Task #19975 - osbuild-composer-123-1.20241029083153124452.main.20.gd29f4665a/scan-results.js
back to task #19975download
{
"scan": {
"analyzer-version-clippy": "1.82.0",
"analyzer-version-cppcheck": "2.16.0",
"analyzer-version-gcc": "14.2.1",
"analyzer-version-gcc-analyzer": "14.2.1",
"analyzer-version-shellcheck": "0.10.0",
"analyzer-version-unicontrol": "0.0.2",
"enabled-plugins": "clippy, cppcheck, gcc, shellcheck, unicontrol",
"exit-code": 0,
"host": "ip-172-16-1-136.us-west-2.compute.internal",
"mock-config": "fedora-rawhide-x86_64",
"project-name": "osbuild-composer-123-1.20241029083153124452.main.20.gd29f4665a",
"store-results-to": "/tmp/tmpc3vwpr1w/osbuild-composer-123-1.20241029083153124452.main.20.gd29f4665a.tar.xz",
"time-created": "2024-10-29 12:47:32",
"time-finished": "2024-10-29 12:58:43",
"tool": "csmock",
"tool-args": "'/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'clippy,gcc,cppcheck,shellcheck,unicontrol' '-o' '/tmp/tmpc3vwpr1w/osbuild-composer-123-1.20241029083153124452.main.20.gd29f4665a.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '/tmp/tmpc3vwpr1w/osbuild-composer-123-1.20241029083153124452.main.20.gd29f4665a.src.rpm'",
"tool-version": "csmock-3.7.1-1.el9"
},
"defects": [
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 775,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "62b48a5cfc30fe1c378c1b70ff971981c00fd337",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘parse_proc_stringlist’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 120,
"column": 25,
"event": "warning[-Wanalyzer-fd-leak]",
"message": "leak of file descriptor ‘fd’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 108,
"column": 14,
"event": "note",
"message": "(4) opened here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(5) assuming ‘fd’ is a valid file descriptor (>= 0)",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(6) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(7) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(8) when ‘realloc’ fails",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(9) following ‘true’ branch (when ‘new_buf’ is NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 119,
"column": 25,
"event": "note",
"message": "(10) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 120,
"column": 25,
"event": "note",
"message": "(11) ‘fd’ leaks here; was opened at (4)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 118| \t\tif (new_buf == NULL) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 119| \t\t\tfree(buf);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 120|-> \t\t\tfprintf(stderr, \"realloc(%ld): out of memory\\n\", (long)(size + BUFSTEP));",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 121| \t\t\treturn NULL;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 122| \t\t}",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 775,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "0c39bcf4b7a25351661b8ece0dbef8bee1f22a06",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "warning[-Wanalyzer-fd-leak]",
"message": "leak of file descriptor ‘fd’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 108,
"column": 14,
"event": "note",
"message": "(4) opened here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(5) assuming ‘fd’ is a valid file descriptor (>= 0)",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(6) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(7) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(8) when ‘realloc’ succeeds, moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(9) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(10) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(11) following ‘true’ branch (when ‘n < 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "note",
"message": "(12) ...to here (13) ‘fd’ leaks here; was opened at (4)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 126| \t\tn = read(fd, buf + used, size - used - 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 127| \t\tif (n < 0) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 128|-> \t\t\tfprintf(stderr, \"read(): %m\\n\");",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 129| \t\t\treturn NULL;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 130| \t\t}",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 401,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "12c0efae372a66c01914e36fc30226856e50da35",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "warning[-Wanalyzer-malloc-leak]",
"message": "leak of ‘buf’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(6) allocated here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(7) when ‘realloc’ succeeds, moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(8) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(9) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(10) following ‘false’ branch (when ‘n >= 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(11) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(12) following ‘false’ branch (when ‘n != 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 134,
"column": 22,
"event": "note",
"message": "(13) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(14) when ‘realloc’ succeeds, without moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(15) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(16) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "note",
"message": "(17) ‘buf’ leaks here; was allocated at (6)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 126| \t\tn = read(fd, buf + used, size - used - 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 127| \t\tif (n < 0) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 128|-> \t\t\tfprintf(stderr, \"read(): %m\\n\");",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 129| \t\t\treturn NULL;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 130| \t\t}",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 401,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "58e0acdab275929d8fdd95a57497488e54292018",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "warning[-Wanalyzer-malloc-leak]",
"message": "leak of ‘new_buf’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(6) allocated here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(7) when ‘realloc’ succeeds, moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(8) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(9) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(10) following ‘true’ branch (when ‘n < 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 128,
"column": 25,
"event": "note",
"message": "(11) ...to here (12) ‘new_buf’ leaks here; was allocated at (6)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 126| \t\tn = read(fd, buf + used, size - used - 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 127| \t\tif (n < 0) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 128|-> \t\t\tfprintf(stderr, \"read(): %m\\n\");",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 129| \t\t\treturn NULL;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 130| \t\t}",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 401,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "0032c5afc3b874ed65b28cf69f3c564d09a7e3e1",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 145,
"column": 17,
"event": "warning[-Wanalyzer-malloc-leak]",
"message": "leak of ‘new_buf’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(6) allocated here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(7) when ‘realloc’ succeeds, moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(8) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(9) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(10) following ‘false’ branch (when ‘n >= 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(11) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(12) following ‘true’ branch (when ‘n == 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 136,
"column": 9,
"event": "note",
"message": "(13) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 138,
"column": 23,
"event": "note",
"message": "(14) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 143,
"column": 32,
"event": "note",
"message": "(15) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 144,
"column": 12,
"event": "note",
"message": "(16) following ‘true’ branch (when ‘ret’ is NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 145,
"column": 17,
"event": "note",
"message": "(17) ...to here (18) ‘new_buf’ leaks here; was allocated at (6)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 143| \tret = calloc(n_strings + 1, sizeof(char *));",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 144| \tif (ret == NULL) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 145|-> \t\tfprintf(stderr, \"calloc(): out of memory\\n\");",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 146| \t\treturn NULL;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 147| \t}",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 401,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "85773ebf5a838b9666bc06b241d8634c2f44fe58",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘containers_reexec’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 288,
"column": 12,
"event": "warning[-Wanalyzer-malloc-leak]",
"message": "leak of ‘argv’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 275,
"column": 12,
"event": "note",
"message": "(1) entry to ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(2) calling ‘parse_proc_stringlist’ from ‘containers_reexec’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 103,
"column": 15,
"event": "note",
"message": "(3) entry to ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 109,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘fd != -1’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(6) when ‘realloc’ succeeds, moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(7) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(8) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(9) following ‘false’ branch (when ‘n >= 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(10) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(11) following ‘false’ branch (when ‘n != 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 134,
"column": 22,
"event": "note",
"message": "(12) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 117,
"column": 27,
"event": "note",
"message": "(13) when ‘realloc’ succeeds, without moving buffer",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 118,
"column": 20,
"event": "note",
"message": "(14) following ‘false’ branch (when ‘new_buf’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 125,
"column": 28,
"event": "note",
"message": "(15) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 127,
"column": 20,
"event": "note",
"message": "(16) following ‘false’ branch (when ‘n >= 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 131,
"column": 20,
"event": "note",
"message": "(17) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 139,
"column": 20,
"event": "note",
"message": "(18) following ‘true’ branch (when ‘n == 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 140,
"column": 34,
"event": "note",
"message": "(19) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 143,
"column": 15,
"event": "note",
"message": "(20) allocated here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 144,
"column": 12,
"event": "note",
"message": "(21) assuming ‘ret’ is non-NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 144,
"column": 12,
"event": "note",
"message": "(22) following ‘false’ branch (when ‘ret’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(23) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 149,
"column": 23,
"event": "note",
"message": "(24) following ‘true’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 150,
"column": 20,
"event": "note",
"message": "(25) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 150,
"column": 20,
"event": "note",
"message": "(26) following ‘true’ branch (when ‘n == 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 151,
"column": 30,
"event": "note",
"message": "(27) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 279,
"column": 16,
"event": "note",
"message": "(28) returning to ‘containers_reexec’ from ‘parse_proc_stringlist’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 280,
"column": 12,
"event": "note",
"message": "(29) following ‘false’ branch (when ‘argv’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 284,
"column": 19,
"event": "note",
"message": "(30) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 288,
"column": 12,
"event": "note",
"message": "(31) following ‘true’ branch (when ‘fd < 0’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(32) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/containers/storage/pkg/unshare/unshare.c",
"line": 288,
"column": 12,
"event": "note",
"message": "(33) ‘argv’ leaks here; was allocated at (20)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 286| \tif (fd < 0)",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 287| \t\tfd = copy_self_proc_exe(argv);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 288|-> \tif (fd < 0)",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 289| \t\treturn fd;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 290| ",
"verbosity_level": 1
}
]
},
{
"checker": "CPPCHECK_WARNING",
"language": "c/c++",
"tool": "cppcheck",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/mattn/go-sqlite3/sqlite3-binding.c",
"line": 0,
"event": "internal warning",
"message": "child 14615 timed out after 30s",
"verbosity_level": 0
}
]
},
{
"checker": "COMPILER_WARNING",
"language": "c/c++",
"tool": "gcc",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/mattn/go-sqlite3/sqlite3-binding.c",
"line": 0,
"event": "internal warning",
"message": "child 14622 timed out after 30s",
"verbosity_level": 0
}
]
},
{
"checker": "CPPCHECK_WARNING",
"language": "c/c++",
"tool": "cppcheck",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/mattn/go-sqlite3/sqlite3-binding.c",
"line": 0,
"event": "internal warning",
"message": "child 4821 timed out after 30s",
"verbosity_level": 0
}
]
},
{
"checker": "COMPILER_WARNING",
"language": "c/c++",
"tool": "gcc",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/mattn/go-sqlite3/sqlite3-binding.c",
"line": 0,
"event": "internal warning",
"message": "child 4827 timed out after 30s",
"verbosity_level": 0
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "e9d619fe8a7dc6b7107a3ede43c0db564bc5a9b1",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 0,
"event": "scope_hint",
"message": "In function 'New'",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 77,
"column": 19,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL 'c'",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 76,
"column": 25,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 77,
"column": 19,
"event": "note",
"message": "(2) 'c' could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 75| \tCK_C_GetFunctionList list;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 76| \tstruct ctx *c = calloc(1, sizeof(struct ctx));",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 77|-> \tc->handle = dlopen(module, RTLD_LAZY);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 78| \tif (c->handle == NULL) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 79| \t\tfree(c);",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "1cd535cd3a6590653b0e9ac4709d26aa15ebbb36",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 0,
"event": "scope_hint",
"message": "In function ‘New’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 77,
"column": 19,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘c’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 76,
"column": 25,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 77,
"column": 19,
"event": "note",
"message": "(2) ‘c’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 75| \tCK_C_GetFunctionList list;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 76| \tstruct ctx *c = calloc(1, sizeof(struct ctx));",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 77|-> \tc->handle = dlopen(module, RTLD_LAZY);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 78| \tif (c->handle == NULL) {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 79| \t\tfree(c);",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 401,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "9d24d86c6b7daed10eb1e30204467a4c0973d54d",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 0,
"event": "scope_hint",
"message": "In function ‘GetAttributeValue.part.0’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 316,
"column": 32,
"event": "warning[-Wanalyzer-malloc-leak]",
"message": "leak of ‘*((CK_ATTRIBUTE *)temp).pValue’",
"verbosity_level": 0
},
{
"file_name": "cgo-gcc-prolog",
"line": 684,
"column": 1,
"event": "note",
"message": "(1) entry to ‘_cgo_6020a31fdefd_Cfunc_GetAttributeValue’",
"verbosity_level": 2
},
{
"file_name": "cgo-gcc-prolog",
"line": 697,
"column": 11,
"event": "note",
"message": "(2) calling ‘GetAttributeValue’ from ‘_cgo_6020a31fdefd_Cfunc_GetAttributeValue’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 300,
"column": 7,
"event": "note",
"message": "(3) entry to ‘GetAttributeValue’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 307,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘e == 0’)...",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "cc1",
"line": 0,
"event": "note",
"message": "(6) calling ‘GetAttributeValue.part.0’ from ‘GetAttributeValue’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 300,
"column": 7,
"event": "note",
"message": "(7) entry to ‘GetAttributeValue.part.0’",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 311,
"column": 23,
"event": "note",
"message": "(8) following ‘true’ branch (when ‘i < templen’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 312,
"column": 35,
"event": "note",
"message": "(9) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 312,
"column": 20,
"event": "note",
"message": "(10) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 316,
"column": 34,
"event": "note",
"message": "(11) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 316,
"column": 34,
"event": "note",
"message": "(12) allocated here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/miekg/pkcs11/pkcs11.go",
"line": 316,
"column": 32,
"event": "note",
"message": "(13) ‘*((CK_ATTRIBUTE *)temp).pValue’ leaks here; was allocated at (12)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 314| \t\t\tcontinue;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 315| \t\t}",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 316|-> \t\ttemp[i].pValue = calloc(temp[i].ulValueLen, sizeof(CK_BYTE));",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 317| \t}",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 318| \treturn c->sym->C_GetAttributeValue(session, object, temp, templen);",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 688,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "a8d43362fa7858c325c6bf9682d74f55ac81a91e",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 0,
"event": "scope_hint",
"message": "In function 'gnu_ext_crypt'",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 60,
"column": 17,
"event": "warning[-Wanalyzer-possible-null-argument]",
"message": "use of possibly-NULL 'ret' where non-null expected",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 55,
"column": 19,
"event": "note",
"message": "(1) following 'false' branch (when 'enc' is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 59,
"column": 39,
"event": "note",
"message": "(2) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 59,
"column": 31,
"event": "note",
"message": "(3) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 60,
"column": 17,
"event": "note",
"message": "(4) argument 1 ('ret') from (3) could be NULL where non-null expected",
"verbosity_level": 2
},
{
"file_name": "<built-in>",
"line": 0,
"event": "note",
"message": "argument 1 of '__builtin_strcpy' must be non-null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 58| ",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 59| \t\tret = (char *)malloc((strlen(enc)+1) * sizeof(char)); // for trailing null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 60|-> \t\tstrcpy(ret, enc);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 61| \t\tret[strlen(enc)]= '\\0';",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 62| ",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 688,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "89d24bdd07b0f75be13c6976aa70c2da216902c0",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 0,
"event": "scope_hint",
"message": "In function ‘gnu_ext_crypt’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 60,
"column": 17,
"event": "warning[-Wanalyzer-possible-null-argument]",
"message": "use of possibly-NULL ‘ret’ where non-null expected",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 55,
"column": 19,
"event": "note",
"message": "(1) following ‘false’ branch (when ‘enc’ is non-NULL)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 59,
"column": 39,
"event": "note",
"message": "(2) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 59,
"column": 31,
"event": "note",
"message": "(3) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/osbuild/images/pkg/crypt/crypt_impl.go",
"line": 60,
"column": 17,
"event": "note",
"message": "(4) argument 1 (‘ret’) from (3) could be NULL where non-null expected",
"verbosity_level": 2
},
{
"file_name": "<built-in>",
"line": 0,
"event": "note",
"message": "argument 1 of ‘__builtin_strcpy’ must be non-null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 58| ",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 59| \t\tret = (char *)malloc((strlen(enc)+1) * sizeof(char)); // for trailing null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 60|-> \t\tstrcpy(ret, enc);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 61| \t\tret[strlen(enc)]= '\\0';",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 62| ",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "7c3c5afe39d2b51edec1879b19cbeb0f02c34b00",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘base64_encode’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 49,
"column": 16,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘out’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 45,
"column": 28,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 47,
"column": 17,
"event": "note",
"message": "(2) following ‘true’ branch (when ‘vlen > 2’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 49,
"column": 32,
"event": "note",
"message": "(3) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 49,
"column": 16,
"event": "note",
"message": "(4) ‘out’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 47| while (vlen >= 3)",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 48| {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 49|-> *out++ = basis_64[value[0] >> 2];",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 50| *out++ = basis_64[((value[0] << 4) & 0x30) | (value[1] >> 4)];",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 51| *out++ = basis_64[((value[1] << 2) & 0x3C) | (value[2] >> 6)];",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "7c3c5afe39d2b51edec1879b19cbeb0f02c34b00",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 58,
"column": 16,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘out’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 45,
"column": 28,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 47,
"column": 17,
"event": "note",
"message": "(2) following ‘false’ branch (when ‘vlen <= 2’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 56,
"column": 8,
"event": "note",
"message": "(3) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 56,
"column": 8,
"event": "note",
"message": "(4) following ‘true’ branch (when ‘vlen != 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 58,
"column": 32,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 58,
"column": 16,
"event": "note",
"message": "(6) ‘out’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 56| if (vlen > 0)",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 57| {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 58|-> *out++ = basis_64[value[0] >> 2];",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 59| unsigned char oval = (value[0] << 4) & 0x30;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 60| if (vlen > 1) oval |= value[1] >> 4;",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "3dc780c3ef282f5ade3bc15ab2d5d8d4e9cdff7e",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 65,
"column": 10,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘out’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 45,
"column": 28,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 47,
"column": 17,
"event": "note",
"message": "(2) following ‘false’ branch (when ‘vlen <= 2’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 56,
"column": 8,
"event": "note",
"message": "(3) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 56,
"column": 8,
"event": "note",
"message": "(4) following ‘false’ branch (when ‘vlen == 0’)...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 65,
"column": 10,
"event": "note",
"message": "(5) ...to here (6) ‘out’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 63| *out++ = '=';",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 64| }",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 65|-> *out = '\\0';",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 66| ",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 67| return result;",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "2dd2ee01520eb113fcba0a2416b6f276c5764a8e",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘base64_decode’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 106,
"column": 16,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘out’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 81,
"column": 45,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 85,
"column": 12,
"event": "note",
"message": "(2) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 88,
"column": 12,
"event": "note",
"message": "(3) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 89,
"column": 12,
"event": "note",
"message": "(4) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 92,
"column": 19,
"event": "note",
"message": "(5) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 93,
"column": 12,
"event": "note",
"message": "(6) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 96,
"column": 19,
"event": "note",
"message": "(7) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 106,
"column": 16,
"event": "note",
"message": "(8) ‘out’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 104| ",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 105| value += 4;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 106|-> *out++ = (CHAR64(c1) << 2) | (CHAR64(c2) >> 4);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 107| *rlen += 1;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 108| ",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 476,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "7a99f38e74a804ec562cc2a8e34d81bf2f96324a",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 121,
"column": 13,
"event": "warning[-Wanalyzer-possible-null-dereference]",
"message": "dereference of possibly-NULL ‘result’",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 81,
"column": 45,
"event": "note",
"message": "(1) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 85,
"column": 12,
"event": "note",
"message": "(2) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 88,
"column": 12,
"event": "note",
"message": "(3) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/base64.c",
"line": 121,
"column": 13,
"event": "note",
"message": "(4) ‘result’ could be NULL: unchecked value from (1)",
"verbosity_level": 2
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 119| ",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 120| base64_decode_error:",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 121|-> *result = 0;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 122| *rlen = 0;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 123| ",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 688,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "2343dde8e412f5ee388c6874f375f542d7df0eb8",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘authenticate_gss_client_step’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 219,
"column": 13,
"event": "warning[-Wanalyzer-possible-null-argument]",
"message": "use of possibly-NULL ‘*state.username’ where non-null expected",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 186,
"column": 8,
"event": "note",
"message": "(1) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 193,
"column": 21,
"event": "note",
"message": "(2) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 199,
"column": 8,
"event": "note",
"message": "(3) following ‘true’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 200,
"column": 20,
"event": "note",
"message": "(4) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 202,
"column": 12,
"event": "note",
"message": "(5) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 208,
"column": 27,
"event": "note",
"message": "(6) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 210,
"column": 12,
"event": "note",
"message": "(7) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 218,
"column": 56,
"event": "note",
"message": "(8) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 218,
"column": 39,
"event": "note",
"message": "(9) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 219,
"column": 13,
"event": "note",
"message": "(10) argument 1 (‘malloc(name_token.length + 1)’) from (9) could be NULL where non-null expected",
"verbosity_level": 2
},
{
"file_name": "<built-in>",
"line": 0,
"event": "note",
"message": "argument 1 of ‘__builtin_strncpy’ must be non-null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 217| } else {",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 218| state->username = (char *)malloc(name_token.length + 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 219|-> strncpy(state->username, (char*) name_token.value, name_token.length);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 220| state->username[name_token.length] = 0;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 221| gss_release_buffer(&state->min_stat, &name_token);",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 688,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "cd72b005ef30d0d6a1faecb1e8a5e634cb31e8ed",
"key_event_idx": 1,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 0,
"event": "scope_hint",
"message": "In function ‘authenticate_gss_server_step’",
"verbosity_level": 1
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 386,
"column": 5,
"event": "warning[-Wanalyzer-possible-null-argument]",
"message": "use of possibly-NULL ‘*state.username’ where non-null expected",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 339,
"column": 8,
"event": "note",
"message": "(1) following ‘true’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 341,
"column": 29,
"event": "note",
"message": "(2) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 364,
"column": 8,
"event": "note",
"message": "(3) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 370,
"column": 21,
"event": "note",
"message": "(4) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 381,
"column": 8,
"event": "note",
"message": "(5) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 385,
"column": 50,
"event": "note",
"message": "(6) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 385,
"column": 31,
"event": "note",
"message": "(7) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 386,
"column": 5,
"event": "note",
"message": "(8) argument 1 (‘malloc(output_token.length + 1)’) from (7) could be NULL where non-null expected",
"verbosity_level": 2
},
{
"file_name": "<built-in>",
"line": 0,
"event": "note",
"message": "argument 1 of ‘__builtin_strncpy’ must be non-null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 384| }",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 385| state->username = (char *)malloc(output_token.length + 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 386|-> strncpy(state->username, (char*) output_token.value, output_token.length);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 387| state->username[output_token.length] = 0;",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 388| ",
"verbosity_level": 1
}
]
},
{
"checker": "GCC_ANALYZER_WARNING",
"cwe": 688,
"language": "c/c++",
"tool": "gcc-analyzer",
"hash_v1": "b9dc9d28c45ab595e7d6fcbd6a888fe283466090",
"key_event_idx": 0,
"events": [
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 408,
"column": 9,
"event": "warning[-Wanalyzer-possible-null-argument]",
"message": "use of possibly-NULL ‘*state.targetname’ where non-null expected",
"verbosity_level": 0
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 339,
"column": 8,
"event": "note",
"message": "(1) following ‘true’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 341,
"column": 29,
"event": "note",
"message": "(2) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 364,
"column": 8,
"event": "note",
"message": "(3) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 370,
"column": 21,
"event": "note",
"message": "(4) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 381,
"column": 8,
"event": "note",
"message": "(5) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 385,
"column": 50,
"event": "note",
"message": "(6) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 386,
"column": 5,
"event": "note",
"message": "(7) when ‘strncpy’ copies the full source string",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 390,
"column": 8,
"event": "note",
"message": "(8) following ‘true’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 391,
"column": 20,
"event": "note",
"message": "(9) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 396,
"column": 12,
"event": "note",
"message": "(10) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 400,
"column": 27,
"event": "note",
"message": "(11) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 403,
"column": 12,
"event": "note",
"message": "(12) following ‘false’ branch...",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 407,
"column": 56,
"event": "note",
"message": "(13) ...to here",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 407,
"column": 37,
"event": "note",
"message": "(14) this call could return NULL",
"verbosity_level": 2
},
{
"file_name": "osbuild-composer-123-build/osbuild-composer-123/vendor/github.com/ubccr/kerby/kerberosgss.c",
"line": 408,
"column": 9,
"event": "note",
"message": "(15) argument 1 (‘malloc(output_token.length + 1)’) from (14) could be NULL where non-null expected",
"verbosity_level": 2
},
{
"file_name": "<built-in>",
"line": 0,
"event": "note",
"message": "argument 1 of ‘__builtin_strncpy’ must be non-null",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 406| }",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 407| state->targetname = (char *)malloc(output_token.length + 1);",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 408|-> strncpy(",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 409| state->targetname, (char*) output_token.value, output_token.length",
"verbosity_level": 1
},
{
"file_name": "",
"line": 0,
"event": "#",
"message": " 410| );",
"verbosity_level": 1
}
]
}
]
}