Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: warning[-Wanalyzer-malloc-leak]: leak of ‘rhost’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:39:1: enter_function: entry to ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:61:8: branch_false: following ‘false’ branch (when ‘cc’ is non-NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:66:14: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:67:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:69:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:96:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:99:55: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:101:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:105:5: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:109:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:54: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:113:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:10: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:118:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:9: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:123:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:124:12: branch_true: following ‘true’ branch (when ‘rhost’ is NULL)... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:17: branch_true: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:125:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:17: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:130:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:57: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: call_function: calling ‘k5memdup0’ from ‘krb5_fwd_tgt_creds’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:135:25: return_function: returning to ‘krb5_fwd_tgt_creds’ from ‘k5memdup0’ krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:137:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: branch_false: ...to here krb5-1.21.3/src/lib/krb5/krb/fwd_tgt.c:142:18: danger: ‘rhost’ leaks here; was allocated at [(29)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/28) # 140| } # 141| # 142|-> retval = k5_os_hostaddr(context, rhost, &addrs); # 143| if (retval) # 144| goto errout; Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:144:16: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:357:1: enter_function: entry to ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:17: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: call_function: calling ‘get_ticket_policy’ from ‘kdb5_ldap_create’ # 142| if (++(*i) > argc-1) # 143| return 0; # 144|-> date = get_date(argv[*i]); # 145| if (date == (time_t)(-1)) { # 146| retval = EINVAL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def3] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:147:13: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:357:1: enter_function: entry to ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:17: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: call_function: calling ‘get_ticket_policy’ from ‘kdb5_ldap_create’ # 145| if (date == (time_t)(-1)) { # 146| retval = EINVAL; # 147|-> com_err(me, retval, _("while providing time specification")); # 148| return 0; # 149| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def4] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:159:16: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:357:1: enter_function: entry to ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:17: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: call_function: calling ‘get_ticket_policy’ from ‘kdb5_ldap_create’ # 157| return 0; # 158| # 159|-> date = get_date(argv[*i]); # 160| if (date == (time_t)(-1)) { # 161| retval = EINVAL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def5] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:162:13: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:357:1: enter_function: entry to ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:456:17: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:458:31: call_function: calling ‘get_ticket_policy’ from ‘kdb5_ldap_create’ # 160| if (date == (time_t)(-1)) { # 161| retval = EINVAL; # 162|-> com_err(me, retval, _("while providing time specification")); # 163| return 0; # 164| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def6] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: warning[-Wanalyzer-malloc-leak]: leak of ‘list’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:49: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:393:34: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:393:34: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:394:20: branch_false: following ‘false’ branch (when ‘list’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: danger: ‘list’ leaks here; was allocated at [(11)](sarif:/runs/0/results/4/codeFlows/0/threadFlows/0/locations/10) # 396| goto cleanup; # 397| } # 398|-> if ((retval = krb5_parse_list(argv[i], LIST_DELIMITER, list))) { # 399| free(list); # 400| list = NULL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:49: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:393:34: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:394:20: branch_false: following ‘false’ branch (when ‘list’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:398:31: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/5/codeFlows/0/threadFlows/0/locations/0) # 396| goto cleanup; # 397| } # 398|-> if ((retval = krb5_parse_list(argv[i], LIST_DELIMITER, list))) { # 399| free(list); # 400| list = NULL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:410:17: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:389:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:49: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:392:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:410:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:410:17: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/6/codeFlows/0/threadFlows/0/locations/0) # 408| } else if (strncmp(argv[i], "", strlen(argv[i]))==0) { # 409| /* dont allow subtree value to be set at the root(NULL, "") of the tree */ # 410|-> com_err(progname, EINVAL, # 411| _("for subtree while creating realm '%s'"), # 412| global_params.realm); Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:422:17: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:418:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:418:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:420:49: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:420:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:422:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:422:17: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/7/codeFlows/0/threadFlows/0/locations/0) # 420| if (strncmp(argv[i], "", strlen(argv[i]))==0) { # 421| /* dont allow containerref value to be set at the root(NULL, "") of the tree */ # 422|-> com_err(progname, EINVAL, # 423| _("for container reference while creating realm '%s'"), # 424| global_params.realm); Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:448:21: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:357:1: enter_function: entry to ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:387:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:388:12: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:417:19: branch_false: following ‘false’ branch (when the strings are non-equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:21: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:434:19: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:435:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:435:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:440:33: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:440:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:442:25: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:442:23: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:445:41: call_function: inlined call to ‘atoi’ from ‘kdb5_ldap_create’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:446:20: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:448:21: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:448:21: danger: ‘rparams’ leaks here; was allocated at [(2)](sarif:/runs/0/results/8/codeFlows/0/threadFlows/0/locations/1) # 446| if ((rparams->search_scope != 1) && # 447| (rparams->search_scope != 2)) { # 448|-> com_err(progname, EINVAL, _("invalid search scope while " # 449| "creating realm '%s'"), # 450| global_params.realm); Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:477:9: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:473:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:475:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:477:9: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/9/codeFlows/0/threadFlows/0/locations/0) # 475| printf(_("You will be prompted for the database Master Password.