Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] certmonger-0.79.20/src/dogtag.c:203:24: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:305:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:203:24: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/4/codeFlows/0/threadFlows/0/locations/10) # 201| printf("Dogtag (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); # 202| #endif # 203|-> return 0; # 204| } else { # 205| /* unsupported request */ Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] certmonger-0.79.20/src/dogtag.c:288:42: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:288:42: throw: if ‘poptGetOptArg’ throws an exception... certmonger-0.79.20/src/dogtag.c:288:42: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/26/codeFlows/0/threadFlows/0/locations/7) # 286| #ifdef DOGTAG_IPA_RENEW_AGENT # 287| case 'V': # 288|-> dogtag_version = poptGetOptArg(pctx); # 289| break; # 290| #endif Error: GCC_ANALYZER_WARNING (CWE-401): [#def3] certmonger-0.79.20/src/dogtag.c:288:42: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:288:42: throw: if ‘poptGetOptArg’ throws an exception... certmonger-0.79.20/src/dogtag.c:288:42: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/25/codeFlows/0/threadFlows/0/locations/10) # 286| #ifdef DOGTAG_IPA_RENEW_AGENT # 287| case 'V': # 288|-> dogtag_version = poptGetOptArg(pctx); # 289| break; # 290| #endif Error: GCC_ANALYZER_WARNING (CWE-401): [#def4] certmonger-0.79.20/src/dogtag.c:336:9: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:336:9: throw: if ‘cm_dogtag_ipa_hostver’ throws an exception... certmonger-0.79.20/src/dogtag.c:336:9: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/45/codeFlows/0/threadFlows/0/locations/7) # 334| # 335| #ifdef DOGTAG_IPA_RENEW_AGENT # 336|-> cm_dogtag_ipa_hostver(&host, &dogtag_version); # 337| if ((dogtag_version != NULL) && (atof(dogtag_version) >= 10)) { # 338| eeport = 8080; Error: GCC_ANALYZER_WARNING (CWE-401): [#def5] certmonger-0.79.20/src/dogtag.c:336:9: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:336:9: throw: if ‘cm_dogtag_ipa_hostver’ throws an exception... certmonger-0.79.20/src/dogtag.c:336:9: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/44/codeFlows/0/threadFlows/0/locations/10) # 334| # 335| #ifdef DOGTAG_IPA_RENEW_AGENT # 336|-> cm_dogtag_ipa_hostver(&host, &dogtag_version); # 337| if ((dogtag_version != NULL) && (atof(dogtag_version) >= 10)) { # 338| eeport = 8080; Error: GCC_ANALYZER_WARNING (CWE-401): [#def6] certmonger-0.79.20/src/dogtag.c:345:25: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:344:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:345:25: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:345:25: throw: if ‘cm_prefs_dogtag_ee_url’ throws an exception... certmonger-0.79.20/src/dogtag.c:345:25: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/47/codeFlows/0/threadFlows/0/locations/7) # 343| } # 344| if (eeurl == NULL) { # 345|-> eeurl = cm_prefs_dogtag_ee_url(); # 346| if ((eeurl == NULL) && (host != NULL)) { # 347| eeurl = talloc_asprintf(ctx, Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] certmonger-0.79.20/src/dogtag.c:345:25: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:344:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:345:25: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:345:25: throw: if ‘cm_prefs_dogtag_ee_url’ throws an exception... certmonger-0.79.20/src/dogtag.c:345:25: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/46/codeFlows/0/threadFlows/0/locations/10) # 343| } # 344| if (eeurl == NULL) { # 345|-> eeurl = cm_prefs_dogtag_ee_url(); # 346| if ((eeurl == NULL) && (host != NULL)) { # 347| eeurl = talloc_asprintf(ctx, Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] certmonger-0.79.20/src/dogtag.c:347:33: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:344:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:345:25: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:346:20: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:347:33: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:347:33: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/49/codeFlows/0/threadFlows/0/locations/7) # 345| eeurl = cm_prefs_dogtag_ee_url(); # 346| if ((eeurl == NULL) && (host != NULL)) { # 347|-> eeurl = talloc_asprintf(ctx, # 348| "http://%s:%d/ca/ee/ca", # 349| host, eeport); Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] certmonger-0.79.20/src/dogtag.c:347:33: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:344:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:345:25: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:346:20: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:347:33: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:347:33: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/48/codeFlows/0/threadFlows/0/locations/10) # 345| eeurl = cm_prefs_dogtag_ee_url(); # 346| if ((eeurl == NULL) && (host != NULL)) { # 347|-> eeurl = talloc_asprintf(ctx, # 348| "http://%s:%d/ca/ee/ca", # 349| host, eeport); Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] certmonger-0.79.20/src/dogtag.c:353:28: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:352:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:353:28: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:353:28: throw: if ‘cm_prefs_dogtag_agent_url’ throws an exception... certmonger-0.79.20/src/dogtag.c:353:28: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/51/codeFlows/0/threadFlows/0/locations/7) # 351| } # 352| if (agenturl == NULL) { # 353|-> agenturl = cm_prefs_dogtag_agent_url(); # 354| if ((agenturl == NULL) && (host != NULL)) { # 355| agenturl = talloc_asprintf(ctx, Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] certmonger-0.79.20/src/dogtag.c:353:28: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:352:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:353:28: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:353:28: throw: if ‘cm_prefs_dogtag_agent_url’ throws an exception... certmonger-0.79.20/src/dogtag.c:353:28: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/50/codeFlows/0/threadFlows/0/locations/10) # 351| } # 352| if (agenturl == NULL) { # 353|-> agenturl = cm_prefs_dogtag_agent_url(); # 354| if ((agenturl == NULL) && (host != NULL)) { # 355| agenturl = talloc_asprintf(ctx, Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] certmonger-0.79.20/src/dogtag.c:355:36: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:352:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:353:28: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:354:20: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:355:36: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:355:36: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/53/codeFlows/0/threadFlows/0/locations/7) # 353| agenturl = cm_prefs_dogtag_agent_url(); # 354| if ((agenturl == NULL) && (host != NULL)) { # 355|-> agenturl = talloc_asprintf(ctx, # 356| "https://%s:%d/ca/agent/ca", # 357| host, agentport); Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] certmonger-0.79.20/src/dogtag.c:355:36: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:352:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:353:28: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:354:20: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:355:36: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:355:36: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/52/codeFlows/0/threadFlows/0/locations/10) # 353| agenturl = cm_prefs_dogtag_agent_url(); # 354| if ((agenturl == NULL) && (host != NULL)) { # 355|-> agenturl = talloc_asprintf(ctx, # 356| "https://%s:%d/ca/agent/ca", # 357| host, agentport); Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] certmonger-0.79.20/src/dogtag.c:466:13: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:427:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:432:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:432:12: branch_false: following ‘false’ branch (when ‘force_renew == 0’)... certmonger-0.79.20/src/dogtag.c:436:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_true: following ‘true’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:451:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:456:20: branch_false: following ‘false’ branch (when ‘can_agent != 0’)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:13: throw: if ‘NSS_ShutdownContext’ throws an exception... certmonger-0.79.20/src/dogtag.c:466:13: danger: ‘aoptions’ leaks here; was allocated at [(8)](sarif:/runs/0/results/58/codeFlows/0/threadFlows/0/locations/7) # 464| return CM_SUBMIT_STATUS_UNCONFIGURED; # 465| } # 466|-> if (NSS_ShutdownContext(nctx) != SECSuccess) { # 467| printf(_("Error shutting down NSS.\n")); # 468| return CM_SUBMIT_STATUS_UNREACHABLE; Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] certmonger-0.79.20/src/dogtag.c:466:13: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:427:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:432:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:432:12: branch_false: following ‘false’ branch (when ‘force_renew == 0’)... certmonger-0.79.20/src/dogtag.c:436:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_true: following ‘true’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:451:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:456:20: branch_false: following ‘false’ branch (when ‘can_agent != 0’)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:13: throw: if ‘NSS_ShutdownContext’ throws an exception... certmonger-0.79.20/src/dogtag.c:466:13: danger: ‘p’ leaks here; was allocated at [(11)](sarif:/runs/0/results/57/codeFlows/0/threadFlows/0/locations/10) # 464| return CM_SUBMIT_STATUS_UNCONFIGURED; # 465| } # 466|-> if (NSS_ShutdownContext(nctx) != SECSuccess) { # 467| printf(_("Error shutting down NSS.\n")); # 468| return CM_SUBMIT_STATUS_UNREACHABLE; Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] certmonger-0.79.20/src/dogtag.c:486:26: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:241:29: acquire_memory: allocated here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:427:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:432:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:432:12: branch_false: following ‘false’ branch (when ‘force_renew == 0’)... certmonger-0.79.20/src/dogtag.c:436:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_true: following ‘true’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:451:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:456:20: branch_false: following ‘false’ branch (when ‘can_agent != 0’)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:475:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:486:26: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:486:26: danger: ‘<unknown>’ leaks here; was allocated at [(12)](sarif:/runs/0/results/61/codeFlows/0/threadFlows/0/locations/11) # 484| op = op_retrieve; # 485| } # 486|-> params = talloc_asprintf(ctx, "requestId=%s", q); # 487| free(p); # 488| free(q); Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] certmonger-0.79.20/src/dogtag.c:486:26: warning[-Wanalyzer-malloc-leak]: leak of ‘aoptions’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:221:17: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:227:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:234:25: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:236:28: branch_false: following ‘false’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:241:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:242:28: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:248:29: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:220:16: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:304:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:427:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:432:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:432:12: branch_false: following ‘false’ branch (when ‘force_renew == 0’)... certmonger-0.79.20/src/dogtag.c:436:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_true: following ‘true’ branch (when ‘aoptions’ is non-NULL)... certmonger-0.79.20/src/dogtag.c:451:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:456:20: branch_false: following ‘false’ branch (when ‘can_agent != 0’)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:475:21: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:486:26: throw: if ‘talloc_asprintf’ throws an exception... certmonger-0.79.20/src/dogtag.c:486:26: danger: ‘aoptions’ leaks here; was allocated at [(9)](sarif:/runs/0/results/62/codeFlows/0/threadFlows/0/locations/8) # 484| op = op_retrieve; # 485| } # 486|-> params = talloc_asprintf(ctx, "requestId=%s", q); # 487| free(p); # 488| free(q); Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] certmonger-0.79.20/src/dogtag.c:495:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_false: following ‘false’ branch (when ‘aoptions’ is NULL)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:494:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:494:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:495:23: throw: if ‘cm_submit_u_from_file’ throws an exception... certmonger-0.79.20/src/dogtag.c:495:23: danger: ‘p’ leaks here; was allocated at [(25)](sarif:/runs/0/results/63/codeFlows/0/threadFlows/0/locations/24) # 493| /* Read the client password and/or PIN, if