Error: GCC_ANALYZER_WARNING (CWE-476): [#def1] pkcs11-provider-1.2.0/src/encoder.c:181:28: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’ # 179| rsakey = decode_rsa_pubkey(pkeyinfo); # 180| # 181|-> n = ASN1_INTEGER_to_BN(rsakey->n, NULL); # 182| e = ASN1_INTEGER_to_BN(rsakey->e, NULL); # 183| if (!n || !e) { Error: GCC_ANALYZER_WARNING (CWE-121): [#def2] pkcs11-provider-1.2.0/src/obj/export.c:52:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 50| switch (attrs[i].type) { # 51| case CKA_MODULUS: # 52|-> types[attrnum] = CKA_MODULUS; # 53| params[attrnum] = # 54| OSSL_PARAM_construct_BN(OSSL_PKEY_PARAM_RSA_N, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def3] pkcs11-provider-1.2.0/src/obj/export.c:54:21: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 52| types[attrnum] = CKA_MODULUS; # 53| params[attrnum] = # 54|-> OSSL_PARAM_construct_BN(OSSL_PKEY_PARAM_RSA_N, NULL, 0); # 55| attrnum++; # 56| break; Error: GCC_ANALYZER_WARNING (CWE-121): [#def4] pkcs11-provider-1.2.0/src/obj/export.c:58:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 56| break; # 57| case CKA_PUBLIC_EXPONENT: # 58|-> types[attrnum] = CKA_PUBLIC_EXPONENT; # 59| params[attrnum] = # 60| OSSL_PARAM_construct_BN(OSSL_PKEY_PARAM_RSA_E, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def5] pkcs11-provider-1.2.0/src/obj/export.c:60:21: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 58| types[attrnum] = CKA_PUBLIC_EXPONENT; # 59| params[attrnum] = # 60|-> OSSL_PARAM_construct_BN(OSSL_PKEY_PARAM_RSA_E, NULL, 0); # 61| attrnum++; # 62| break; Error: GCC_ANALYZER_WARNING (CWE-121): [#def6] pkcs11-provider-1.2.0/src/obj/export.c:69:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 67| switch (attrs[i].type) { # 68| case CKA_P11PROV_CURVE_NAME: # 69|-> types[attrnum] = CKA_P11PROV_CURVE_NAME; # 70| params[attrnum] = OSSL_PARAM_construct_utf8_string( # 71| OSSL_PKEY_PARAM_GROUP_NAME, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def7] pkcs11-provider-1.2.0/src/obj/export.c:70:35: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 68| case CKA_P11PROV_CURVE_NAME: # 69| types[attrnum] = CKA_P11PROV_CURVE_NAME; # 70|-> params[attrnum] = OSSL_PARAM_construct_utf8_string( # 71| OSSL_PKEY_PARAM_GROUP_NAME, NULL, 0); # 72| attrnum++; Error: GCC_ANALYZER_WARNING (CWE-121): [#def8] pkcs11-provider-1.2.0/src/obj/export.c:75:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 73| break; # 74| case CKA_P11PROV_PUB_KEY: # 75|-> types[attrnum] = CKA_P11PROV_PUB_KEY; # 76| params[attrnum] = OSSL_PARAM_construct_octet_string( # 77| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def9] pkcs11-provider-1.2.0/src/obj/export.c:76:35: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 74| case CKA_P11PROV_PUB_KEY: # 75| types[attrnum] = CKA_P11PROV_PUB_KEY; # 76|-> params[attrnum] = OSSL_PARAM_construct_octet_string( # 77| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); # 78| attrnum++; Error: GCC_ANALYZER_WARNING (CWE-121): [#def10] pkcs11-provider-1.2.0/src/obj/export.c:86:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 84| switch (attrs[i].type) { # 85| case CKA_P11PROV_PUB_KEY: # 86|-> types[attrnum] = CKA_P11PROV_PUB_KEY; # 87| params[attrnum] = OSSL_PARAM_construct_octet_string( # 88| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def11] pkcs11-provider-1.2.0/src/obj/export.c:87:35: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 85| case CKA_P11PROV_PUB_KEY: # 86| types[attrnum] = CKA_P11PROV_PUB_KEY; # 87|-> params[attrnum] = OSSL_PARAM_construct_octet_string( # 88| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); # 89| attrnum++; Error: GCC_ANALYZER_WARNING (CWE-121): [#def12] pkcs11-provider-1.2.0/src/obj/export.c:98:17: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 96| switch (attrs[i].type) { # 97| case CKA_VALUE: # 98|-> types[attrnum] = CKA_VALUE; # 99| params[attrnum] = OSSL_PARAM_construct_octet_string( # 100| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); Error: GCC_ANALYZER_WARNING (CWE-121): [#def13] pkcs11-provider-1.2.0/src/obj/export.c:99:35: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow pkcs11-provider-1.2.0/src/obj/export.c:740:5: enter_function: entry to ‘p11prov_obj_export_public_key’ pkcs11-provider-1.2.0/src/obj/export.c:745:16: call_function: calling ‘p11prov_obj_export_public_rsa_key’ from ‘p11prov_obj_export_public_key’ # 97| case CKA_VALUE: # 98| types[attrnum] = CKA_VALUE; # 99|-> params[attrnum] = OSSL_PARAM_construct_octet_string( # 100| OSSL_PKEY_PARAM_PUB_KEY, NULL, 0); # 101| attrnum++;
| analyzer-version-clippy | 1.95.0 |
| analyzer-version-cppcheck | 2.20.0 |
| analyzer-version-gcc | 16.1.1 |
| analyzer-version-gcc-analyzer | 16.1.1 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.95.0 |
| diffbase-analyzer-version-cppcheck | 2.20.0 |
| diffbase-analyzer-version-gcc | 16.1.1 |
| diffbase-analyzer-version-gcc-analyzer | 16.1.1 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-178.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20260524.213755.g3c6d0be.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-x86_64 |
| diffbase-project-name | pkcs11-provider-1.1-3.fc44 |
| diffbase-store-results-to | /tmp/tmpv3fo1u9_/pkcs11-provider-1.1-3.fc44.tar.xz |
| diffbase-time-created | 2026-06-01 15:36:09 |
| diffbase-time-finished | 2026-06-01 15:38:04 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'shellcheck,cppcheck,clippy,unicontrol,gcc' '-o' '/tmp/tmpv3fo1u9_/pkcs11-provider-1.1-3.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmpv3fo1u9_/pkcs11-provider-1.1-3.fc44.src.rpm' |
| diffbase-tool-version | csmock-3.8.5.20260529.133039.g6f3b5c6-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-178.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20260524.213755.g3c6d0be.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | pkcs11-provider-1.2.0-1.fc45 |
| store-results-to | /tmp/tmpda93i9wi/pkcs11-provider-1.2.0-1.fc45.tar.xz |
| time-created | 2026-06-01 15:38:12 |
| time-finished | 2026-06-01 15:39:40 |
| title | Newly introduced findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'shellcheck,cppcheck,clippy,unicontrol,gcc' '-o' '/tmp/tmpda93i9wi/pkcs11-provider-1.2.0-1.fc45.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--gcc-analyzer-bin=/usr/bin/gcc' '/tmp/tmpda93i9wi/pkcs11-provider-1.2.0-1.fc45.src.rpm' |
| tool-version | csmock-3.8.5.20260529.133039.g6f3b5c6-1.el9 |