\n")); # 476| printf(_("It is important that you NOT FORGET this password.\n")); # 477|-> fflush(stdout); # 478| # 479| pw_size = sizeof (pw_str); Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:482:18: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:473:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:475:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:482:18: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/10/codeFlows/0/threadFlows/0/locations/0) # 480| memset(pw_str, 0, pw_size); # 481| # 482|-> retval = krb5_read_password(util_context, KRB5_KDC_MKEY_1, KRB5_KDC_MKEY_2, # 483| pw_str, &pw_size); # 484| if (retval) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:485:13: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:473:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:475:16: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:484:12: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:486:21: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:485:13: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/11/codeFlows/0/threadFlows/0/locations/0) # 483| pw_str, &pw_size); # 484| if (retval) { # 485|-> com_err(progname, retval, # 486| _("while reading master key from keyboard")); # 487| goto err_nomsg; Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:495:9: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:495:35: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:495:9: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/12/codeFlows/0/threadFlows/0/locations/0) # 493| if (rparams->realm_name == NULL) { # 494| retval = ENOMEM; # 495|-> com_err(progname, ENOMEM, _("while creating realm '%s'"), # 496| global_params.realm); # 497| goto err_nomsg; Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:492:27: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: danger: ‘<unknown>’ leaks here; was allocated at [(3)](sarif:/runs/0/results/14/codeFlows/0/threadFlows/0/locations/2) # 506| # 507| /* read the kerberos container */ # 508|-> retval = krb5_ldap_read_krbcontainer_dn(util_context, # 509| &ldap_context->container_dn); # 510| if (retval) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/13/codeFlows/0/threadFlows/0/locations/0) # 506| # 507| /* read the kerberos container */ # 508|-> retval = krb5_ldap_read_krbcontainer_dn(util_context, # 509| &ldap_context->container_dn); # 510| if (retval) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:533:14: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:492:27: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:533:14: danger: ‘<unknown>’ leaks here; was allocated at [(3)](sarif:/runs/0/results/15/codeFlows/0/threadFlows/0/locations/2) # 531| # 532| /* create the kerberos container if it doesn't exist */ # 533|-> retval = krb5_ldap_create_krbcontainer(util_context, # 534| ldap_context->container_dn); # 535| if (retval) Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:533:14: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:533:14: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/16/codeFlows/0/threadFlows/0/locations/0) # 531| # 532| /* create the kerberos container if it doesn't exist */ # 533|-> retval = krb5_ldap_create_krbcontainer(util_context, # 534| ldap_context->container_dn); # 535| if (retval) Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:492:27: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:535:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: danger: ‘<unknown>’ leaks here; was allocated at [(3)](sarif:/runs/0/results/17/codeFlows/0/threadFlows/0/locations/2) # 536| goto cleanup; # 537| # 538|-> if ((retval = krb5_ldap_create_realm(util_context, # 539| /* global_params.realm, */ rparams, mask))) { # 540| goto cleanup; Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: warning[-Wanalyzer-malloc-leak]: leak of ‘rparams’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:378:41: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:380:8: branch_false: following ‘false’ branch (when ‘rparams’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:384:5: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:493:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:500:30: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:502:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:508:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:535:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:538:19: danger: ‘rparams’ leaks here; was allocated at [(1)](sarif:/runs/0/results/18/codeFlows/0/threadFlows/0/locations/0) # 536| goto cleanup; # 537| # 538|-> if ((retval = krb5_ldap_create_realm(util_context, # 539| /* global_params.realm, */ rparams, mask))) { # 540| goto cleanup; Error: GCC_ANALYZER_WARNING (CWE-401): [#def21] krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:724:31: warning[-Wanalyzer-malloc-leak]: leak of ‘slist’ krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:685:8: branch_false: following ‘false’ branch (when ‘ldap_context’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:690:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:692:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:698:14: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:700:8: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:703:10: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:703:17: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:705:25: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:705:12: branch_true: following ‘true’ branch (when the strings are equal)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:706:17: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:706:16: branch_false: following ‘false’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:709:17: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:718:16: branch_true: following ‘true’ branch... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:719:36: branch_true: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:719:36: acquire_memory: allocated here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:720:20: branch_false: following ‘false’ branch (when ‘slist’ is non-NULL)... krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:724:31: branch_false: ...to here krb5-1.21.3/src/plugins/kdb/ldap/ldap_util/kdb5_ldap_realm.c:724:31: danger: ‘slist’ leaks here; was allocated at [(15)](sarif:/runs/0/results/19/codeFlows/0/threadFlows/0/locations/14) # 722| goto cleanup; # 723| } # 724|-> if ((retval = krb5_parse_list(argv[i], LIST_DELIMITER, slist))) { # 725| free(slist); # 726| slist = NULL;
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.90.0 |
| diffbase-analyzer-version-cppcheck | 2.18.3 |
| diffbase-analyzer-version-gcc | 15.2.1 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.0 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-7.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-gcc-latest-x86_64 |
| diffbase-project-name | krb5-1.21.3-10.fc44 |
| diffbase-store-results-to | /tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.tar.xz |
| diffbase-time-created | 2025-10-28 18:56:32 |
| diffbase-time-finished | 2025-10-28 19:03:29 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmp86p0ji4v/krb5-1.21.3-10.fc44.src.rpm' |
| diffbase-tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-7.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | krb5-1.21.3-7.fc43 |
| store-results-to | /tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.tar.xz |
| time-created | 2025-10-28 18:47:46 |
| time-finished | 2025-10-28 18:55:10 |
| title | Fixed findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpugzhqq37/krb5-1.21.3-7.fc43.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |