Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 647902 Details for
Bug 878136
Various defects detected by Coverity
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
List of all defects added in krb5-1.10.3-6.el6
krb5.added.err (text/plain), 122.49 KB, created by
Ondrej Oprala
on 2012-11-19 17:33:42 UTC
(
hide
)
Description:
List of all defects added in krb5-1.10.3-6.el6
Filename:
MIME Type:
Creator:
Ondrej Oprala
Created:
2012-11-19 17:33:42 UTC
Size:
122.49 KB
patch
obsolete
>Error: ASSERT_SIDE_EFFECT: >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:2496: assignment_where_comparison_intended: Assignment "loop->loop_done = 0" has a side effect. This code will work differently in a non-debug build. You might have intended to use a comparison instead. > >Error: ASSERT_SIDE_EFFECT: >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:2494: assignment_where_comparison_intended: Assignment "loop->loop_done = 128" has a side effect. This code will work differently in a non-debug build. You might have intended to use a comparison instead. > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1603: check_return: Calling function "kadm5_init_krb5_context(krb5_context *)" without checking return value (as is done elsewhere 10 out of 11 times). >/builddir/build/BUILD/krb5-1.10.3/src/clients/kinit/kinit_kdb.c:58: example_assign: Assigning: "retval" = return value from "kadm5_init_krb5_context(pcontext)". >/builddir/build/BUILD/krb5-1.10.3/src/clients/kinit/kinit_kdb.c:59: example_checked: "retval" has its value checked in "retval". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:272: example_assign: Assigning: "retval" = return value from "kadm5_init_krb5_context(&context)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:273: example_checked: "retval" has its value checked in "retval". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/dump.c:2407: example_checked: "kadm5_init_krb5_context(&kcontext)" has its value checked in "kret = kadm5_init_krb5_context(&kcontext)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kadm5_create.c:78: example_checked: "kadm5_init_krb5_context(&context)" has its value checked in "retval = kadm5_init_krb5_context(&context)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kdb5_destroy.c:55: example_assign: Assigning: "retval1" = return value from "kadm5_init_krb5_context(&context)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kdb5_destroy.c:56: example_checked: "retval1" has its value checked in "retval1". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1603: unchecked_value: No check of the return value of "kadm5_init_krb5_context(&context)". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1122: check_return: Calling function "fcntl(fd, 2, 1)" without checking return value. This library function may fail and return an error code. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1122: unchecked_value: No check of the return value of "fcntl(fd, 2, 1)". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1123: check_return: Calling function "fcntl(fd, 4, 2048)" without checking return value. This library function may fail and return an error code. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1123: unchecked_value: No check of the return value of "fcntl(fd, 4, 2048)". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:361: cond_false: Condition "*fcmd == '/'", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:366: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:368: cond_true: Condition "__coverity_strchr(fcmd, 47)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:369: check_return: Calling function "asprintf(char **, char const *, ...)" without checking return value (as is done elsewhere 77 out of 86 times). >/builddir/build/BUILD/krb5-1.10.3/src/clients/kpasswd/ksetpwd.c:74: example_checked: "asprintf(&pCacheName, "%s%s", cachename, pName)" has its value checked in "asprintf(&pCacheName, "%s%s", cachename, pName) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:189: example_assign: Assigning: "result" = return value from "asprintf(&fullname, "%s@%s", name, def_realm)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:192: example_checked: "result" has its value checked in "result < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/keytab.c:106: example_checked: "asprintf(&name, "WRFILE:%s", name)" has its value checked in "asprintf(&name, "WRFILE:%s", name) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/dump.c:343: example_checked: "asprintf(&file_ok, "%s%s", file_name, ok)" has its value checked in "asprintf(&file_ok, "%s%s", file_name, ok) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kadm5_create.c:216: example_checked: "asprintf(&service_name, "kadmin/%s", ai->ai_canonname)" has its value checked in "asprintf(&service_name, "kadmin/%s", ai->ai_canonname) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:369: unchecked_value: No check of the return value of "asprintf(&err, dcgettext("mit-krb5", "Error: bad entry - %s in %s file, must be either full path or just the cmd name\n", 5), fcmd, ".k5users")". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:361: cond_false: Condition "*fcmd == '/'", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:366: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:368: cond_false: Condition "__coverity_strchr(fcmd, 47)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:374: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_true: Condition "*path_ptr == ' '", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_false: Condition "*path_ptr == ' '", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_false: Condition "*path_ptr == 9", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:391: cond_true: Condition "!tc", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:392: check_return: Calling function "asprintf(char **, char const *, ...)" without checking return value (as is done elsewhere 77 out of 86 times). >/builddir/build/BUILD/krb5-1.10.3/src/clients/kpasswd/ksetpwd.c:74: example_checked: "asprintf(&pCacheName, "%s%s", cachename, pName)" has its value checked in "asprintf(&pCacheName, "%s%s", cachename, pName) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:189: example_assign: Assigning: "result" = return value from "asprintf(&fullname, "%s@%s", name, def_realm)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:192: example_checked: "result" has its value checked in "result < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/keytab.c:106: example_checked: "asprintf(&name, "WRFILE:%s", name)" has its value checked in "asprintf(&name, "WRFILE:%s", name) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/dump.c:343: example_checked: "asprintf(&file_ok, "%s%s", file_name, ok)" has its value checked in "asprintf(&file_ok, "%s%s", file_name, ok) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kadm5_create.c:216: example_checked: "asprintf(&service_name, "kadmin/%s", ai->ai_canonname)" has its value checked in "asprintf(&service_name, "kadmin/%s", ai->ai_canonname) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:392: unchecked_value: No check of the return value of "asprintf(&err, dcgettext("mit-krb5", "Error: bad entry - %s in %s file, CMD_PATH contains no paths \n", 5), fcmd, ".k5users")". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:361: cond_false: Condition "*fcmd == '/'", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:366: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:368: cond_false: Condition "__coverity_strchr(fcmd, 47)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:374: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_true: Condition "*path_ptr == ' '", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_false: Condition "*path_ptr == ' '", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: cond_false: Condition "*path_ptr == 9", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:387: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:391: cond_false: Condition "!tc", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:396: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:400: cond_true: Condition "*tc != '/'", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:401: check_return: Calling function "asprintf(char **, char const *, ...)" without checking return value (as is done elsewhere 77 out of 86 times). >/builddir/build/BUILD/krb5-1.10.3/src/clients/kpasswd/ksetpwd.c:74: example_checked: "asprintf(&pCacheName, "%s%s", cachename, pName)" has its value checked in "asprintf(&pCacheName, "%s%s", cachename, pName) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:189: example_assign: Assigning: "result" = return value from "asprintf(&fullname, "%s@%s", name, def_realm)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/kadmin.c:192: example_checked: "result" has its value checked in "result < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/cli/keytab.c:106: example_checked: "asprintf(&name, "WRFILE:%s", name)" has its value checked in "asprintf(&name, "WRFILE:%s", name) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/dump.c:343: example_checked: "asprintf(&file_ok, "%s%s", file_name, ok)" has its value checked in "asprintf(&file_ok, "%s%s", file_name, ok) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/dbutil/kadm5_create.c:216: example_checked: "asprintf(&service_name, "kadmin/%s", ai->ai_canonname)" has its value checked in "asprintf(&service_name, "kadmin/%s", ai->ai_canonname) < 0". >/builddir/build/BUILD/krb5-1.10.3/src/clients/ksu/authorization.c:401: unchecked_value: No check of the return value of "asprintf(&err, dcgettext("mit-krb5", "Error: bad path %s in CMD_PATH for %s must start with '/' \n", 5), tc, ".k5users")". > >Error: CHECKED_RETURN (CWE-252): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:189: cond_false: Condition "asprintf(&newpath, "%s.XXXXXX", primary_path) < 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:190: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:192: cond_false: Condition "fd < 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:193: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:195: check_return: Calling function "chmod(newpath, 384U)" without checking return value. This library function may fail and return an error code. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:195: unchecked_value: No check of the return value of "chmod(newpath, 384U)". > >Error: DEADCODE (CWE-561): >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:302: assignment: Assigning: "tmp_as_req" = "NULL". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:544: null: At condition "tmp_as_req != NULL", the value of "tmp_as_req" must be NULL. >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:544: dead_error_condition: The condition "tmp_as_req != NULL" cannot be true. >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:545: dead_error_line: Execution cannot reach this statement "(*k5int_krb5_free_kdc_req)(...". > >Error: DEADCODE (CWE-561): >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/k5sealv3.c:129: assignment: Assigning: "ec" = "0UL". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/k5sealv3.c:160: const: At condition "ec != 0UL", the value of "ec" must be equal to 0. >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/k5sealv3.c:160: dead_error_condition: The condition "ec != 0UL" cannot be true. >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/k5sealv3.c:161: dead_error_line: Execution cannot reach this statement "memset(plain.data + message...". > >Error: DEADCODE (CWE-561): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:281: cond_const: Condition "tagnum == 1", taking true branch. Now the value of "tagnum" is equal to 1. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:291: const: At condition "tagnum == 1", the value of "tagnum" must be equal to 1. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:291: dead_error_condition: The condition "tagnum == 1" must be true. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:297: dead_error_line: Execution cannot reach this statement "val->clientPublicValue = NULL;". > >Error: DEADCODE (CWE-561): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:281: cond_const: Condition "tagnum == 1", taking true branch. Now the value of "tagnum" is equal to 1. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:288: const: At condition "tagnum", the value of "tagnum" must be equal to 1. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:288: dead_error_condition: The condition "tagnum" must be true. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/asn.1/asn1_k_decode_kdc.c:288: dead_error_line: Execution cannot reach this expression "taglen" inside statement "if ((asn1class != 128U || c...". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2436: cond_false: Condition "argc != 2 /* 1 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2436: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2436: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2436: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2438: cond_false: Condition "parse_str(interp, argv[0], &ent_name) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2441: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2443: cond_true: Condition "!ent_name", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2443: var_compare_op: Comparing "ent_name" to null implies that "ent_name" might be null. >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2443: cond_false: Condition "ret = kadm5_free_policy_ent(server_handle, NULL)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2448: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2451: var_deref_model: Passing null pointer "ent_name" to function "__coverity_strncmp(char const *, char const *, unsigned long)", which dereferences it. > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2380: cond_false: Condition "argc != 2 /* 1 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2380: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2380: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2380: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2382: cond_false: Condition "parse_str(interp, argv[0], &ent_name) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2385: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2387: cond_true: Condition "!ent_name", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2387: var_compare_op: Comparing "ent_name" to null implies that "ent_name" might be null. >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2387: cond_false: Condition "ret = kadm5_free_principal_ent(server_handle, NULL)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2392: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2395: var_deref_model: Passing null pointer "ent_name" to function "__coverity_strncmp(char const *, char const *, unsigned long)", which dereferences it. > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:958: cond_true: Condition "minor_status != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:960: cond_true: Condition "output_token != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:964: cond_false: Condition "minor_status == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:964: cond_false: Condition "output_token == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:964: cond_false: Condition "context_handle == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:967: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:969: cond_true: Condition "actual_mech != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:974: cond_true: Condition "*context_handle == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:974: var_compare_op: Comparing "*context_handle" to null implies that "*context_handle" might be null. >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:977: cond_false: Condition "ret != (1U /* 1 << 0 + 0 */)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:979: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:980: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:987: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:991: alias_transfer: Assigning: "spnego_ctx" = "*context_handle". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/spnego/spnego_mech.c:992: var_deref_op: Dereferencing null pointer "spnego_ctx". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:780: cond_true: Condition "!module", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:780: var_compare_op: Comparing "module" to null implies that "module" might be null. >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:781: goto: Jumping to label "error" >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:852: label: Reached label "error" >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:853: cond_true: Condition "mctx", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:854: var_deref_op: Dereferencing null pointer "module". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:244: assign_zero: Assigning: "auth_pack" = "NULL". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:253: switch: Switch case value "16" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:269: switch_case: Reached case "16" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:271: cond_true: Condition "info == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:272: goto: Jumping to label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:452: label: Reached label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:453: switch: Switch case value "16" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:454: switch_case: Reached case "16" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_clnt.c:455: var_deref_op: Dereferencing null pointer "auth_pack". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:702: cond_false: Condition "padata->pa_type == 147", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:705: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:706: cond_false: Condition "padata->length <= 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:706: cond_false: Condition "padata->contents == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:707: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:709: cond_false: Condition "modreq == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:712: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:715: cond_false: Condition "plgctx == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:718: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:723: cond_true: Condition "encrypting_key->contents", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:729: cond_true: Condition "i < request->nktypes", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:731: cond_true: Condition "!krb5_c_valid_enctype(enctype)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:732: continue: Continuing loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:737: loop: Looping back >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:729: cond_true: Condition "i < request->nktypes", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:731: cond_true: Condition "!krb5_c_valid_enctype(enctype)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:732: continue: Continuing loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:737: loop: Looping back >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:729: cond_true: Condition "i < request->nktypes", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:731: cond_false: Condition "!krb5_c_valid_enctype(enctype)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:733: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:735: break: Breaking from loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:737: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:739: cond_false: Condition "i == request->nktypes", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:742: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:744: switch: Switch case value "15" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:754: switch_case: Reached case "15" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:757: cond_false: Condition "rep9 == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:760: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:762: break: Breaking from switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:766: switch_end: Reached end of switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:768: cond_true: Condition "reqctx->rcv_auth_pack != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:768: cond_false: Condition "reqctx->rcv_auth_pack->clientPublicValue != NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:775: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:775: cond_true: Condition "reqctx->rcv_auth_pack9 != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:775: cond_true: Condition "reqctx->rcv_auth_pack9->clientPublicValue != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:785: cond_false: Condition "rep != NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:796: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:797: cond_true: Condition "rep9 != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:797: cond_true: Condition "rep9->choice == choice_pa_pk_as_rep_draft9_dhSignedData", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:814: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:817: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:824: switch: Switch case default >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:850: switch_default: Reached end of switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:852: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:974: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:976: cond_false: Condition "rep != NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:993: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:976: var_compare_op: Comparing "rep" to null implies that "rep" might be null. >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:995: switch: Switch case default >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1003: switch_default: Reached end of switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1004: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1007: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1015: cond_true: Condition "rep9 != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1015: cond_true: Condition "rep9->choice == choice_pa_pk_as_rep_draft9_dhSignedData", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_srv.c:1020: var_deref_op: Dereferencing null pointer "rep". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:30: assign_zero: Assigning: "auth_context" = "NULL". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:49: cond_true: Condition "req->length < 4", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:55: goto: Jumping to label "chpwfail" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:317: label: Reached label "chpwfail" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:331: cond_true: Condition "ap_rep.length", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:332: var_deref_model: Passing null pointer "auth_context" to function "krb5_auth_con_setaddrs(krb5_context, krb5_auth_context, krb5_address *, krb5_address *)", which dereferences it. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/auth_con.c:89:5: deref_parm: Directly dereferencing parameter "auth_context". > >Error: FORWARD_NULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:448: assign_zero: Assigning: "kt" = "NULL". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:454: cond_true: Condition "local_saddr == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:456: cond_true: Condition "ret != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:457: goto: Jumping to label "egress" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:485: label: Reached label "egress" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:486: cond_true: Condition "ret", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/server/schpw.c:489: var_deref_model: Passing null pointer "kt" to function "krb5_kt_close(krb5_context, krb5_keytab)", which dereferences it. >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/keytab/ktfns.c:51:5: deref_parm: Directly dereferencing parameter "keytab". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:484: cond_false: Condition "!profile", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:484: cond_false: Condition "profile->magic != -1429577710L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:485: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:487: cond_true: Condition "profile->vt", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:488: cond_true: Condition "profile->vt->cleanup", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:490: cond_true: Condition "profile->lib_handle", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:492: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->lib_handle->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:493: cond_true: Condition "!err", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:493: cond_true: Condition "--profile->lib_handle->refcount == 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:495: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:496: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:498: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:499: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:502: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:507: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:510: missing_unlock: Returning without unlocking "profile->lib_handle->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:262: cond_true: Condition "profile->vt->copy", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:265: cond_false: Condition "err", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:266: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:269: cond_false: Condition "err", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:270: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:271: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:275: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:276: cond_false: Condition "err", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:277: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:280: cond_true: Condition "profile->lib_handle", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:281: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->lib_handle->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:282: cond_false: Condition "err", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:287: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:289: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_init.c:293: missing_unlock: Returning without unlocking "profile->lib_handle->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:392: cond_false: Condition "ret", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:393: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:394: lock: "k5_mutex_lock(k5_mutex_t *)" locks "fortuna_lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:395: cond_false: Condition "ret", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:396: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:397: cond_true: Condition "randsource == KRB5_C_RANDSOURCE_OSRAND", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:404: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:409: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:410: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:411: missing_unlock: Returning without unlocking "fortuna_lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:425: lock: "k5_mutex_lock(k5_mutex_t *)" locks "fortuna_lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:426: cond_false: Condition "ret", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:427: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:429: cond_true: Condition "!have_entropy", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:430: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:431: missing_unlock: Returning without unlocking "fortuna_lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:425: lock: "k5_mutex_lock(k5_mutex_t *)" locks "fortuna_lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:426: cond_false: Condition "ret", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:427: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:429: cond_false: Condition "!have_entropy", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:432: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:434: cond_true: Condition "pid != last_pid", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:443: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/prng_fortuna.c:444: missing_unlock: Returning without unlocking "fortuna_lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:263: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:267: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:270: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:271: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:274: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:276: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:277: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_false: Condition "retval == -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:285: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_true: Condition "retval", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:287: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:288: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:263: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:267: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:270: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:271: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:274: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:276: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:277: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_true: Condition "retval == -1429577726L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_false: Condition "retval == -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:285: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:292: cond_true: Condition "new_value == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:294: cond_true: Condition "retval == 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:295: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:296: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:263: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:267: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:270: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:271: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:274: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:276: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:277: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_true: Condition "retval == -1429577726L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_false: Condition "retval == -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:285: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:292: cond_true: Condition "new_value == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:294: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: cond_true: Condition "retval != -1429577726L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:298: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:299: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:263: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:267: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:270: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:271: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:274: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:276: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:277: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_true: Condition "retval == -1429577726L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_false: Condition "retval == -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:285: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:292: cond_true: Condition "new_value == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:294: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: cond_false: Condition "retval != -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:300: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:304: cond_true: Condition "retval", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:305: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:306: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:263: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:267: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:270: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:271: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:273: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:274: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:276: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:277: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_true: Condition "retval == -1429577726L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:284: cond_false: Condition "retval == -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:285: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:286: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:289: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:280: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:290: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:292: cond_true: Condition "new_value == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:294: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:297: cond_false: Condition "retval != -1429577726L", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:300: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:304: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:307: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:310: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:311: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:204: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:208: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:211: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:212: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:215: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:217: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:218: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:219: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:225: cond_true: Condition "retval", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:226: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:227: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:204: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:208: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:211: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:212: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:214: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:215: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:217: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:218: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:219: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:225: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:228: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:229: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:225: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:228: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:229: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:221: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:229: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:233: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:238: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:239: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:240: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:241: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:242: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:92: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:97: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:100: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:101: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:104: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:106: cond_false: Condition "!old_value", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:106: cond_false: Condition "!*old_value", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:107: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:109: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:110: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:111: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:117: cond_true: Condition "retval", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:118: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:119: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: LOCK (CWE-557): >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:92: cond_false: Condition "profile->vt", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:97: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:100: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:101: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:103: cond_false: Condition "names[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:104: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:106: cond_false: Condition "!old_value", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:106: cond_false: Condition "!*old_value", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:107: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:109: lock: "k5_mutex_lock(k5_mutex_t *)" locks "profile->first_file->data->lock". >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: lock: "pthread_mutex_lock(pthread_mutex_t *)" locks "*m". >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:110: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:111: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:117: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:120: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:121: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: cond_true: Condition "cpp[1]", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:117: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:120: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:121: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:113: cond_false: Condition "cpp[1]", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:121: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:125: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:130: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:131: cond_false: Condition "retval == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:132: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:133: cond_false: Condition "krb5int_pthread_loaded()", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/profile/prof_set.c:135: missing_unlock: Returning without unlocking "profile->first_file->data->lock". > >Error: NEGATIVE_RETURNS (CWE-394): >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1869: cond_true: Condition "conn->offset < 4", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1875: negative_return_fn: Function "verto_get_fd(ev)" returns a negative number. >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_true: Condition "ev", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_false: Condition "ev->type == VERTO_EV_TYPE_IO", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:711:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:712:5: return_negative_constant: Explicitly returning negative value "-1". >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1875: negative_returns: "verto_get_fd(ev)" is passed to a parameter that cannot be negative. > >Error: NEGATIVE_RETURNS (CWE-394): >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1869: cond_false: Condition "conn->offset < 4", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1910: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1916: negative_return_fn: Function "verto_get_fd(ev)" returns a negative number. >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_true: Condition "ev", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_false: Condition "ev->type == VERTO_EV_TYPE_IO", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:711:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:712:5: return_negative_constant: Explicitly returning negative value "-1". >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1916: negative_returns: "verto_get_fd(ev)" is passed to a parameter that cannot be negative. > >Error: NEGATIVE_RETURNS (CWE-394): >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1869: cond_false: Condition "conn->offset < 4", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1910: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1918: cond_false: Condition "nread < 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1919: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1920: cond_false: Condition "nread == 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1921: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1923: cond_false: Condition "conn->offset < conn->msglen + 4", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1924: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1928: cond_false: Condition "!state", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1929: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1934: negative_return_fn: Function "verto_get_fd(ev)" returns a negative number. >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_true: Condition "ev", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_false: Condition "ev->type == VERTO_EV_TYPE_IO", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:711:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:712:5: return_negative_constant: Explicitly returning negative value "-1". >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1934: negative_returns: "verto_get_fd(ev)" is passed to a parameter that cannot be negative. > >Error: NEGATIVE_RETURNS (CWE-394): >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1957: negative_return_fn: Function "verto_get_fd(ev)" returns a negative number. >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_true: Condition "ev", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:710:5: cond_false: Condition "ev->type == VERTO_EV_TYPE_IO", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:711:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:712:5: return_negative_constant: Explicitly returning negative value "-1". >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1957: var_assign: Assigning: signed variable "sock" = "verto_get_fd(verto_ev const *)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/apputils/net-server.c:1959: negative_returns: "sock" is passed to a parameter that cannot be negative. > >Error: OVERRUN: >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_false: Condition "signum <= 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_at_least: Checking "signum <= 0" implies that the value of "signum" is at least 1 on the false branch. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_false: Condition "signum > 65", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_between: Checking "signum > 65" implies that the value of "signum" is between 1 and 65 (inclusive) on the false branch. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_false: Condition "(signum <= 0 || signum > 65) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1429: cond_false: Condition "(signum <= 0 || signum > 65) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1430: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1432: decr: Decrementing "signum". The value of "signum" is now between 0 and 64 (inclusive). >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1438: overrun-local: Overrunning array "signals" of 64 24-byte elements at element index 64 (byte offset 1536) using index "signum" (which evaluates to 64). > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:898: cond_false: Condition "list == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:906: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:908: cond_false: Condition "(retcode = Tcl_SplitList(interp, list, &argc, &argv)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:910: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:911: cond_false: Condition "argc != n_tl_data", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:916: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:919: cond_true: Condition "i < n_tl_data", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:924: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:919: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:919: cond_true: Condition "i < n_tl_data", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:920: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:920: var_assign: Assigning: "tl2" = storage returned from "malloc(24UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:921: noescape: Resource "tl2" is not freed or pointed-to in function "memset(void *, int, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:923: var_assign: Assigning: "tl" = "tl2". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:924: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:919: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:919: cond_false: Condition "i < n_tl_data", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:924: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:925: var_assign: Assigning: "tl2" = "tl". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:927: cond_true: Condition "i < n_tl_data", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:928: cond_true: Condition "(retcode = Tcl_SplitList(interp, argv[i], &argc1, &argv1)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:930: goto: Jumping to label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:972: label: Reached label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:973: cond_true: Condition "argv1", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:977: leaked_storage: Variable "tl2" going out of scope leaks the storage it points to. >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:977: leaked_storage: Variable "tl" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2203: cond_false: Condition "argc != 3 /* 2 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2203: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2203: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2203: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2205: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &policy_string)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2208: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2210: cond_true: Condition "policy_string", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2210: alloc_arg: "parse_policy_ent(Tcl_Interp *, char *, kadm5_policy_ent_t *)" allocates memory that is stored into "policy". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1394:5: cond_false: Condition "(tcl_ret = Tcl_SplitList(interp, list, &argc, &argv)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1396:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1398:5: cond_true: Condition "argc != 7", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1398:5: cond_false: Condition "argc != 10", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1403:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: var_assign: Assigning: "policy" = "malloc(72UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: cond_false: Condition "!(policy = malloc(72UL /* sizeof (*policy) */))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1408:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1410:5: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &policy->policy)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1414:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1416:5: cond_true: Condition "policy->policy != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1417:9: cond_false: Condition "0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1417:9: cond_false: Condition "!(policy->policy = ((0 && (size_t)(void const *)(policy->policy + 1) - (size_t)(void const *)policy->policy == 1) ? ((char const *)policy->policy[0] == 0) ? (char *)calloc(1UL /* (size_t)1 */, 1UL /* (size_t)1 */) : ({...}) : __strdup(policy->policy)))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1420:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1430:5: cond_true: Condition "(tcl_ret = Tcl_GetInt(interp, argv[1], &tmp)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1434:9: goto: Jumping to label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1504:1: label: Reached label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1506:5: var_assign: Assigning: "*out_policy" = "policy". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2210: cond_true: Condition "(tcl_ret = parse_policy_ent(interp, policy_string, &policy)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2213: leaked_storage: Variable "policy" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1723: cond_false: Condition "argc != 4 /* 3 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1723: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1723: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1723: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1725: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &princ_string)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1728: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1730: cond_true: Condition "princ_string", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1730: alloc_arg: "parse_principal_ent(Tcl_Interp *, char *, kadm5_principal_ent_t *)" allocates memory that is stored into "princ". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1132:5: cond_false: Condition "(tcl_ret = Tcl_SplitList(interp, list, &argc, &argv)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1134:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1136:5: cond_true: Condition "argc != 12", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1136:5: cond_false: Condition "argc != 20", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1142:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: var_assign: Assigning: "princ" = "malloc(104UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: cond_false: Condition "!(princ = malloc(104UL /* sizeof (*princ) */))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1147:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1148:5: noescape: Resource "princ" is not freed or pointed-to in function "memset(void *, int, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1150:5: cond_true: Condition "(krb5_ret = krb5_parse_name(context, argv[0], &princ->principal)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1154:9: goto: Jumping to label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1320:1: label: Reached label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1322:5: var_assign: Assigning: "*out_princ" = "princ". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1730: cond_true: Condition "(tcl_ret = parse_principal_ent(interp, princ_string, &princ)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1733: leaked_storage: Variable "princ" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:602: alloc_fn: Storage is returned from allocation function "calloc(size_t, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:602: var_assign: Assigning: "state" = storage returned from "calloc(1UL, 296UL)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:603: cond_false: Condition "state == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:604: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:611: noescape: Resource "&state->addr" is not freed or pointed-to in function "memcpy(void * restrict, void const * restrict, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:615: cond_false: Condition "ai->ai_socktype == SOCK_STREAM", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:625: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:634: noescape: Resource "state" is not freed or pointed-to in function "set_conn_state_msg_length(struct conn_state *, krb5_data const *)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:575:47: noescape: "set_conn_state_msg_length(struct conn_state *, krb5_data const *)" does not free or save its pointer parameter "state". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:636: cond_true: Condition "*udpbufp == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:638: cond_true: Condition "*udpbufp == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/os/sendto_kdc.c:639: leaked_storage: Variable "state" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:325: cond_true: Condition "impl", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:326: cond_true: Condition "*record", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:327: cond_false: Condition "__coverity_strchr(impl, 47)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:327: cond_false: Condition "!__coverity_strcmp(impl, (*record)->module->name)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:331: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:332: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:326: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:326: cond_true: Condition "*record", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:327: cond_true: Condition "__coverity_strchr(impl, 47)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:327: cond_false: Condition "!__coverity_strcmp(impl, (*record)->filename)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:327: cond_false: Condition "!__coverity_strcmp(impl, (*record)->module->name)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:331: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:332: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:326: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:326: cond_false: Condition "*record", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:332: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:333: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:341: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:344: cond_false: Condition "!module_get_filename_for_symbol(verto_convert_module(verto_module const *, int, verto_mod_ctx *), &prefix)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:345: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:352: cond_false: Condition "0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:353: cond_false: Condition "!tmp", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:356: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:360: cond_false: Condition "!suffix", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:360: cond_false: Condition "strlen(suffix) < 1", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:360: cond_false: Condition "0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:360: cond_false: Condition "!(suffix = ((0 && (size_t)(void const *)(suffix + 1) - (size_t)(void const *)suffix == 1) ? ((char const *)suffix[0] == 0) ? (char *)calloc(1UL /* (size_t)1 */, 1UL /* (size_t)1 */) : ({...}) : __strdup(suffix)))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:364: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:368: cond_true: Condition "impl", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:370: cond_true: Condition "!success", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:370: cond_true: Condition "__coverity_strchr(impl, 47)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:372: cond_true: Condition "!success", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:375: alloc_arg: "int_asprintf(char **, char const *, ...)" allocates memory that is stored into "tmp". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:122:5: alloc_arg: "int_vasprintf(char **, char const *, va_list)" allocates memory that is stored into "*strp". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:110:5: cond_false: Condition "size <= 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:110:5: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:110:5: var_assign: Assigning: "*strp" = "malloc(size + 1)". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:110:5: cond_false: Condition "!(*strp = malloc(size + 1))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:111:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:375: cond_false: Condition "int_asprintf(&tmp, "%s%s%s", prefix, impl, suffix) > 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:378: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:380: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:410: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/verto.c:414: leaked_storage: Variable "tmp" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:2989: switch: Switch case value "104" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:2990: switch_case: Reached case "104" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:2993: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:2996: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:2997: break: Breaking from switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3009: switch_end: Reached end of switch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3012: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3015: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3020: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3020: var_assign: Assigning: "pa_data" = storage returned from "malloc(16UL)". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3021: cond_false: Condition "pa_data == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3024: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3027: cond_true: Condition "pa_data[0] == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3029: goto: Jumping to label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3037: label: Reached label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3038: cond_true: Condition "krb5_trusted_certifiers != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3041: leaked_storage: Variable "pa_data" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3092: cond_false: Condition "opts->dh_min_bits > 4096", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3093: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3095: cond_true: Condition "opts->dh_min_bits <= 1024", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3099: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3100: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3102: cond_true: Condition "opts->dh_min_bits <= 2048", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3106: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3107: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3112: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3113: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3115: cond_true: Condition "opts->dh_min_bits <= 1024", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3117: cond_false: Condition "algId == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3118: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3121: cond_false: Condition "algId[0] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3122: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3124: cond_false: Condition "algId[0]->parameters.data == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3125: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3131: cond_false: Condition "algId[1] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3132: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3134: cond_false: Condition "algId[1]->parameters.data == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3135: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3141: cond_false: Condition "algId[2] == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3142: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3144: cond_false: Condition "algId[2]->parameters.data == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3145: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3150: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3190: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3192: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3193: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3198: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3198: var_assign: Assigning: "pa_data" = storage returned from "malloc(16UL)". >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3199: cond_false: Condition "pa_data == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3202: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3205: cond_true: Condition "pa_data[0] == NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3207: goto: Jumping to label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3214: label: Reached label "cleanup" >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3221: cond_true: Condition "algId != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3222: cond_true: Condition "algId[i] != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3226: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3222: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3222: cond_false: Condition "algId[i] != NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3226: loop_end: Reached end of loop >/builddir/build/BUILD/krb5-1.10.3/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c:3230: leaked_storage: Variable "pa_data" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:569: alloc_fn: Storage is returned from allocation function "calloc(size_t, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:569: var_assign: Assigning: "pids" = storage returned from "calloc(num, 4UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:570: cond_false: Condition "pids == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:571: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:572: cond_true: Condition "i < num", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:574: cond_true: Condition "pid == 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:575: cond_true: Condition "!verto_reinitialize(ctx)", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:578: leaked_storage: Variable "pids" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:569: alloc_fn: Storage is returned from allocation function "calloc(size_t, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:569: var_assign: Assigning: "pids" = storage returned from "calloc(num, 4UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:570: cond_false: Condition "pids == NULL", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:571: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:572: cond_true: Condition "i < num", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:574: cond_true: Condition "pid == 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:575: cond_false: Condition "!verto_reinitialize(ctx)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:579: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:581: cond_true: Condition "retval", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/main.c:584: leaked_storage: Variable "pids" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2278: cond_false: Condition "argc != 3 /* 2 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2278: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2278: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2280: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &policy_string)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2283: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2285: cond_true: Condition "policy_string", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2285: alloc_arg: "parse_policy_ent(Tcl_Interp *, char *, kadm5_policy_ent_t *)" allocates memory that is stored into "policy". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1394:5: cond_false: Condition "(tcl_ret = Tcl_SplitList(interp, list, &argc, &argv)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1396:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1398:5: cond_true: Condition "argc != 7", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1398:5: cond_false: Condition "argc != 10", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1403:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: var_assign: Assigning: "policy" = "malloc(72UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1405:5: cond_false: Condition "!(policy = malloc(72UL /* sizeof (*policy) */))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1408:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1410:5: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &policy->policy)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1414:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1416:5: cond_true: Condition "policy->policy != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1417:9: cond_false: Condition "0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1417:9: cond_false: Condition "!(policy->policy = ((0 && (size_t)(void const *)(policy->policy + 1) - (size_t)(void const *)policy->policy == 1) ? ((char const *)policy->policy[0] == 0) ? (char *)calloc(1UL /* (size_t)1 */, 1UL /* (size_t)1 */) : ({...}) : __strdup(policy->policy)))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1420:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1430:5: cond_true: Condition "(tcl_ret = Tcl_GetInt(interp, argv[1], &tmp)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1434:9: goto: Jumping to label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1504:1: label: Reached label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1506:5: var_assign: Assigning: "*out_policy" = "policy". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2285: cond_true: Condition "(tcl_ret = parse_policy_ent(interp, policy_string, &policy)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:2288: leaked_storage: Variable "policy" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1827: cond_false: Condition "argc != 3 /* 2 + 1 */", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1827: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1827: cond_false: Condition "(ltcl_ret = get_server_handle(interp, argv[0], &server_handle)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1827: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1829: cond_false: Condition "(tcl_ret = parse_str(interp, argv[0], &princ_string)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1832: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1834: cond_true: Condition "princ_string", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1834: alloc_arg: "parse_principal_ent(Tcl_Interp *, char *, kadm5_principal_ent_t *)" allocates memory that is stored into "princ". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1132:5: cond_false: Condition "(tcl_ret = Tcl_SplitList(interp, list, &argc, &argv)) != 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1134:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1136:5: cond_true: Condition "argc != 12", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1136:5: cond_false: Condition "argc != 20", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1142:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: var_assign: Assigning: "princ" = "malloc(104UL)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1144:5: cond_false: Condition "!(princ = malloc(104UL /* sizeof (*princ) */))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1147:5: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1148:5: noescape: Resource "princ" is not freed or pointed-to in function "memset(void *, int, size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1150:5: cond_true: Condition "(krb5_ret = krb5_parse_name(context, argv[0], &princ->principal)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1154:9: goto: Jumping to label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1320:1: label: Reached label "finished" >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1322:5: var_assign: Assigning: "*out_princ" = "princ". >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1834: cond_true: Condition "(tcl_ret = parse_principal_ent(interp, princ_string, &princ)) != 0", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kadmin/testing/util/tcl_kadm5.c:1837: leaked_storage: Variable "princ" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:123: cond_false: Condition "dll", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:124: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:125: cond_true: Condition "symb", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:137: cond_false: Condition "!intdll", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:138: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:146: cond_false: Condition "!intsym", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:149: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:152: cond_false: Condition "!(*shouldload)(intsym, misc, &interr)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:155: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:162: alloc_fn: Storage is returned from allocation function "dlopen(char const *, int)". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:162: var_assign: Assigning: "intdll" = storage returned from "dlopen(filename, 2)". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:164: cond_false: Condition "!intdll", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:166: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:172: noescape: Resource "intdll" is not freed or pointed-to in function "dlsym(void * restrict, char const * restrict)". >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:174: cond_false: Condition "!intsym", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:177: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:179: cond_false: Condition "dll", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:180: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:181: cond_true: Condition "symb", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/verto/module.c:183: leaked_storage: Variable "intdll" going out of scope leaks the storage it points to. > >Error: RESOURCE_LEAK (CWE-404): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1259: goto: Jumping to label "yysetstate" >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1269: label: Reached label "yysetstate" >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1272: cond_true: Condition "yyss + yystacksize - 1 <= yyssp", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1302: cond_false: Condition "10000 <= yystacksize", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1303: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1305: cond_false: Condition "10000 < yystacksize", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1306: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1310: alloc_fn: Storage is returned from allocation function "malloc(size_t)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1310: var_assign: Assigning: "yyptr" = storage returned from "malloc(yystacksize * 6UL + 3UL)". >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1312: cond_false: Condition "!yyptr", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1313: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1317: cond_true: Condition "yyss1 != yyssa", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/krb/deltat.c:1319: leaked_storage: Variable "yyptr" going out of scope leaks the storage it points to. > >Error: REVERSE_INULL (CWE-476): >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/inq_cred.c:119: deref_ptr_in_call: Dereferencing pointer "cred_handle". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/acquire_cred.c:771:5: deref_parm_in_call: Function "krb5_gss_validate_cred_1(OM_uint32 *, gss_cred_id_t, krb5_context)" dereferences "cred_handle". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/val_cred.c:39:5: var_assign_parm: Assigning: "cred" = "cred_handle". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/val_cred.c:41:5: deref_var_in_call: Function "k5_mutex_lock(k5_mutex_t *)" dereferences an offset off "cred" (which is a copy of "cred_handle"). >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: cond_true: Condition "krb5int_pthread_loaded()", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/include/k5-thread.h:387:5: deref_parm_in_call: Function "pthread_mutex_lock(pthread_mutex_t *)" dereferences "m". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/inq_cred.c:125: alias: Assigning: "cred" = "(krb5_gss_cred_id_t)cred_handle". >/builddir/build/BUILD/krb5-1.10.3/src/lib/gssapi/krb5/inq_cred.c:197: check_after_deref: Null-checking "cred_handle" suggests that it may be null, but it has already been dereferenced on all paths leading to the check. > >Error: SECURE_TEMP (CWE-377): >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:189: cond_false: Condition "asprintf(&newpath, "%s.XXXXXX", primary_path) < 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:190: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/lib/krb5/ccache/cc_dir.c:191: secure_temp: Calling "mkstemp(char *)" without securely setting umask first. > >Error: SIZEOF_MISMATCH (CWE-569): >/builddir/build/BUILD/krb5-1.10.3/src/lib/crypto/krb/checksum_confounder.c:56: suspicious_sizeof: Passing argument "xorbytes" of type "unsigned char *" and argument "8UL /* sizeof (xorbytes) */" to function "zapfree(void *, size_t)" is suspicious. > >Error: TAINTED_SCALAR (CWE-20): >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3150: tainted_data_argument: Calling function "read(int, void *, size_t)" taints argument "buf". >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3152: cond_true: Condition "ofs < len", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3154: var_assign_var: Assigning: "ev" = "(struct inotify_event *)&buf[ofs]". Both are now tainted. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3156: var_assign_var: Compound assignment involving tainted variable "16UL + ev->len" to variable "ofs" taints "ofs". >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3157: loop: Jumping back to the beginning of the loop >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3152: loop_begin: Jumped back to beginning of loop >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3152: cond_true: Condition "ofs < len", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3152: upper_bounds: Checking upper bounds of signed scalar "ofs" by "ofs < len". >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:3154: tainted_data: Using tainted variable "ofs" as an index into an array "buf". > >Error: UNINIT (CWE-457): >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1325: cond_true: Condition "!*flag", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1328: var_decl: Declaring variable "dummy" without initializer. >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1333: cond_false: Condition "loop->evfd >= 0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1345: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/util/k5ev/ev.c:1345: uninit_use_in_call: Using uninitialized value "dummy" when calling "write(int, void const *, size_t)". > >Error: UNINIT (CWE-457): >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:806: var_decl: Declaring variable "errpkt" without initializer. >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:814: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:815: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:818: cond_true: Condition "error == -1765328316L", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:822: cond_true: Condition "e_data != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:823: cond_false: Condition "typed_e_data", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:827: else_branch: Reached else branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:828: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:829: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:831: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:832: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_as_req.c:834: uninit_use_in_call: Using uninitialized value "errpkt": field "errpkt"."magic" is uninitialized when calling "kdc_fast_handle_error(krb5_context, struct kdc_request_state *, krb5_kdc_req *, krb5_pa_data **, krb5_error *, krb5_data **)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:407:5: cond_false: Condition "!state", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:407:5: cond_false: Condition "!state->armor_key", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:408:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:409:5: read_parm: Reading a parameter value. > >Error: UNINIT (CWE-457): >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:984: var_decl: Declaring variable "errpkt" without initializer. >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:991: cond_false: Condition "retval = krb5_us_timeofday(kdc_active_realm->realm_context, &errpkt.stime, &errpkt.susec)", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:993: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:996: cond_true: Condition "ticket", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:996: cond_true: Condition "ticket->enc_part2", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:997: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:999: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1001: cond_false: Condition "0", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1001: cond_false: Condition "!(errpkt.text.data = ((0 && (size_t)(void const *)(status + 1) - (size_t)(void const *)status == 1) ? ((char const *)status[0] == 0) ? (char *)calloc(1UL /* (size_t)1 */, 1UL /* (size_t)1 */) : ({...}) : __strdup(status)))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1002: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1004: cond_false: Condition "!(scratch = (krb5_data *)malloc(16UL /* sizeof (*scratch) */))", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1007: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1009: cond_true: Condition "e_data != NULL", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1011: cond_false: Condition "retval", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1015: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1017: if_fallthrough: Falling through to end of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1018: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1020: cond_true: Condition "state", taking true branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/do_tgs_req.c:1021: uninit_use_in_call: Using uninitialized value "errpkt": field "errpkt"."magic" is uninitialized when calling "kdc_fast_handle_error(krb5_context, struct kdc_request_state *, krb5_kdc_req *, krb5_pa_data **, krb5_error *, krb5_data **)". >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:407:5: cond_false: Condition "!state", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:407:5: cond_false: Condition "!state->armor_key", taking false branch >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:408:9: if_end: End of if statement >/builddir/build/BUILD/krb5-1.10.3/src/kdc/fast_util.c:409:5: read_parm: Reading a parameter value.
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=647902">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 878136
: 647902