Text  |   XML   |   Visible Warnings:

Pvm : Pvm analysis 1 : Null Pointer Dereference  at ddpro.c:1433

Categories: LANG.MEM.NPD CWE:476
Warning ID: 2533.2564
Procedure: exectasks
Trace: View
Modified: Wed Sep 2 12:40:38 2009   show details
 
Priority: None
State: None
Finding: None
Owner: None
  edit properties

Legend [ X ]
Warning Location
Contributes
Parse Error
Other Warning
Two or More Loop Iterations
On Execution Path
Comment
Macro
Preprocessor
Include
Keyword
Preprocessed Away
Legend
Warning Location Contributes Parse Error
Other Warning Two or More Loop Iterations On Execution Path
Comment Macro Preprocessor
Include Keyword Preprocessed Away

Source  |  Language: C Hide Legend     
ProblemLineSource
   /u1/paul/SATE/2010/c/pvm/pvm3/src/ddpro.c
   Enter exectasks
 1401 exectasks(mp, rmp, schtid) 
 1402         struct pmsg *mp;                /* the request message */ 
 1403         struct pmsg *rmp;               /* reply message blank */ 
 1404         int schtid;                             /* scheduler for new tasks */ 
 1405 {
 1406         struct pmsg *mp2;                       /* reply message hdl */ 
 1407         int i;
 1408         struct timeval now;
 1409         struct waitc_spawn *wxp;        /* new task parameters */ 
 1410         int munge_tenv = 0;
 1411         char tmp[255];
 1412         char *wd = 0;
 1413         char *savewd = 0;
 1414  
 1415         wxp = TALLOC(1, struct waitc_spawn, "waix");
 1416         BZERO((char*)wxp, sizeof(struct waitc_spawn));   /* Null Pointer Dereference (ID: 2534.2565) */
 1417  
 1418         /* unpack message */ 
 1419  
 1420         if (upkuint(mp, &wxp->w_ptid) 
 1421         || upkstralloc(mp, &wxp->w_file) 
 1422         || upkint(mp, &wxp->w_flags) 
 1423         || upkint(mp, &wxp->w_veclen) 
 1424         || upkint(mp, &wxp->w_argc))
 1425                 goto bad;
 1426  
 1427         if (wxp->w_veclen < 1)
 1428                 goto bad;
 1429         wxp->w_vec = TALLOC(wxp->w_veclen, int, "tids");
 1430  
 1431         wxp->w_argc += 2;
true1432         wxp->w_argv = TALLOC(wxp->w_argc + 1, char*, "argv");
wxp->w_argv <= 40951433         BZERO((char*)wxp->w_argv, (wxp->w_argc + 1) * sizeof(char*));     /* Null Pointer Dereference */
Preconditions 
&$unknown_438402 >= 1
((char*)&$heap_30102)[40] >= 1
Postconditions 
$heap_30102' = 0
bytes_after(&$heap_30102)' = 112
$heap_30102' is allocated by malloc
bytes_before(&$heap_30102)' = 0
strlen(&$heap_30102)' = 0
((char*)&$heap_30102)[16]' = 0
((char*)&$heap_30102)[32]' = 0
((char*)&$heap_30102)[12]' = ( &$unknown_438402 - 8 ) / 8
mp' = $param_1
munge_tenv' = 0
rmp' = $param_2
savewd' = 0
schtid' = $param_3
wd' = 0
wxp' = &$heap_30102



Change Warning 2533.2564 : Null Pointer Dereference

Priority:
State:
Finding:
Owner:
Note: