Error: CPPCHECK_WARNING (CWE-457): [#def1] krb5-1.21.3/src/lib/krb5/krb/fast.c:192: warning[uninitvar]: Uninitialized variable: value # 190| } # 191| # 192|-> return retval ? FALSE : value; # 193| # 194| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: warning[-Wanalyzer-malloc-leak]: leak of ‘def_rhost’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:39:1: enter_function: entry to ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:61:8: branch_false: following ‘false’ branch (when ‘cc’ is non-NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:66:14: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:67:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:69:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:96:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:99:55: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:101:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:105:5: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:109:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:54: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:10: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:124:12: branch_true: following ‘true’ branch (when ‘rhost’ is NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:17: branch_true: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:17: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:57: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: call_function: calling ‘k5memdup0’ from ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: return_function: returning to ‘krb5_fwd_tgt_creds’ from ‘k5memdup0’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:137:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: danger: ‘def_rhost’ leaks here; was allocated at [(29)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/28) # 140| } # 141| # 142|-> retval = k5_os_hostaddr(context, rhost, &addrs); # 143| if (retval) # 144| goto errout; Error: GCC_ANALYZER_WARNING (CWE-401): [#def3] krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:179:9: warning[-Wanalyzer-malloc-leak]: leak of ‘rhost’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:39:1: enter_function: entry to ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:61:8: branch_false: following ‘false’ branch (when ‘cc’ is non-NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:66:14: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:67:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:69:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:96:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:99:55: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:101:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:105:5: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:109:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:54: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:10: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:124:12: branch_true: following ‘true’ branch (when ‘rhost’ is NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:17: branch_true: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:17: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:57: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: call_function: calling ‘k5memdup0’ from ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: return_function: returning to ‘krb5_fwd_tgt_creds’ from ‘k5memdup0’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:137:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:143:12: branch_true: following ‘true’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:144:13: branch_true: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:178:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:179:9: branch_true: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:179:9: danger: ‘rhost’ leaks here; was allocated at [(29)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/28) # 177| errout: # 178| if (addrs) # 179|-> krb5_free_addresses(context, addrs); # 180| if (defcc) # 181| krb5_cc_close(context, defcc); Error: GCC_ANALYZER_WARNING (CWE-401): [#def4] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:65:18: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 63| # 64| if (ldap_context->container_dn == NULL) { # 65|-> retval = krb5_ldap_read_krbcontainer_dn(util_context, # 66| &ldap_context->container_dn); # 67| if (retval != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def5] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:65:18: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 63| # 64| if (ldap_context->container_dn == NULL) { # 65|-> retval = krb5_ldap_read_krbcontainer_dn(util_context, # 66| &ldap_context->container_dn); # 67| if (retval != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def6] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:65:18: warning[-Wanalyzer-malloc-leak]: leak of ‘policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:677:1: enter_function: entry to ‘kdb5_ldap_view_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:686:8: branch_false: following ‘false’ branch (when ‘argc == 2’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:691:8: branch_false: following ‘false’ branch (when ‘policy’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_view_policy’ # 63| # 64| if (ldap_context->container_dn == NULL) { # 65|-> retval = krb5_ldap_read_krbcontainer_dn(util_context, # 66| &ldap_context->container_dn); # 67| if (retval != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:68:13: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 66| &ldap_context->container_dn); # 67| if (retval != 0) { # 68|-> com_err(progname, retval, # 69| _("while reading kerberos container information")); # 70| goto cleanup; Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:68:13: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 66| &ldap_context->container_dn); # 67| if (retval != 0) { # 68|-> com_err(progname, retval, # 69| _("while reading kerberos container information")); # 70| goto cleanup; Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:68:13: warning[-Wanalyzer-malloc-leak]: leak of ‘policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:677:1: enter_function: entry to ‘kdb5_ldap_view_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:686:8: branch_false: following ‘false’ branch (when ‘argc == 2’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:691:8: branch_false: following ‘false’ branch (when ‘policy’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_view_policy’ # 66| &ldap_context->container_dn); # 67| if (retval != 0) { # 68|-> com_err(progname, retval, # 69| _("while reading kerberos container information")); # 70| goto cleanup; Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:75:18: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 73| # 74| if (ldap_context->lrparams == NULL) { # 75|-> retval = krb5_ldap_read_realm_params(util_context, # 76| global_params.realm, # 77| &(ldap_context->lrparams), Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:75:18: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:93:1: enter_function: entry to ‘kdb5_ldap_create_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_create_policy’ # 73| # 74| if (ldap_context->lrparams == NULL) { # 75|-> retval = krb5_ldap_read_realm_params(util_context, # 76| global_params.realm, # 77| &(ldap_context->lrparams), Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:75:18: warning[-Wanalyzer-malloc-leak]: leak of ‘policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:677:1: enter_function: entry to ‘kdb5_ldap_view_policy’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:686:8: branch_false: following ‘false’ branch (when ‘argc == 2’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:690:14: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:691:8: branch_false: following ‘false’ branch (when ‘policy’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:697:19: call_function: calling ‘init_ldap_realm’ from ‘kdb5_ldap_view_policy’ # 73| # 74| if (ldap_context->lrparams == NULL) { # 75|-> retval = krb5_ldap_read_realm_params(util_context, # 76| global_params.realm, # 77| &(ldap_context->lrparams), Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:126:20: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:123:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:123:16: branch_false: following ‘false’ branch (when ‘argc > i’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:126:33: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:126:20: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/9/codeFlows/0/threadFlows/0/locations/2) # 124| goto err_usage; # 125| # 126|-> date = get_date(argv[i]); # 127| if (date == (time_t)(-1)) { # 128| retval = EINVAL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:129:17: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:123:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:123:16: branch_false: following ‘false’ branch (when ‘argc > i’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:126:33: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:127:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:129:37: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:129:17: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/10/codeFlows/0/threadFlows/0/locations/2) # 127| if (date == (time_t)(-1)) { # 128| retval = EINVAL; # 129|-> com_err(me, retval, _("while providing time specification")); # 130| goto err_nomsg; # 131| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:140:20: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:137:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:137:16: branch_false: following ‘false’ branch (when ‘argc > i’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:140:33: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:140:20: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/11/codeFlows/0/threadFlows/0/locations/2) # 138| goto err_usage; # 139| # 140|-> date = get_date(argv[i]); # 141| if (date == (time_t)(-1)) { # 142| retval = EINVAL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:143:17: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:137:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:137:16: branch_false: following ‘false’ branch (when ‘argc > i’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:140:33: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:141:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:143:37: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:143:17: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/12/codeFlows/0/threadFlows/0/locations/2) # 141| if (date == (time_t)(-1)) { # 142| retval = EINVAL; # 143|-> com_err(me, retval, _("while providing time specification")); # 144| goto err_nomsg; # 145| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:268:17: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:268:37: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:268:17: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/13/codeFlows/0/threadFlows/0/locations/2) # 266| if (policyparams->policy == NULL) { # 267| retval = ENOMEM; # 268|-> com_err(me, retval, _("while creating policy object")); # 269| goto err_nomsg; # 270| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:9: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:29: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:9: danger: ‘<unknown>’ leaks here; was allocated at [(37)](sarif:/runs/0/results/15/codeFlows/0/threadFlows/0/locations/36) # 277| # 278| if ((retval = init_ldap_realm (argc, argv))) { # 279|-> com_err(me, retval, _("while reading realm information")); # 280| goto err_nomsg; # 281| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:9: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:29: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:279:9: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/14/codeFlows/0/threadFlows/0/locations/2) # 277| # 278| if ((retval = init_ldap_realm (argc, argv))) { # 279|-> com_err(me, retval, _("while reading realm information")); # 280| goto err_nomsg; # 281| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: danger: ‘<unknown>’ leaks here; was allocated at [(37)](sarif:/runs/0/results/16/codeFlows/0/threadFlows/0/locations/36) # 282| # 283| /* Create object with all attributes provided */ # 284|-> if ((retval = krb5_ldap_create_policy(util_context, policyparams, mask)) != 0) # 285| goto cleanup; # 286| Error: GCC_ANALYZER_WARNING (CWE-401): [#def21] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_true: following ‘true’ branch (when ‘i < argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:122:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:136:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:28: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:150:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:159:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:168:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:177:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:186:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:195:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:204:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:213:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:222:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:231:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:240:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:249:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:261:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:265:36: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:266:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:27: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:121:17: branch_false: following ‘false’ branch (when ‘i >= argc’)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:9: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:278:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:284:19: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/17/codeFlows/0/threadFlows/0/locations/2) # 282| # 283| /* Create object with all attributes provided */ # 284|-> if ((retval = krb5_ldap_create_policy(util_context, policyparams, mask)) != 0) # 285| goto cleanup; # 286| Error: GCC_ANALYZER_WARNING (CWE-401): [#def22] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:297:5: warning[-Wanalyzer-malloc-leak]: leak of ‘policyparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:106:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:111:47: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:112:8: branch_false: following ‘false’ branch (when ‘policyparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:118:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:275:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:276:9: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_policy.c:297:5: danger: ‘policyparams’ leaks here; was allocated at [(3)](sarif:/runs/0/results/18/codeFlows/0/threadFlows/0/locations/2) # 295| cleanup: # 296| /* Clean-up structure */ # 297|-> krb5_ldap_free_policy (util_context, policyparams); # 298| # 299| if (print_usage)
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.90.0 |
| diffbase-analyzer-version-cppcheck | 2.18.3 |
| diffbase-analyzer-version-gcc | 15.2.1 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.0 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-7.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-gcc-latest-x86_64 |
| diffbase-project-name | krb5-1.21.3-7.fc43 |
| diffbase-store-results-to | /tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.tar.xz |
| diffbase-time-created | 2025-10-28 18:47:46 |
| diffbase-time-finished | 2025-10-28 18:55:10 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.src.rpm' |
| diffbase-tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-7.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | krb5-1.21.3-10.fc44 |
| store-results-to | /tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.tar.xz |
| time-created | 2025-10-28 18:56:32 |
| time-finished | 2025-10-28 19:03:29 |
| title | Newly introduced findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |