Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] openscap-1.4.4/src/DS/rds_index.c:263:29: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 261| # 262| if (strcmp(name, "report-requests") == 0) { # 263|-> if (xmlTextReaderRead(reader) != 1) { # 264| oscap_setxmlerr(xmlGetLastError()); # 265| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] openscap-1.4.4/src/DS/rds_index.c:267:32: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 265| } # 266| # 267|-> while (oscap_to_start_element(reader, 2)) # 268| { # 269| if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "report-request") != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def3] openscap-1.4.4/src/DS/rds_index.c:269:57: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 267| while (oscap_to_start_element(reader, 2)) # 268| { # 269|-> if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "report-request") != 0) { # 270| // TODO: warning? # 271| continue; Error: GCC_ANALYZER_WARNING (CWE-401): [#def4] openscap-1.4.4/src/DS/rds_index.c:274:77: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 272| } # 273| # 274|-> struct rds_report_request_index* rr_index = rds_report_request_index_parse(reader); # 275| rds_index_add_report_request(ret, rr_index); # 276| Error: GCC_ANALYZER_WARNING (CWE-401): [#def5] openscap-1.4.4/src/DS/rds_index.c:284:29: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 282| else if (strcmp(name, "assets") == 0) # 283| { # 284|-> if (xmlTextReaderRead(reader) != 1) { # 285| oscap_setxmlerr(xmlGetLastError()); # 286| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def6] openscap-1.4.4/src/DS/rds_index.c:288:32: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 286| } # 287| # 288|-> while (oscap_to_start_element(reader, 2)) # 289| { # 290| if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "asset") != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] openscap-1.4.4/src/DS/rds_index.c:290:57: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 288| while (oscap_to_start_element(reader, 2)) # 289| { # 290|-> if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "asset") != 0) { # 291| // TODO: warning? # 292| continue; Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] openscap-1.4.4/src/DS/rds_index.c:295:67: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 293| } # 294| # 295|-> struct rds_asset_index* a_index = rds_asset_index_parse(reader); # 296| rds_index_add_asset(ret, a_index); # 297| Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] openscap-1.4.4/src/DS/rds_index.c:305:29: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 303| else if (strcmp(name, "reports") == 0) # 304| { # 305|-> if (xmlTextReaderRead(reader) != 1) { # 306| oscap_setxmlerr(xmlGetLastError()); # 307| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] openscap-1.4.4/src/DS/rds_index.c:309:32: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 307| } # 308| # 309|-> while (oscap_to_start_element(reader, 2)) # 310| { # 311| if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "report") != 0) { Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] openscap-1.4.4/src/DS/rds_index.c:311:57: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 309| while (oscap_to_start_element(reader, 2)) # 310| { # 311|-> if (strcmp((const char*)xmlTextReaderConstLocalName(reader), "report") != 0) { # 312| // TODO: warning? # 313| continue; Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] openscap-1.4.4/src/DS/rds_index.c:316:68: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 314| } # 315| # 316|-> struct rds_report_index* r_index = rds_report_index_parse(reader); # 317| rds_index_add_report(ret, r_index); # 318| Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] openscap-1.4.4/src/DS/rds_index.c:329:61: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 327| // # 328| // extended = 1 means that we want to copy all including children # 329|-> xmlNodePtr new_relationships_node = xmlCopyNode(xmlTextReaderExpand(reader), 1); # 330| # 331| if (relationships_node) Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] openscap-1.4.4/src/DS/rds_index.c:335:33: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 333| oscap_seterr(OSCAP_EFAMILY_XML, "There is more than 1 <core:relationships> element in the Result DataStream.\n" # 334| "Please make sure the input file is valid! Only the first element will be used to build the index!"); # 335|-> xmlFreeNode(new_relationships_node); # 336| } # 337| else Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] openscap-1.4.4/src/DS/rds_index.c:345:17: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ # 343| } # 344| # 345|-> xmlTextReaderRead(reader); # 346| } # 347| Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] openscap-1.4.4/src/DS/rds_index.c:349:9: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ openscap-1.4.4/src/DS/rds_index.c:185:17: note: in expansion of macro ‘oscap_seterr’ # 347| # 348| _parse_relationships_node(ret, relationships_node); # 349|-> xmlFreeNode(relationships_node); # 350| # 351| return ret; Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ openscap-1.4.4/src/DS/sds.c:836:60: warning[-Wanalyzer-malloc-leak]: leak of ‘ds_sds_mangle_filepath(real_path)’ openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ # 834| // the string will grow 2x the size in the worst case (every char is /) # 835| // TODO: We can do better than this by counting the slashes # 836|-> char* ret = malloc(strlen(filepath) * sizeof(char) * 2); # 837| # 838| const char* src_it = filepath; Error: GCC_ANALYZER_WARNING (CWE-476): [#def18] openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_mangle_filepath’ openscap-1.4.4/src/DS/sds.c:845:35: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘dst_it’ # 843| if (*src_it == '/') # 844| { # 845|-> *dst_it++ = '-'; # 846| *dst_it++ = '-'; # 847| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def19] openscap-1.4.4/src/DS/sds.c:849:35: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘dst_it’ # 847| } # 848| else if (*src_it == '@') { # 849|-> *dst_it++ = '-'; # 850| *dst_it++ = '-'; # 851| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def20] openscap-1.4.4/src/DS/sds.c:854:35: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘dst_it’ # 852| else # 853| { # 854|-> *dst_it++ = *src_it; # 855| } # 856| Error: GCC_ANALYZER_WARNING (CWE-476): [#def21] openscap-1.4.4/src/DS/sds.c:860:17: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘dst_it’ # 858| } # 859| # 860|-> *dst_it = '\0'; # 861| # 862| return ret; Error: GCC_ANALYZER_WARNING (CWE-401): [#def22] openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ openscap-1.4.4/src/DS/sds.c:911:29: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ openscap-1.4.4/src/DS/sds.c: scope_hint: In function ‘ds_sds_compose_add_component_dependencies’ # 909| struct oscap_htable *exported = oscap_htable_new(); # 910| char* filepath_cpy = oscap_strdup(oscap_source_readable_origin(component_source)); # 911|-> char *dir = oscap_dirname(filepath_cpy); # 912| # 913| for (int i = 0; i < nodeset->nodeNr; i++) Error: GCC_ANALYZER_WARNING (CWE-401): [#def23] openscap-1.4.4/src/OVAL/oval_component.c:1017:16: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 10)’ openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_TIMEDIF_tag’ # 1015| { # 1016| oval_component_FUNCTION_t *function = (oval_component_FUNCTION_t *) component; # 1017|-> return oval_parser_parse_tag(reader, context, &oval_subcomp_tag_consume, function); # 1018| } # 1019| Error: GCC_ANALYZER_WARNING (CWE-401): [#def24] openscap-1.4.4/src/OVAL/oval_component.c:1017:16: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 9)’ openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_SUBSTRING_tag’ # 1015| { # 1016| oval_component_FUNCTION_t *function = (oval_component_FUNCTION_t *) component; # 1017|-> return oval_parser_parse_tag(reader, context, &oval_subcomp_tag_consume, function); # 1018| } # 1019| Error: GCC_ANALYZER_WARNING (CWE-401): [#def25] openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_ARITHMETIC_tag’ openscap-1.4.4/src/OVAL/oval_component.c:1026:49: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 13)’ # 1024| # 1025| oval_component_ARITHMETIC_t *arithmetic = (oval_component_ARITHMETIC_t *) component; # 1026|-> oval_arithmetic_operation_t operation = oval_arithmetic_operation_parse(reader, "arithmetic_operation", # 1027| OVAL_ARITHMETIC_UNKNOWN); # 1028| arithmetic->operation = operation; Error: GCC_ANALYZER_WARNING (CWE-476): [#def26] openscap-1.4.4/src/OVAL/oval_component.c:1028:31: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘component’ # 1026| oval_arithmetic_operation_t operation = oval_arithmetic_operation_parse(reader, "arithmetic_operation", # 1027| OVAL_ARITHMETIC_UNKNOWN); # 1028|-> arithmetic->operation = operation; # 1029| return _oval_component_parse_FUNCTION_tag(reader, context, component); # 1030| } Error: GCC_ANALYZER_WARNING (CWE-476): [#def27] openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_BEGEND_tag’ openscap-1.4.4/src/OVAL/oval_component.c:1039:27: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘component’ # 1037| # 1038| oval_component_BEGEND_t *begend = (oval_component_BEGEND_t *) component; # 1039|-> begend->character = (char *)xmlTextReaderGetAttribute(reader, BAD_CAST "character"); # 1040| # 1041| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def28] openscap-1.4.4/src/OVAL/oval_component.c:1039:37: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 5)’ # 1037| # 1038| oval_component_BEGEND_t *begend = (oval_component_BEGEND_t *) component; # 1039|-> begend->character = (char *)xmlTextReaderGetAttribute(reader, BAD_CAST "character"); # 1040| # 1041| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def29] openscap-1.4.4/src/OVAL/oval_component.c:1039:37: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 7)’ # 1037| # 1038| oval_component_BEGEND_t *begend = (oval_component_BEGEND_t *) component; # 1039|-> begend->character = (char *)xmlTextReaderGetAttribute(reader, BAD_CAST "character"); # 1040| # 1041| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-476): [#def30] openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_SPLIT_tag’ openscap-1.4.4/src/OVAL/oval_component.c:1051:26: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘component’ # 1049| # 1050| oval_component_SPLIT_t *split = (oval_component_SPLIT_t *) component; # 1051|-> split->delimiter = (char *)xmlTextReaderGetAttribute(reader, BAD_CAST "delimiter"); # 1052| # 1053| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def31] openscap-1.4.4/src/OVAL/oval_component.c:1051:36: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 8)’ # 1049| # 1050| oval_component_SPLIT_t *split = (oval_component_SPLIT_t *) component; # 1051|-> split->delimiter = (char *)xmlTextReaderGetAttribute(reader, BAD_CAST "delimiter"); # 1052| # 1053| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def32] openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_GLOB_TO_REGEX_tag’ openscap-1.4.4/src/OVAL/oval_component.c:1063:9: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 16)’ openscap-1.4.4/src/OVAL/oval_component.c: scope_hint: In function ‘_oval_component_parse_GLOB_TO_REGEX_tag’ # 1061| # 1062| oval_component_GLOB_t *glob_to_regex = (oval_component_GLOB_t *) component; # 1063|-> glob_to_regex->glob_noescape = oval_parser_boolean_attribute(reader, "glob_noescape", 0); # 1064| # 1065| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-476): [#def33] openscap-1.4.4/src/OVAL/oval_component.c:1063:38: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘component’ # 1061| # 1062| oval_component_GLOB_t *glob_to_regex = (oval_component_GLOB_t *) component; # 1063|-> glob_to_regex->glob_noescape = oval_parser_boolean_attribute(reader, "glob_noescape", 0); # 1064| # 1065| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def34] openscap-1.4.4/src/OVAL/oval_component.c:1063:40: warning[-Wanalyzer-malloc-leak]: leak of ‘oval_component_new(model, 16)’ # 1061| # 1062| oval_component_GLOB_t *glob_to_regex = (oval_component_GLOB_t *) component; # 1063|-> glob_to_regex->glob_noescape = oval_parser_boolean_attribute(reader, "glob_noescape", 0); # 1064| # 1065| return _oval_component_parse_FUNCTION_tag(reader, context, component); Error: GCC_ANALYZER_WARNING (CWE-401): [#def35] openscap-1.4.4/src/XCCDF/profile.c:261:37: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_rule_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 259| rr->selector = xccdf_attribute_copy(reader, XCCDFA_SELECTOR); # 260| rr->weight = xccdf_attribute_get_float(reader, XCCDFA_WEIGHT); # 261|-> if (xccdf_attribute_has(reader, XCCDFA_ROLE)) # 262| rr->role = # 263| oscap_string_to_enum(XCCDF_ROLE_MAP, Error: GCC_ANALYZER_WARNING (CWE-401): [#def36] openscap-1.4.4/src/XCCDF/profile.c:263:45: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 261| if (xccdf_attribute_has(reader, XCCDFA_ROLE)) # 262| rr->role = # 263|-> oscap_string_to_enum(XCCDF_ROLE_MAP, # 264| xccdf_attribute_get(reader, XCCDFA_ROLE)); # 265| if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) Error: GCC_ANALYZER_WARNING (CWE-401): [#def37] openscap-1.4.4/src/XCCDF/profile.c:263:45: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_rule_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 261| if (xccdf_attribute_has(reader, XCCDFA_ROLE)) # 262| rr->role = # 263|-> oscap_string_to_enum(XCCDF_ROLE_MAP, # 264| xccdf_attribute_get(reader, XCCDFA_ROLE)); # 265| if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) Error: GCC_ANALYZER_WARNING (CWE-401): [#def38] openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ openscap-1.4.4/src/XCCDF/profile.c:265:37: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 263| oscap_string_to_enum(XCCDF_ROLE_MAP, # 264| xccdf_attribute_get(reader, XCCDFA_ROLE)); # 265|-> if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) # 266| rr->severity = # 267| oscap_string_to_enum(XCCDF_LEVEL_MAP, Error: GCC_ANALYZER_WARNING (CWE-401): [#def39] openscap-1.4.4/src/XCCDF/profile.c:265:37: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_rule_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 263| oscap_string_to_enum(XCCDF_ROLE_MAP, # 264| xccdf_attribute_get(reader, XCCDFA_ROLE)); # 265|-> if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) # 266| rr->severity = # 267| oscap_string_to_enum(XCCDF_LEVEL_MAP, Error: GCC_ANALYZER_WARNING (CWE-401): [#def40] openscap-1.4.4/src/XCCDF/profile.c:267:45: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 265| if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) # 266| rr->severity = # 267|-> oscap_string_to_enum(XCCDF_LEVEL_MAP, # 268| xccdf_attribute_get(reader, XCCDFA_SEVERITY)); # 269| xccdf_parse_remarks(reader, rr->remarks, depth + 1); Error: GCC_ANALYZER_WARNING (CWE-401): [#def41] openscap-1.4.4/src/XCCDF/profile.c:267:45: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_rule_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 265| if (xccdf_attribute_has(reader, XCCDFA_SEVERITY)) # 266| rr->severity = # 267|-> oscap_string_to_enum(XCCDF_LEVEL_MAP, # 268| xccdf_attribute_get(reader, XCCDFA_SEVERITY)); # 269| xccdf_parse_remarks(reader, rr->remarks, depth + 1); Error: GCC_ANALYZER_WARNING (CWE-401): [#def42] openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_parse_remarks’ openscap-1.4.4/src/XCCDF/profile.c:269:33: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_rule_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 267| oscap_string_to_enum(XCCDF_LEVEL_MAP, # 268| xccdf_attribute_get(reader, XCCDFA_SEVERITY)); # 269|-> xccdf_parse_remarks(reader, rr->remarks, depth + 1); # 270| oscap_list_add(prof->sub.profile.refine_rules, rr); # 271| break; Error: GCC_ANALYZER_WARNING (CWE-401): [#def43] openscap-1.4.4/src/XCCDF/profile.c:270:33: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 268| xccdf_attribute_get(reader, XCCDFA_SEVERITY)); # 269| xccdf_parse_remarks(reader, rr->remarks, depth + 1); # 270|-> oscap_list_add(prof->sub.profile.refine_rules, rr); # 271| break; # 272| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def44] openscap-1.4.4/src/XCCDF/profile.c:279:48: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 277| struct xccdf_refine_value *rv = xccdf_refine_value_new(); # 278| rv->item = oscap_strdup(id); # 279|-> rv->selector = xccdf_attribute_copy(reader, XCCDFA_SELECTOR); # 280| if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = Error: GCC_ANALYZER_WARNING (CWE-401): [#def45] openscap-1.4.4/src/XCCDF/profile.c:279:48: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_value_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 277| struct xccdf_refine_value *rv = xccdf_refine_value_new(); # 278| rv->item = oscap_strdup(id); # 279|-> rv->selector = xccdf_attribute_copy(reader, XCCDFA_SELECTOR); # 280| if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = Error: GCC_ANALYZER_WARNING (CWE-401): [#def46] openscap-1.4.4/src/XCCDF/profile.c:280:37: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 278| rv->item = oscap_strdup(id); # 279| rv->selector = xccdf_attribute_copy(reader, XCCDFA_SELECTOR); # 280|-> if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = # 282| oscap_string_to_enum(XCCDF_OPERATOR_MAP, Error: GCC_ANALYZER_WARNING (CWE-401): [#def47] openscap-1.4.4/src/XCCDF/profile.c:280:37: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_value_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 278| rv->item = oscap_strdup(id); # 279| rv->selector = xccdf_attribute_copy(reader, XCCDFA_SELECTOR); # 280|-> if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = # 282| oscap_string_to_enum(XCCDF_OPERATOR_MAP, Error: GCC_ANALYZER_WARNING (CWE-401): [#def48] openscap-1.4.4/src/XCCDF/profile.c:282:45: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 280| if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = # 282|-> oscap_string_to_enum(XCCDF_OPERATOR_MAP, # 283| xccdf_attribute_get(reader, XCCDFA_OPERATOR)); # 284| xccdf_parse_remarks(reader, rv->remarks, depth + 1); Error: GCC_ANALYZER_WARNING (CWE-401): [#def49] openscap-1.4.4/src/XCCDF/profile.c:282:45: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_value_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 280| if (xccdf_attribute_has(reader, XCCDFA_OPERATOR)) # 281| rv->oper = # 282|-> oscap_string_to_enum(XCCDF_OPERATOR_MAP, # 283| xccdf_attribute_get(reader, XCCDFA_OPERATOR)); # 284| xccdf_parse_remarks(reader, rv->remarks, depth + 1); Error: GCC_ANALYZER_WARNING (CWE-401): [#def50] openscap-1.4.4/src/XCCDF/profile.c:284:33: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_refine_value_new()’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 282| oscap_string_to_enum(XCCDF_OPERATOR_MAP, # 283| xccdf_attribute_get(reader, XCCDFA_OPERATOR)); # 284|-> xccdf_parse_remarks(reader, rv->remarks, depth + 1); # 285| oscap_list_add(prof->sub.profile.refine_values, rv); # 286| break; Error: GCC_ANALYZER_WARNING (CWE-401): [#def51] openscap-1.4.4/src/XCCDF/profile.c:285:33: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 283| xccdf_attribute_get(reader, XCCDFA_OPERATOR)); # 284| xccdf_parse_remarks(reader, rv->remarks, depth + 1); # 285|-> oscap_list_add(prof->sub.profile.refine_values, rv); # 286| break; # 287| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def52] openscap-1.4.4/src/XCCDF/profile.c:289:33: warning[-Wanalyzer-malloc-leak]: leak of ‘<unknown>’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ openscap-1.4.4/src/XCCDF/profile.c: scope_hint: In function ‘xccdf_profile_parse’ # 287| } # 288| case XCCDFE_SET_VALUE:{ # 289|-> oscap_list_add(prof->sub.profile.setvalues, xccdf_setvalue_new_parse(reader)); # 290| xmlTextReaderRead(reader); # 291| break; Error: GCC_ANALYZER_WARNING (CWE-401): [#def53] openscap-1.4.4/src/XCCDF/profile.c:289:33: warning[-Wanalyzer-malloc-leak]: leak of ‘xccdf_setvalue_new_parse(reader)’ openscap-1.4.4/src/XCCDF/profile.c:233:9: note: in expansion of macro ‘XCCDF_ASSERT_ELEMENT’ # 287| } # 288| case XCCDFE_SET_VALUE:{ # 289|-> oscap_list_add(prof->sub.profile.setvalues, xccdf_setvalue_new_parse(reader)); # 290| xmlTextReaderRead(reader); # 291| break; Error: GCC_ANALYZER_WARNING (CWE-401): [#def54] openscap-1.4.4/src/common/_error.h:36:32: warning[-Wanalyzer-malloc-leak]: leak of ‘rds_index_new()’ openscap-1.4.4/src/DS/rds_index.c:264:33: note: in expansion of macro ‘oscap_setxmlerr’ openscap-1.4.4/src/DS/rds_index.c:264:33: note: in expansion of macro ‘oscap_setxmlerr’ openscap-1.4.4/src/DS/rds_index.c:264:33: note: in expansion of macro ‘oscap_setxmlerr’ # 34| else oscap_seterr(OSCAP_EFAMILY_OSCAP, desc); } } # 35| # 36|-> #define oscap_setxmlerr(error) __oscap_setxmlerr (__FILE__, __LINE__, __PRETTY_FUNCTION__, error) # 37| # 38| void __oscap_setxmlerr(const char *file, uint32_t line, const char *func, const xmlError *error);
| analyzer-version-clippy | 1.93.0 |
| analyzer-version-cppcheck | 2.19.1 |
| analyzer-version-gcc | 16.0.1 |
| analyzer-version-gcc-analyzer | 16.0.1 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.93.0 |
| diffbase-analyzer-version-cppcheck | 2.19.1 |
| diffbase-analyzer-version-gcc | 16.0.1 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.1 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-125.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20260119.105402.g7a5be1b.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-x86_64 |
| diffbase-project-name | openscap-1.4.4-0.20260204153319256004.pr2305.26.g9af9a7e7c |
| diffbase-store-results-to | /tmp/tmpndps5343/openscap-1.4.4-0.20260204153319256004.pr2305.26.g9af9a7e7c.tar.xz |
| diffbase-time-created | 2026-02-04 16:00:00 |
| diffbase-time-finished | 2026-02-04 16:13:46 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'cppcheck,unicontrol,shellcheck,gcc,clippy' '-o' '/tmp/tmpndps5343/openscap-1.4.4-0.20260204153319256004.pr2305.26.g9af9a7e7c.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpndps5343/openscap-1.4.4-0.20260204153319256004.pr2305.26.g9af9a7e7c.src.rpm' |
| diffbase-tool-version | csmock-3.8.3.20260128.181932.g41af877-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-125.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20260119.105402.g7a5be1b.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | openscap-1.4.4-0.20260130161227471255.main.25.g4c34b120e |
| store-results-to | /tmp/tmpkdyol9ga/openscap-1.4.4-0.20260130161227471255.main.25.g4c34b120e.tar.xz |
| time-created | 2026-02-04 15:45:56 |
| time-finished | 2026-02-04 15:59:25 |
| title | Fixed findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'cppcheck,unicontrol,shellcheck,gcc,clippy' '-o' '/tmp/tmpkdyol9ga/openscap-1.4.4-0.20260130161227471255.main.25.g4c34b120e.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpkdyol9ga/openscap-1.4.4-0.20260130161227471255.main.25.g4c34b120e.src.rpm' |
| tool-version | csmock-3.8.3.20260128.181932.g41af877-1.el9 |