Error: GCC_ANALYZER_WARNING (CWE-476): [#def1] mod_http2-2.0.35/mod_http2/h2_bucket_beam.c:313:18: warning[-Wanalyzer-null-dereference]: dereference of NULL 'conn_ctx' mod_http2-2.0.35/mod_http2/h2_bucket_beam.c:306:31: branch_false: following 'false' branch (when 'from' is NULL)... mod_http2-2.0.35/mod_http2/h2_bucket_beam.c:309:12: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_bucket_beam.c:313:18: danger: dereference of NULL 'conn_ctx' # 311| beam->from = from; # 312| beam->id = id; # 313|-> beam->name = apr_psprintf(pool, "%s-%d-%s", # 314| conn_ctx->id, id, tag); # 315| Error: GCC_ANALYZER_WARNING (CWE-476): [#def2] mod_http2-2.0.35/mod_http2/h2_c2.c:149:5: warning[-Wanalyzer-null-dereference]: dereference of NULL 'c2' mod_http2-2.0.35/mod_http2/h2_c2.c:147:31: branch_false: following 'false' branch (when 'c2' is NULL)... mod_http2-2.0.35/mod_http2/h2_private.h:26:1: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:149:5: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:149:5: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:149:5: danger: dereference of NULL 'c2' # 147| h2_conn_ctx_t *conn_ctx = h2_conn_ctx_get(c2); # 148| # 149|-> ap_log_cerror(APLOG_MARK, APLOG_TRACE3, 0, c2, # 150| "h2_c2(%s): destroy", c2->log_id); # 151| if(!c2->aborted && conn_ctx && conn_ctx->bytes_sent) { Error: GCC_ANALYZER_WARNING (CWE-476): [#def3] mod_http2-2.0.35/mod_http2/h2_c2.c:163:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'c2' mod_http2-2.0.35/mod_http2/h2_c2.c:159:31: branch_false: following 'false' branch (when 'c2' is NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:163:9: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:163:9: danger: dereference of NULL 'c2' # 161| AP_DEBUG_ASSERT(conn_ctx); # 162| AP_DEBUG_ASSERT(conn_ctx->stream_id); # 163|-> if(!c2->aborted && conn_ctx->bytes_sent) { # 164| h2_c2_log_io(c2, conn_ctx->bytes_sent); # 165| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def4] mod_http2-2.0.35/mod_http2/h2_c2.c:163:24: warning[-Wanalyzer-null-dereference]: dereference of NULL 'conn_ctx' mod_http2-2.0.35/mod_http2/h2_c2.c:368:21: enter_function: entry to 'h2_c2_filter_out' mod_http2-2.0.35/mod_http2/h2_c2.c:370:31: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:370:31: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:373:7: branch_false: following 'false' branch (when 'bb' is non-NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:380:5: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:380:5: branch_false: following 'false' branch (when 'conn_ctx' is non-NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:402:10: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:407:8: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:408:9: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:408:9: call_function: calling 'h2_c2_abort' from 'h2_c2_filter_out' # 161| AP_DEBUG_ASSERT(conn_ctx); # 162| AP_DEBUG_ASSERT(conn_ctx->stream_id); # 163|-> if(!c2->aborted && conn_ctx->bytes_sent) { # 164| h2_c2_log_io(c2, conn_ctx->bytes_sent); # 165| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def5] mod_http2-2.0.35/mod_http2/h2_c2.c:167:9: warning[-Wanalyzer-null-dereference]: dereference of NULL 'conn_ctx' mod_http2-2.0.35/mod_http2/h2_c2.c:368:21: enter_function: entry to 'h2_c2_filter_out' mod_http2-2.0.35/mod_http2/h2_c2.c:370:31: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:370:31: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:373:7: branch_false: following 'false' branch (when 'bb' is non-NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:380:5: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:380:5: branch_false: following 'false' branch (when 'conn_ctx' is non-NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:402:10: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:407:8: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:408:9: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:408:9: call_function: calling 'h2_c2_abort' from 'h2_c2_filter_out' # 165| } # 166| # 167|-> if (conn_ctx->beam_in) { # 168| h2_beam_abort(conn_ctx->beam_in, from); # 169| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def6] mod_http2-2.0.35/mod_http2/h2_c2.c:199:31: warning[-Wanalyzer-null-dereference]: dereference of NULL '*f.c' mod_http2-2.0.35/mod_http2/h2_c2.c:195:16: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:198:8: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:198:8: branch_true: following 'true' branch (when 'mode == 5')... mod_http2-2.0.35/mod_http2/h2_c2.c:199:31: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:199:31: danger: dereference of NULL '*f.c' # 197| # 198| if (mode == AP_MODE_INIT) { # 199|-> return ap_get_brigade(f->c->input_filters, bb, mode, block, readbytes); # 200| } # 201| Error: GCC_ANALYZER_WARNING (CWE-476): [#def7] mod_http2-2.0.35/mod_http2/h2_c2.c:202:9: warning[-Wanalyzer-null-dereference]: dereference of NULL '*f.c' mod_http2-2.0.35/mod_http2/h2_c2.c:195:16: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:198:8: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:198:8: branch_false: following 'false' branch (when 'mode != 5')... mod_http2-2.0.35/mod_http2/h2_c2.c:202:9: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:202:9: danger: dereference of NULL '*f.c' # 200| } # 201| # 202|-> if (f->c->aborted) { # 203| return APR_ECONNABORTED; # 204| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def8] mod_http2-2.0.35/mod_http2/h2_c2.c:375:9: warning[-Wanalyzer-null-dereference]: dereference of NULL '*f.c' mod_http2-2.0.35/mod_http2/h2_c2.c:370:31: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2.c:373:7: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:373:7: branch_true: following 'true' branch (when 'bb' is NULL)... mod_http2-2.0.35/mod_http2/h2_c2.c:375:9: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2.c:375:9: danger: dereference of NULL '*f.c' # 373| if (bb == NULL) { # 374| #if !AP_MODULE_MAGIC_AT_LEAST(20180720, 1) # 375|-> f->c->data_in_output_filters = 0; # 376| #endif # 377| return APR_SUCCESS; Error: GCC_ANALYZER_WARNING (CWE-476): [#def9] mod_http2-2.0.35/mod_http2/h2_c2_filter.c:310:16: warning[-Wanalyzer-null-dereference]: dereference of NULL '*r.content_languages' mod_http2-2.0.35/mod_http2/h2_c2_filter.c:681:14: enter_function: entry to 'h2_c2_filter_response_out' mod_http2-2.0.35/mod_http2/h2_c2_filter.c:683:31: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:683:31: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2_filter.c:692:8: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:724:12: branch_false: following 'false' branch (when 'eb' is NULL)... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:736:13: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2_filter.c:736:12: branch_true: following 'true' branch... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:739:24: branch_true: ...to here mod_http2-2.0.35/mod_http2/h2_c2_filter.c:739:24: call_function: calling 'create_response' from 'h2_c2_filter_response_out' # 308| int i; # 309| char *token; # 310|-> char **languages = (char **)(r->content_languages->elts); # 311| const char *field = apr_table_get(r->headers_out, "Content-Language"); # 312| Error: GCC_ANALYZER_WARNING (CWE-476): [#def10] mod_http2-2.0.35/mod_http2/h2_c2_filter.c:690:5: warning[-Wanalyzer-null-dereference]: dereference of NULL '*f.c' mod_http2-2.0.35/mod_http2/h2_c2_filter.c:683:31: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:684:18: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2_filter.c:690:5: branch_false: following 'false' branch... mod_http2-2.0.35/mod_http2/h2_c2_filter.c:690:5: branch_false: ...to here mod_http2-2.0.35/mod_http2/h2_c2_filter.c:690:5: danger: dereference of NULL '*f.c' # 688| int headers_passing = 0; # 689| # 690|-> H2_FILTER_LOG("c2_response_out", f->c, APLOG_TRACE1, 0, "called with", bb); # 691| # 692| if (f->c->aborted || !conn_ctx || conn_ctx->has_final_response) { Error: GCC_ANALYZER_WARNING (CWE-131): [#def11] mod_http2-2.0.35/mod_http2/h2_push.c:855:18: warning[-Wanalyzer-allocation-size]: allocated buffer size is not a multiple of the pointee's size # 853| || !strcmp("*", authority) || !strcmp(diary->authority, authority)) { # 854| hash_count = diary->entries->nelts; # 855|-> hashes = apr_pcalloc(encoder.pool, hash_count); # 856| for (i = 0; i < hash_count; ++i) { # 857| hashes[i] = ((&APR_ARRAY_IDX(diary->entries, i, h2_push_diary_entry))->hash
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-125.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | mod_http2-2.0.35-1.fc44 |
| store-results-to | /tmp/tmp_cn3lkn0/mod_http2-2.0.35-1.fc44.tar.xz |
| time-created | 2025-10-28 19:26:25 |
| time-finished | 2025-10-28 19:28:04 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmp_cn3lkn0/mod_http2-2.0.35-1.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmp_cn3lkn0/mod_http2-2.0.35-1.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |