Text  |   XML   |   Visible Warnings:

pvm3.4.6 : pvm3.4.6 analysis 2 : Null Pointer Dereference  at pvmd.c:3715

Categories: LANG.MEM.NPD CWE:476
Warning ID: 323.29002
Procedure: sendmessage
Trace: view
Modified: Thu Nov 26 11:29:28 2009   show details
 
Priority: None
State: None
Finding: None
Owner: None
  edit properties

Legend [ X ]
Warning Location
Contributes
Parse Error
Other Warning
Two or More Loop Iterations
On Execution Path
Comment
Macro
Preprocessor
Include
Keyword
Preprocessed Away
Legend
Warning Location Contributes Parse Error
Other Warning Two or More Loop Iterations On Execution Path
Comment Macro Preprocessor
Include Keyword Preprocessed Away

Source  |  Language: C Hide Legend     
ProblemLineSource
   /kat0/fletcher/SATE/2010/pvm3/src/tdpro.c
   Enter tm_context
 2825 tm_context(tp, mp) 
 2826         struct task *tp;
 2827         struct pmsg *mp;
 2828 {
 2829         struct pmsg *mp2;
 2830         struct ccon *cp;
 2831         int cid;
 2832         int cc;
 2833  
true2834         mp2 = replymessage(mp);
 2835         if (upkuint(mp, &cid)) {
 2836                 cc = PvmBadParam;
 2837  
 2838         } else {
 2839                 if (cid == 0) {
 2840                         if (cp = ccon_new(tp))
 2841                                 cc = cp->c_cid;
 2842                         else 
 2843                                 cc = PvmOutOfRes;
 2844  
 2845                 } else {
 2846                         cc = PvmNotFound;
 2847                         if (tp->t_ccs) {
 2848                                 FORLIST (cp, tp->t_ccs, c_peer) {
 2849                                         if (cp->c_cid == cid) {
 2850                                                 LISTDELETE(cp, c_link, c_rlink);
 2851                                                 LISTDELETE(cp, c_peer, c_rpeer);
 2852                                                 PVM_FREE(cp);
 2853                                                 cc = 0;
 2854                                                 break;
 2855                                         }
 2856                                 }
 2857                         }
 2858                 }
 2859         }
 2860         pkint(mp2, cc);
mp2 <= 40952861         sendmessage(mp2);
Preconditions 
&$unknown_1150132 != ((char*)&((char*)*mp[1].m_enc)[8])[16]
&$unknown_1150132 != 0
((char*)mp[1].m_enc)[8] != mp[1].m_enc
((char*)&$unknown_1150133)[8] != mp[1].m_enc
numpmsgs = 0
Postconditions 
((char*)&((char*)((char*)$unknown_1150133)[8])[8])[12]' = ((char*)&((char*)$unknown_1150133)[8])[12]
((char*)&((char*)((char*)$unknown_1150133)[8])[12])[8]' = ((char*)&((char*)$unknown_1150133)[8])[8]
((char*)((char*)$unknown_1150133)[8])[4]' = ((char*)&((char*)$unknown_1150133)[8])[4]
((char*)&((char*)$unknown_1150133)[8])[4]' = 0
((char*)&((char*)$unknown_1150133)[8])[8]' = 0
((char*)&((char*)$unknown_1150133)[8])[12]' = 0
((char*)((char*)$unknown_1150133)[8])[4]' = ((char*)$unknown_1150133)[8]
((char*)$unknown_1150133)[8]' = 0
((char*)$unknown_1150133)[8]' is freed
cc' = 0
cid' = &$unknown_1150132
cp' = ((char*)&$unknown_1150133)[8]
errno' != 0
ff' = 1
freepmsgs.m_link' = &freepmsgs.m_link
freepmsgs.m_rlink' = &freepmsgs.m_link
hp' = 0
mp' = 0
mp2' = 0



Change Warning 323.29002 : Null Pointer Dereference

Priority:
State:
Finding:
Owner:
Note: