Skip to content

Instantly share code, notes, and snippets.

@hfiref0x
Created Feb 1, 2019
Embed
What would you like to do?
nginx_1_15_8
/Build/nginx-1.15.8/src/core/ngx_log.c 335 err V547 Expression 'nlen == 0' is always false.
/Build/nginx-1.15.8/src/core/ngx_inet.c 792 warn V641 The size of the '& u->sockaddr' buffer is not a multiple of the element size of the type 'struct sockaddr_in'.
/Build/nginx-1.15.8/src/core/ngx_inet.c 952 warn V641 The size of the '& u->sockaddr' buffer is not a multiple of the element size of the type 'struct sockaddr_in6'.
/Build/nginx-1.15.8/src/core/ngx_inet.c 962 warn V641 The size of the '& u->sockaddr' buffer is not a multiple of the element size of the type 'struct sockaddr_in'.
/Build/nginx-1.15.8/src/core/ngx_inet.c 985 warn V641 The size of the '& u->sockaddr' buffer is not a multiple of the element size of the type 'struct sockaddr_in6'.
/Build/nginx-1.15.8/src/core/ngx_file.c 477 err V536 Be advised that the utilized constant value is represented by an octal form. Oct: 0600, Dec: 384.
/Build/nginx-1.15.8/src/core/ngx_resolver.c 1673 err V1028 Possible overflow. Consider casting operands of the '2 + qlen' operator to the 'size_t' type, not the result.
/Build/nginx-1.15.8/src/core/ngx_resolver.c 4226 warn V641 The size of the 'sin6' buffer is not a multiple of the element size of the type 'struct sockaddr'.
/Build/nginx-1.15.8/src/event/ngx_event_udp.c 155 err V512 A call of the 'memset' function will lead to underflow of the buffer '& sa'.
/Build/nginx-1.15.8/src/event/ngx_event_udp.c 219 warn V641 The size of the 'local_sockaddr' buffer is not a multiple of the element size of the type 'struct sockaddr_in6'.
/Build/nginx-1.15.8/src/os/unix/ngx_files.c 367 err V522 Dereferencing of the null pointer 'iov' might take place.
/Build/nginx-1.15.8/src/os/unix/ngx_files.c 380 warn V1004 The 'cl->buf->pos' pointer was used unsafely after it was verified against nullptr. Check lines: 366, 380.
/Build/nginx-1.15.8/src/os/unix/ngx_readv_chain.c 96 err V522 Dereferencing of the null pointer 'iov' might take place.
/Build/nginx-1.15.8/src/os/unix/ngx_writev_chain.c 157 err V522 Dereferencing of the null pointer 'iov' might take place.
/Build/nginx-1.15.8/src/os/unix/ngx_writev_chain.c 170 warn V1004 The 'in->buf->pos' pointer was used unsafely after it was verified against nullptr. Check lines: 156, 170.
/Build/nginx-1.15.8/src/os/unix/ngx_udp_sendmsg_chain.c 165 err V522 Dereferencing of the null pointer 'iov' might take place.
/Build/nginx-1.15.8/src/os/unix/ngx_udp_sendmsg_chain.c 180 warn V1004 The 'in->buf->pos' pointer was used unsafely after it was verified against nullptr. Check lines: 164, 180.
/Build/nginx-1.15.8/src/os/unix/ngx_shmem.c 35 err V774 The 'shm->addr' pointer was used after the memory was released.
/Build/nginx-1.15.8/src/os/unix/ngx_linux_init.c 1 err V002 Some diagnostic messages may contain incorrect line number in this file.
/Build/nginx-1.15.8/src/event/modules/ngx_epoll_module.c 133 warn V707 Giving short names to global variables is considered to be bad practice. It is suggested to rename 'ep' variable.
/Build/nginx-1.15.8/src/event/modules/ngx_epoll_module.c 910 warn V560 A part of conditional expression is always false: c->fd == - 1.
/Build/nginx-1.15.8/src/event/ngx_event_openssl.c 263 err V575 The null pointer is passed into 'SSL_CTX_set_ex_data' function. Inspect the third argument.
/Build/nginx-1.15.8/src/event/ngx_event_openssl.c 3150 warn V547 Expression 'sess_id' is always false.
/Build/nginx-1.15.8/src/event/ngx_event_openssl.c 3527 warn V512 A call of the 'memcpy' function will lead to underflow of the buffer 'key->aes_key'.
/Build/nginx-1.15.8/src/event/ngx_event_openssl.c 3528 warn V512 A call of the 'memcpy' function will lead to underflow of the buffer 'key->hmac_key'.
/Build/nginx-1.15.8/src/http/ngx_http_request.c 2723 warn V547 Expression '!wev->delayed' is always true.
/Build/nginx-1.15.8/src/http/ngx_http_request_body.c 1028 warn V519 The 'b->last' variable is assigned values twice successively. Perhaps this is a mistake. Check lines: 1008, 1028.
/Build/nginx-1.15.8/src/http/ngx_http_variables.c 1310 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/http/ngx_http_variables.c 1350 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/http/ngx_http_variables.c 1411 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/http/ngx_http_upstream.c 3091 err V595 The 'r->cache' pointer was utilized before it was verified against nullptr. Check lines: 3091, 3107.
/Build/nginx-1.15.8/src/http/ngx_http_upstream_round_robin.c 686 err V571 Recurring check. The 'if (peers->shpool)' condition was already verified in line 685.
/Build/nginx-1.15.8/src/http/v2/ngx_http_v2_filter_module.c 411 err V634 The priority of the '*' operation is higher than that of the '<<' operation. It's possible that parentheses should be used in the expression.
/Build/nginx-1.15.8/src/http/v2/ngx_http_v2_filter_module.c 418 err V634 The priority of the '*' operation is higher than that of the '<<' operation. It's possible that parentheses should be used in the expression.
/Build/nginx-1.15.8/src/http/v2/ngx_http_v2_filter_module.c 937 err V634 The priority of the '*' operation is higher than that of the '<<' operation. It's possible that parentheses should be used in the expression.
/Build/nginx-1.15.8/src/http/v2/ngx_http_v2_filter_module.c 1335 err V634 The priority of the '*' operation is higher than that of the '<<' operation. It's possible that parentheses should be used in the expression.
/Build/nginx-1.15.8/src/http/v2/ngx_http_v2_filter_module.c 1342 err V634 The priority of the '*' operation is higher than that of the '<<' operation. It's possible that parentheses should be used in the expression.
/Build/nginx-1.15.8/src/http/modules/ngx_http_ssi_filter_module.c 569 warn V793 It is odd that the result of the '+' operator is a part of the condition. Perhaps, this statement should have been compared with something else.
/Build/nginx-1.15.8/src/http/modules/ngx_http_addition_filter_module.c 184 warn V560 A part of conditional expression is always false: conf->after_body.len == 0.
/Build/nginx-1.15.8/src/http/modules/ngx_http_userid_filter_module.c 303 warn V547 Expression 'ctx == NULL' is always true.
/Build/nginx-1.15.8/src/http/modules/ngx_http_userid_filter_module.c 417 warn V512 A call of the 'memcpy' function will lead to underflow of the buffer 'expires'.
/Build/nginx-1.15.8/src/http/modules/ngx_http_autoindex_module.c 613 warn V555 The expression '50 - len > 0' will work as '50 != len'.
/Build/nginx-1.15.8/src/http/modules/ngx_http_autoindex_module.c 620 warn V555 The expression '50 - len > 0' will work as '50 != len'.
/Build/nginx-1.15.8/src/http/modules/ngx_http_realip_module.c 618 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/http/modules/ngx_http_geo_module.c 1500 err V512 A call of the 'memcmp' function will lead to underflow of the buffer '& ngx_http_geo_header'.
/Build/nginx-1.15.8/src/http/modules/ngx_http_geo_module.c 1500 err V512 A call of the 'memcmp' function will lead to underflow of the buffer 'header'.
/Build/nginx-1.15.8/src/http/modules/ngx_http_proxy_module.c 1758 err V595 The 'u->state' pointer was utilized before it was verified against nullptr. Check lines: 1758, 1764.
/Build/nginx-1.15.8/src/http/modules/ngx_http_proxy_module.c 2174 warn V547 Expression 'b' is always false.
/Build/nginx-1.15.8/src/http/modules/ngx_http_proxy_module.c 2936 err V571 Recurring check. The 'if (conf->upstream.store == - 1)' condition was already verified in line 2935.
/Build/nginx-1.15.8/src/http/modules/ngx_http_proxy_module.c 3108 err V571 Recurring check. The 'if (conf->upstream.cache == - 1)' condition was already verified in line 3107.
/Build/nginx-1.15.8/src/http/modules/ngx_http_fastcgi_module.c 2807 err V571 Recurring check. The 'if (conf->upstream.store == - 1)' condition was already verified in line 2806.
/Build/nginx-1.15.8/src/http/modules/ngx_http_fastcgi_module.c 2980 err V571 Recurring check. The 'if (conf->upstream.cache == - 1)' condition was already verified in line 2979.
/Build/nginx-1.15.8/src/http/modules/ngx_http_uwsgi_module.c 1503 err V571 Recurring check. The 'if (conf->upstream.store == - 1)' condition was already verified in line 1502.
/Build/nginx-1.15.8/src/http/modules/ngx_http_uwsgi_module.c 1675 err V571 Recurring check. The 'if (conf->upstream.cache == - 1)' condition was already verified in line 1674.
/Build/nginx-1.15.8/src/http/modules/ngx_http_scgi_module.c 1282 err V571 Recurring check. The 'if (conf->upstream.store == - 1)' condition was already verified in line 1281.
/Build/nginx-1.15.8/src/http/modules/ngx_http_scgi_module.c 1454 err V571 Recurring check. The 'if (conf->upstream.cache == - 1)' condition was already verified in line 1453.
/Build/nginx-1.15.8/src/http/modules/ngx_http_grpc_module.c 2591 err V547 Expression 'state == sw_padding' is always true.
/Build/nginx-1.15.8/src/mail/ngx_mail_pop3_handler.c 56 warn V512 A call of the 'memcpy' function will lead to underflow of the buffer 'pop3_greeting'.
/Build/nginx-1.15.8/src/mail/ngx_mail_imap_handler.c 154 warn V683 Consider inspecting the loop expression. It is possible that the 'src' variable should be incremented instead of the 'dst' variable.
/Build/nginx-1.15.8/src/stream/ngx_stream_variables.c 548 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/stream/ngx_stream_variables.c 588 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/stream/ngx_stream_variables.c 649 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/stream/ngx_stream_upstream_round_robin.c 718 err V571 Recurring check. The 'if (peers->shpool)' condition was already verified in line 717.
/Build/nginx-1.15.8/src/stream/ngx_stream_realip_module.c 396 warn V560 A part of conditional expression is always true: port < 65536.
/Build/nginx-1.15.8/src/stream/ngx_stream_geo_module.c 1426 err V512 A call of the 'memcmp' function will lead to underflow of the buffer '& ngx_stream_geo_header'.
/Build/nginx-1.15.8/src/stream/ngx_stream_geo_module.c 1426 err V512 A call of the 'memcmp' function will lead to underflow of the buffer 'header'.
/Build/pcre-8.40/pcre_compile.c 3688 warn V614 Potentially uninitialized buffer 'list' used. Consider checking the fourth actual argument of the 'compare_opcodes' function.
/Build/pcre-8.40/pcre_compile.c 6130 warn V547 Expression 'bralink == NULL' is always true.
/Build/pcre-8.40/pcre_compile.c 8122 warn V560 A part of conditional expression is always true: !utf.
/Build/pcre-8.40/pcre_compile.c 8211 warn V560 A part of conditional expression is always true: mclength == 1.
/Build/pcre-8.40/pcre_compile.c 8217 err V547 Expression 'mclength != 1' is always false.
/Build/pcre-8.40/pcre_compile.c 8214 warn V519 The 'firstchar' variable is assigned values twice successively. Perhaps this is a mistake. Check lines: 8213, 8214.
/Build/pcre-8.40/pcre_compile.c 8235 warn V560 A part of conditional expression is always true: mclength == 1.
/Build/pcre-8.40/pcre_compile.c 9349 err V507 Pointer to local array 'named_groups' is stored outside the scope of this array. Such a pointer will become invalid.
/Build/pcre-8.40/pcre_dfa_exec.c 1033 warn V560 A part of conditional expression is always true: d < 256.
/Build/pcre-8.40/pcre_dfa_exec.c 1181 warn V557 Array overrun is possible. The value of 'd' index could reach 4294967295.
/Build/pcre-8.40/pcre_dfa_exec.c 1212 warn V557 Array overrun is possible. The value of 'd' index could reach 4294967295.
/Build/pcre-8.40/pcre_dfa_exec.c 1242 warn V557 Array overrun is possible. The value of 'd' index could reach 4294967295.
/Build/pcre-8.40/pcre_dfa_exec.c 1270 warn V557 Array overrun is possible. The value of 'd' index could reach 4294967295.
/Build/pcre-8.40/pcre_dfa_exec.c 1299 warn V557 Array overrun is possible. The value of 'd' index could reach 4294967295.
/Build/pcre-8.40/pcre_dfa_exec.c 2200 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_dfa_exec.c 3458 warn V560 A part of conditional expression is always true: (t) < md->end_subject.
/Build/pcre-8.40/pcre_exec.c 5276 warn V560 A part of conditional expression is always true: (eptr) < md->end_subject.
/Build/pcre-8.40/pcre_exec.c 2079 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_exec.c 6767 warn V560 A part of conditional expression is always true: (t) < md->end_subject.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 135 warn V547 Expression 'args > 0' is always true.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 605 warn V557 Array overrun is possible. The value of 'dst' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 609 warn V557 Array overrun is possible. The value of 'dst' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 617 warn V557 Array overrun is possible. The value of 'dst' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 643 warn V557 Array overrun is possible. The value of 'src' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 648 warn V557 Array overrun is possible. The value of 'src' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_64.c 656 warn V557 Array overrun is possible. The value of 'src' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 709 warn V557 Array overrun is possible. The value of 'dst' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 1255 warn V557 Array overrun is possible. The value of 'dst_r' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 1255 err V547 Expression 'reg_map[(12 + 2)] >= 8' is always false.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 1257 warn V557 Array overrun is possible. The value of 'dst_r' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 1935 warn V560 A part of conditional expression is always false: (src2 & 0x40).
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2722 err V547 Expression 'reg_map[(12 + 2)] <= 7' is always true.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2726 err V547 Expression 'reg_map[(12 + 2)] <= 7' is always true.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2738 warn V557 Array overrun is possible. The value of 'reg' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2741 warn V557 Array overrun is possible. The value of 'reg' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2742 warn V557 Array overrun is possible. The value of 'reg' index could reach 63.
/Build/pcre-8.40/sljit/sljitNativeX86_common.c 2745 warn V557 Array overrun is possible. The value of 'reg' index could reach 63.
/Build/pcre-8.40/pcre_jit_compile.c 3489 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_jit_compile.c 3520 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_jit_compile.c 3528 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_jit_compile.c 3538 warn V796 It is possible that 'break' statement is missing in switch statement.
/Build/pcre-8.40/pcre_jit_compile.c 4513 warn V547 Expression 'range_right >= 0' is always true.
/Build/pcre-8.40/pcre_jit_compile.c 4516 warn V547 Expression 'range_right >= 0' is always true.
/Build/pcre-8.40/pcre_jit_compile.c 6849 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 7052 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 7817 warn V519 The 'opcode' variable is assigned values twice successively. Perhaps this is a mistake. Check lines: 7814, 7817.
/Build/pcre-8.40/pcre_jit_compile.c 8347 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 8553 warn V547 Expression 'framesize < 0' is always false.
/Build/pcre-8.40/pcre_jit_compile.c 8781 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 9255 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 9474 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 9479 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 9512 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/pcre-8.40/pcre_jit_compile.c 9582 err V512 A call of the 'memset' function will lead to overflow of the buffer 'backtrack'.
/Build/zlib-1.2.11/adler32.c 77 err V595 The 'buf' pointer was utilized before it was verified against nullptr. Check lines: 77, 87.
/Build/zlib-1.2.11/deflate.c 603 err V640 The code's operational logic does not correspond with its formatting. The second statement will always be executed. It is possible that curly brackets are missing.
/Build/zlib-1.2.11/inffast.c 296 err V629 Consider inspecting the '1U << bits' expression. Bit shifting of the 32-bit value with a subsequent expansion to the 64-bit type.
/Build/zlib-1.2.11/inffast.c 296 warn V784 The size of the bit mask is less than the size of the first operand. This will cause the loss of higher bits.
/Build/zlib-1.2.11/inflate.c 114 warn V1016 Expression 'state->mode < HEAD' is always false.
/Build/zlib-1.2.11/inflate.c 114 warn V1016 Expression 'state->mode > SYNC' is always false.
/Build/zlib-1.2.11/inflate.c 263 err V629 Consider inspecting the '(unsigned) value << state->bits' expression. Bit shifting of the 32-bit value with a subsequent expansion to the 64-bit type.
/Build/zlib-1.2.11/inflate.c 1049 err V547 Expression 'state->mode == TYPE' is always false.
/Build/zlib-1.2.11/uncompr.c 82 warn V793 It is odd that the result of the 'left + stream.avail_out' statement is a part of the condition. Perhaps, this statement should have been compared with something else.
/Build/zlib-1.2.11/gzread.c 160 warn V547 Expression 'strm->avail_in' is always true.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment