Error: SHELLCHECK_WARNING (CWE-563): [#def1] /usr/bin/apachectl:30:1: warning[SC2034]: ARGV appears unused. Verify use (or export if used externally). # 28| # 29| ACMD="$1" # 30|-> ARGV="$@" # 31| SVC='httpd.service' # 32| HTTPD='/usr/bin/httpd' Error: SHELLCHECK_WARNING (CWE-569): [#def2] /usr/bin/apachectl:30:6: warning[SC2124]: Assigning an array to a string! Assign as array, or use * instead of @ to concatenate. # 28| # 29| ACMD="$1" # 30|-> ARGV="$@" # 31| SVC='httpd.service' # 32| HTTPD='/usr/bin/httpd' Error: SHELLCHECK_WARNING (CWE-456): [#def3] /usr/lib64/httpd/build/instdso.sh:54:9: warning[SC2209]: Use var=$(command) to assign output (or quote to assign string). # 52| case $SYS in # 53| SunOS|HP-UX) # 54|-> INSTALL_CMD=cp # 55| ;; # 56| *) Error: SHELLCHECK_WARNING (CWE-456): [#def4] /usr/lib64/httpd/build/instdso.sh:57:64: warning[SC2209]: Use var=$(command) to assign output (or quote to assign string). # 55| ;; # 56| *) # 57|-> type install >/dev/null 2>&1 && INSTALL_CMD=install || INSTALL_CMD=cp # 58| ;; # 59| esac Error: SHELLCHECK_WARNING (CWE-456): [#def5] /usr/lib64/httpd/build/mkdir.sh:29:9: warning[SC2121]: To assign a variable, use just 'var=value', no 'set ..'. # 27| errstatus=0 # 28| for file in ${1+"$@"} ; do # 29|-> set fnord `echo ":$file" |\ # 30| sed -e 's/^:\//%/' -e 's/^://' -e 's/\// /g' -e 's/^%/\//'` # 31| shift Error: SHELLCHECK_WARNING (CWE-156): [#def6] /usr/lib64/httpd/build/mkdir.sh:29:15: warning[SC2046]: Quote this to prevent word splitting. # 27| errstatus=0 # 28| for file in ${1+"$@"} ; do # 29|-> set fnord `echo ":$file" |\ # 30| sed -e 's/^:\//%/' -e 's/^://' -e 's/\// /g' -e 's/^%/\//'` # 31| shift Error: GCC_ANALYZER_WARNING (CWE-688): [#def7] httpd-2.4.66/modules/aaa/mod_access_compat.c:218:14: warning[-Wanalyzer-null-argument]: use of NULL 'what' where non-null expected httpd-2.4.66/modules/aaa/mod_access_compat.c:242:12: enter_function: entry to 'find_allowdeny' httpd-2.4.66/modules/aaa/mod_access_compat.c:251:17: branch_true: following 'true' branch... httpd-2.4.66/modules/aaa/mod_access_compat.c:252:25: branch_true: ...to here httpd-2.4.66/modules/aaa/mod_access_compat.c:251:17: branch_true: following 'true' branch... httpd-2.4.66/modules/aaa/mod_access_compat.c:252:25: branch_true: ...to here httpd-2.4.66/modules/aaa/mod_access_compat.c:251:17: branch_true: following 'true' branch... httpd-2.4.66/modules/aaa/mod_access_compat.c:252:25: branch_true: ...to here httpd-2.4.66/modules/aaa/mod_access_compat.c:293:16: branch_true: following 'true' branch (when 'gothost == 2')... httpd-2.4.66/modules/aaa/mod_access_compat.c:293:45: branch_true: ...to here httpd-2.4.66/modules/aaa/mod_access_compat.c:293:35: call_function: calling 'in_domain' from 'find_allowdeny' # 216| { # 217| int dl = strlen(domain); # 218|-> int wl = strlen(what); # 219| # 220| if ((wl - dl) >= 0) { Error: GCC_ANALYZER_WARNING (CWE-457): [#def8] httpd-2.4.66/modules/cache/cache_util.c:935:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value '*last' httpd-2.4.66/modules/cache/cache_util.c:1139:12: enter_function: entry to 'cache_control_remove' httpd-2.4.66/modules/cache/cache_util.c:1145:8: branch_true: following 'true' branch (when 'cc_header' is non-NULL)... httpd-2.4.66/modules/cache/cache_util.c:1146:24: branch_true: ...to here httpd-2.4.66/modules/cache/cache_util.c:1147:23: call_function: calling 'cache_strqtok' from 'cache_control_remove' # 933| # 934| if (!str) { /* subsequent call */ # 935|-> str = *last; /* start where we left off */ # 936| } # 937| Error: GCC_ANALYZER_WARNING (CWE-688): [#def9] httpd-2.4.66/modules/cache/mod_socache_shmcb.c:222:9: warning[-Wanalyzer-null-argument]: use of NULL 'dest' where non-null expected httpd-2.4.66/modules/cache/mod_socache_shmcb.c:695:21: enter_function: entry to 'socache_shmcb_iterate' httpd-2.4.66/modules/cache/mod_socache_shmcb.c:705:20: release_memory: 'buf' is NULL httpd-2.4.66/modules/cache/mod_socache_shmcb.c:711:20: branch_true: following 'true' branch... httpd-2.4.66/modules/cache/mod_socache_shmcb.c:713:14: call_function: calling 'shmcb_subcache_iterate' from 'socache_shmcb_iterate' # 220| if (src_offset + src_len < buf_size) # 221| /* It be copied all in one go */ # 222|-> memcpy(dest, data + src_offset, src_len); # 223| else { # 224| /* Copy the two splits */ Error: GCC_ANALYZER_WARNING (CWE-688): [#def10] httpd-2.4.66/modules/cache/mod_socache_shmcb.c:225:9: warning[-Wanalyzer-null-argument]: use of NULL 'dest' where non-null expected httpd-2.4.66/modules/cache/mod_socache_shmcb.c:695:21: enter_function: entry to 'socache_shmcb_iterate' httpd-2.4.66/modules/cache/mod_socache_shmcb.c:705:20: release_memory: 'buf' is NULL httpd-2.4.66/modules/cache/mod_socache_shmcb.c:711:20: branch_true: following 'true' branch... httpd-2.4.66/modules/cache/mod_socache_shmcb.c:713:14: call_function: calling 'shmcb_subcache_iterate' from 'socache_shmcb_iterate' # 223| else { # 224| /* Copy the two splits */ # 225|-> memcpy(dest, data + src_offset, buf_size - src_offset); # 226| memcpy(dest + buf_size - src_offset, data, # 227| src_len + src_offset - buf_size); Error: GCC_ANALYZER_WARNING (CWE-457): [#def11] httpd-2.4.66/modules/filters/mod_charset_lite.c:448:33: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value '*cur_str' httpd-2.4.66/modules/filters/mod_charset_lite.c:754:21: enter_function: entry to 'xlate_out_filter' httpd-2.4.66/modules/filters/mod_charset_lite.c:853:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:857:5: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:862:12: branch_true: following 'true' branch (when 'done == 0')... httpd-2.4.66/modules/filters/mod_charset_lite.c:863:13: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:863:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:864:16: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:864:16: branch_false: following 'false' branch (when 'consumed_bucket' is NULL)... httpd-2.4.66/modules/filters/mod_charset_lite.c:868:25: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:868:16: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:871:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:871:16: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:884:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:884:16: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:887:17: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:890:20: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:884:47: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:862:12: branch_true: following 'true' branch (when 'done == 0')... httpd-2.4.66/modules/filters/mod_charset_lite.c:863:13: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:907:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:908:17: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:908:16: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:914:45: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:915:22: call_function: calling 'finish_partial_char' from 'xlate_out_filter' # 446| # 447| do { # 448|-> ctx->buf[ctx->saved] = **cur_str; # 449| ++ctx->saved; # 450| ++*cur_str; Error: GCC_ANALYZER_WARNING (CWE-457): [#def12] httpd-2.4.66/modules/filters/mod_charset_lite.c:920:22: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'cur_str' httpd-2.4.66/modules/filters/mod_charset_lite.c:853:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:857:5: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:862:12: branch_true: following 'true' branch (when 'done == 0')... httpd-2.4.66/modules/filters/mod_charset_lite.c:863:13: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:863:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:864:16: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:864:16: branch_false: following 'false' branch (when 'consumed_bucket' is NULL)... httpd-2.4.66/modules/filters/mod_charset_lite.c:868:25: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:868:16: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:871:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:871:16: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:884:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:884:16: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:887:17: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:890:20: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:884:47: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:862:12: branch_true: following 'true' branch (when 'done == 0')... httpd-2.4.66/modules/filters/mod_charset_lite.c:863:13: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:907:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:908:17: branch_true: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:908:16: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_charset_lite.c:922:62: branch_false: ...to here httpd-2.4.66/modules/filters/mod_charset_lite.c:920:22: danger: use of uninitialized value 'cur_str' here # 918| } # 919| else { # 920|-> rv = apr_xlate_conv_buffer(ctx->xlate, # 921| cur_str, &cur_avail, # 922| tmp + sizeof(tmp) - space_avail, &space_avail); Error: GCC_ANALYZER_WARNING (CWE-688): [#def13] httpd-2.4.66/modules/filters/mod_include.c:2337:9: warning[-Wanalyzer-null-argument]: use of NULL 'tag' where non-null expected httpd-2.4.66/modules/filters/mod_include.c:2306:21: enter_function: entry to 'handle_if' httpd-2.4.66/modules/filters/mod_include.c:2309:11: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2310:11: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2325:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:2330:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:2330:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:2335:5: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:2335:5: call_function: calling 'ap_ssi_get_tag_and_value' from 'handle_if' httpd-2.4.66/modules/filters/mod_include.c:2335:5: return_function: returning to 'handle_if' from 'ap_ssi_get_tag_and_value' httpd-2.4.66/modules/filters/mod_include.c:2337:9: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2337:9: danger: argument 1 ('tag') NULL where non-null expected # 2335| ap_ssi_get_tag_and_value(ctx, &tag, &expr, SSI_VALUE_RAW); # 2336| # 2337|-> if (strcmp(tag, "expr")) { # 2338| ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01354) "unknown parameter \"%s\" " # 2339| "to tag if in %s", tag, r->filename); Error: GCC_ANALYZER_WARNING (CWE-688): [#def14] httpd-2.4.66/modules/filters/mod_include.c:2409:9: warning[-Wanalyzer-null-argument]: use of NULL 'tag' where non-null expected httpd-2.4.66/modules/filters/mod_include.c:2380:21: enter_function: entry to 'handle_elif' httpd-2.4.66/modules/filters/mod_include.c:2383:11: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2384:11: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2398:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:2402:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:2402:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:2407:5: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:2407:5: call_function: calling 'ap_ssi_get_tag_and_value' from 'handle_elif' httpd-2.4.66/modules/filters/mod_include.c:2407:5: return_function: returning to 'handle_elif' from 'ap_ssi_get_tag_and_value' httpd-2.4.66/modules/filters/mod_include.c:2409:9: release_memory: 'tag' is NULL httpd-2.4.66/modules/filters/mod_include.c:2409:9: danger: argument 1 ('tag') NULL where non-null expected # 2407| ap_ssi_get_tag_and_value(ctx, &tag, &expr, SSI_VALUE_RAW); # 2408| # 2409|-> if (strcmp(tag, "expr")) { # 2410| ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01358) "unknown parameter \"%s\" " # 2411| "to tag if in %s", tag, r->filename); Error: GCC_ANALYZER_WARNING (CWE-476): [#def15] httpd-2.4.66/modules/filters/mod_include.c:3206:17: warning[-Wanalyzer-null-dereference]: dereference of NULL 'data' httpd-2.4.66/modules/filters/mod_include.c:3388:21: enter_function: entry to 'send_parsed_content' httpd-2.4.66/modules/filters/mod_include.c:3399:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3406:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3406:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3411:45: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3419:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_include.c:3420:21: branch_true: ...to here httpd-2.4.66/modules/filters/mod_include.c:3420:21: release_memory: 'data' is NULL httpd-2.4.66/modules/filters/mod_include.c:3427:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3472:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3472:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3473:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3472:13: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_include.c:3475:18: branch_true: ...to here httpd-2.4.66/modules/filters/mod_include.c:3489:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3511:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3511:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_include.c:3511:22: branch_true: ...to here httpd-2.4.66/modules/filters/mod_include.c:3511:13: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3520:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3638:21: release_memory: 'data' is NULL httpd-2.4.66/modules/filters/mod_include.c:3638:21: call_function: calling 'find_argument' from 'send_parsed_content' # 3204| * can safely assume, someone forgot the name of the argument # 3205| */ # 3206|-> switch (*p) { # 3207| case '"': case '\'': case '`': # 3208| *store = NULL; Error: GCC_ANALYZER_WARNING (CWE-476): [#def16] httpd-2.4.66/modules/filters/mod_include.c:3306:13: warning[-Wanalyzer-null-dereference]: dereference of NULL 'data' httpd-2.4.66/modules/filters/mod_include.c:3388:21: enter_function: entry to 'send_parsed_content' httpd-2.4.66/modules/filters/mod_include.c:3399:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3406:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3406:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3411:45: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3419:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_include.c:3420:21: branch_true: ...to here httpd-2.4.66/modules/filters/mod_include.c:3420:21: release_memory: 'data' is NULL httpd-2.4.66/modules/filters/mod_include.c:3427:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3472:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3472:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3473:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3472:13: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3488:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3489:12: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3511:13: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3511:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_include.c:3511:22: branch_true: ...to here httpd-2.4.66/modules/filters/mod_include.c:3511:13: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_include.c:3520:17: branch_false: ...to here httpd-2.4.66/modules/filters/mod_include.c:3638:21: release_memory: 'data' is NULL httpd-2.4.66/modules/filters/mod_include.c:3638:21: call_function: calling 'find_argument' from 'send_parsed_content' # 3304| # 3305| case PARSE_ARG_VAL_ESC: # 3306|-> if (*p == intern->quote) { # 3307| ++p; # 3308| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] httpd-2.4.66/modules/filters/mod_proxy_html.c:208:13: warning[-Wanalyzer-malloc-leak]: leak of 'newbuf' httpd-2.4.66/modules/filters/mod_proxy_html.c:200:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:200:8: branch_false: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:202:17: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:203:23: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:206:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:207:12: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:207:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:208:35: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:208:13: throw: if 'apr_pool_cleanup_kill' throws an exception... httpd-2.4.66/modules/filters/mod_proxy_html.c:208:13: danger: 'newbuf' leaks here; was allocated at [(5)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/4) # 206| if (newbuf != ctx->buf) { # 207| if (ctx->buf) # 208|-> apr_pool_cleanup_kill(ctx->f->r->pool, ctx->buf, # 209| (int(*)(void*))free); # 210| apr_pool_cleanup_register(ctx->f->r->pool, newbuf, Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] httpd-2.4.66/modules/filters/mod_proxy_html.c:210:9: warning[-Wanalyzer-malloc-leak]: leak of 'newbuf' httpd-2.4.66/modules/filters/mod_proxy_html.c:200:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:200:8: branch_false: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:202:17: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:203:23: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:206:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:207:12: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:207:12: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:208:35: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:210:9: throw: if 'apr_pool_cleanup_register' throws an exception... httpd-2.4.66/modules/filters/mod_proxy_html.c:210:9: danger: 'newbuf' leaks here; was allocated at [(5)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/4) # 208| apr_pool_cleanup_kill(ctx->f->r->pool, ctx->buf, # 209| (int(*)(void*))free); # 210|-> apr_pool_cleanup_register(ctx->f->r->pool, newbuf, # 211| (int(*)(void*))free, apr_pool_cleanup_null); # 212| ctx->buf = newbuf; Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] httpd-2.4.66/modules/filters/mod_proxy_html.c:214:1: warning[-Wanalyzer-malloc-leak]: leak of 'newbuf' httpd-2.4.66/modules/filters/mod_proxy_html.c:338:13: enter_function: entry to 'pendElement' httpd-2.4.66/modules/filters/mod_proxy_html.c:359:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:360:9: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:360:9: call_function: calling 'dump_content' from 'pendElement' # 212| ctx->buf = newbuf; # 213| } # 214|-> } # 215| # 216| static void pappend(saxctxt *ctx, const char *buf, const size_t len) Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] httpd-2.4.66/modules/filters/mod_proxy_html.c:221:1: warning[-Wanalyzer-malloc-leak]: leak of 'newbuf' httpd-2.4.66/modules/filters/mod_proxy_html.c:319:13: enter_function: entry to 'pcomment' httpd-2.4.66/modules/filters/mod_proxy_html.c:323:8: branch_false: following 'false' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:326:9: branch_false: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:326:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/mod_proxy_html.c:327:9: branch_true: ...to here httpd-2.4.66/modules/filters/mod_proxy_html.c:328:9: call_function: calling 'pappend' from 'pcomment' # 219| memcpy(ctx->buf+ctx->offset, buf, len); # 220| ctx->offset += len; # 221|-> } # 222| # 223| static void dump_content(saxctxt *ctx) Error: GCC_ANALYZER_WARNING (CWE-404): [#def21] httpd-2.4.66/modules/filters/sed0.c:50:17: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/filters/sed0.c:46:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/sed0.c:49:9: acquire_resource: 'va_start' called here httpd-2.4.66/modules/filters/sed0.c:50:17: throw: if 'apr_pvsprintf' throws an exception... httpd-2.4.66/modules/filters/sed0.c:50:17: danger: missing call to 'va_end' to match 'va_start' at [(3)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/2) # 48| const char* error; # 49| va_start(args, fmt); # 50|-> error = apr_pvsprintf(commands->pool, fmt, args); # 51| commands->errfn(commands->data, error); # 52| va_end(args); Error: GCC_ANALYZER_WARNING (CWE-404): [#def22] httpd-2.4.66/modules/filters/sed1.c:83:17: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/filters/sed1.c:480:14: enter_function: entry to 'sed_finalize_eval' httpd-2.4.66/modules/filters/sed1.c:491:8: branch_true: following 'true' branch... httpd-2.4.66/modules/filters/sed1.c:495:13: branch_true: ...to here httpd-2.4.66/modules/filters/sed1.c:510:14: call_function: calling 'execute' from 'sed_finalize_eval' # 81| const char* error; # 82| va_start(args, fmt); # 83|-> error = apr_pvsprintf(eval->pool, fmt, args); # 84| eval->errfn(eval->data, error); # 85| va_end(args); Error: COMPILER_WARNING (CWE-704): [#def23] httpd-2.4.66/modules/filters/sed1.c: scope_hint: In function 'sed_eval_buffer' httpd-2.4.66/modules/filters/sed1.c:439:11: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 439 | n = memchr(buf, '\n', bufsz); # | ^ # 437| apr_size_t llen; # 438| # 439|-> n = memchr(buf, '\n', bufsz); # 440| if (n == NULL) # 441| break; Error: COMPILER_WARNING (CWE-704): [#def24] httpd-2.4.66/modules/filters/sed1.c:439:11: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 437| apr_size_t llen; # 438| # 439|-> n = memchr(buf, '\n', bufsz); # 440| if (n == NULL) # 441| break; Error: GCC_ANALYZER_WARNING (CWE-775): [#def25] httpd-2.4.66/modules/generators/mod_cgid.c:746:5: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:746:5: throw: if 'apr_pool_cleanup_register' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:746:5: danger: 'sd' leaks here # 744| } # 745| # 746|-> apr_pool_cleanup_register(pcgi, (void *)((long)sd), # 747| close_unix_socket, close_unix_socket); # 748| Error: GCC_ANALYZER_WARNING (CWE-775): [#def26] httpd-2.4.66/modules/generators/mod_cgid.c:769:9: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:752:8: branch_false: following 'false' branch (when 'rc >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:760:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:761:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:768:9: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:768:8: branch_true: following 'true' branch... httpd-2.4.66/modules/generators/mod_cgid.c:769:9: branch_true: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:769:9: throw: if 'ap_log_error_' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:769:9: danger: 'sd' leaks here # 767| # 768| if (listen(sd, DEFAULT_CGID_LISTENBACKLOG) < 0) { # 769|-> ap_log_error(APLOG_MARK, APLOG_ERR, errno, main_server, APLOGNO(01245) # 770| "Couldn't listen on unix domain socket"); # 771| return errno; Error: GCC_ANALYZER_WARNING (CWE-775): [#def27] httpd-2.4.66/modules/generators/mod_cgid.c:776:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:752:8: branch_false: following 'false' branch (when 'rc >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:760:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:761:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:768:9: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:768:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:774:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:774:8: branch_true: following 'true' branch... httpd-2.4.66/modules/generators/mod_cgid.c:775:29: branch_true: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:775:12: branch_true: following 'true' branch... httpd-2.4.66/modules/generators/mod_cgid.c:776:13: branch_true: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:776:13: throw: if 'ap_log_error_' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:776:13: danger: 'sd' leaks here # 774| if (!geteuid()) { # 775| if (chown(sockname, ap_unixd_config.user_id, -1) < 0) { # 776|-> ap_log_error(APLOG_MARK, APLOG_ERR, errno, main_server, APLOGNO(01246) # 777| "Couldn't change owner of unix domain socket %s", # 778| sockname); Error: GCC_ANALYZER_WARNING (CWE-775): [#def28] httpd-2.4.66/modules/generators/mod_cgid.c:784:15: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:752:8: branch_false: following 'false' branch (when 'rc >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:760:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:761:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:768:9: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:768:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:774:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:784:15: throw: if 'ap_run_drop_privileges' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:784:15: danger: 'sd' leaks here # 782| # 783| /* if running as root, switch to configured user/group */ # 784|-> if ((rc = ap_run_drop_privileges(pcgi, ap_server_conf)) != 0) { # 785| return rc; # 786| } Error: GCC_ANALYZER_WARNING (CWE-775): [#def29] httpd-2.4.66/modules/generators/mod_cgid.c:807:9: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:752:8: branch_false: following 'false' branch (when 'rc >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:760:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:761:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:768:9: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:768:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:774:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:784:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:784:8: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:788:12: branch_true: following 'true' branch... httpd-2.4.66/modules/generators/mod_cgid.c:790:15: branch_true: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:807:9: throw: if 'apr_pool_clear' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:807:9: danger: 'sd' leaks here # 805| struct sockaddr_un unix_addr; # 806| # 807|-> apr_pool_clear(ptrans); # 808| # 809| len = sizeof(unix_addr); Error: GCC_ANALYZER_WARNING (CWE-775): [#def30] httpd-2.4.66/modules/generators/mod_cgid.c:810:15: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:740:15: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:740:8: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:746:45: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:752:8: branch_false: following 'false' branch (when 'rc >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:760:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:761:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:768:9: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:768:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:774:10: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:784:8: branch_false: following 'false' branch... httpd-2.4.66/modules/generators/mod_cgid.c:784:8: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:788:12: branch_true: following 'true' branch... httpd-2.4.66/modules/generators/mod_cgid.c:790:15: branch_true: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:810:15: throw: if 'accept' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:810:15: danger: 'sd' leaks here # 808| # 809| len = sizeof(unix_addr); # 810|-> sd2 = accept(sd, (struct sockaddr *)&unix_addr, &len); # 811| if (sd2 < 0) { # 812| #if defined(ENETDOWN) Error: GCC_ANALYZER_WARNING (CWE-775): [#def31] httpd-2.4.66/modules/generators/mod_cgid.c:1313:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'sd' httpd-2.4.66/modules/generators/mod_cgid.c:1309:19: acquire_resource: stream socket created here httpd-2.4.66/modules/generators/mod_cgid.c:1309:12: branch_false: following 'false' branch (when 'sd >= 0')... httpd-2.4.66/modules/generators/mod_cgid.c:1313:13: branch_false: ...to here httpd-2.4.66/modules/generators/mod_cgid.c:1313:13: throw: if 'connect' throws an exception... httpd-2.4.66/modules/generators/mod_cgid.c:1313:13: danger: 'sd' leaks here # 1311| APLOGNO(01255), "unable to create socket to cgi daemon"); # 1312| } # 1313|-> if (connect(sd, (struct sockaddr *)server_addr, server_addr_len) < 0) { # 1314| /* Save errno for later */ # 1315| connect_errno = errno; Error: GCC_ANALYZER_WARNING (CWE-688): [#def32] httpd-2.4.66/modules/http/http_filters.c:1089:23: warning[-Wanalyzer-null-argument]: use of NULL 'protocol' where non-null expected httpd-2.4.66/modules/http/http_filters.c:1165:18: enter_function: entry to 'ap_basic_http_header' httpd-2.4.66/modules/http/http_filters.c:1167:17: release_memory: 'protocol' is NULL httpd-2.4.66/modules/http/http_filters.c:1169:5: call_function: inlined call to 'basic_http_header_check' from 'ap_basic_http_header' httpd-2.4.66/modules/http/http_filters.c:1170:5: branch_true: ...to here httpd-2.4.66/modules/http/http_filters.c:1170:5: release_memory: 'protocol' is NULL httpd-2.4.66/modules/http/http_filters.c:1170:5: call_function: calling 'basic_http_header' from 'ap_basic_http_header' # 1087| # 1088| vec[0].iov_base = (void *)protocol; # 1089|-> vec[0].iov_len = strlen(protocol); # 1090| vec[1].iov_base = (void *)" "; # 1091| vec[1].iov_len = sizeof(" ") - 1; Error: GCC_ANALYZER_WARNING (CWE-476): [#def33] httpd-2.4.66/modules/http/http_filters.c:1384:16: warning[-Wanalyzer-null-dereference]: dereference of NULL '*r.content_languages' httpd-2.4.66/modules/http/http_filters.c:1420:38: enter_function: entry to 'ap_http_header_filter' httpd-2.4.66/modules/http/http_filters.c:1437:8: branch_false: following 'false' branch (when 'ctx' is non-NULL)... httpd-2.4.66/modules/http/http_filters.c:1440:14: branch_false: ...to here httpd-2.4.66/modules/http/http_filters.c:1477:8: branch_true: following 'true' branch... httpd-2.4.66/modules/http/http_filters.c:1478:9: branch_true: ...to here httpd-2.4.66/modules/http/http_filters.c:1478:9: call_function: calling 'merge_response_headers' from 'ap_http_header_filter' # 1382| int i; # 1383| char *token; # 1384|-> char **languages = (char **)(r->content_languages->elts); # 1385| const char *field = apr_table_get(r->headers_out, "Content-Language"); # 1386| Error: GCC_ANALYZER_WARNING (CWE-404): [#def34] httpd-2.4.66/modules/http/http_request.c:834:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/http/http_request.c:832:5: acquire_resource: 'va_start' called here httpd-2.4.66/modules/http/http_request.c:833:12: branch_true: following 'true' branch (when 'method' is non-NULL)... httpd-2.4.66/modules/http/http_request.c:834:9: branch_true: ...to here httpd-2.4.66/modules/http/http_request.c:834:9: throw: if 'ap_method_list_add' throws an exception... httpd-2.4.66/modules/http/http_request.c:834:9: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 832| va_start(methods, reset); # 833| while ((method = va_arg(methods, const char *)) != NULL) { # 834|-> ap_method_list_add(r->allowed_methods, method); # 835| } # 836| va_end(methods); Error: GCC_ANALYZER_WARNING (CWE-401): [#def35] httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:518:19: warning[-Wanalyzer-malloc-leak]: leak of 'node' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:467:7: enter_function: entry to 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:474:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:9: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: call_function: calling 'util_ald_alloc' from 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: return_function: returning to 'util_ald_cache_insert' from 'util_ald_alloc' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:491:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:518:19: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:518:19: throw: if the called function throws an exception... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:518:19: danger: 'node' leaks here; was allocated at [(14)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/13) # 516| # 517| /* Take a copy of the payload before proceeding. */ # 518|-> tmp_payload = (*cache->copy)(cache, payload); # 519| if (tmp_payload == NULL) { # 520| /* Error: GCC_ANALYZER_WARNING (CWE-401): [#def36] httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:524:9: warning[-Wanalyzer-malloc-leak]: leak of 'node' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:467:7: enter_function: entry to 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:474:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:9: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: call_function: calling 'util_ald_alloc' from 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: return_function: returning to 'util_ald_cache_insert' from 'util_ald_alloc' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:519:8: branch_true: following 'true' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:524:9: branch_true: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:524:9: throw: if 'ap_log_error_' throws an exception... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:524:9: danger: 'node' leaks here; was allocated at [(10)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/9) # 522| * properly when LDAPSharedCacheSize is too small. # 523| */ # 524|-> ap_log_error(APLOG_MARK, APLOG_WARNING, 0, NULL, APLOGNO(01326) # 525| "LDAPSharedCacheSize is too small. Increase it or " # 526| "reduce LDAPCacheEntries/LDAPOpCacheEntries!"); Error: GCC_ANALYZER_WARNING (CWE-401): [#def37] httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:533:31: warning[-Wanalyzer-malloc-leak]: leak of 'node' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:467:7: enter_function: entry to 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:474:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:9: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: call_function: calling 'util_ald_alloc' from 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: return_function: returning to 'util_ald_cache_insert' from 'util_ald_alloc' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:519:8: branch_true: following 'true' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:524:9: branch_true: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:527:12: branch_true: following 'true' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:533:31: branch_true: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:533:31: throw: if 'apr_time_now' throws an exception... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:533:31: danger: 'node' leaks here; was allocated at [(10)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/9) # 531| * at all. # 532| */ # 533|-> cache->marktime = apr_time_now(); # 534| } # 535| util_ald_cache_purge(cache); Error: GCC_ANALYZER_WARNING (CWE-401): [#def38] httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:548:15: warning[-Wanalyzer-malloc-leak]: leak of 'node' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:467:7: enter_function: entry to 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:474:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:9: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: call_function: calling 'util_ald_alloc' from 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: return_function: returning to 'util_ald_cache_insert' from 'util_ald_alloc' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:519:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:547:5: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:548:15: throw: if the called function throws an exception... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:548:15: danger: 'node' leaks here; was allocated at [(10)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/9) # 546| /* populate the entry */ # 547| cache->inserts++; # 548|-> hashval = (*cache->hash)(payload) % cache->size; # 549| node->add_time = apr_time_now(); # 550| node->payload = payload; Error: GCC_ANALYZER_WARNING (CWE-401): [#def39] httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:549:22: warning[-Wanalyzer-malloc-leak]: leak of 'node' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:467:7: enter_function: entry to 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:474:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:479:9: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: call_function: calling 'util_ald_alloc' from 'util_ald_cache_insert' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:489:33: return_function: returning to 'util_ald_cache_insert' from 'util_ald_alloc' httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:519:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:547:5: branch_false: ...to here httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:549:22: throw: if 'apr_time_now' throws an exception... httpd-2.4.66/modules/ldap/util_ldap_cache_mgr.c:549:22: danger: 'node' leaks here; was allocated at [(10)](sarif:/runs/0/results/4/codeFlows/0/threadFlows/0/locations/9) # 547| cache->inserts++; # 548| hashval = (*cache->hash)(payload) % cache->size; # 549|-> node->add_time = apr_time_now(); # 550| node->payload = payload; # 551| node->next = cache->nodes[hashval]; Error: GCC_ANALYZER_WARNING (CWE-465): [#def40] httpd-2.4.66/modules/lua/lua_dbd.c:413:8: warning[-Wanalyzer-deref-before-check]: check of '*<unknown>.db' for NULL after already dereferencing it httpd-2.4.66/modules/lua/lua_dbd.c:408:17: branch_false: following 'false' branch (when 'x >= have')... httpd-2.4.66/modules/lua/lua_dbd.c:413:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_dbd.c:413:8: danger: pointer '*<unknown>.db' is checked for NULL here but it was already dereferenced at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 411| # 412| /* Fire off the query */ # 413|-> if (st->db && st->db->alive) { # 414| # 415| /*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/ Error: GCC_ANALYZER_WARNING (CWE-465): [#def41] httpd-2.4.66/modules/lua/lua_dbd.c:504:8: warning[-Wanalyzer-deref-before-check]: check of '*<unknown>.db' for NULL after already dereferencing it httpd-2.4.66/modules/lua/lua_dbd.c:499:17: branch_false: following 'false' branch (when 'x >= have')... httpd-2.4.66/modules/lua/lua_dbd.c:504:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_dbd.c:504:8: danger: pointer '*<unknown>.db' is checked for NULL here but it was already dereferenced at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 502| # 503| /* Fire off the query */ # 504|-> if (st->db && st->db->alive) { # 505| # 506| /*~~~~~~~~~~~~~~*/ Error: GCC_ANALYZER_WARNING (CWE-476): [#def42] httpd-2.4.66/modules/lua/lua_vmprep.c:523:18: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' httpd-2.4.66/modules/lua/lua_vmprep.c:440:19: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:443:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:487:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:487:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:492:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:492:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:503:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:53: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:508:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:516:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:516:12: branch_true: following 'true' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:518:13: branch_true: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:523:28: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:523:18: danger: dereference of NULL 'cache_info' # 521| loaded in the vm_construct function. # 522| */ # 523|-> if ((cache_info->modified == lua_finfo.mtime && cache_info->size == lua_finfo.size) # 524| || cache_info->modified == 0) { # 525| tryCache = 1; Error: GCC_ANALYZER_WARNING (CWE-476): [#def43] httpd-2.4.66/modules/lua/lua_vmprep.c:531:17: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' httpd-2.4.66/modules/lua/lua_vmprep.c:440:19: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:443:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:487:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:487:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:492:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:492:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:503:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:53: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:508:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:516:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:516:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:530:17: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:530:17: branch_true: following 'true' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:531:27: branch_true: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:531:27: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:531:17: danger: dereference of NULL 'cache_info' # 529| } # 530| else if (spec->codecache == AP_LUA_CACHE_NEVER) { # 531|-> if (cache_info->runs == 0) # 532| tryCache = 1; # 533| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def44] httpd-2.4.66/modules/lua/lua_vmprep.c:534:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'cache_info' httpd-2.4.66/modules/lua/lua_vmprep.c:440:19: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:443:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:487:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:487:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:492:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:492:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:9: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:503:8: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:503:53: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:508:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:516:13: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:516:12: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:530:17: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:530:17: branch_false: following 'false' branch... httpd-2.4.66/modules/lua/lua_vmprep.c:530:17: branch_false: ...to here httpd-2.4.66/modules/lua/lua_vmprep.c:534:19: release_memory: 'cache_info' is NULL httpd-2.4.66/modules/lua/lua_vmprep.c:534:9: danger: dereference of NULL 'cache_info' # 532| tryCache = 1; # 533| } # 534|-> cache_info->runs++; # 535| } # 536| if (tryCache == 0 && spec->scope != AP_LUA_SCOPE_ONCE) { Error: GCC_ANALYZER_WARNING (CWE-404): [#def45] httpd-2.4.66/modules/mappers/mod_rewrite.c:523:12: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/mappers/mod_rewrite.c:5617:12: enter_function: entry to 'hook_mimetype' httpd-2.4.66/modules/mappers/mod_rewrite.c:5623:8: branch_true: following 'true' branch... httpd-2.4.66/modules/mappers/mod_rewrite.c:5624:9: call_function: calling 'do_rewritelog' from 'hook_mimetype' # 521| # 522| va_start(ap, fmt); # 523|-> text = apr_pvsprintf(r->pool, fmt, ap); # 524| va_end(ap); # 525| Error: GCC_ANALYZER_WARNING (CWE-404): [#def46] httpd-2.4.66/modules/metadata/mod_mime_magic.c:593:5: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/metadata/mod_mime_magic.c:1691:13: enter_function: entry to 'mprint' httpd-2.4.66/modules/metadata/mod_mime_magic.c:1715:12: branch_true: following 'true' branch... httpd-2.4.66/modules/metadata/mod_mime_magic.c:1716:49: branch_true: ...to here httpd-2.4.66/modules/metadata/mod_mime_magic.c:1716:20: call_function: calling 'magic_rsl_printf' from 'mprint' # 591| /* assemble the string into the buffer */ # 592| va_start(ap, str); # 593|-> apr_vsnprintf(buf, sizeof(buf), str, ap); # 594| va_end(ap); # 595| Error: GCC_ANALYZER_WARNING (CWE-476): [#def47] httpd-2.4.66/modules/session/mod_session_crypto.c:246:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'options' httpd-2.4.66/modules/session/mod_session_crypto.c:214:8: branch_false: following 'false' branch... httpd-2.4.66/modules/session/mod_session_crypto.c:221:37: branch_false: ...to here httpd-2.4.66/modules/session/mod_session_crypto.c:222:8: branch_true: following 'true' branch... httpd-2.4.66/modules/session/mod_session_crypto.c:230:19: branch_true: ...to here httpd-2.4.66/modules/session/mod_session_crypto.c:234:53: branch_false: following 'false' branch (when 'hi' is NULL)... httpd-2.4.66/modules/session/mod_session_crypto.c:246:16: branch_false: ...to here httpd-2.4.66/modules/session/mod_session_crypto.c:246:9: danger: dereference of NULL 'options + (sizetype)offset' # 244| offset += klen; # 245| } # 246|-> options[offset] = 0; # 247| # 248| ap_log_rerror(APLOG_MARK, APLOG_ERR, res, r, APLOGNO(01824) Error: GCC_ANALYZER_WARNING (CWE-476): [#def48] httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:643:23: warning[-Wanalyzer-null-dereference]: dereference of NULL 'hssc' httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:366:20: branch_false: following 'false' branch (when 'ssl' is NULL)... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:384:9: branch_false: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:384:8: branch_false: following 'false' branch... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:431:22: branch_false: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:591:12: branch_true: following 'true' branch... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:592:18: branch_true: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:592:16: branch_false: following 'false' branch... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:595:19: branch_false: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:626:21: branch_true: following 'true' branch (when 'verify != 0')... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:641:22: branch_true: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:641:21: branch_false: following 'false' branch... httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:643:23: branch_false: ...to here httpd-2.4.66/modules/ssl/ssl_engine_kernel.c:643:23: danger: dereference of NULL 'hssc' # 641| n = (sslconn->verify_depth != UNSET) # 642| ? sslconn->verify_depth # 643|-> : hssc->server->auth.verify_depth; # 644| /* determine the new depth */ # 645| sslconn->verify_depth = (dc->nVerifyDepth != UNSET) Error: GCC_ANALYZER_WARNING (CWE-404): [#def49] httpd-2.4.66/modules/ssl/ssl_engine_log.c:136:14: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/modules/ssl/ssl_engine_log.c:211:6: enter_function: entry to 'ssl_log_xerror' httpd-2.4.66/modules/ssl/ssl_engine_log.c:217:8: acquire_resource: 'va_start' called here httpd-2.4.66/modules/ssl/ssl_engine_log.c:218:8: call_function: calling 'ssl_log_cert_error' from 'ssl_log_xerror' # 134| char *name; # 135| # 136|-> msglen = apr_vsnprintf(buf, sizeof buf, format, ap); # 137| # 138| if (cert) { Error: GCC_ANALYZER_WARNING (CWE-688): [#def50] httpd-2.4.66/server/config.c:1926:13: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected httpd-2.4.66/server/config.c:1902:26: enter_function: entry to 'ap_process_fnmatch_configs' httpd-2.4.66/server/config.c:1926:28: call_function: calling 'ap_server_root_relative' from 'ap_process_fnmatch_configs' httpd-2.4.66/server/config.c:1926:28: return_function: returning to 'ap_process_fnmatch_configs' from 'ap_server_root_relative' httpd-2.4.66/server/config.c:1926:13: danger: argument 2 ('ap_server_root_relative(ptemp, "conf/httpd.conf")') NULL where non-null expected # 1924| if ((ap_server_pre_read_config->nelts # 1925| || ap_server_post_read_config->nelts) # 1926|-> && !(strcmp(fname, ap_server_root_relative(ptemp, SERVER_CONFIG_FILE)))) { # 1927| apr_finfo_t finfo; # 1928| Error: GCC_ANALYZER_WARNING (CWE-404): [#def51] httpd-2.4.66/server/log.c:593:11: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1697:26: enter_function: entry to 'ap_read_pid' httpd-2.4.66/server/log.c:1707:8: branch_false: following 'false' branch (when 'filename' is non-NULL)... httpd-2.4.66/server/log.c:1711:13: branch_false: ...to here httpd-2.4.66/server/log.c:1712:8: branch_true: following 'true' branch... httpd-2.4.66/server/log.c:1713:9: branch_true: ...to here httpd-2.4.66/server/log.c:1713:9: call_function: calling 'ap_log_error_' from 'ap_read_pid' # 591| if (!arg) # 592| return 0; # 593|-> end = apr_cpystrn(buf, arg, buflen); # 594| return end - buf; # 595| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def52] httpd-2.4.66/server/log.c:691:5: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1743:18: enter_function: entry to 'ap_log_assert' httpd-2.4.66/server/log.c:1749:5: call_function: calling 'ap_log_error_' from 'ap_log_assert' # 689| } # 690| # 691|-> ap_recent_ctime_ex(buf, apr_time_now(), option, &time_len); # 692| # 693| /* ap_recent_ctime_ex includes the trailing \0 in time_len */ Error: GCC_ANALYZER_WARNING (CWE-404): [#def53] httpd-2.4.66/server/log.c:792:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1697:26: enter_function: entry to 'ap_read_pid' httpd-2.4.66/server/log.c:1707:8: branch_false: following 'false' branch (when 'filename' is non-NULL)... httpd-2.4.66/server/log.c:1711:13: branch_false: ...to here httpd-2.4.66/server/log.c:1712:8: branch_true: following 'true' branch... httpd-2.4.66/server/log.c:1713:9: branch_true: ...to here httpd-2.4.66/server/log.c:1713:9: call_function: calling 'ap_log_error_' from 'ap_read_pid' # 790| # 791| if (status < APR_OS_START_EAIERR) { # 792|-> len = apr_snprintf(buf, buflen, "(%d)", status); # 793| } # 794| else if (status < APR_OS_START_SYSERR) { Error: GCC_ANALYZER_WARNING (CWE-404): [#def54] httpd-2.4.66/server/log.c:795:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1767:21: enter_function: entry to 'piped_log_spawn' httpd-2.4.66/server/log.c:1786:9: call_function: calling 'ap_log_error_' from 'piped_log_spawn' # 793| } # 794| else if (status < APR_OS_START_SYSERR) { # 795|-> len = apr_snprintf(buf, buflen, "(EAI %d)", # 796| status - APR_OS_START_EAIERR); # 797| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def55] httpd-2.4.66/server/log.c:799:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1767:21: enter_function: entry to 'piped_log_spawn' httpd-2.4.66/server/log.c:1786:9: call_function: calling 'ap_log_error_' from 'piped_log_spawn' # 797| } # 798| else if (status < 100000 + APR_OS_START_SYSERR) { # 799|-> len = apr_snprintf(buf, buflen, "(OS %d)", # 800| status - APR_OS_START_SYSERR); # 801| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def56] httpd-2.4.66/server/log.c:803:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1767:21: enter_function: entry to 'piped_log_spawn' httpd-2.4.66/server/log.c:1786:9: call_function: calling 'ap_log_error_' from 'piped_log_spawn' # 801| } # 802| else { # 803|-> len = apr_snprintf(buf, buflen, "(os 0x%08x)", # 804| status - APR_OS_START_SYSERR); # 805| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def57] httpd-2.4.66/server/log.c:806:5: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1697:26: enter_function: entry to 'ap_read_pid' httpd-2.4.66/server/log.c:1707:8: branch_false: following 'false' branch (when 'filename' is non-NULL)... httpd-2.4.66/server/log.c:1711:13: branch_false: ...to here httpd-2.4.66/server/log.c:1712:8: branch_true: following 'true' branch... httpd-2.4.66/server/log.c:1713:9: branch_true: ...to here httpd-2.4.66/server/log.c:1713:9: call_function: calling 'ap_log_error_' from 'ap_read_pid' # 804| status - APR_OS_START_SYSERR); # 805| } # 806|-> apr_strerror(status, buf + len, buflen - len); # 807| len += strlen(buf + len); # 808| return len; Error: GCC_ANALYZER_WARNING (CWE-404): [#def58] httpd-2.4.66/server/log.c:1043:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1821:13: enter_function: entry to 'piped_log_maintenance' httpd-2.4.66/server/log.c:1835:12: branch_true: following 'true' branch... httpd-2.4.66/server/log.c:1836:13: branch_true: ...to here httpd-2.4.66/server/log.c:1836:13: call_function: calling 'ap_log_error_' from 'piped_log_maintenance' # 1041| *errstr_start = len; # 1042| #ifndef AP_UNSAFE_ERROR_LOG_UNESCAPED # 1043|-> if (apr_vsnprintf(scratch, MAX_STRING_LEN, errstr_fmt, args)) { # 1044| len += ap_escape_errorlog_item(buf + len, scratch, # 1045| buflen - len); Error: GCC_ANALYZER_WARNING (CWE-404): [#def59] httpd-2.4.66/server/log.c:1093:17: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/log.c:1743:18: enter_function: entry to 'ap_log_assert' httpd-2.4.66/server/log.c:1749:5: call_function: calling 'ap_log_error_' from 'ap_log_assert' # 1091| *errstr_start = len; # 1092| #ifndef AP_UNSAFE_ERROR_LOG_UNESCAPED # 1093|-> if (apr_vsnprintf(scratch, MAX_STRING_LEN, err_fmt, args)) { # 1094| len += ap_escape_errorlog_item(buf + len, scratch, # 1095| buflen - len); Error: GCC_ANALYZER_WARNING (CWE-404): [#def60] httpd-2.4.66/server/protocol.c:2074:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/protocol.c:2220:24: enter_function: entry to 'ap_rvputs' httpd-2.4.66/server/protocol.c:2227:8: branch_false: following 'false' branch... httpd-2.4.66/server/protocol.c:2234:5: branch_false: ...to here httpd-2.4.66/server/protocol.c:2234:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/protocol.c:2237:12: branch_false: following 'false' branch (when 's' is non-NULL)... httpd-2.4.66/server/protocol.c:2240:15: branch_false: ...to here httpd-2.4.66/server/protocol.c:2241:13: call_function: calling 'buffer_output' from 'ap_rvputs' # 2072| if (f == NULL) { # 2073| /* our filter hasn't been added yet */ # 2074|-> ctx = apr_pcalloc(r->pool, sizeof(*ctx)); # 2075| ctx->tmpbb = apr_brigade_create(r->pool, r->connection->bucket_alloc); # 2076| Error: GCC_ANALYZER_WARNING (CWE-404): [#def61] httpd-2.4.66/server/protocol.c:2075:22: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/protocol.c:2220:24: enter_function: entry to 'ap_rvputs' httpd-2.4.66/server/protocol.c:2227:8: branch_false: following 'false' branch... httpd-2.4.66/server/protocol.c:2234:5: branch_false: ...to here httpd-2.4.66/server/protocol.c:2234:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/protocol.c:2237:12: branch_false: following 'false' branch (when 's' is non-NULL)... httpd-2.4.66/server/protocol.c:2240:15: branch_false: ...to here httpd-2.4.66/server/protocol.c:2241:13: call_function: calling 'buffer_output' from 'ap_rvputs' # 2073| /* our filter hasn't been added yet */ # 2074| ctx = apr_pcalloc(r->pool, sizeof(*ctx)); # 2075|-> ctx->tmpbb = apr_brigade_create(r->pool, r->connection->bucket_alloc); # 2076| # 2077| ap_add_output_filter("OLD_WRITE", ctx, r, r->connection); Error: GCC_ANALYZER_WARNING (CWE-404): [#def62] httpd-2.4.66/server/protocol.c:2102:25: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/protocol.c:2220:24: enter_function: entry to 'ap_rvputs' httpd-2.4.66/server/protocol.c:2227:8: branch_false: following 'false' branch... httpd-2.4.66/server/protocol.c:2234:5: branch_false: ...to here httpd-2.4.66/server/protocol.c:2234:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/protocol.c:2237:12: branch_false: following 'false' branch (when 's' is non-NULL)... httpd-2.4.66/server/protocol.c:2240:15: branch_false: ...to here httpd-2.4.66/server/protocol.c:2241:13: call_function: calling 'buffer_output' from 'ap_rvputs' # 2100| if (f != r->output_filters) { # 2101| apr_status_t rv; # 2102|-> apr_bucket *b = apr_bucket_transient_create(str, len, c->bucket_alloc); # 2103| APR_BRIGADE_INSERT_TAIL(ctx->tmpbb, b); # 2104| Error: GCC_ANALYZER_WARNING (CWE-404): [#def63] httpd-2.4.66/server/protocol.c:2111:19: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/protocol.c:2220:24: enter_function: entry to 'ap_rvputs' httpd-2.4.66/server/protocol.c:2227:8: branch_false: following 'false' branch... httpd-2.4.66/server/protocol.c:2234:5: branch_false: ...to here httpd-2.4.66/server/protocol.c:2234:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/protocol.c:2237:12: branch_false: following 'false' branch (when 's' is non-NULL)... httpd-2.4.66/server/protocol.c:2240:15: branch_false: ...to here httpd-2.4.66/server/protocol.c:2241:13: call_function: calling 'buffer_output' from 'ap_rvputs' # 2109| # 2110| if (ctx->bb == NULL) { # 2111|-> ctx->bb = apr_brigade_create(r->pool, c->bucket_alloc); # 2112| } # 2113| Error: GCC_ANALYZER_WARNING (CWE-404): [#def64] httpd-2.4.66/server/protocol.c:2190:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/protocol.c:2205:24: enter_function: entry to 'ap_rprintf' httpd-2.4.66/server/protocol.c:2210:8: branch_false: following 'false' branch... httpd-2.4.66/server/protocol.c:2213:5: branch_false: ...to here httpd-2.4.66/server/protocol.c:2213:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/protocol.c:2214:9: call_function: calling 'ap_vrprintf' from 'ap_rprintf' # 2188| return -1; # 2189| # 2190|-> written = apr_vformatter(r_flush, &vd.vbuff, fmt, va); # 2191| # 2192| if (written != -1) { Error: GCC_ANALYZER_WARNING (CWE-688): [#def65] httpd-2.4.66/server/scoreboard.c:707:5: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected # 705| worker_score *ws = ap_get_scoreboard_worker_from_indexes(child_num, thread_num); # 706| # 707|-> memcpy(dest, ws, sizeof *ws); # 708| # 709| /* For extra safety, NUL-terminate the strings returned, though it Error: GCC_ANALYZER_WARNING (CWE-476): [#def66] httpd-2.4.66/server/util.c:384:13: warning[-Wanalyzer-null-dereference]: dereference of NULL 'result' httpd-2.4.66/server/util.c:3123:26: enter_function: entry to 'ap_varbuf_regsub' httpd-2.4.66/server/util.c:3130:12: call_function: calling 'regsub_core' from 'ap_varbuf_regsub' # 382| return APR_ENOMEM; # 383| if (!vb) { # 384|-> *result = apr_pstrmemdup(p, src, len); # 385| return APR_SUCCESS; # 386| } Error: GCC_ANALYZER_WARNING (CWE-688): [#def67] httpd-2.4.66/server/util.c:417:25: warning[-Wanalyzer-null-argument]: use of NULL 'p' where non-null expected httpd-2.4.66/server/util.c:3123:26: enter_function: entry to 'ap_varbuf_regsub' httpd-2.4.66/server/util.c:3130:12: call_function: calling 'regsub_core' from 'ap_varbuf_regsub' # 415| # 416| if (!vb) { # 417|-> *result = dst = apr_palloc(p, len + 1); # 418| } # 419| else { Error: GCC_ANALYZER_WARNING (CWE-404): [#def68] httpd-2.4.66/server/util_cookies.c:64:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_cookies.c:62:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_cookies.c:63:12: branch_true: following 'true' branch (when 't' is non-NULL)... httpd-2.4.66/server/util_cookies.c:64:9: branch_true: ...to here httpd-2.4.66/server/util_cookies.c:64:9: throw: if 'apr_table_addn' throws an exception... httpd-2.4.66/server/util_cookies.c:64:9: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 62| va_start(vp, maxage); # 63| while ((t = va_arg(vp, apr_table_t *))) { # 64|-> apr_table_addn(t, SET_COOKIE, rfc2109); # 65| } # 66| va_end(vp); Error: GCC_ANALYZER_WARNING (CWE-404): [#def69] httpd-2.4.66/server/util_cookies.c:106:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_cookies.c:104:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_cookies.c:105:12: branch_true: following 'true' branch (when 't' is non-NULL)... httpd-2.4.66/server/util_cookies.c:106:9: branch_true: ...to here httpd-2.4.66/server/util_cookies.c:106:9: throw: if 'apr_table_addn' throws an exception... httpd-2.4.66/server/util_cookies.c:106:9: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 104| va_start(vp, maxage); # 105| while ((t = va_arg(vp, apr_table_t *))) { # 106|-> apr_table_addn(t, SET_COOKIE2, rfc2965); # 107| } # 108| va_end(vp); Error: GCC_ANALYZER_WARNING (CWE-404): [#def70] httpd-2.4.66/server/util_cookies.c:134:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_cookies.c:132:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_cookies.c:133:12: branch_true: following 'true' branch (when 't' is non-NULL)... httpd-2.4.66/server/util_cookies.c:134:9: branch_true: ...to here httpd-2.4.66/server/util_cookies.c:134:9: throw: if 'apr_table_addn' throws an exception... httpd-2.4.66/server/util_cookies.c:134:9: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/0) # 132| va_start(vp, attrs); # 133| while ((t = va_arg(vp, apr_table_t *))) { # 134|-> apr_table_addn(t, SET_COOKIE, rfc2109); # 135| } # 136| va_end(vp); Error: GCC_ANALYZER_WARNING (CWE-404): [#def71] httpd-2.4.66/server/util_cookies.c:162:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_cookies.c:160:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_cookies.c:161:12: branch_true: following 'true' branch (when 't' is non-NULL)... httpd-2.4.66/server/util_cookies.c:162:9: branch_true: ...to here httpd-2.4.66/server/util_cookies.c:162:9: throw: if 'apr_table_addn' throws an exception... httpd-2.4.66/server/util_cookies.c:162:9: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/0) # 160| va_start(vp, attrs2); # 161| while ((t = va_arg(vp, apr_table_t *))) { # 162|-> apr_table_addn(t, SET_COOKIE2, rfc2965); # 163| } # 164| va_end(vp); Error: GCC_ANALYZER_WARNING (CWE-401): [#def72] httpd-2.4.66/server/util_expr_parse.c:1384:9: warning[-Wanalyzer-malloc-leak]: leak of 'yyptr' httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: following 'false' branch (when 'yystate != 28')... httpd-2.4.66/server/util_expr_parse.c:1408:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1420:6: branch_false: following 'false' branch (when 'yyn != -35')... httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_true: following 'true' branch (when 'ap_expr_yychar == -2')... httpd-2.4.66/server/util_expr_parse.c:1429:16: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1446:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1449:6: branch_false: following 'false' branch (when 'yyn != 0')... httpd-2.4.66/server/util_expr_parse.c:1459:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1459:6: branch_false: following 'false' branch (when 'yyerrstatus == 0')... httpd-2.4.66/server/util_expr_parse.c:1469:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: following 'false' branch (when 'yystate != 28')... httpd-2.4.66/server/util_expr_parse.c:1408:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1420:6: branch_false: following 'false' branch (when 'yyn != -35')... httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_true: following 'true' branch (when 'ap_expr_yychar == -2')... httpd-2.4.66/server/util_expr_parse.c:1429:16: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1446:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1449:6: branch_false: following 'false' branch (when 'yyn != 0')... httpd-2.4.66/server/util_expr_parse.c:1459:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1459:6: branch_false: following 'false' branch (when 'yyerrstatus == 0')... httpd-2.4.66/server/util_expr_parse.c:1469:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_true: following 'true' branch... httpd-2.4.66/server/util_expr_parse.c:1345:31: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1372:10: branch_false: following 'false' branch (when 'yystacksize <= 9999')... httpd-2.4.66/server/util_expr_parse.c:1374:7: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1381:29: acquire_memory: allocated here httpd-2.4.66/server/util_expr_parse.c:1382:12: branch_false: following 'false' branch (when 'yyptr' is non-NULL)... httpd-2.4.66/server/util_expr_parse.c:1382:12: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1387:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1393:7: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1399:10: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: following 'false' branch (when 'yystate != 28')... httpd-2.4.66/server/util_expr_parse.c:1408:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1420:6: branch_false: following 'false' branch (when 'yyn != -35')... httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_true: following 'true' branch (when 'ap_expr_yychar == -2')... httpd-2.4.66/server/util_expr_parse.c:1429:16: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1429:16: throw: if 'ap_expr_yylex' throws an exception... httpd-2.4.66/server/util_expr_parse.c:1384:9: danger: 'yyptr' leaks here; was allocated at [(33)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/32) # 1382| if (! yyptr) # 1383| goto yyexhaustedlab; # 1384|-> YYSTACK_RELOCATE (yyss_alloc, yyss); # 1385| YYSTACK_RELOCATE (yyvs_alloc, yyvs); # 1386| # undef YYSTACK_RELOCATE Error: GCC_ANALYZER_WARNING (CWE-457): [#def73] httpd-2.4.66/server/util_expr_parse.c:1384:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'yyss' httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_true: following 'true' branch... httpd-2.4.66/server/util_expr_parse.c:1345:31: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1372:10: branch_false: following 'false' branch (when 'yystacksize <= 9999')... httpd-2.4.66/server/util_expr_parse.c:1374:7: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1382:12: branch_false: following 'false' branch (when 'yyptr' is non-NULL)... httpd-2.4.66/server/util_expr_parse.c:1382:12: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1384:9: danger: use of uninitialized value 'yyss' here # 1382| if (! yyptr) # 1383| goto yyexhaustedlab; # 1384|-> YYSTACK_RELOCATE (yyss_alloc, yyss); # 1385| YYSTACK_RELOCATE (yyvs_alloc, yyvs); # 1386| # undef YYSTACK_RELOCATE Error: GCC_ANALYZER_WARNING (CWE-127): [#def74] httpd-2.4.66/server/util_expr_parse.c:1918:13: warning[-Wanalyzer-out-of-bounds]: buffer under-read httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: following 'false' branch (when 'yystate != 28')... httpd-2.4.66/server/util_expr_parse.c:1408:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1420:6: branch_false: following 'false' branch (when 'yyn != -35')... httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_true: following 'true' branch (when 'ap_expr_yychar == -2')... httpd-2.4.66/server/util_expr_parse.c:1429:16: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1446:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1918:13: danger: out-of-bounds read at byte -45 but 'yypgoto' starts at byte 0 # 1916| number reduced by. */ # 1917| # 1918|-> yyn = yyr1[yyn]; # 1919| # 1920| yystate = yypgoto[yyn - YYNTOKENS] + *yyssp; Error: GCC_ANALYZER_WARNING (CWE-127): [#def75] httpd-2.4.66/server/util_expr_parse.c:1922:15: warning[-Wanalyzer-out-of-bounds]: buffer under-read httpd-2.4.66/server/util_expr_parse.c:1342:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1405:6: branch_false: following 'false' branch (when 'yystate != 28')... httpd-2.4.66/server/util_expr_parse.c:1408:3: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1420:6: branch_false: following 'false' branch (when 'yyn != -35')... httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_false: ...to here httpd-2.4.66/server/util_expr_parse.c:1426:6: branch_true: following 'true' branch (when 'ap_expr_yychar == -2')... httpd-2.4.66/server/util_expr_parse.c:1429:16: branch_true: ...to here httpd-2.4.66/server/util_expr_parse.c:1446:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_parse.c:1922:15: danger: out-of-bounds read at byte -45 but 'yydefgoto' starts at byte 0 # 1920| yystate = yypgoto[yyn - YYNTOKENS] + *yyssp; # 1921| if (0 <= yystate && yystate <= YYLAST && yycheck[yystate] == *yyssp) # 1922|-> yystate = yytable[yystate]; # 1923| else # 1924| yystate = yydefgoto[yyn - YYNTOKENS]; Error: GCC_ANALYZER_WARNING (CWE-476): [#def76] httpd-2.4.66/server/util_expr_scan.c:1721:58: warning[-Wanalyzer-null-dereference]: dereference of NULL 'b' httpd-2.4.66/server/util_expr_scan.c:1672:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:1676:14: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:1676:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:1698:32: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:1703:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:1712:25: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:1714:25: branch_true: following 'true' branch (when 'num_to_read <= 0')... httpd-2.4.66/server/util_expr_scan.c:1718:45: branch_true: ...to here httpd-2.4.66/server/util_expr_scan.c:1721:58: danger: dereference of NULL 'b' # 1719| # 1720| int yy_c_buf_p_offset = # 1721|-> (int) (yyg->yy_c_buf_p - b->yy_ch_buf); # 1722| # 1723| if ( b->yy_is_our_buffer ) Error: GCC_ANALYZER_WARNING (CWE-401): [#def77] httpd-2.4.66/server/util_expr_scan.c:2009:9: warning[-Wanalyzer-malloc-leak]: leak of 'malloc(64)' httpd-2.4.66/server/util_expr_scan.c:2001:21: enter_function: entry to 'ap_expr_yy_create_buffer' httpd-2.4.66/server/util_expr_scan.c:2005:31: call_function: inlined call to 'ap_expr_yyalloc' from 'ap_expr_yy_create_buffer' httpd-2.4.66/server/util_expr_scan.c:2006:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:2009:9: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:2009:9: danger: 'malloc(64)' leaks here; was allocated at [(3)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/2) # 2007| YY_FATAL_ERROR( "out of dynamic memory in ap_expr_yy_create_buffer()" ); # 2008| # 2009|-> b->yy_buf_size = size; # 2010| # 2011| /* yy_ch_buf has to be 2 characters longer than the size given because Error: GCC_ANALYZER_WARNING (CWE-476): [#def78] httpd-2.4.66/server/util_expr_scan.c:2057:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'b' httpd-2.4.66/server/util_expr_scan.c:1936:10: enter_function: entry to 'ap_expr_yyrestart' httpd-2.4.66/server/util_expr_scan.c:1941:9: call_function: calling 'ap_expr_yyensure_buffer_stack' from 'ap_expr_yyrestart' httpd-2.4.66/server/util_expr_scan.c:1941:9: return_function: returning to 'ap_expr_yyrestart' from 'ap_expr_yyensure_buffer_stack' httpd-2.4.66/server/util_expr_scan.c:1943:13: call_function: calling 'ap_expr_yy_create_buffer' from 'ap_expr_yyrestart' httpd-2.4.66/server/util_expr_scan.c:1943:13: return_function: returning to 'ap_expr_yyrestart' from 'ap_expr_yy_create_buffer' httpd-2.4.66/server/util_expr_scan.c:1946:9: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:1946:9: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:1946:9: call_function: calling 'ap_expr_yy_init_buffer' from 'ap_expr_yyrestart' # 2055| ap_expr_yy_flush_buffer(b ,yyscanner); # 2056| # 2057|-> b->yy_input_file = file; # 2058| b->yy_fill_buffer = 1; # 2059| Error: GCC_ANALYZER_WARNING (CWE-401): [#def79] httpd-2.4.66/server/util_expr_scan.c:2275:33: warning[-Wanalyzer-malloc-leak]: leak of 'malloc(n)' httpd-2.4.66/server/util_expr_scan.c:2259:17: enter_function: entry to 'ap_expr_yy_scan_bytes' httpd-2.4.66/server/util_expr_scan.c:2268:24: call_function: inlined call to 'ap_expr_yyalloc' from 'ap_expr_yy_scan_bytes' httpd-2.4.66/server/util_expr_scan.c:2269:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:2269:12: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.c:2277:13: call_function: calling 'ap_expr_yy_scan_buffer' from 'ap_expr_yy_scan_bytes' # 2273| buf[i] = yybytes[i]; # 2274| # 2275|-> buf[_yybytes_len] = buf[_yybytes_len+1] = YY_END_OF_BUFFER_CHAR; # 2276| # 2277| b = ap_expr_yy_scan_buffer(buf,n ,yyscanner); Error: GCC_ANALYZER_WARNING (CWE-476): [#def80] httpd-2.4.66/server/util_expr_scan.l:290:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'regex_ptr' httpd-2.4.66/server/util_expr_scan.l:88:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:887:5: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.l:289:8: branch_true: following 'true' branch... httpd-2.4.66/server/util_expr_scan.l:290:9: branch_true: ...to here httpd-2.4.66/server/util_expr_scan.l:290:9: danger: dereference of NULL 'regex_ptr' # 288| <regex>.|\n { # 289| if (yytext[0] == regex_del) { # 290|-> *regex_ptr = '\0'; # 291| BEGIN(regex_flags); # 292| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def81] httpd-2.4.66/server/util_expr_scan.l:294:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'regex_ptr' httpd-2.4.66/server/util_expr_scan.l:88:6: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.c:887:5: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.l:289:8: branch_false: following 'false' branch... httpd-2.4.66/server/util_expr_scan.l:294:10: branch_false: ...to here httpd-2.4.66/server/util_expr_scan.l:294:9: danger: dereference of NULL 'regex_ptr' # 292| } # 293| else { # 294|-> *regex_ptr++ = yytext[0]; # 295| if (regex_ptr >= regex_buf + sizeof(regex_buf)) # 296| PERROR("Regexp too long"); Error: GCC_ANALYZER_WARNING (CWE-404): [#def82] httpd-2.4.66/server/util_filter.c:620:23: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_filter.c:611:8: branch_true: following 'true' branch... httpd-2.4.66/server/util_filter.c:612:12: branch_true: ...to here httpd-2.4.66/server/util_filter.c:612:12: branch_true: following 'true' branch... httpd-2.4.66/server/util_filter.c:613:16: branch_true: ...to here httpd-2.4.66/server/util_filter.c:613:16: branch_false: following 'false' branch (when 'fmt' is non-NULL)... httpd-2.4.66/server/util_filter.c:619:17: branch_false: ...to here httpd-2.4.66/server/util_filter.c:619:17: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_filter.c:620:23: throw: if 'apr_pvsprintf' throws an exception... httpd-2.4.66/server/util_filter.c:620:23: danger: missing call to 'va_end' to match 'va_start' at [(7)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/6) # 618| const char *res; # 619| va_start(ap, fmt); # 620|-> res = apr_pvsprintf(r->pool, fmt, ap); # 621| va_end(ap); # 622| ap_log_rerror(APLOG_MARK, APLOG_DEBUG, rv, r, APLOGNO(03158) Error: GCC_ANALYZER_WARNING (CWE-404): [#def83] httpd-2.4.66/server/util_filter.c:712:10: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_filter.c:711:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_filter.c:712:10: throw: if 'apr_brigade_vputstrs' throws an exception... httpd-2.4.66/server/util_filter.c:712:10: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 710| # 711| va_start(args, bb); # 712|-> rv = apr_brigade_vputstrs(bb, ap_filter_flush, f, args); # 713| va_end(args); # 714| return rv; Error: GCC_ANALYZER_WARNING (CWE-404): [#def84] httpd-2.4.66/server/util_filter.c:726:10: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_filter.c:725:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_filter.c:726:10: throw: if 'apr_brigade_vprintf' throws an exception... httpd-2.4.66/server/util_filter.c:726:10: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/0) # 724| # 725| va_start(args, fmt); # 726|-> rv = apr_brigade_vprintf(bb, ap_filter_flush, f, fmt, args); # 727| va_end(args); # 728| return rv; Error: GCC_ANALYZER_WARNING (CWE-476): [#def85] httpd-2.4.66/server/util_mutex.c:518:13: warning[-Wanalyzer-null-dereference]: dereference of NULL '0' httpd-2.4.66/server/util_mutex.c:501:23: enter_function: entry to 'ap_dump_mutexes' httpd-2.4.66/server/util_mutex.c:505:50: branch_true: following 'true' branch (when 'idx' is non-NULL)... httpd-2.4.66/server/util_mutex.c:511:9: branch_true: ...to here httpd-2.4.66/server/util_mutex.c:513:17: call_function: calling 'mxcfg_lookup' from 'ap_dump_mutexes' httpd-2.4.66/server/util_mutex.c:513:17: return_function: returning to 'ap_dump_mutexes' from 'mxcfg_lookup' httpd-2.4.66/server/util_mutex.c:518:13: danger: dereference of NULL 'mxcfg_lookup(p, name)' # 516| continue; # 517| } # 518|-> if (mxcfg->none) { # 519| apr_file_printf(out, "Mutex %s: none\n", name); # 520| continue; Error: GCC_ANALYZER_WARNING (CWE-457): [#def86] httpd-2.4.66/server/util_regex.c:170:27: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value 'subs' httpd-2.4.66/server/util_regex.c:141:17: enter_function: entry to 'ap_rxplus_exec' httpd-2.4.66/server/util_regex.c:149:8: branch_false: following 'false' branch... httpd-2.4.66/server/util_regex.c:153:5: branch_false: ...to here httpd-2.4.66/server/util_regex.c:154:8: branch_true: following 'true' branch... httpd-2.4.66/server/util_regex.c:155:23: branch_true: ...to here httpd-2.4.66/server/util_regex.c:157:12: branch_false: following 'false' branch... httpd-2.4.66/server/util_regex.c:160:18: branch_false: ...to here httpd-2.4.66/server/util_regex.c:165:12: branch_true: following 'true' branch... httpd-2.4.66/server/util_regex.c:167:20: branch_true: ...to here httpd-2.4.66/server/util_regex.c:167:20: call_function: calling 'ap_rxplus_exec' from 'ap_rxplus_exec' # 168| if (ret > 1) { # 169| /* a further substitution happened */ # 170|-> diffsz += strlen(subs) - strlen(remainder); # 171| remainder = subs; # 172| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def87] httpd-2.4.66/server/util_script.c:502:13: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 500| # 501| /* temporary place to hold headers to merge in later */ # 502|-> merge = apr_table_make(r->pool, 10); # 503| # 504| /* The HTTP specification says that it is legal to merge duplicate Error: GCC_ANALYZER_WARNING (CWE-404): [#def88] httpd-2.4.66/server/util_script.c:510:20: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 508| * Oh what a pain it is. # 509| */ # 510|-> cookie_table = apr_table_make(r->pool, 2); # 511| apr_table_do(set_cookie_doo_doo, cookie_table, r->err_headers_out, "Set-Cookie", NULL); # 512| Error: GCC_ANALYZER_WARNING (CWE-404): [#def89] httpd-2.4.66/server/util_script.c:511:5: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 509| */ # 510| cookie_table = apr_table_make(r->pool, 2); # 511|-> apr_table_do(set_cookie_doo_doo, cookie_table, r->err_headers_out, "Set-Cookie", NULL); # 512| # 513| while (1) { Error: GCC_ANALYZER_WARNING (CWE-404): [#def90] httpd-2.4.66/server/util_script.c:521:13: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:912:24: enter_function: entry to 'ap_scan_script_header_err_strs' httpd-2.4.66/server/util_script.c:920:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:923:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs' # 519| msg = "End of script output before headers"; # 520| /* Intentional no APLOGNO */ # 521|-> ap_log_rerror(SCRIPT_LOG_MARK, APLOG_ERR|APLOG_TOCLIENT, 0, r, # 522| "%s: %s", msg, # 523| apr_filepath_name_get(r->filename)); Error: GCC_ANALYZER_WARNING (CWE-404): [#def91] httpd-2.4.66/server/util_script.c:592:17: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 590| if (trace_log) { # 591| if (first_header) # 592|-> ap_log_rerror(SCRIPT_LOG_MARK, APLOG_TRACE4, 0, r, # 593| "Headers from script '%s':", # 594| apr_filepath_name_get(r->filename)); Error: GCC_ANALYZER_WARNING (CWE-404): [#def92] httpd-2.4.66/server/util_script.c:595:13: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 593| "Headers from script '%s':", # 594| apr_filepath_name_get(r->filename)); # 595|-> ap_log_rerror(SCRIPT_LOG_MARK, APLOG_TRACE4, 0, r, " %s", w); # 596| } # 597| Error: GCC_ANALYZER_WARNING (CWE-404): [#def93] httpd-2.4.66/server/util_script.c:647:14: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 645| } # 646| # 647|-> if (!ap_cstr_casecmp(w, "Content-type")) { # 648| char *tmp; # 649| Error: GCC_ANALYZER_WARNING (CWE-404): [#def94] httpd-2.4.66/server/util_script.c:657:19: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/server/util_script.c:890:24: enter_function: entry to 'ap_scan_script_header_err_strs_ex' httpd-2.4.66/server/util_script.c:899:5: acquire_resource: 'va_start' called here httpd-2.4.66/server/util_script.c:902:11: call_function: calling 'ap_scan_script_header_err_core_ex' from 'ap_scan_script_header_err_strs_ex' # 655| } # 656| # 657|-> tmp = apr_pstrdup(r->pool, l); # 658| ap_content_type_tolower(tmp); # 659| ap_set_content_type(r, tmp); Error: COMPILER_WARNING (CWE-704): [#def95] httpd-2.4.66/support/ab.c: scope_hint: In function 'parse_url' httpd-2.4.66/support/ab.c:2264:13: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 2264 | if ((cp = strchr(url, '/')) == NULL) # | ^ # 2262| #endif # 2263| # 2264|-> if ((cp = strchr(url, '/')) == NULL) # 2265| return 1; # 2266| h = apr_pstrmemdup(cntxt, url, cp - url); Error: COMPILER_WARNING (CWE-704): [#def96] httpd-2.4.66/support/ab.c:2264:13: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 2262| #endif # 2263| # 2264|-> if ((cp = strchr(url, '/')) == NULL) # 2265| return 1; # 2266| h = apr_pstrmemdup(cntxt, url, cp - url); Error: COMPILER_WARNING (CWE-704): [#def97] httpd-2.4.66/support/ab.c: scope_hint: In function 'main' httpd-2.4.66/support/ab.c:2540:28: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 2540 | if ((p = strchr(opt_arg, ':'))) { # | ^ # 2538| * assume proxy-name[:port] # 2539| */ # 2540|-> if ((p = strchr(opt_arg, ':'))) { # 2541| *p = '\0'; # 2542| p++; Error: COMPILER_WARNING (CWE-704): [#def98] httpd-2.4.66/support/ab.c:2540:28: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 2538| * assume proxy-name[:port] # 2539| */ # 2540|-> if ((p = strchr(opt_arg, ':'))) { # 2541| *p = '\0'; # 2542| p++; Error: COMPILER_WARNING (CWE-704): [#def99] httpd-2.4.66/support/rotatelogs.c: scope_hint: In function 'get_time_or_size' httpd-2.4.66/support/rotatelogs.c:545:14: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 545 | if ((ptr = strchr(arg, 'B')) != NULL) { /* Found KB size */ # | ^ # 543| /* Byte multiplier */ # 544| unsigned int mult = 1; # 545|-> if ((ptr = strchr(arg, 'B')) != NULL) { /* Found KB size */ # 546| mult = 1; # 547| } Error: COMPILER_WARNING (CWE-704): [#def100] httpd-2.4.66/support/rotatelogs.c:545:14: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 543| /* Byte multiplier */ # 544| unsigned int mult = 1; # 545|-> if ((ptr = strchr(arg, 'B')) != NULL) { /* Found KB size */ # 546| mult = 1; # 547| } Error: COMPILER_WARNING (CWE-704): [#def101] httpd-2.4.66/support/rotatelogs.c:548:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 548 | else if ((ptr = strchr(arg, 'K')) != NULL) { /* Found KB size */ # | ^ # 546| mult = 1; # 547| } # 548|-> else if ((ptr = strchr(arg, 'K')) != NULL) { /* Found KB size */ # 549| mult = 1024; # 550| } Error: COMPILER_WARNING (CWE-704): [#def102] httpd-2.4.66/support/rotatelogs.c:548:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 546| mult = 1; # 547| } # 548|-> else if ((ptr = strchr(arg, 'K')) != NULL) { /* Found KB size */ # 549| mult = 1024; # 550| } Error: COMPILER_WARNING (CWE-704): [#def103] httpd-2.4.66/support/rotatelogs.c:551:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 551 | else if ((ptr = strchr(arg, 'M')) != NULL) { /* Found MB size */ # | ^ # 549| mult = 1024; # 550| } # 551|-> else if ((ptr = strchr(arg, 'M')) != NULL) { /* Found MB size */ # 552| mult = 1024 * 1024; # 553| } Error: COMPILER_WARNING (CWE-704): [#def104] httpd-2.4.66/support/rotatelogs.c:551:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 549| mult = 1024; # 550| } # 551|-> else if ((ptr = strchr(arg, 'M')) != NULL) { /* Found MB size */ # 552| mult = 1024 * 1024; # 553| } Error: COMPILER_WARNING (CWE-704): [#def105] httpd-2.4.66/support/rotatelogs.c:554:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 554 | else if ((ptr = strchr(arg, 'G')) != NULL) { /* Found GB size */ # | ^ # 552| mult = 1024 * 1024; # 553| } # 554|-> else if ((ptr = strchr(arg, 'G')) != NULL) { /* Found GB size */ # 555| mult = 1024 * 1024 * 1024; # 556| } Error: COMPILER_WARNING (CWE-704): [#def106] httpd-2.4.66/support/rotatelogs.c:554:19: warning[-Wdiscarded-qualifiers]: assignment discards 'const' qualifier from pointer target type # 552| mult = 1024 * 1024; # 553| } # 554|-> else if ((ptr = strchr(arg, 'G')) != NULL) { /* Found GB size */ # 555| mult = 1024 * 1024 * 1024; # 556| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def107] httpd-2.4.66/support/suexec.c:160:9: warning[-Wanalyzer-malloc-leak]: leak of 'actual_gname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:25: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 158| #if defined(AP_LOG_SYSLOG) # 159| if (!log_open) { # 160|-> openlog("suexec", LOG_PID, AP_LOG_FACILITY); # 161| log_open = 1; # 162| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def108] httpd-2.4.66/support/suexec.c:160:9: warning[-Wanalyzer-malloc-leak]: leak of 'actual_uname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:464:20: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 158| #if defined(AP_LOG_SYSLOG) # 159| if (!log_open) { # 160|-> openlog("suexec", LOG_PID, AP_LOG_FACILITY); # 161| log_open = 1; # 162| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def109] httpd-2.4.66/support/suexec.c:160:9: warning[-Wanalyzer-malloc-leak]: leak of 'cleanenv' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' # 158| #if defined(AP_LOG_SYSLOG) # 159| if (!log_open) { # 160|-> openlog("suexec", LOG_PID, AP_LOG_FACILITY); # 161| log_open = 1; # 162| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def110] httpd-2.4.66/support/suexec.c:160:9: warning[-Wanalyzer-malloc-leak]: leak of 'target_homedir' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:465:22: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 158| #if defined(AP_LOG_SYSLOG) # 159| if (!log_open) { # 160|-> openlog("suexec", LOG_PID, AP_LOG_FACILITY); # 161| log_open = 1; # 162| } Error: GCC_ANALYZER_WARNING (CWE-404): [#def111] httpd-2.4.66/support/suexec.c:160:9: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' # 158| #if defined(AP_LOG_SYSLOG) # 159| if (!log_open) { # 160|-> openlog("suexec", LOG_PID, AP_LOG_FACILITY); # 161| log_open = 1; # 162| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def112] httpd-2.4.66/support/suexec.c:164:5: warning[-Wanalyzer-malloc-leak]: leak of 'actual_gname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:25: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 162| } # 163| # 164|-> vsyslog(is_error ? LOG_ERR : LOG_INFO, fmt, ap); # 165| #elif defined(AP_LOG_EXEC) # 166| time_t timevar; Error: GCC_ANALYZER_WARNING (CWE-401): [#def113] httpd-2.4.66/support/suexec.c:164:5: warning[-Wanalyzer-malloc-leak]: leak of 'actual_uname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:464:20: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 162| } # 163| # 164|-> vsyslog(is_error ? LOG_ERR : LOG_INFO, fmt, ap); # 165| #elif defined(AP_LOG_EXEC) # 166| time_t timevar; Error: GCC_ANALYZER_WARNING (CWE-401): [#def114] httpd-2.4.66/support/suexec.c:164:5: warning[-Wanalyzer-malloc-leak]: leak of 'cleanenv' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' # 162| } # 163| # 164|-> vsyslog(is_error ? LOG_ERR : LOG_INFO, fmt, ap); # 165| #elif defined(AP_LOG_EXEC) # 166| time_t timevar; Error: GCC_ANALYZER_WARNING (CWE-401): [#def115] httpd-2.4.66/support/suexec.c:164:5: warning[-Wanalyzer-malloc-leak]: leak of 'target_homedir' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:465:22: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_true: following 'true' branch... httpd-2.4.66/support/suexec.c:467:9: branch_true: ...to here httpd-2.4.66/support/suexec.c:467:9: call_function: calling 'log_err' from 'main' # 162| } # 163| # 164|-> vsyslog(is_error ? LOG_ERR : LOG_INFO, fmt, ap); # 165| #elif defined(AP_LOG_EXEC) # 166| time_t timevar; Error: GCC_ANALYZER_WARNING (CWE-404): [#def116] httpd-2.4.66/support/suexec.c:164:5: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' # 162| } # 163| # 164|-> vsyslog(is_error ? LOG_ERR : LOG_INFO, fmt, ap); # 165| #elif defined(AP_LOG_EXEC) # 166| time_t timevar; Error: GCC_ANALYZER_WARNING (CWE-401): [#def117] httpd-2.4.66/support/suexec.c:504:34: warning[-Wanalyzer-malloc-leak]: leak of 'actual_gname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:25: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:466:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:475:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:475:5: call_function: calling 'log_no_err' from 'main' httpd-2.4.66/support/suexec.c:475:5: return_function: returning to 'main' from 'log_no_err' httpd-2.4.66/support/suexec.c:484:8: branch_false: following 'false' branch (when 'uid > 999')... httpd-2.4.66/support/suexec.c:493:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:493:8: branch_false: following 'false' branch (when 'gid > 999')... httpd-2.4.66/support/suexec.c:504:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:504:34: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:34: throw: if 'initgroups' throws an exception... httpd-2.4.66/support/suexec.c:504:34: danger: 'actual_gname' leaks here; was allocated at [(31)](sarif:/runs/0/results/14/codeFlows/0/threadFlows/0/locations/30) # 502| * and setgid() to the target group. If unsuccessful, error out. # 503| */ # 504|-> if (((setgid(gid)) != 0) || (initgroups(actual_uname, gid) != 0)) { # 505| log_err("failed to setgid/initgroups (%lu: %s): %s\n", # 506| (unsigned long)gid, cmd, strerror(errno)); Error: GCC_ANALYZER_WARNING (CWE-401): [#def118] httpd-2.4.66/support/suexec.c:504:34: warning[-Wanalyzer-malloc-leak]: leak of 'actual_uname' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:464:20: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:475:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:475:5: call_function: calling 'log_no_err' from 'main' httpd-2.4.66/support/suexec.c:475:5: return_function: returning to 'main' from 'log_no_err' httpd-2.4.66/support/suexec.c:484:8: branch_false: following 'false' branch (when 'uid > 999')... httpd-2.4.66/support/suexec.c:493:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:493:8: branch_false: following 'false' branch (when 'gid > 999')... httpd-2.4.66/support/suexec.c:504:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:504:34: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:34: throw: if 'initgroups' throws an exception... httpd-2.4.66/support/suexec.c:504:34: danger: 'actual_uname' leaks here; was allocated at [(33)](sarif:/runs/0/results/15/codeFlows/0/threadFlows/0/locations/32) # 502| * and setgid() to the target group. If unsuccessful, error out. # 503| */ # 504|-> if (((setgid(gid)) != 0) || (initgroups(actual_uname, gid) != 0)) { # 505| log_err("failed to setgid/initgroups (%lu: %s): %s\n", # 506| (unsigned long)gid, cmd, strerror(errno)); Error: GCC_ANALYZER_WARNING (CWE-401): [#def119] httpd-2.4.66/support/suexec.c:504:34: warning[-Wanalyzer-malloc-leak]: leak of 'target_homedir' httpd-2.4.66/support/suexec.c:270:5: enter_function: entry to 'main' httpd-2.4.66/support/suexec.c:291:5: call_function: calling 'clean_env' from 'main' httpd-2.4.66/support/suexec.c:291:5: return_function: returning to 'main' from 'clean_env' httpd-2.4.66/support/suexec.c:298:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:306:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:306:8: branch_true: following 'true' branch (when 'argc > 1')... httpd-2.4.66/support/suexec.c:307:15: branch_true: ...to here httpd-2.4.66/support/suexec.c:348:8: branch_false: following 'false' branch (when 'argc > 3')... httpd-2.4.66/support/suexec.c:353:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:368:8: branch_false: following 'false' branch (when the strings are equal)... httpd-2.4.66/support/suexec.c:380:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:380:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:380:9: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:391:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:400:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:415:9: branch_false: ...to here httpd-2.4.66/support/suexec.c:415:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:422:28: call_function: inlined call to 'atoi' from 'main' httpd-2.4.66/support/suexec.c:422:12: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:427:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:428:8: branch_false: following 'false' branch (when 'actual_gname' is non-NULL)... httpd-2.4.66/support/suexec.c:463:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:465:22: acquire_memory: allocated here httpd-2.4.66/support/suexec.c:466:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:475:5: branch_false: ...to here httpd-2.4.66/support/suexec.c:475:5: call_function: calling 'log_no_err' from 'main' httpd-2.4.66/support/suexec.c:475:5: return_function: returning to 'main' from 'log_no_err' httpd-2.4.66/support/suexec.c:484:8: branch_false: following 'false' branch (when 'uid > 999')... httpd-2.4.66/support/suexec.c:493:8: branch_false: ...to here httpd-2.4.66/support/suexec.c:493:8: branch_false: following 'false' branch (when 'gid > 999')... httpd-2.4.66/support/suexec.c:504:10: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:8: branch_false: following 'false' branch... httpd-2.4.66/support/suexec.c:504:34: branch_false: ...to here httpd-2.4.66/support/suexec.c:504:34: throw: if 'initgroups' throws an exception... httpd-2.4.66/support/suexec.c:504:34: danger: 'target_homedir' leaks here; was allocated at [(33)](sarif:/runs/0/results/16/codeFlows/0/threadFlows/0/locations/32) # 502| * and setgid() to the target group. If unsuccessful, error out. # 503| */ # 504|-> if (((setgid(gid)) != 0) || (initgroups(actual_uname, gid) != 0)) { # 505| log_err("failed to setgid/initgroups (%lu: %s): %s\n", # 506| (unsigned long)gid, cmd, strerror(errno));
| analyzer-version-clippy | 1.92.0 |
| analyzer-version-cppcheck | 2.19.1 |
| analyzer-version-gcc | 16.0.0 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-240.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | httpd-2.4.66-1.fc44 |
| store-results-to | /tmp/tmpd62tjd00/httpd-2.4.66-1.fc44.tar.xz |
| time-created | 2026-01-08 17:14:37 |
| time-finished | 2026-01-08 17:17:52 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'gcc,cppcheck,clippy,shellcheck,unicontrol' '-o' '/tmp/tmpd62tjd00/httpd-2.4.66-1.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmpd62tjd00/httpd-2.4.66-1.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251215.161544.g62de9a5-1.el9 |