Error: SHELLCHECK_WARNING (CWE-563): [#def1] /usr/bin/apu-1-config:25:1: warning[SC2034]: exec_prefix appears unused. Verify use (or export if used externally). # 23| # 24| prefix="/usr" # 25|-> exec_prefix="/usr" # 26| bindir="/usr/bin" # 27| includedir="/usr/include/apr-1" Error: GCC_ANALYZER_WARNING (CWE-404): [#def2] apr-util-1.6.3/buckets/apr_brigade.c:512:21: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/buckets/apr_brigade.c:616:34: enter_function: entry to 'apr_brigade_putstrs' apr-util-1.6.3/buckets/apr_brigade.c:623:5: acquire_resource: 'va_start' called here apr-util-1.6.3/buckets/apr_brigade.c:624:10: call_function: calling 'apr_brigade_vputstrs' from 'apr_brigade_putstrs' # 510| if (flush) { # 511| for (i = 0; i < nvec; i++) { # 512|-> e = apr_bucket_transient_create(vec[i].iov_base, # 513| vec[i].iov_len, # 514| b->bucket_alloc); Error: GCC_ANALYZER_WARNING (CWE-404): [#def3] apr-util-1.6.3/buckets/apr_brigade.c:521:21: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/buckets/apr_brigade.c:616:34: enter_function: entry to 'apr_brigade_putstrs' apr-util-1.6.3/buckets/apr_brigade.c:623:5: acquire_resource: 'va_start' called here apr-util-1.6.3/buckets/apr_brigade.c:624:10: call_function: calling 'apr_brigade_vputstrs' from 'apr_brigade_putstrs' # 519| else { # 520| for (i = 0; i < nvec; i++) { # 521|-> e = apr_bucket_heap_create((const char *) vec[i].iov_base, # 522| vec[i].iov_len, NULL, # 523| b->bucket_alloc); Error: GCC_ANALYZER_WARNING (CWE-404): [#def4] apr-util-1.6.3/buckets/apr_brigade.c:694:15: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/buckets/apr_brigade.c:629:34: enter_function: entry to 'apr_brigade_printf' apr-util-1.6.3/buckets/apr_brigade.c:637:5: acquire_resource: 'va_start' called here apr-util-1.6.3/buckets/apr_brigade.c:638:10: call_function: calling 'apr_brigade_vprintf' from 'apr_brigade_printf' # 692| vd.cbuff = buf; # 693| # 694|-> written = apr_vformatter(brigade_flush, &vd.vbuff, fmt, va); # 695| # 696| if (written == -1) { Error: CPPCHECK_WARNING (CWE-823): [#def5] apr-util-1.6.3/crypto/apr_sha1.c:339: error[arrayIndexOutOfBounds]: Array 'sha_info->digest[5]' accessed at index 9998, which is out of bounds. # 337| # 338| for (i = 0, j = 0; j < APR_SHA1_DIGESTSIZE; i++) { # 339|-> k = sha_info->digest[i]; # 340| digest[j++] = (unsigned char) ((k >> 24) & 0xff); # 341| digest[j++] = (unsigned char) ((k >> 16) & 0xff); Error: GCC_ANALYZER_WARNING (CWE-787): [#def6] apr-util-1.6.3/crypto/crypt_blowfish.c:676:14: warning[-Wanalyzer-out-of-bounds]: buffer over-read apr-util-1.6.3/crypto/crypt_blowfish.c:668:12: branch_false: following 'false' branch (when 'size > 60')... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:12: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:674:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:675:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:676:31: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:676:14: danger: read of 1 byte at offset '(unsigned int)&*setting[2] + 4294967199' exceeds 'flags_by_subtype' # 674| setting[1] != '2' || # 675| setting[2] < 'a' || setting[2] > 'z' || # 676|-> !flags_by_subtype[(unsigned int)(unsigned char)setting[2] - 'a'] || # 677| setting[3] != '$' || # 678| setting[4] < '0' || setting[4] > '1' || Error: GCC_ANALYZER_WARNING (CWE-787): [#def7] apr-util-1.6.3/crypto/crypt_blowfish.c:694:13: warning[-Wanalyzer-out-of-bounds]: buffer over-read apr-util-1.6.3/crypto/crypt_blowfish.c:644:14: enter_function: entry to 'BF_crypt' apr-util-1.6.3/crypto/crypt_blowfish.c:668:12: branch_false: following 'false' branch (when 'size > 60')... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:12: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:674:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:675:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:676:31: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:677:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:678:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:679:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:673:13: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:686:33: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:687:12: branch_false: following 'false' branch... apr-util-1.6.3/crypto/crypt_blowfish.c:694:59: branch_false: ...to here apr-util-1.6.3/crypto/crypt_blowfish.c:694:13: danger: read of 1 byte at offset '(unsigned int)(unsigned char)&*setting[2] + 4294967199' exceeds 'flags_by_subtype' # 692| # 693| BF_set_key(key, data.expanded_key, data.ctx.P, # 694|-> flags_by_subtype[(unsigned int)(unsigned char)setting[2] - 'a']); # 695| # 696| memcpy(data.ctx.S, BF_init_state.S, sizeof(data.ctx.S)); Error: GCC_ANALYZER_WARNING (CWE-404): [#def8] apr-util-1.6.3/dbd/apr_dbd.c:504:11: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/dbd/apr_dbd.c:503:5: acquire_resource: 'va_start' called here apr-util-1.6.3/dbd/apr_dbd.c:504:11: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 502| va_list args; # 503| va_start(args, statement); # 504|-> ret = driver->pvquery(pool,handle,nrows,statement,args); # 505| va_end(args); # 506| return ret; Error: GCC_ANALYZER_WARNING (CWE-404): [#def9] apr-util-1.6.3/dbd/apr_dbd.c:518:11: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/dbd/apr_dbd.c:517:5: acquire_resource: 'va_start' called here apr-util-1.6.3/dbd/apr_dbd.c:518:11: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 516| va_list args; # 517| va_start(args, random); # 518|-> ret = driver->pvselect(pool,handle,res,statement,random,args); # 519| va_end(args); # 520| return ret; Error: GCC_ANALYZER_WARNING (CWE-404): [#def10] apr-util-1.6.3/dbd/apr_dbd.c:549:11: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/dbd/apr_dbd.c:548:5: acquire_resource: 'va_start' called here apr-util-1.6.3/dbd/apr_dbd.c:549:11: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/0) # 547| va_list args; # 548| va_start(args, statement); # 549|-> ret = driver->pvbquery(pool,handle,nrows,statement,args); # 550| va_end(args); # 551| return ret; Error: GCC_ANALYZER_WARNING (CWE-404): [#def11] apr-util-1.6.3/dbd/apr_dbd.c:563:11: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' apr-util-1.6.3/dbd/apr_dbd.c:562:5: acquire_resource: 'va_start' called here apr-util-1.6.3/dbd/apr_dbd.c:563:11: danger: missing call to 'va_end' to match 'va_start' at [(1)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/0) # 561| va_list args; # 562| va_start(args, random); # 563|-> ret = driver->pvbselect(pool,handle,res,statement,random,args); # 564| va_end(args); # 565| return ret; Error: CPPCHECK_WARNING (CWE-476): [#def12] apr-util-1.6.3/dbm/sdbm/sdbm.c:95: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: db # 93| # 94| db = malloc(sizeof(*db)); # 95|-> memset(db, 0, sizeof(*db)); # 96| db->pagbno = -1L; # 97| Error: CPPCHECK_WARNING (CWE-476): [#def13] apr-util-1.6.3/dbm/sdbm/sdbm.c:96: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: db # 94| db = malloc(sizeof(*db)); # 95| memset(db, 0, sizeof(*db)); # 96|-> db->pagbno = -1L; # 97| # 98| db->pool = p; Error: CPPCHECK_WARNING (CWE-476): [#def14] apr-util-1.6.3/dbm/sdbm/sdbm.c:98: warning[nullPointerOutOfMemory]: If memory allocation fails, then there is a possible null pointer dereference: db # 96| db->pagbno = -1L; # 97| # 98|-> db->pool = p; # 99| # 100| /* Error: COMPILER_WARNING: [#def15] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:63:1: warning[-Wold-style-definition]: old-style function definition # 61| # 62| int # 63|-> fitpair(pag, need) # 64| char *pag; # 65| int need; Error: COMPILER_WARNING: [#def16] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:82:1: warning[-Wold-style-definition]: old-style function definition # 80| # 81| void # 82|-> putpair(pag, key, val) # 83| char *pag; # 84| apr_sdbm_datum_t key; Error: COMPILER_WARNING: [#def17] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:111:1: warning[-Wold-style-definition]: old-style function definition # 109| # 110| apr_sdbm_datum_t # 111|-> getpair(pag, key) # 112| char *pag; # 113| apr_sdbm_datum_t key; Error: COMPILER_WARNING: [#def18] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:132:1: warning[-Wold-style-definition]: old-style function definition # 130| # 131| int # 132|-> duppair(pag, key) # 133| char *pag; # 134| apr_sdbm_datum_t key; Error: COMPILER_WARNING: [#def19] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:141:1: warning[-Wold-style-definition]: old-style function definition # 139| # 140| apr_sdbm_datum_t # 141|-> getnkey(pag, num) # 142| char *pag; # 143| int num; Error: COMPILER_WARNING: [#def20] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:162:1: warning[-Wold-style-definition]: old-style function definition # 160| # 161| int # 162|-> delpair(pag, key) # 163| char *pag; # 164| apr_sdbm_datum_t key; Error: COMPILER_WARNING: [#def21] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'seepair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:234:1: warning[-Wold-style-definition]: old-style function definition # 234 | seepair(pag, n, key, siz) # | ^~~~~~~ # 232| */ # 233| static int # 234|-> seepair(pag, n, key, siz) # 235| char *pag; # 236| register int n; Error: COMPILER_WARNING: [#def22] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:234:1: warning[-Wold-style-definition]: old-style function definition # 232| */ # 233| static int # 234|-> seepair(pag, n, key, siz) # 235| char *pag; # 236| register int n; Error: COMPILER_WARNING: [#def23] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:254:1: warning[-Wold-style-definition]: old-style function definition # 252| # 253| void # 254|-> splpage(pag, new, sbit) # 255| char *pag; # 256| char *new; Error: COMPILER_WARNING: [#def24] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:298:1: warning[-Wold-style-definition]: old-style function definition # 296| */ # 297| int # 298|-> chkpage(pag) # 299| char *pag; # 300| { Error: COMPILER_WARNING: [#def25] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_chkpage' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:21:17: warning[-Wold-style-definition]: old-style function definition # 21 | #define chkpage apu__sdbm_chkpage # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:298:1: note: in expansion of macro 'chkpage' # 298 | chkpage(pag) # | ^~~~~~~ # 19| # 20| /* Mini EMBED (pair.c) */ # 21|-> #define chkpage apu__sdbm_chkpage # 22| #define delpair apu__sdbm_delpair # 23| #define duppair apu__sdbm_duppair Error: COMPILER_WARNING: [#def26] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_delpair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:22:17: warning[-Wold-style-definition]: old-style function definition # 22 | #define delpair apu__sdbm_delpair # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:162:1: note: in expansion of macro 'delpair' # 162 | delpair(pag, key) # | ^~~~~~~ # 20| /* Mini EMBED (pair.c) */ # 21| #define chkpage apu__sdbm_chkpage # 22|-> #define delpair apu__sdbm_delpair # 23| #define duppair apu__sdbm_duppair # 24| #define fitpair apu__sdbm_fitpair Error: COMPILER_WARNING: [#def27] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_duppair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:23:17: warning[-Wold-style-definition]: old-style function definition # 23 | #define duppair apu__sdbm_duppair # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:132:1: note: in expansion of macro 'duppair' # 132 | duppair(pag, key) # | ^~~~~~~ # 21| #define chkpage apu__sdbm_chkpage # 22| #define delpair apu__sdbm_delpair # 23|-> #define duppair apu__sdbm_duppair # 24| #define fitpair apu__sdbm_fitpair # 25| #define getnkey apu__sdbm_getnkey Error: COMPILER_WARNING: [#def28] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:29: included_from: Included from here. apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_fitpair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:24:17: warning[-Wold-style-definition]: old-style function definition # 24 | #define fitpair apu__sdbm_fitpair # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:63:1: note: in expansion of macro 'fitpair' # 63 | fitpair(pag, need) # | ^~~~~~~ # 22| #define delpair apu__sdbm_delpair # 23| #define duppair apu__sdbm_duppair # 24|-> #define fitpair apu__sdbm_fitpair # 25| #define getnkey apu__sdbm_getnkey # 26| #define getpair apu__sdbm_getpair Error: COMPILER_WARNING: [#def29] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_getnkey' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:25:17: warning[-Wold-style-definition]: old-style function definition # 25 | #define getnkey apu__sdbm_getnkey # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:141:1: note: in expansion of macro 'getnkey' # 141 | getnkey(pag, num) # | ^~~~~~~ # 23| #define duppair apu__sdbm_duppair # 24| #define fitpair apu__sdbm_fitpair # 25|-> #define getnkey apu__sdbm_getnkey # 26| #define getpair apu__sdbm_getpair # 27| #define putpair apu__sdbm_putpair Error: COMPILER_WARNING: [#def30] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_getpair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:26:17: warning[-Wold-style-definition]: old-style function definition # 26 | #define getpair apu__sdbm_getpair # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:111:1: note: in expansion of macro 'getpair' # 111 | getpair(pag, key) # | ^~~~~~~ # 24| #define fitpair apu__sdbm_fitpair # 25| #define getnkey apu__sdbm_getnkey # 26|-> #define getpair apu__sdbm_getpair # 27| #define putpair apu__sdbm_putpair # 28| #define splpage apu__sdbm_splpage Error: COMPILER_WARNING: [#def31] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_putpair' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:27:17: warning[-Wold-style-definition]: old-style function definition # 27 | #define putpair apu__sdbm_putpair # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:82:1: note: in expansion of macro 'putpair' # 82 | putpair(pag, key, val) # | ^~~~~~~ # 25| #define getnkey apu__sdbm_getnkey # 26| #define getpair apu__sdbm_getpair # 27|-> #define putpair apu__sdbm_putpair # 28| #define splpage apu__sdbm_splpage # 29| Error: COMPILER_WARNING: [#def32] apr-util-1.6.3/dbm/sdbm/sdbm_pair.c: scope_hint: In function 'apu__sdbm_splpage' apr-util-1.6.3/dbm/sdbm/sdbm_pair.h:28:17: warning[-Wold-style-definition]: old-style function definition # 28 | #define splpage apu__sdbm_splpage # | ^~~~~~~~~~~~~~~~~ apr-util-1.6.3/dbm/sdbm/sdbm_pair.c:254:1: note: in expansion of macro 'splpage' # 254 | splpage(pag, new, sbit) # | ^~~~~~~ # 26| #define getpair apu__sdbm_getpair # 27| #define putpair apu__sdbm_putpair # 28|-> #define splpage apu__sdbm_splpage # 29| # 30| int fitpair(char *, int); Error: CPPCHECK_WARNING (CWE-823): [#def33] apr-util-1.6.3/misc/apr_date.c:62: error[arrayIndexOutOfBounds]: Array 'mask[17]' accessed at index 255, which is out of bounds. # 60| for (i = 0; i < 256; i++) { # 61| d = data[i]; # 62|-> switch (mask[i]) { # 63| case '\0': # 64| return (d == '\0'); Error: GCC_ANALYZER_WARNING (CWE-476): [#def34] apr-util-1.6.3/misc/apr_thread_pool.c:292:13: warning[-Wanalyzer-null-dereference]: dereference of NULL '0' apr-util-1.6.3/misc/apr_thread_pool.c:270:30: enter_function: entry to 'thread_pool_func' apr-util-1.6.3/misc/apr_thread_pool.c:279:11: call_function: calling 'elt_new' from 'thread_pool_func' apr-util-1.6.3/misc/apr_thread_pool.c:279:11: return_function: returning to 'thread_pool_func' from 'elt_new' apr-util-1.6.3/misc/apr_thread_pool.c:280:8: branch_true: following 'true' branch... apr-util-1.6.3/misc/apr_thread_pool.c:281:9: branch_true: ...to here apr-util-1.6.3/misc/apr_thread_pool.c:292:13: danger: dereference of NULL 'elt_new(param, t)' # 290| } # 291| # 292|-> if (elt->state != TH_STOP) { # 293| ++me->busy_cnt; # 294| APR_RING_INSERT_TAIL(me->busy_thds, elt, Error: GCC_ANALYZER_WARNING (CWE-835): [#def35] apr-util-1.6.3/uri/apr_uri.c:762:28: warning[-Wanalyzer-infinite-loop]: infinite loop apr-util-1.6.3/uri/apr_uri.c:762:28: danger: infinite loop here apr-util-1.6.3/uri/apr_uri.c:762:16: branch_true: if it ever follows 'true' branch, it will always do so... apr-util-1.6.3/uri/apr_uri.c:763:13: branch_true: ...to here # 760| */ # 761| s = uri; # 762|-> while ((uri_delims[*(unsigned char *)s] & NOTEND_PATH) == 0) { # 763| ++s; # 764| } Error: GCC_ANALYZER_WARNING (CWE-835): [#def36] apr-util-1.6.3/uri/apr_uri.c:837:24: warning[-Wanalyzer-infinite-loop]: infinite loop apr-util-1.6.3/uri/apr_uri.c:837:24: danger: infinite loop here apr-util-1.6.3/uri/apr_uri.c:837:12: branch_true: if it ever follows 'true' branch, it will always do so... apr-util-1.6.3/uri/apr_uri.c:838:9: branch_true: ...to here # 835| deal_with_authority: # 836| hostinfo = s; # 837|-> while ((uri_delims[*(unsigned char *)s] & NOTEND_HOSTINFO) == 0) { # 838| ++s; # 839| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def37] apr-util-1.6.3/xml/apr_xml.c:682:18: warning[-Wanalyzer-null-dereference]: dereference of NULL 'namespaces' apr-util-1.6.3/xml/apr_xml.c:940:19: enter_function: entry to 'apr_xml_to_text' apr-util-1.6.3/xml/apr_xml.c:946:23: call_function: calling 'elem_size' from 'apr_xml_to_text' # 680| */ # 681| # 682|-> for (i = namespaces->nelts; i--;) { # 683| /* compute size of: ' xmlns:ns%d="%s"' */ # 684| size += (9 + APR_XML_NS_LEN(i) + 2 + Error: GCC_ANALYZER_WARNING (CWE-476): [#def38] apr-util-1.6.3/xml/apr_xml.c:699:37: warning[-Wanalyzer-null-dereference]: dereference of NULL 'namespaces' apr-util-1.6.3/xml/apr_xml.c:940:19: enter_function: entry to 'apr_xml_to_text' apr-util-1.6.3/xml/apr_xml.c:946:23: call_function: calling 'elem_size' from 'apr_xml_to_text' # 697| for (; ns_scope; ns_scope = ns_scope->next) { # 698| size += 10 + strlen(find_prefix_name(elem, ns_scope->ns, 0)) + # 699|-> strlen(APR_XML_GET_URI_ITEM(namespaces, ns_scope->ns)); # 700| } # 701|
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-149.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | apr-util-1.6.3-25.fc44 |
| store-results-to | /tmp/tmpa_rt510k/apr-util-1.6.3-25.fc44.tar.xz |
| time-created | 2025-10-28 17:47:24 |
| time-finished | 2025-10-28 17:48:52 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpa_rt510k/apr-util-1.6.3-25.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpa_rt510k/apr-util-1.6.3-25.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |