != NULL) { # 268|-> pwd = cm_submit_u_url_encode(pwd); # 269| params = talloc_asprintf(ctx, "%s&pwd=%s", # 270| params, pwd); Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] certmonger-0.79.21/src/dogtag.c:268:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:267:20: branch_true: following ‘true’ branch (when ‘pwd’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:268:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:268:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:268:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/27/codeFlows/0/threadFlows/0/locations/7) # 266| } # 267| if (pwd != NULL) { # 268|-> pwd = cm_submit_u_url_encode(pwd); # 269| params = talloc_asprintf(ctx, "%s&pwd=%s", # 270| params, pwd); Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] certmonger-0.79.21/src/dogtag.c:269:34: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:267:20: branch_true: following ‘true’ branch (when ‘pwd’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:268:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:269:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:269:34: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/28/codeFlows/0/threadFlows/0/locations/6) # 267| if (pwd != NULL) { # 268| pwd = cm_submit_u_url_encode(pwd); # 269|-> params = talloc_asprintf(ctx, "%s&pwd=%s", # 270| params, pwd); # 271| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def21] certmonger-0.79.21/src/dogtag.c:269:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:267:20: branch_true: following ‘true’ branch (when ‘pwd’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:268:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:269:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:269:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/29/codeFlows/0/threadFlows/0/locations/7) # 267| if (pwd != NULL) { # 268| pwd = cm_submit_u_url_encode(pwd); # 269|-> params = talloc_asprintf(ctx, "%s&pwd=%s", # 270| params, pwd); # 271| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def22] certmonger-0.79.21/src/dogtag.c:273:31: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:272:20: branch_true: following ‘true’ branch (when ‘pin’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:273:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:273:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:273:31: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/30/codeFlows/0/threadFlows/0/locations/6) # 271| } # 272| if (pin != NULL) { # 273|-> pin = cm_submit_u_url_encode(pin); # 274| params = talloc_asprintf(ctx, "%s&pin=%s", # 275| params, pin); Error: GCC_ANALYZER_WARNING (CWE-401): [#def23] certmonger-0.79.21/src/dogtag.c:273:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:272:20: branch_true: following ‘true’ branch (when ‘pin’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:273:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:273:31: throw: if ‘cm_submit_u_url_encode’ throws an exception... certmonger-0.79.21/src/dogtag.c:273:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/31/codeFlows/0/threadFlows/0/locations/7) # 271| } # 272| if (pin != NULL) { # 273|-> pin = cm_submit_u_url_encode(pin); # 274| params = talloc_asprintf(ctx, "%s&pin=%s", # 275| params, pin); Error: GCC_ANALYZER_WARNING (CWE-401): [#def24] certmonger-0.79.21/src/dogtag.c:274:34: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:213:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:216:39: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:217:36: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:218:47: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:218:47: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:221:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:272:20: branch_true: following ‘true’ branch (when ‘pin’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:273:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:274:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:274:34: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/32/codeFlows/0/threadFlows/0/locations/6) # 272| if (pin != NULL) { # 273| pin = cm_submit_u_url_encode(pin); # 274|-> params = talloc_asprintf(ctx, "%s&pin=%s", # 275| params, pin); # 276| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def25] certmonger-0.79.21/src/dogtag.c:274:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:244:29: branch_false: following ‘false’ branch (when ‘j >= num_soptions’)... certmonger-0.79.21/src/dogtag.c:259:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:272:20: branch_true: following ‘true’ branch (when ‘pin’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:273:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:274:34: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:274:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/33/codeFlows/0/threadFlows/0/locations/7) # 272| if (pin != NULL) { # 273| pin = cm_submit_u_url_encode(pin); # 274|-> params = talloc_asprintf(ctx, "%s&pin=%s", # 275| params, pin); # 276| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def26] certmonger-0.79.21/src/dogtag.c:318:26: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:300:20: branch_false: following ‘false’ branch (when ‘agenturl’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:306:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:306:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:318:26: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:318:26: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/40/codeFlows/0/threadFlows/0/locations/7) # 316| method2 = DOGTAG_PROFILE_PROCESS_METHOD; # 317| url2 = talloc_asprintf(ctx, "%s/%s", agenturl, DOGTAG_PROFILE_PROCESS_RESOURCE); # 318|-> params = talloc_asprintf(ctx, # 319| "%s&" # 320| "xml=true", Error: GCC_ANALYZER_WARNING (CWE-401): [#def27] certmonger-0.79.21/src/dogtag.c:332:26: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:332:26: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.21/src/dogtag.c:332:26: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/43/codeFlows/0/threadFlows/0/locations/7) # 330| method = DOGTAG_DISPLAY_CERT_METHOD; # 331| url = talloc_asprintf(ctx, "%s/%s", eeurl, DOGTAG_DISPLAY_CERT_RESOURCE); # 332|-> params = talloc_asprintf(ctx, # 333| "%s&" # 334| "importCert=true&" Error: GCC_ANALYZER_WARNING (CWE-401): [#def28] certmonger-0.79.21/src/dogtag.c:357:26: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:356:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:357:26: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:357:26: throw: if ‘cm_submit_u_from_file’ throws an exception... certmonger-0.79.21/src/dogtag.c:357:26: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/45/codeFlows/0/threadFlows/0/locations/7) # 355| /* Read the PIN, if we need to. */ # 356| if ((sslpinfile != NULL) && (sslpin == NULL)) { # 357|-> sslpin = cm_submit_u_from_file(sslpinfile); # 358| if (sslpin != NULL) { # 359| sslpin = talloc_strndup(ctx, sslpin, Error: GCC_ANALYZER_WARNING (CWE-401): [#def29] certmonger-0.79.21/src/dogtag.c:359:34: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:356:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:357:26: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:358:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:359:34: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:359:34: throw: if ‘talloc_strndup’ throws an exception... certmonger-0.79.21/src/dogtag.c:359:34: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/46/codeFlows/0/threadFlows/0/locations/7) # 357| sslpin = cm_submit_u_from_file(sslpinfile); # 358| if (sslpin != NULL) { # 359|-> sslpin = talloc_strndup(ctx, sslpin, # 360| strcspn(sslpin, "\r\n")); # 361| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def30] certmonger-0.79.21/src/dogtag.c:370:24: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:370:24: throw: if ‘cm_submit_h_init’ throws an exception... certmonger-0.79.21/src/dogtag.c:370:24: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/47/codeFlows/0/threadFlows/0/locations/7) # 368| hctx = NULL; # 369| while (url != NULL) { # 370|-> hctx = cm_submit_h_init(ctx, method, url, params, NULL, NULL, NULL, # 371| cainfo, capath, sslcert, sslkey, sslpin, # 372| cm_submit_h_negotiate_off, Error: GCC_ANALYZER_WARNING (CWE-401): [#def31] certmonger-0.79.21/src/dogtag.c:383:17: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:383:17: throw: if ‘cm_submit_h_run’ throws an exception... certmonger-0.79.21/src/dogtag.c:383:17: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/48/codeFlows/0/threadFlows/0/locations/7) # 381| lasturl = url; # 382| lastparams = params; # 383|-> cm_submit_h_run(hctx); # 384| if (verbose > 0) { # 385| fprintf(stderr, "%s \"%s?%s\"\n", method, url, params); Error: GCC_ANALYZER_WARNING (CWE-401): [#def32] certmonger-0.79.21/src/dogtag.c:386:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:386:25: throw: if ‘cm_submit_h_result_code’ throws an exception... certmonger-0.79.21/src/dogtag.c:386:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/49/codeFlows/0/threadFlows/0/locations/7) # 384| if (verbose > 0) { # 385| fprintf(stderr, "%s \"%s?%s\"\n", method, url, params); # 386|-> fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); # 387| fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); # 388| syslog(LOG_DEBUG, "%s %s?%s\n", method, url, params); Error: GCC_ANALYZER_WARNING (CWE-401): [#def33] certmonger-0.79.21/src/dogtag.c:387:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:387:25: throw: if ‘cm_submit_h_result_code_text’ throws an exception... certmonger-0.79.21/src/dogtag.c:387:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/50/codeFlows/0/threadFlows/0/locations/7) # 385| fprintf(stderr, "%s \"%s?%s\"\n", method, url, params); # 386| fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); # 387|-> fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); # 388| syslog(LOG_DEBUG, "%s %s?%s\n", method, url, params); # 389| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def34] certmonger-0.79.21/src/dogtag.c:388:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:388:25: throw: if ‘syslog’ throws an exception... certmonger-0.79.21/src/dogtag.c:388:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/51/codeFlows/0/threadFlows/0/locations/7) # 386| fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); # 387| fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); # 388|-> syslog(LOG_DEBUG, "%s %s?%s\n", method, url, params); # 389| } # 390| results = cm_submit_h_results(hctx, NULL); Error: GCC_ANALYZER_WARNING (CWE-401): [#def35] certmonger-0.79.21/src/dogtag.c:390:27: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:390:27: throw: if ‘cm_submit_h_results’ throws an exception... certmonger-0.79.21/src/dogtag.c:390:27: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/52/codeFlows/0/threadFlows/0/locations/7) # 388| syslog(LOG_DEBUG, "%s %s?%s\n", method, url, params); # 389| } # 390|-> results = cm_submit_h_results(hctx, NULL); # 391| if (verbose > 0) { # 392| syslog(LOG_DEBUG, "%s", results); Error: GCC_ANALYZER_WARNING (CWE-401): [#def36] certmonger-0.79.21/src/dogtag.c:392:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:392:25: throw: if ‘syslog’ throws an exception... certmonger-0.79.21/src/dogtag.c:392:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/53/codeFlows/0/threadFlows/0/locations/7) # 390| results = cm_submit_h_results(hctx, NULL); # 391| if (verbose > 0) { # 392|-> syslog(LOG_DEBUG, "%s", results); # 393| } # 394| if (cm_submit_h_result_code(hctx) != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def37] certmonger-0.79.21/src/dogtag.c:394:21: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:21: throw: if ‘cm_submit_h_result_code’ throws an exception... certmonger-0.79.21/src/dogtag.c:394:21: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/54/codeFlows/0/threadFlows/0/locations/7) # 392| syslog(LOG_DEBUG, "%s", results); # 393| } # 394|-> if (cm_submit_h_result_code(hctx) != 0) { # 395| break; # 396| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def38] certmonger-0.79.21/src/dogtag.c:404:44: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:300:20: branch_false: following ‘false’ branch (when ‘agenturl’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:306:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:306:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:398:17: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:398:17: branch_true: following ‘true’ branch (when ‘op == 3’)... certmonger-0.79.21/src/dogtag.c:399:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:403:28: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:404:44: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:404:44: throw: if ‘cm_submit_d_xml_defaults’ throws an exception... certmonger-0.79.21/src/dogtag.c:404:44: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/55/codeFlows/0/threadFlows/0/locations/7) # 402| * submission. */ # 403| if (results != NULL) { # 404|-> defaults = cm_submit_d_xml_defaults(ctx, # 405| results); # 406| } else { Error: GCC_ANALYZER_WARNING (CWE-401): [#def39] certmonger-0.79.21/src/dogtag.c:467:13: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:13: throw: if ‘cm_submit_h_result_code’ throws an exception... certmonger-0.79.21/src/dogtag.c:467:13: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/56/codeFlows/0/threadFlows/0/locations/7) # 465| # 466| /* Figure out what to output. */ # 467|-> if (cm_submit_h_result_code(hctx) != 0) { # 468| if (cm_submit_h_result_code_text(hctx) != NULL) { # 469| printf(_("Error %d connecting to %s: %s.\n"), Error: GCC_ANALYZER_WARNING (CWE-401): [#def40] certmonger-0.79.21/src/dogtag.c:468:21: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:468:21: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:468:21: throw: if ‘cm_submit_h_result_code_text’ throws an exception... certmonger-0.79.21/src/dogtag.c:468:21: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/57/codeFlows/0/threadFlows/0/locations/7) # 466| /* Figure out what to output. */ # 467| if (cm_submit_h_result_code(hctx) != 0) { # 468|-> if (cm_submit_h_result_code_text(hctx) != NULL) { # 469| printf(_("Error %d connecting to %s: %s.\n"), # 470| cm_submit_h_result_code(hctx), Error: GCC_ANALYZER_WARNING (CWE-401): [#def41] certmonger-0.79.21/src/dogtag.c:469:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:468:21: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:468:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:469:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:469:25: throw: if ‘cm_submit_h_result_code_text’ throws an exception... certmonger-0.79.21/src/dogtag.c:469:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/58/codeFlows/0/threadFlows/0/locations/7) # 467| if (cm_submit_h_result_code(hctx) != 0) { # 468| if (cm_submit_h_result_code_text(hctx) != NULL) { # 469|-> printf(_("Error %d connecting to %s: %s.\n"), # 470| cm_submit_h_result_code(hctx), # 471| lasturl, Error: GCC_ANALYZER_WARNING (CWE-401): [#def42] certmonger-0.79.21/src/dogtag.c:474:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:468:21: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:468:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:474:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:474:25: throw: if ‘cm_submit_h_result_code’ throws an exception... certmonger-0.79.21/src/dogtag.c:474:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/60/codeFlows/0/threadFlows/0/locations/7) # 472| cm_submit_h_result_code_text(hctx)); # 473| } else { # 474|-> printf(_("Error %d connecting to %s.\n"), # 475| cm_submit_h_result_code(hctx), # 476| lasturl); Error: GCC_ANALYZER_WARNING (CWE-401): [#def43] certmonger-0.79.21/src/dogtag.c:503:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:480:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:480:12: branch_false: following ‘false’ branch (when ‘results’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:485:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:503:23: throw: if ‘cm_submit_d_check_eval’ throws an exception... certmonger-0.79.21/src/dogtag.c:503:23: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/61/codeFlows/0/threadFlows/0/locations/7) # 501| break; # 502| case op_check: # 503|-> ret = cm_submit_d_check_eval(ctx, results, lasturl, # 504| can_agent, &p, &q, # 505| CM_RPC_PROTOCOL_JSON); Error: GCC_ANALYZER_WARNING (CWE-401): [#def44] certmonger-0.79.21/src/dogtag.c:527:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:300:20: branch_false: following ‘false’ branch (when ‘agenturl’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:306:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:306:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:480:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:480:12: branch_false: following ‘false’ branch (when ‘results’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:485:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:515:20: branch_false: following ‘false’ branch (when ‘url2’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:527:31: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:527:31: throw: if ‘cm_submit_d_review_eval’ throws an exception... certmonger-0.79.21/src/dogtag.c:527:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/62/codeFlows/0/threadFlows/0/locations/7) # 525| return ret; # 526| } else { # 527|-> ret = cm_submit_d_review_eval(ctx, results, lasturl, # 528| &p, &q); # 529| if (p != NULL) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def45] certmonger-0.79.21/src/dogtag.c:539:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:480:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:480:12: branch_false: following ‘false’ branch (when ‘results’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:485:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:539:23: throw: if ‘cm_submit_d_fetch_eval’ throws an exception... certmonger-0.79.21/src/dogtag.c:539:23: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/63/codeFlows/0/threadFlows/0/locations/7) # 537| break; # 538| case op_retrieve: # 539|-> ret = cm_submit_d_fetch_eval(ctx, results, lasturl, # 540| &p, &q, # 541| CM_RPC_PROTOCOL_XML); Error: GCC_ANALYZER_WARNING (CWE-401): [#def46] certmonger-0.79.21/src/dogtag.c:551:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:126:1: enter_function: entry to ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:163:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:164:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:164:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:164:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:165:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:165:19: call_function: calling ‘statevar’ from ‘xml_workflow’ certmonger-0.79.21/src/dogtag.c:165:19: return_function: returning to ‘xml_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:163:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:186:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:343:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:356:13: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:369:16: branch_true: following ‘true’ branch (when ‘url’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:370:24: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:384:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:385:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:391:20: branch_true: following ‘true’ branch (when ‘verbose > 0’)... certmonger-0.79.21/src/dogtag.c:392:25: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:394:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:467:13: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:467:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:480:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:480:12: branch_false: following ‘false’ branch (when ‘results’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:485:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:551:23: throw: if ‘cm_submit_d_profiles_eval’ throws an exception... certmonger-0.79.21/src/dogtag.c:551:23: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/64/codeFlows/0/threadFlows/0/locations/7) # 549| break; # 550| case op_profiles: # 551|-> ret = cm_submit_d_profiles_eval(ctx, results, # 552| &p, &q, # 553| CM_RPC_PROTOCOL_XML); Error: GCC_ANALYZER_WARNING (CWE-401): [#def47] certmonger-0.79.21/src/dogtag.c:621:30: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:610:21: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:621:30: throw: if ‘talloc_strdup’ throws an exception... certmonger-0.79.21/src/dogtag.c:621:30: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/65/codeFlows/0/threadFlows/0/locations/7) # 619| op = op_retrieve; # 620| } # 621|-> request_id = talloc_strdup(ctx, q); # 622| free(p); # 623| free(q); Error: GCC_ANALYZER_WARNING (CWE-401): [#def48] certmonger-0.79.21/src/dogtag.c:621:30: warning[-Wanalyzer-malloc-leak]: leak of ‘q’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:610:21: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:621:30: throw: if ‘talloc_strdup’ throws an exception... certmonger-0.79.21/src/dogtag.c:621:30: danger: ‘q’ leaks here; was allocated at [(17)](sarif:/runs/0/results/66/codeFlows/0/threadFlows/0/locations/16) # 619| op = op_retrieve; # 620| } # 621|-> request_id = talloc_strdup(ctx, q); # 622| free(p); # 623| free(q); Error: GCC_ANALYZER_WARNING (CWE-401): [#def49] certmonger-0.79.21/src/dogtag.c:630:24: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:630:24: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/67/codeFlows/0/threadFlows/0/locations/7) # 628| case op_none: # 629| printf(_("Internal error: unknown state.\n")); # 630|-> return CM_SUBMIT_STATUS_UNCONFIGURED; # 631| break; # 632| case op_submit: Error: GCC_ANALYZER_WARNING (CWE-401): [#def50] certmonger-0.79.21/src/dogtag.c:638:27: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:638:27: throw: if ‘poptGetArg’ throws an exception... certmonger-0.79.21/src/dogtag.c:638:27: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/68/codeFlows/0/threadFlows/0/locations/7) # 636| * environment, or from the command-line, that we're # 637| * going to submit for signing. */ # 638|-> csrfile = poptGetArg(pctx); # 639| if (csrfile != NULL) { # 640| csr = cm_submit_u_from_file(csrfile); Error: GCC_ANALYZER_WARNING (CWE-401): [#def51] certmonger-0.79.21/src/dogtag.c:640:31: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:639:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:640:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:640:31: throw: if ‘cm_submit_u_from_file’ throws an exception... certmonger-0.79.21/src/dogtag.c:640:31: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/69/codeFlows/0/threadFlows/0/locations/7) # 638| csrfile = poptGetArg(pctx); # 639| if (csrfile != NULL) { # 640|-> csr = cm_submit_u_from_file(csrfile); # 641| } else { # 642| csr = getenv(CM_SUBMIT_CSR_ENV); Error: GCC_ANALYZER_WARNING (CWE-401): [#def52] certmonger-0.79.21/src/dogtag.c:655:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:643:28: branch_false: following ‘false’ branch (when ‘csr’ is NULL)... certmonger-0.79.21/src/dogtag.c:648:28: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:655:25: throw: if ‘poptPrintUsage’ throws an exception... certmonger-0.79.21/src/dogtag.c:655:25: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/70/codeFlows/0/threadFlows/0/locations/7) # 653| CM_SUBMIT_CSR_ENV); # 654| } # 655|-> poptPrintUsage(pctx, stdout, 0); # 656| free(csr); # 657| return CM_SUBMIT_STATUS_UNCONFIGURED; Error: GCC_ANALYZER_WARNING (CWE-401): [#def53] certmonger-0.79.21/src/dogtag.c:662:17: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:639:20: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:640:31: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:647:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:662:17: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/71/codeFlows/0/threadFlows/0/locations/7) # 660| * server expects. IPA just wants base64-encoded binary data, # 661| * no whitepace. */ # 662|-> p = strstr(csr, "-----BEGIN"); # 663| if (p != NULL) { # 664| p += strcspn(p, "\n"); Error: GCC_ANALYZER_WARNING (CWE-401): [#def54] certmonger-0.79.21/src/dogtag.c:689:28: warning[-Wanalyzer-malloc-leak]: leak of ‘csr’ certmonger-0.79.21/src/dogtag.c:639:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:642:31: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:643:28: branch_true: following ‘true’ branch (when ‘csr’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:644:39: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:644:39: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:647:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:663:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:670:21: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:671:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:671:20: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:674:24: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:674:24: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:677:24: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:682:21: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:682:20: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:689:28: throw: if ‘json_pack_ex’ throws an exception... certmonger-0.79.21/src/dogtag.c:689:28: danger: ‘csr’ leaks here; was allocated at [(7)](sarif:/runs/0/results/72/codeFlows/0/threadFlows/0/locations/6) # 687| } # 688| # 689|-> json_req = json_pack_ex(&j_error, 0, # 690| "{s:s, s:[[s], {s:s, s:s}]}", # 691| "method", "cert_request", Error: GCC_ANALYZER_WARNING (CWE-401): [#def55] certmonger-0.79.21/src/dogtag.c:699:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:699:28: throw: if ‘json_pack_ex’ throws an exception... certmonger-0.79.21/src/dogtag.c:699:28: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/73/codeFlows/0/threadFlows/0/locations/7) # 697| case op_check: # 698| /* Check if the certificate has been issued or rejected. */ # 699|-> json_req = json_pack_ex(&j_error, 0, # 700| "{s:s, s:[[s],{}]}", # 701| "method", "cert_status", Error: GCC_ANALYZER_WARNING (CWE-401): [#def56] certmonger-0.79.21/src/dogtag.c:713:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:713:28: throw: if ‘json_pack_ex’ throws an exception... certmonger-0.79.21/src/dogtag.c:713:28: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/74/codeFlows/0/threadFlows/0/locations/7) # 711| * HINT: See cm_submit_d_xml_defaults. This might have to # 712| */ # 713|-> json_req = json_pack_ex(&j_error, 0, # 714| "{s:s, s:[[s],{}]}", # 715| "method", "cert_approve", Error: GCC_ANALYZER_WARNING (CWE-401): [#def57] certmonger-0.79.21/src/dogtag.c:721:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:721:28: throw: if ‘json_pack_ex’ throws an exception... certmonger-0.79.21/src/dogtag.c:721:28: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/75/codeFlows/0/threadFlows/0/locations/7) # 719| case op_retrieve: # 720| /* Retrieving the new certificate. */ # 721|-> json_req = json_pack_ex(&j_error, 0, # 722| "{s:s, s:[[s],{}]}", # 723| "method", "cert_show", Error: GCC_ANALYZER_WARNING (CWE-401): [#def58] certmonger-0.79.21/src/dogtag.c:728:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:567:1: enter_function: entry to ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:607:12: branch_true: following ‘true’ branch (when ‘savedstate’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:608:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:608:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:608:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:609:19: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:609:19: call_function: calling ‘statevar’ from ‘ipa_workflow’ certmonger-0.79.21/src/dogtag.c:609:19: return_function: returning to ‘ipa_workflow’ from ‘statevar’ certmonger-0.79.21/src/dogtag.c:607:13: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:627:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:728:28: throw: if ‘json_pack_ex’ throws an exception... certmonger-0.79.21/src/dogtag.c:728:28: danger: ‘p’ leaks here; was allocated at [(8)](sarif:/runs/0/results/76/codeFlows/0/threadFlows/0/locations/7) # 726| break; # 727| case op_profiles: # 728|-> json_req = json_pack_ex(&j_error, 0, # 729| "{s:s, s:[[],{s:s}]}", # 730| "method", "certprofile_find", Error: GCC_ANALYZER_WARNING (CWE-401): [#def59] certmonger-0.79.21/src/dogtag.c:1022:33: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1034:29: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1021:40: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1022:33: throw: if ‘poptPrintUsage’ throws an exception... certmonger-0.79.21/src/dogtag.c:1022:33: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/85/codeFlows/0/threadFlows/0/locations/10) # 1020| if (strchr(poptarg, '=') == NULL) { # 1021| printf(_("Profile params (-O) must be in the form of param=value.\n")); # 1022|-> poptPrintUsage(pctx, stdout, 0); # 1023| free(soptions); # 1024| free(aoptions); Error: GCC_ANALYZER_WARNING (CWE-401): [#def60] certmonger-0.79.21/src/dogtag.c:1050:33: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1034:29: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1048:28: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1049:40: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1050:33: throw: if ‘poptPrintUsage’ throws an exception... certmonger-0.79.21/src/dogtag.c:1050:33: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/94/codeFlows/0/threadFlows/0/locations/10) # 1048| if (strchr(poptarg, '=') == NULL) { # 1049| printf(_("Submit params (-o) must be in the form of param=value.\n")); # 1050|-> poptPrintUsage(pctx, stdout, 0); # 1051| free(soptions); # 1052| free(aoptions); Error: GCC_ANALYZER_WARNING (CWE-401): [#def61] certmonger-0.79.21/src/dogtag.c:1098:17: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1034:29: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1097:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1098:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1098:17: throw: if ‘poptPrintUsage’ throws an exception... certmonger-0.79.21/src/dogtag.c:1098:17: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/98/codeFlows/0/threadFlows/0/locations/10) # 1096| } # 1097| if (c != -1) { # 1098|-> poptPrintUsage(pctx, stdout, 0); # 1099| free(soptions); # 1100| free(aoptions); Error: GCC_ANALYZER_WARNING (CWE-415): [#def62] certmonger-0.79.21/src/dogtag.c:1099:17: warning[-Wanalyzer-double-free]: double-‘free’ of ‘soptions’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1097:12: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1098:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1099:17: danger: second ‘free’ here # 1097| if (c != -1) { # 1098| poptPrintUsage(pctx, stdout, 0); # 1099|-> free(soptions); # 1100| free(aoptions); # 1101| return CM_SUBMIT_STATUS_UNCONFIGURED; Error: GCC_ANALYZER_WARNING (CWE-401): [#def63] certmonger-0.79.21/src/dogtag.c:1170:16: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1104:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1105:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1108:17: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1116:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1120:14: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1121:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1126:15: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1170:16: throw: if ‘talloc_strdup’ throws an exception... certmonger-0.79.21/src/dogtag.c:1170:16: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/116/codeFlows/0/threadFlows/0/locations/7) # 1168| missing_args = TRUE; # 1169| } # 1170|-> host = talloc_strdup(ctx, tmphostname); # 1171| #endif # 1172| Error: GCC_ANALYZER_WARNING (CWE-401): [#def64] certmonger-0.79.21/src/dogtag.c:1170:16: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.21/src/dogtag.c:1009:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1012:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_true: following ‘true’ branch... certmonger-0.79.21/src/dogtag.c:1014:17: branch_true: ...to here certmonger-0.79.21/src/dogtag.c:1020:28: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1027:25: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1029:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1034:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1034:29: acquire_memory: allocated here certmonger-0.79.21/src/dogtag.c:1035:28: branch_false: following ‘false’ branch (when ‘p’ is non-NULL)... certmonger-0.79.21/src/dogtag.c:1041:29: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1013:16: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1097:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1104:9: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1105:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1108:17: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1116:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1120:14: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1121:12: branch_false: following ‘false’ branch... certmonger-0.79.21/src/dogtag.c:1126:15: branch_false: ...to here certmonger-0.79.21/src/dogtag.c:1170:16: throw: if ‘talloc_strdup’ throws an exception... certmonger-0.79.21/src/dogtag.c:1170:16: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/115/codeFlows/0/threadFlows/0/locations/10) # 1168| missing_args = TRUE; # 1169| } # 1170|-> host = talloc_strdup(ctx, tmphostname); # 1171| #endif # 1172| Error: COMPILER_WARNING (CWE-563): [#def65] certmonger-0.79.21/src/util-ipa.c: scope_hint: In function ‘get_error_message’ certmonger-0.79.21/src/util-ipa.c:59:32: warning[-Wunused-parameter]: unused parameter ‘ctx’ # 59 | get_error_message(krb5_context ctx, krb5_error_code kcode) # | ~~~~~~~~~~~~~^~~ # 57| # 58| const char * # 59|-> get_error_message(krb5_context ctx, krb5_error_code kcode) # 60| { # 61| const char *ret;
| analyzer-version-clippy | 1.92.0 |
| analyzer-version-cppcheck | 2.19.1 |
| analyzer-version-gcc | 16.0.0 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.92.0 |
| diffbase-analyzer-version-cppcheck | 2.19.1 |
| diffbase-analyzer-version-gcc | 16.0.0 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.0 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-81.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-x86_64 |
| diffbase-project-name | certmonger-0.79.20-5.fc43 |
| diffbase-store-results-to | /tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.tar.xz |
| diffbase-time-created | 2026-01-08 15:37:18 |
| diffbase-time-finished | 2026-01-08 15:40:12 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'gcc,cppcheck,clippy,shellcheck,unicontrol' '-o' '/tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.src.rpm' |
| diffbase-tool-version | csmock-3.8.3.20251215.161544.g62de9a5-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-81.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | certmonger-0.79.21-1.fc44 |
| store-results-to | /tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.tar.xz |
| time-created | 2026-01-08 15:40:42 |
| time-finished | 2026-01-08 15:43:19 |
| title | Newly introduced findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'gcc,cppcheck,clippy,shellcheck,unicontrol' '-o' '/tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251215.161544.g62de9a5-1.el9 |