c-ares-1.25.0-3.fc40
List of Defects
Error: CPPCHECK_WARNING (CWE-457): [#def1]
c-ares-1.25.0/src/lib/ares__buf.c:1004: warning[uninitvar]: Uninitialized variable: status
# 1002|
# 1003|
# 1004|-> if (status != ARES_SUCCESS) {
# 1005| ares__buf_destroy(binbuf);
# 1006| } else {
Error: GCC_ANALYZER_WARNING (CWE-476): [#def2]
c-ares-1.25.0/src/lib/ares_getnameinfo.c: scope_hint: In function ‘ares_getnameinfo_int’
c-ares-1.25.0/src/lib/ares_getnameinfo.c:175:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
# 173| if (sa->sa_family == AF_INET) {
# 174| niquery->family = AF_INET;
# 175|-> memcpy(&niquery->addr.addr4, addr, sizeof(niquery->addr.addr4));
# 176| ares_gethostbyaddr(channel, &addr->sin_addr, sizeof(struct in_addr),
# 177| AF_INET, nameinfo_callback, niquery);
Error: GCC_ANALYZER_WARNING (CWE-688): [#def3]
c-ares-1.25.0/src/lib/ares_getnameinfo.c:180:9: warning[-Wanalyzer-null-argument]: use of NULL ‘addr6’ where non-null expected
<built-in>: note: argument 2 of ‘__builtin_memcpy’ must be non-null
# 178| } else {
# 179| niquery->family = AF_INET6;
# 180|-> memcpy(&niquery->addr.addr6, addr6, sizeof(niquery->addr.addr6));
# 181| ares_gethostbyaddr(channel, &addr6->sin6_addr,
# 182| sizeof(struct ares_in6_addr), AF_INET6,
Error: GCC_ANALYZER_WARNING (CWE-775): [#def4]
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c:296:14: warning[-Wanalyzer-file-leak]: leak of FILE ‘*state.state.rand_file’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
# 294| size_t rv = fread(buf + bytes_read, 1, len - bytes_read,
# 295| state->state.rand_file);
# 296|-> if (rv == 0) {
# 297| break; /* critical error, will reinit rand state */
# 298| }
Error: GCC_ANALYZER_WARNING (CWE-401): [#def5]
c-ares-1.25.0/src/lib/ares_rand.c:296:14: warning[-Wanalyzer-malloc-leak]: leak of ‘*state.state.rand_file’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
c-ares-1.25.0/src/lib/ares_rand.c: scope_hint: In function ‘ares__rand_bytes_fetch’
# 294| size_t rv = fread(buf + bytes_read, 1, len - bytes_read,
# 295| state->state.rand_file);
# 296|-> if (rv == 0) {
# 297| break; /* critical error, will reinit rand state */
# 298| }
Scan Properties
| analyzer-version-clang | 18.1.3 |
| analyzer-version-cppcheck | 2.13.0 |
| analyzer-version-gcc | 14.0.1 |
| analyzer-version-gcc-analyzer | 14.0.1 |
| analyzer-version-shellcheck | 0.10.0 |
| enabled-plugins | clang, cppcheck, gcc, shellcheck |
| exit-code | 0 |
| host | ip-172-16-1-71.us-west-2.compute.internal |
| mock-config | fedora-41-x86_64 |
| project-name | c-ares-1.25.0-3.fc40 |
| store-results-to | /tmp/tmp4h7re876/c-ares-1.25.0-3.fc40.tar.xz |
| time-created | 2024-04-22 10:51:35 |
| time-finished | 2024-04-22 10:53:27 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmp4h7re876/c-ares-1.25.0-3.fc40.tar.xz' '--gcc-analyze' '/tmp/tmp4h7re876/c-ares-1.25.0-3.fc40.src.rpm' |
| tool-version | csmock-3.5.3-1.el9 |