[mod_gnutls-devel] static analysis using clang

Ramkumar Chinchani ramkumar.chinchani at gmail.com
Sun Aug 10 18:39:20 CEST 2014

FWIW, here are the results:

gnutls_io.c:54:51: warning: Access to field 'module_config' results in a
dereference of a null pointer (loaded from field 'base_server')
                                    mgs_srvconf_rec *sc = (mgs_srvconf_rec
*) ap_get_module_config(

/usr/include/apache2/http_config.h:508:16: note: expanded from macro
    (((void **)(v))[(m)->module_index])
1 warning generated.

gnutls_hooks.c:441:40: warning: Array access (via field 'certs_x509_chain')
results in a null pointer dereference
                rv = read_crt_cn(s, p, sc->certs_x509_chain[0],
gnutls_hooks.c:1200:13: warning: Value stored to 'rv' is never read
            rv = 0;
            ^    ~
gnutls_hooks.c:1279:16: warning: The left operand of '&' is a garbage value
    if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) {
        ~~~~~~ ^
3 warnings generated.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20140810/71d87905/attachment.html>

More information about the mod_gnutls-devel mailing list