we need to. */ # 494| if ((pwdfile != NULL) && (pwd == NULL)) { # 495|-> pwd = cm_submit_u_from_file(pwdfile); # 496| if (pwd != NULL) { # 497| pwd = talloc_strndup(ctx, pwd, Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] certmonger-0.79.20/src/dogtag.c:497:19: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_false: following ‘false’ branch (when ‘aoptions’ is NULL)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:494:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:494:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:496:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:497:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:497:19: throw: if ‘talloc_strndup’ throws an exception... certmonger-0.79.20/src/dogtag.c:497:19: danger: ‘p’ leaks here; was allocated at [(25)](sarif:/runs/0/results/64/codeFlows/0/threadFlows/0/locations/24) # 495| pwd = cm_submit_u_from_file(pwdfile); # 496| if (pwd != NULL) { # 497|-> pwd = talloc_strndup(ctx, pwd, # 498| strcspn(pwd, "\r\n")); # 499| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] certmonger-0.79.20/src/dogtag.c:502:23: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_false: following ‘false’ branch (when ‘aoptions’ is NULL)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:494:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:501:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:502:23: throw: if ‘cm_submit_u_from_file’ throws an exception... certmonger-0.79.20/src/dogtag.c:502:23: danger: ‘p’ leaks here; was allocated at [(25)](sarif:/runs/0/results/65/codeFlows/0/threadFlows/0/locations/24) # 500| } # 501| if ((pinfile != NULL) && (pin == NULL)) { # 502|-> pin = cm_submit_u_from_file(pinfile); # 503| if (pin != NULL) { # 504| pin = talloc_strndup(ctx, pin, Error: GCC_ANALYZER_WARNING (CWE-401): [#def21] certmonger-0.79.20/src/dogtag.c:504:19: warning[-Wanalyzer-malloc-leak]: leak of ‘p’ certmonger-0.79.20/src/dogtag.c:114:1: enter_function: entry to ‘main’ certmonger-0.79.20/src/dogtag.c:216:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:219:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:304:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:311:9: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:312:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:315:17: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:323:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:327:14: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:328:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:333:15: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:450:12: branch_false: following ‘false’ branch (when ‘aoptions’ is NULL)... certmonger-0.79.20/src/dogtag.c:462:12: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:462:12: branch_false: following ‘false’ branch (when ‘missing_args == 0’)... certmonger-0.79.20/src/dogtag.c:466:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:466:12: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:472:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:472:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:473:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:473:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:473:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:474:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:474:19: call_function: calling ‘statevar’ from ‘main’ certmonger-0.79.20/src/dogtag.c:474:19: return_function: returning to ‘main’ from ‘statevar’ certmonger-0.79.20/src/dogtag.c:472:13: branch_false: following ‘false’ branch... certmonger-0.79.20/src/dogtag.c:494:13: branch_false: ...to here certmonger-0.79.20/src/dogtag.c:501:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:503:12: branch_true: following ‘true’ branch... certmonger-0.79.20/src/dogtag.c:504:19: branch_true: ...to here certmonger-0.79.20/src/dogtag.c:504:19: throw: if ‘talloc_strndup’ throws an exception... certmonger-0.79.20/src/dogtag.c:504:19: danger: ‘p’ leaks here; was allocated at [(25)](sarif:/runs/0/results/66/codeFlows/0/threadFlows/0/locations/24) # 502| pin = cm_submit_u_from_file(pinfile); # 503| if (pin != NULL) { # 504|-> pin = talloc_strndup(ctx, pin, # 505| strcspn(pin, "\r\n")); # 506| } Error: COMPILER_WARNING (CWE-563): [#def22] certmonger-0.79.20/src/ipa.c: scope_hint: In function ‘get_error_message’ certmonger-0.79.20/src/ipa.c:59:32: warning[-Wunused-parameter]: unused parameter ‘ctx’ # 59 | get_error_message(krb5_context ctx, krb5_error_code kcode) # | ~~~~~~~~~~~~~^~~ # 57| # 58| static char * # 59|-> get_error_message(krb5_context ctx, krb5_error_code kcode) # 60| { # 61| const char *ret; Error: COMPILER_WARNING (CWE-563): [#def23] certmonger-0.79.20/src/ipa.c: scope_hint: In function ‘interact’ certmonger-0.79.20/src/ipa.c:287:16: warning[-Wunused-parameter]: unused parameter ‘ld’ # 287 | interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # | ~~~~~~^~ # 285| # 286| static int # 287|-> interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # 288| { # 289| return 0; Error: COMPILER_WARNING (CWE-563): [#def24] certmonger-0.79.20/src/ipa.c:287:29: warning[-Wunused-parameter]: unused parameter ‘flags’ # 287 | interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # | ~~~~~~~~~^~~~~ # 285| # 286| static int # 287|-> interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # 288| { # 289| return 0; Error: COMPILER_WARNING (CWE-563): [#def25] certmonger-0.79.20/src/ipa.c:287:42: warning[-Wunused-parameter]: unused parameter ‘defaults’ # 287 | interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # | ~~~~~~^~~~~~~~ # 285| # 286| static int # 287|-> interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # 288| { # 289| return 0; Error: COMPILER_WARNING (CWE-563): [#def26] certmonger-0.79.20/src/ipa.c:287:58: warning[-Wunused-parameter]: unused parameter ‘sasl_interact’ # 287 | interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # | ~~~~~~^~~~~~~~~~~~~ # 285| # 286| static int # 287|-> interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) # 288| { # 289| return 0; Error: COMPILER_WARNING: [#def27] certmonger-0.79.20/src/store-gen.c: scope_hint: In function ‘cm_store_timestamp_from_time’ certmonger-0.79.20/src/store-gen.c:377:41: warning[-Wformat-overflow=]: ‘%02d’ directive writing between 2 and 11 bytes into a region of size between 4 and 11 # 377 | sprintf(timestamp, "%04d%02d%02d%02d%02d%02d", # | ^~~~ certmonger-0.79.20/src/store-gen.c:377:36: note: directive argument in the range [-2147483647, 2147483647] # 377 | sprintf(timestamp, "%04d%02d%02d%02d%02d%02d", # | ^~~~~~~~~~~~~~~~~~~~~~~~~~ /usr/include/bits/stdio2.h:30:10: note: ‘__sprintf_chk’ output between 15 and 67 bytes into a destination of size 15 # 30 | return __builtin___sprintf_chk (__s, __USE_FORTIFY_LEVEL - 1, # | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 31 | __glibc_objsize (__s), __fmt, # | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 32 | __va_arg_pack ()); # | ~~~~~~~~~~~~~~~~~ # 375| struct tm tm; # 376| if ((when != 0) && (gmtime_r(&when, &tm) == &tm)) { # 377|-> sprintf(timestamp, "%04d%02d%02d%02d%02d%02d", # 378| tm.tm_year + 1900, tm.tm_mon + 1, tm.tm_mday, # 379| tm.tm_hour, tm.tm_min, tm.tm_sec); Error: COMPILER_WARNING: [#def28] certmonger-0.79.20/src/store-gen.c:409:60: warning[-Warray-parameter=]: argument 2 of type ‘char[25]’ with mismatched bound # 409 | cm_store_timestamp_from_time_for_display(time_t when, char timestamp[25]) # | ~~~~~^~~~~~~~~~~~~ certmonger-0.79.20/src/store-gen.c:32: included_from: Included from here. certmonger-0.79.20/src/store.h:47:66: note: previously declared as ‘char[24]’ # 47 | char *cm_store_timestamp_from_time_for_display(time_t when, char timestamp[24]); # | ~~~~~^~~~~~~~~~~~~ # 407| # 408| char * # 409|-> cm_store_timestamp_from_time_for_display(time_t when, char timestamp[25]) # 410| { # 411| struct tm tm; Error: COMPILER_WARNING: [#def29] certmonger-0.79.20/src/store-gen.c: scope_hint: In function ‘cm_store_timestamp_from_time_for_display’ certmonger-0.79.20/src/store-gen.c:413:47: warning[-Wformat-overflow=]: ‘%02d’ directive writing between 2 and 11 bytes into a region of size between 0 and 16 # 413 | sprintf(timestamp, "%04d-%02d-%02d %02d:%02d:%02d UTC", # | ^~~~ /usr/include/bits/stdio2.h:30:10: note: ‘__sprintf_chk’ output between 24 and 76 bytes into a destination of size 24 # 30 | return __builtin___sprintf_chk (__s, __USE_FORTIFY_LEVEL - 1, # | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 31 | __glibc_objsize (__s), __fmt, # | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 32 | __va_arg_pack ()); # | ~~~~~~~~~~~~~~~~~ # 411| struct tm tm; # 412| if ((when != 0) && (gmtime_r(&when, &tm) == &tm)) { # 413|-> sprintf(timestamp, "%04d-%02d-%02d %02d:%02d:%02d UTC", # 414| tm.tm_year + 1900, tm.tm_mon + 1, tm.tm_mday, # 415| tm.tm_hour, tm.tm_min, tm.tm_sec); Error: COMPILER_WARNING (CWE-563): [#def30] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_check_result’ certmonger-0.79.20/src/submit-d.c:488:33: warning[-Wunused-parameter]: unused parameter ‘error_code’ # 488 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~ # 486| int # 487| cm_submit_d_check_result(void *parent, const char *xml, # 488|-> char **error_code, char **error_reason, # 489| char **error, char **status, char **requestId) # 490| { Error: COMPILER_WARNING (CWE-563): [#def31] certmonger-0.79.20/src/submit-d.c:488:52: warning[-Wunused-parameter]: unused parameter ‘error_reason’ # 488 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~~~ # 486| int # 487| cm_submit_d_check_result(void *parent, const char *xml, # 488|-> char **error_code, char **error_reason, # 489| char **error, char **status, char **requestId) # 490| { Error: COMPILER_WARNING (CWE-563): [#def32] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_reject_result’ certmonger-0.79.20/src/submit-d.c:508:34: warning[-Wunused-parameter]: unused parameter ‘error_code’ # 508 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~ # 506| int # 507| cm_submit_d_reject_result(void *parent, const char *xml, # 508|-> char **error_code, char **error_reason, # 509| char **error, char **status, char **requestId) # 510| { Error: COMPILER_WARNING (CWE-563): [#def33] certmonger-0.79.20/src/submit-d.c:508:53: warning[-Wunused-parameter]: unused parameter ‘error_reason’ # 508 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~~~ # 506| int # 507| cm_submit_d_reject_result(void *parent, const char *xml, # 508|-> char **error_code, char **error_reason, # 509| char **error, char **status, char **requestId) # 510| { Error: COMPILER_WARNING (CWE-563): [#def34] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_review_result’ certmonger-0.79.20/src/submit-d.c:525:34: warning[-Wunused-parameter]: unused parameter ‘error’ # 525 | char **error, char **status, char **requestId) # | ~~~~~~~^~~~~ # 523| cm_submit_d_review_result(void *parent, const char *xml, # 524| char **error_code, char **error_reason, # 525|-> char **error, char **status, char **requestId) # 526| { # 527| *error_code = trim(parent, Error: COMPILER_WARNING (CWE-563): [#def35] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_approve_result’ certmonger-0.79.20/src/submit-d.c:548:35: warning[-Wunused-parameter]: unused parameter ‘error’ # 548 | char **error, char **status, char **requestId) # | ~~~~~~~^~~~~ # 546| cm_submit_d_approve_result(void *parent, const char *xml, # 547| char **error_code, char **error_reason, # 548|-> char **error, char **status, char **requestId) # 549| { # 550| *error_code = trim(parent, Error: COMPILER_WARNING (CWE-563): [#def36] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_fetch_result’ certmonger-0.79.20/src/submit-d.c:570:33: warning[-Wunused-parameter]: unused parameter ‘error_code’ # 570 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~ # 568| int # 569| cm_submit_d_fetch_result(void *parent, const char *xml, # 570|-> char **error_code, char **error_reason, # 571| char **error, char **status, # 572| char **requestId, char **cert) Error: COMPILER_WARNING (CWE-563): [#def37] certmonger-0.79.20/src/submit-d.c:570:52: warning[-Wunused-parameter]: unused parameter ‘error_reason’ # 570 | char **error_code, char **error_reason, # | ~~~~~~~^~~~~~~~~~~~ # 568| int # 569| cm_submit_d_fetch_result(void *parent, const char *xml, # 570|-> char **error_code, char **error_reason, # 571| char **error, char **status, # 572| char **requestId, char **cert) Error: COMPILER_WARNING (CWE-563): [#def38] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_profiles_result’ certmonger-0.79.20/src/submit-d.c:604:36: warning[-Wunused-parameter]: unused parameter ‘error’ # 604 | char **error, char **status, # | ~~~~~~~^~~~~ # 602| cm_submit_d_profiles_result(void *parent, const char *xml, # 603| char **error_code, char **error_reason, # 604|-> char **error, char **status, # 605| char ***profiles) # 606| { Error: COMPILER_WARNING (CWE-563): [#def39] certmonger-0.79.20/src/submit-d.c:604:50: warning[-Wunused-parameter]: unused parameter ‘status’ # 604 | char **error, char **status, # | ~~~~~~~^~~~~~ # 602| cm_submit_d_profiles_result(void *parent, const char *xml, # 603| char **error_code, char **error_reason, # 604|-> char **error, char **status, # 605| char ***profiles) # 606| { Error: COMPILER_WARNING (CWE-563): [#def40] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_reject_eval’ certmonger-0.79.20/src/submit-d.c:715:37: warning[-Wunused-parameter]: unused parameter ‘can_agent’ # 715 | dbus_bool_t can_agent, char **out, char **err) # | ~~~~~~~~~~~~^~~~~~~~~ # 713| enum cm_external_status # 714| cm_submit_d_reject_eval(void *parent, const char *xml, const char *url, # 715|-> dbus_bool_t can_agent, char **out, char **err) # 716| { # 717| char *error = NULL, *error_code = NULL, *error_reason = NULL; Error: COMPILER_WARNING (CWE-563): [#def41] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_review_eval’ certmonger-0.79.20/src/submit-d.c:743:37: warning[-Wunused-parameter]: unused parameter ‘can_agent’ # 743 | dbus_bool_t can_agent, char **out, char **err) # | ~~~~~~~~~~~~^~~~~~~~~ # 741| enum cm_external_status # 742| cm_submit_d_review_eval(void *parent, const char *xml, const char *url, # 743|-> dbus_bool_t can_agent, char **out, char **err) # 744| { # 745| char *error = NULL, *error_code = NULL, *error_reason = NULL; Error: COMPILER_WARNING (CWE-563): [#def42] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_approve_eval’ certmonger-0.79.20/src/submit-d.c:787:38: warning[-Wunused-parameter]: unused parameter ‘can_agent’ # 787 | dbus_bool_t can_agent, char **out, char **err) # | ~~~~~~~~~~~~^~~~~~~~~ # 785| enum cm_external_status # 786| cm_submit_d_approve_eval(void *parent, const char *xml, const char *url, # 787|-> dbus_bool_t can_agent, char **out, char **err) # 788| { # 789| char *error = NULL, *error_code = NULL, *error_reason = NULL; Error: COMPILER_WARNING (CWE-563): [#def43] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_fetch_eval’ certmonger-0.79.20/src/submit-d.c:822:36: warning[-Wunused-parameter]: unused parameter ‘can_agent’ # 822 | dbus_bool_t can_agent, char **out, char **err) # | ~~~~~~~~~~~~^~~~~~~~~ # 820| enum cm_external_status # 821| cm_submit_d_fetch_eval(void *parent, const char *xml, const char *url, # 822|-> dbus_bool_t can_agent, char **out, char **err) # 823| { # 824| char *error = NULL, *error_code = NULL, *error_reason = NULL; Error: COMPILER_WARNING (CWE-563): [#def44] certmonger-0.79.20/src/submit-d.c: scope_hint: In function ‘cm_submit_d_profiles_eval’ certmonger-0.79.20/src/submit-d.c:853:70: warning[-Wunused-parameter]: unused parameter ‘url’ # 853 | cm_submit_d_profiles_eval(void *parent, const char *xml, const char *url, # | ~~~~~~~~~~~~^~~ # 851| # 852| enum cm_external_status # 853|-> cm_submit_d_profiles_eval(void *parent, const char *xml, const char *url, # 854| dbus_bool_t can_agent, char **out, char **err) # 855| { Error: COMPILER_WARNING (CWE-563): [#def45] certmonger-0.79.20/src/submit-d.c:854:39: warning[-Wunused-parameter]: unused parameter ‘can_agent’ # 854 | dbus_bool_t can_agent, char **out, char **err) # | ~~~~~~~~~~~~^~~~~~~~~ # 852| enum cm_external_status # 853| cm_submit_d_profiles_eval(void *parent, const char *xml, const char *url, # 854|-> dbus_bool_t can_agent, char **out, char **err) # 855| { # 856| char *error_code = NULL, *error_reason = NULL, *status = NULL;
| analyzer-version-clippy | 1.92.0 |
| analyzer-version-cppcheck | 2.19.1 |
| analyzer-version-gcc | 16.0.0 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.92.0 |
| diffbase-analyzer-version-cppcheck | 2.19.1 |
| diffbase-analyzer-version-gcc | 16.0.0 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.0 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-81.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-x86_64 |
| diffbase-project-name | certmonger-0.79.21-1.fc44 |
| diffbase-store-results-to | /tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.tar.xz |
| diffbase-time-created | 2026-01-08 15:40:42 |
| diffbase-time-finished | 2026-01-08 15:43:19 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'gcc,cppcheck,clippy,shellcheck,unicontrol' '-o' '/tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmpdqoku5en/certmonger-0.79.21-1.fc44.src.rpm' |
| diffbase-tool-version | csmock-3.8.3.20251215.161544.g62de9a5-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-81.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | certmonger-0.79.20-5.fc43 |
| store-results-to | /tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.tar.xz |
| time-created | 2026-01-08 15:37:18 |
| time-finished | 2026-01-08 15:40:12 |
| title | Fixed findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'gcc,cppcheck,clippy,shellcheck,unicontrol' '-o' '/tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmph6wwlqvh/certmonger-0.79.20-5.fc43.src.rpm' |
| tool-version | csmock-3.8.3.20251215.161544.g62de9a5-1.el9 |